$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft File: vkiLTmCsanOmVu_bxfpnoajegSo.mft (raw, json) Hash identifier: LDI9c3wvOZXUrxS1MvfVZhPYeP4TbVLIBX/cRjaLScA= Subject key identifier: CC:82:DD:39:F1:1C:C5:49:6A:02:98:87:C6:7D:22:84:C3:85:E0:99 Authority key identifier: BE:48:8B:4E:60:AC:6A:73:A6:56:EF:DB:C5:FA:67:A1:A8:DE:81:2A Certificate issuer: /CN=A91ADE0A/serialNumber=BE488B4E60AC6A73A656EFDBC5FA67A1A8DE812A Certificate serial: 2277 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft Manifest number: 2239 Signing time: Thu 24 Apr 2025 15:54:05 +0000 Manifest this update: Thu 24 Apr 2025 15:54:05 +0000 Manifest next update: Thu 01 May 2025 15:54:05 +0000 Files and hashes: 1: vkiLTmCsanOmVu_bxfpnoajegSo.crl (hash: m+sQEwiPBt+YdZO3KbQE/o4BIQn+SW+RKnAKXlR9p3M=) 2: 4AB8D38E178811EF95C8DF41C4F9AE02.roa (hash: bRjvCEzkjDm3JJYu7t1zkHD97hp8O/fwotkC6wIv1RQ=) 3: 815465903EB511E9881B6529C4F9AE02.roa (hash: gW74XIULKnrcRgyXZDwxsWWvrLPKxQLUY/wa7dOD1h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.crl rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8823 (0x2277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADE0A, serialNumber=BE488B4E60AC6A73A656EFDBC5FA67A1A8DE812A Validity Not Before: Apr 24 15:54:05 2025 GMT Not After : May 1 15:54:05 2025 GMT Subject: CN=680a5e9d-3688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ac:4d:b8:86:e3:08:77:83:0f:3c:84:ff:f2: 64:fc:7f:ff:79:0a:80:ce:cb:7b:99:31:a9:f8:1b: 9c:f0:95:3a:7c:0b:fd:5e:be:8e:b6:05:bc:43:d6: f5:44:6a:54:16:43:de:80:c8:46:4f:e9:7d:d7:79: cb:84:72:77:5d:e0:fb:66:3c:be:a0:4c:7c:64:51: 79:56:c0:e1:44:92:27:17:26:6e:e5:c1:d1:c4:a5: 05:27:bd:f3:ef:b1:45:d6:91:aa:a3:67:20:f6:89: 97:13:c6:06:d5:5e:78:7c:a0:63:de:f3:5b:ea:62: a1:e6:ed:70:db:d7:33:44:ea:3b:5a:52:4d:b9:73: f6:1d:93:4e:61:70:67:b8:08:b7:86:c5:77:2b:a8: 50:cd:aa:f4:cc:f5:0b:17:79:22:ac:88:ae:2f:13: 68:46:30:1c:c0:75:24:33:b6:f4:6d:e5:a6:55:5d: a7:2f:3a:cf:ae:68:2f:97:9e:78:75:aa:26:a5:e0: 3e:74:95:af:e3:4d:f6:d5:f3:79:57:d9:01:b2:9b: c1:5a:a3:04:3c:22:68:27:17:78:1f:f4:f2:e0:71: 46:a2:18:e8:0e:1d:a7:d0:66:59:7e:39:9a:3c:3d: 5a:dc:2c:f1:4d:0c:09:08:4a:7f:3a:4d:4c:51:b9: 62:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:82:DD:39:F1:1C:C5:49:6A:02:98:87:C6:7D:22:84:C3:85:E0:99 X509v3 Authority Key Identifier: keyid:BE:48:8B:4E:60:AC:6A:73:A6:56:EF:DB:C5:FA:67:A1:A8:DE:81:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:8e:5f:7a:30:04:81:16:b8:67:4c:4f:cf:7f:4e:e5:72:51: 