$ rpki-client -vvf rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft File: vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft (raw, json) Hash identifier: hV3350MU2OnRsSNkTQKTnB1JFH2WfHVy65Uaai7dIPY= Subject key identifier: E0:00:1D:9D:52:2A:6F:7F:7B:7E:B0:DA:26:64:D5:9A:CA:52:09:58 Authority key identifier: BE:A7:E9:8C:5A:3F:B5:FB:D8:30:A4:35:94:41:B4:22:47:27:C7:2D Certificate issuer: /CN=A91C612E/serialNumber=BEA7E98C5A3FB5FBD830A4359441B4224727C72D Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft Manifest number: 1295 Signing time: Thu 24 Apr 2025 18:33:51 +0000 Manifest this update: Thu 24 Apr 2025 18:33:51 +0000 Manifest next update: Thu 01 May 2025 18:33:51 +0000 Files and hashes: 1: vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.crl (hash: Q4u7Iweoj5uEyhYlQ3VHO3sILRbCblfMGc70sBgdwH8=) 2: 763E080A142911F087C1AF7CC4F9AE02.roa (hash: OqYmuSN5Gj4HYv1k95fE+DkrkF2QoPlx9+v7d3wB2mI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.crl rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C612E, serialNumber=BEA7E98C5A3FB5FBD830A4359441B4224727C72D Validity Not Before: Apr 24 18:33:51 2025 GMT Not After : May 1 18:33:51 2025 GMT Subject: CN=680a840f-45fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:10:c1:61:7e:a1:89:de:66:1b:3e:98:97:7d: 93:17:b5:5d:70:34:c9:7d:04:81:af:cd:8a:60:a1: 3a:be:21:7d:e8:bc:b6:a0:90:26:58:f7:24:89:37: 7b:6c:55:aa:70:0b:64:73:8a:f2:d1:26:a6:ce:74: d0:7c:f9:da:7f:e7:d9:d1:53:a3:51:31:ba:4c:82: b6:86:3c:f8:74:87:43:e3:4e:0a:eb:12:f0:34:68: 57:b5:5f:0e:9f:3e:ab:01:fd:f5:25:c4:2a:b3:76: 5b:6f:68:93:1e:a7:6f:8d:b8:80:4b:c5:55:13:59: 09:77:9d:04:ec:c5:4c:36:12:dd:4c:a7:55:58:7a: ee:34:cb:fb:7a:59:f3:01:1d:1b:ea:2e:39:7a:48: d7:f5:03:53:ec:98:e1:ca:d0:be:c1:17:65:39:61: 6e:ca:c0:15:4c:dc:97:aa:39:db:7c:6f:ce:ed:c3: 5a:2a:ce:d6:4d:f1:f0:5d:c1:ae:e6:29:ac:00:bf: 32:c4:32:38:a8:cc:5f:16:66:0c:c2:cf:8f:0b:59: 2a:2a:ae:7d:84:ae:24:f3:06:3e:d0:94:d6:9c:cb: 9c:15:c7:f4:4c:90:82:c3:71:0b:42:6c:13:4b:c0: 43:0e:30:f2:1e:8f:f2:00:89:fe:f7:a0:92:f2:d1: c4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:00:1D:9D:52:2A:6F:7F:7B:7E:B0:DA:26:64:D5:9A:CA:52:09:58 X509v3 Authority Key Identifier: keyid:BE:A7:E9:8C:5A:3F:B5:FB:D8:30:A4:35:94:41:B4:22:47:27:C7:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:2a:db:f0:09:e9:d4:2d:9e:af:22:5a:e7:1c:0a:30:0f:4b: 