$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft File: vNzosG8FliNAMAycR0e1olGiGcQ.mft (raw, json) Hash identifier: o/Ous+VHtUpWLKP8zkbTegXCCaagn/KlEpUkscZ4aWM= Subject key identifier: 1F:18:7A:F7:5D:52:E0:D8:3C:B4:5D:3B:AB:5A:06:82:8C:CF:D6:FB Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 3494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft Manifest number: 3484 Signing time: Thu 24 Apr 2025 14:54:48 +0000 Manifest this update: Thu 24 Apr 2025 14:54:47 +0000 Manifest next update: Thu 01 May 2025 14:54:47 +0000 Files and hashes: 1: vNzosG8FliNAMAycR0e1olGiGcQ.crl (hash: g4tVKaF6hA3bI7e3LZojZcNxrS9MDvwMqn8AAMo148E=) 2: 3FEFA562483D11EC82E81112C4F9AE02.roa (hash: rK0c8XECyvN9kLfaJ8Yz0Teq8RiIt0v2rBtEKSM98ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13460 (0x3494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8, serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: Apr 24 14:54:47 2025 GMT Not After : May 1 14:54:47 2025 GMT Subject: CN=680a50b7-ab70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:98:af:f4:2a:d6:fb:9c:c0:cf:74:e3:75:26: e6:6e:60:c4:32:87:e2:0f:a2:0a:97:20:cd:2d:fe: 7e:04:f6:bd:bc:ee:37:78:d5:81:1a:53:5b:51:9e: 8d:b4:0f:89:bc:e4:93:9d:83:d9:32:db:dc:83:49: 30:28:e3:15:4e:85:3f:4a:ed:d1:c0:3a:1d:f0:ef: a7:cb:7a:46:f0:29:52:18:3b:9d:84:7f:52:ab:8a: 5d:2e:83:68:e2:e3:74:58:ab:27:50:7e:df:ee:f4: 74:59:7e:d2:87:1e:2d:1b:98:9b:63:58:82:e0:4d: 1c:93:4c:c2:74:50:a3:b5:93:26:f0:c4:2a:b7:60: c8:be:23:25:81:46:78:e9:e1:a5:ac:e7:aa:b6:63: 1f:86:db:6c:51:b8:7b:a4:42:77:5a:f8:59:a4:c2: 2b:8c:73:ac:f4:00:bd:1e:91:5c:ba:01:06:10:d4: e3:75:c4:2f:57:ae:24:7a:16:9d:85:be:5f:2a:df: ef:74:91:3b:f8:db:e0:f0:69:93:63:c6:8d:30:4e: 9f:bb:3c:df:c1:58:bb:ff:55:fb:03:fc:b3:fa:76: 31:b4:3e:b9:d8:3c:c5:0b:b6:c1:53:c9:20:93:2c: 77:a2:2f:09:90:e2:d5:03:56:d6:61:0e:c9:c9:8a: 5a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:18:7A:F7:5D:52:E0:D8:3C:B4:5D:3B:AB:5A:06:82:8C:CF:D6:FB X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:3a:92:95:92:7d:35:85:13:34:ef:9b:50:e7:1d:6a:f2:d3: 17:eb:a7:1f:48:c7:c0:18:3a:cc:19:30:fa:81:07:62:06:bf: 50:ff:b8:02:da:c2:f0:f0:57:be:5e:f5:fb:3a:ea:cd:a2:d3: 0c:06:db:cb:ed:c8:61:fc:91:5f:50:42:34:8e:07:a6:4d:94: 9d:a5:5b:d3:88:d9:17:9d:6e:37:ea:77:0a:52:b5:b4:c8:9a: b0:78:9a:41:ee:20:b7:ed:16:16:a0:d2:3c:0b:17:3d:5b:a6: fa:00:6b:65:96:3a:d4:9a:54:fe:dd:27:af:df:34:9e:f8:ef: 9d:96:21:97:b5:f7:fb:d3:3f:92:a4:1d:9b:23:a8:d8:34:52: e1:c9:bd:ff:9e:e9:9d:b4:e5:14:ed:60:f6:9a:f6:64:53:5d: e0:0a:7a:7b:ee:d4:42:8b:23:bc:6e:7a:0d:1c:ff:6c:bc:ca: d0:0a:b6:9a:e2:c1:0b:cf:49:b9:a8:01:4d:59:0b:e3:2c:ae: bf:ca:bd:5c:25:55:47:77:b2:e6:0c:5a:cc:87:da:6f:52:79: eb:d7:a9:23:dc:3f:0d:26:95:88:63:20:f9:24:9a:99:90:2f: 0e:d7:c6:54:ed:5e:d1:95:a2:65:b4:8e:d1:28:27:d3:18:7f: 22:d6:5a:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjUwNDI0MTQ1NDQ3WhcNMjUwNTAxMTQ1NDQ3WjAYMRYwFAYD VQQDEw02ODBhNTBiNy1hYjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupiv9CrW+5zAz3TjdSbmbmDEMofiD6IKlyDNLf5+BPa9vO43eNWBGlNbUZ6N tA+JvOSTnYPZMtvcg0kwKOMVToU/Su3RwDod8O+ny3pG8ClSGDudhH9Sq4pdLoNo 4uN0WKsnUH7f7vR0WX7Shx4tG5ibY1iC4E0ck0zCdFCjtZMm8MQqt2DIviMlgUZ4 6eGlrOeqtmMfhttsUbh7pEJ3WvhZpMIrjHOs9AC9HpFcugEGENTjdcQvV64kehad hb5fKt/vdJE7+Nvg8GmTY8aNME6fuzzfwVi7/1X7A/yz+nYxtD652DzFC7bBU8kg kyx3oi8JkOLVA1bWYQ7JyYpaAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8Yevdd UuDYPLRdO6taBoKMz9b7MB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjVFOC9BMUYyM0E2NDFEOTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4Rmxp TkFNQXljUjBlMW9sR2lHY1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4OpKVkn01hRM075tQ5x1q8tMX66cfSMfAGDrMGTD6gQdiBr9Q/7gC 2sLw8Fe+XvX7OurNotMMBtvL7chh/JFfUEI0jgemTZSdpVvTiNkXnW436ncKUrW0 yJqweJpB7iC37RYWoNI8Cxc9W6b6AGtlljrUmlT+3Sev3zSe+O+dliGXtff70z+S pB2bI6jYNFLhyb3/numdtOUU7WD2mvZkU13gCnp77tRCiyO8bnoNHP9svMrQCraa 4sELz0m5qAFNWQvjLK6/yr1cJVVHd7LmDFrMh9pvUnnr16kj3D8NJpWIYyD5JJqZ kC8O18ZU7V7RlaJltI7RKCfTGH8i1lpp -----END CERTIFICATE-----Generated at Sat Apr 26 03:46:28 2025 by rpki-client