59:a9:5d:c8:1a:86:15:c4:52:bf:05:64:ca:74:59:45:07:64: 5a:80:cb:6b:80:13:16:4d:08:2f:2b:0f:19:ac:63:9e:d8:cc: f8:86:bf:d2:84:da:e0:85:19:5c:0d:bf:67:8f:90:0e:d0:dc: e9:d6:35:e6:c8:99:0e:48:bd:45:38:c3:3a:66:e7:a4:38:07: fc:0e:a1:b6:56:ef:14:e5:dc:c3:6b:c7:82:50:17:ed:0f:70: 68:ee:31:ee:84:d0:e8:fb:a4:f7:4b:44:be:a8:13:54:ad:a6: 70:be:19:44:8e:e1:b0:78:b2:ad:1d:36:29:8d:13:65:8a:13: b3:91:74:3c:da:f6:7c:19:e8:95:2e:5b:87:2b:84:f2:6f:b6: 19:97:49:59:ee:a7:28:e9:20:19:33:be:d0:1e:46:6e:71:7c: 53:09:5a:89:c2:3e:3b:2a:79:e9:7e:04:b0:8b:33:88:2b:da: b1:3b:5c:91:a7:cf:79:88:1b:b7:bd:19:29:fc:68:8c:34:d4: 91:82:f6:fc:d9:94:75:92:00:a6:9a:f5:8f:20:86:10:aa:e3: 45:5b:a6:af:f4:36:b4:77:45:94:ab:9e:2d:f0:7a:10:6c:0a: ea:e0:d9:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURFMEExMTAvBgNVBAUTKEJFNDg4QjRFNjBBQzZBNzNBNjU2RUZEQkM1RkE2N0Ex QThERTgxMkEwHhcNMjUwNDI0MTU1NDA1WhcNMjUwNTAxMTU1NDA1WjAYMRYwFAYD VQQDEw02ODBhNWU5ZC0zNjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6xNuIbjCHeDDzyE//Jk/H//eQqAzst7mTGp+Buc8JU6fAv9Xr6OtgW8Q9b1 RGpUFkPegMhGT+l913nLhHJ3XeD7Zjy+oEx8ZFF5VsDhRJInFyZu5cHRxKUFJ73z 77FF1pGqo2cg9omXE8YG1V54fKBj3vNb6mKh5u1w29czROo7WlJNuXP2HZNOYXBn uAi3hsV3K6hQzar0zPULF3kirIiuLxNoRjAcwHUkM7b0beWmVV2nLzrPrmgvl554 daompeA+dJWv40321fN5V9kBspvBWqMEPCJoJxd4H/Ty4HFGohjoDh2n0GZZfjma PD1a3CzxTQwJCEp/Ok1MUblitwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyC3Tnx HMVJagKYh8Z9IoTDheCZMB8GA1UdIwQYMBaAFL5Ii05grGpzplbv28X6Z6Go3oEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREUwQS8zMEQ4MDEyNkMx MTMxMUU1QjAxQTcyNjlDNEY5QUUwMi92a2lMVG1Dc2FuT21WdV9ieGZwbm9hamVn U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZraUxUbUNzYW5PbVZ1X2J4ZnBub2FqZWdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REUwQS8zMEQ4MDEyNkMxMTMxMUU1QjAxQTcyNjlDNEY5QUUwMi92a2lMVG1Dc2Fu T21WdV9ieGZwbm9hamVnU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBojl96MASBFrhnTE/Pf07lclFZqV3IGoYVxFK/BWTKdFlFB2RagMtr gBMWTQgvKw8ZrGOe2Mz4hr/ShNrghRlcDb9nj5AO0Nzp1jXmyJkOSL1FOMM6Zuek OAf8DqG2Vu8U5dzDa8eCUBftD3Bo7jHuhNDo+6T3S0S+qBNUraZwvhlEjuGweLKt HTYpjRNlihOzkXQ82vZ8GeiVLluHK4Tyb7YZl0lZ7qco6SAZM77QHkZucXxTCVqJ wj47KnnpfgSwizOIK9qxO1yRp895iBu3vRkp/GiMNNSRgvb82ZR1kgCmmvWPIIYQ quNFW6av9Da0d0WUq54t8HoQbArq4NkB -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:52 2025 by rpki-client