7f:75:4d:6d:88:a9:d4:04:0c:89:0f:61:4a:62:2a:1f:e5:ea: 25:47:a1:7e:ec:12:50:e2:df:91:ae:50:33:ce:14:b4:61:15: d3:2d:c4:42:31:83:5c:05:92:da:dd:fa:2d:5e:4a:5a:3d:76: c7:e0:39:3c:b2:88:e9:94:42:ca:c1:b0:78:f4:5b:d2:b5:04: ab:69:da:27:a9:b2:de:ec:94:45:7f:9c:80:b2:63:84:89:e3: f6:e2:ea:09:1a:7f:80:68:d2:b5:27:d0:0f:58:55:e4:1e:a2: 0c:90:c5:a1:40:43:f3:86:c9:41:96:04:d9:22:45:85:77:f8: f8:c8:b4:b1:4a:ce:f1:33:d0:b7:e8:43:11:ee:3e:1e:79:58: 52:d9:e9:d7:0d:4e:8a:ba:a8:e8:e4:25:10:68:e5:9a:29:39: 39:bd:e7:3f:62:a2:31:14:f1:b9:ab:08:30:e1:4e:69:5f:e1: 6f:04:98:04:17:04:54:c6:b0:dd:c0:d1:e1:48:94:d0:90:b2: 6d:5a:24:74:ef:25:1c:68:9d:d5:dd:99:d4:8e:f1:e2:6e:bf: 78:7b:e6:e4:77:ee:52:44:2d:62:d4:3a:37:03:a4:61:56:00: 51:8c:45:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjEyRTExMC8GA1UEBRMoQkVBN0U5OEM1QTNGQjVGQkQ4MzBBNDM1OTQ0MUI0MjI0 NzI3QzcyRDAeFw0yNTA0MjQxODMzNTFaFw0yNTA1MDExODMzNTFaMBgxFjAUBgNV BAMTDTY4MGE4NDBmLTQ1ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4EMFhfqGJ3mYbPpiXfZMXtV1wNMl9BIGvzYpgoTq+IX3ovLagkCZY9ySJN3ts VapwC2RzivLRJqbOdNB8+dp/59nRU6NRMbpMgraGPPh0h0PjTgrrEvA0aFe1Xw6f PqsB/fUlxCqzdltvaJMep2+NuIBLxVUTWQl3nQTsxUw2Et1Mp1VYeu40y/t6WfMB HRvqLjl6SNf1A1PsmOHK0L7BF2U5YW7KwBVM3JeqOdt8b87tw1oqztZN8fBdwa7m KawAvzLEMjiozF8WZgzCz48LWSoqrn2EriTzBj7QlNacy5wVx/RMkILDcQtCbBNL wEMOMPIej/IAif73oJLy0cTzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4AAdnVIq b397frDaJmTVmspSCVgwHwYDVR0jBBgwFoAUvqfpjFo/tfvYMKQ1lEG0Ikcnxy0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2MTJFLzY1QkMxN0QyMEI2 MTExRUFBRjA0MkY2OEM0RjlBRTAyL3ZxZnBqRm9fdGZ2WU1LUTFsRUcwSWtjbnh5 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdnFmcGpGb190ZnZZTUtRMWxFRzBJa2NueHkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 MTJFLzY1QkMxN0QyMEI2MTExRUFBRjA0MkY2OEM0RjlBRTAyL3ZxZnBqRm9fdGZ2 WU1LUTFsRUcwSWtjbnh5MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALQq2/AJ6dQtnq8iWuccCjAPS391TW2IqdQEDIkPYUpiKh/l6iVHoX7s ElDi35GuUDPOFLRhFdMtxEIxg1wFktrd+i1eSlo9dsfgOTyyiOmUQsrBsHj0W9K1 BKtp2iepst7slEV/nICyY4SJ4/bi6gkaf4Bo0rUn0A9YVeQeogyQxaFAQ/OGyUGW BNkiRYV3+PjItLFKzvEz0LfoQxHuPh55WFLZ6dcNToq6qOjkJRBo5ZopOTm95z9i ojEU8bmrCDDhTmlf4W8EmAQXBFTGsN3A0eFIlNCQsm1aJHTvJRxondXdmdSO8eJu v3h75uR37lJELWLUOjcDpGFWAFGMRVE= -----END CERTIFICATE-----Generated at Sat Apr 26 03:59:03 2025 by rpki-client