$ rpki-client -vvf rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.mft File: vBtEbpc35JZMB6uMttwYBtbr_5s.mft (raw, json) Hash identifier: metZiEfX+Q/qdd0dY/qLLvgXoD2QGZmt7Vip51FMYgg= Subject key identifier: C5:0D:24:55:AE:7C:2D:B8:83:5B:A4:5D:20:27:94:89:1F:BB:0B:4C Authority key identifier: BC:1B:44:6E:97:37:E4:96:4C:07:AB:8C:B6:DC:18:06:D6:EB:FF:9B Certificate issuer: /CN=A91C73A7/serialNumber=BC1B446E9737E4964C07AB8CB6DC1806D6EBFF9B Certificate serial: 0683 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBtEbpc35JZMB6uMttwYBtbr_5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.mft Manifest number: 067E Signing time: Thu 24 Apr 2025 22:04:46 +0000 Manifest this update: Thu 24 Apr 2025 22:04:45 +0000 Manifest next update: Thu 01 May 2025 22:04:45 +0000 Files and hashes: 1: vBtEbpc35JZMB6uMttwYBtbr_5s.crl (hash: s6EWrlmJOa9Io+ySnd70keQ8tec3SwG/Y4siav4MUig=) 2: 6BD6CD146F7F11EBB1A2C853C4F9AE02.roa (hash: I+eEa2BCG1ocgDoHBOIM7GqSJBtmqFy6z+9Rb7P5WKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.crl rsync://rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBtEbpc35JZMB6uMttwYBtbr_5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C73A7, serialNumber=BC1B446E9737E4964C07AB8CB6DC1806D6EBFF9B Validity Not Before: Apr 24 22:04:45 2025 GMT Not After : May 1 22:04:45 2025 GMT Subject: CN=680ab57e-ffd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e4:92:56:2f:c0:0e:26:d9:ca:35:47:53:12: b0:cc:cb:af:1b:2b:fa:4e:d4:f6:85:1e:a5:1c:0e: c4:6b:db:07:9e:7b:26:cf:4d:8c:e6:31:2c:3d:9f: 92:14:54:35:f3:ec:59:46:cc:57:75:2b:98:a0:c8: 3b:9e:bd:e0:24:6f:08:ba:67:ab:f3:90:a6:84:f3: 67:bc:24:d0:49:6b:80:9d:17:25:cc:46:9b:92:d7: 11:f9:7a:3f:bd:47:43:31:7a:56:88:96:c1:ee:e8: bd:65:a8:8d:eb:12:9d:bf:2c:24:55:e9:fd:52:c8: 5f:a6:2f:2b:11:22:10:cc:20:e6:ac:b9:23:9f:29: 28:bd:3f:cc:ef:6e:ae:46:db:77:9b:46:32:ca:6b: f0:f9:6c:c0:48:e1:cb:60:85:a7:56:f0:6d:8d:73: c4:71:d4:80:91:5f:71:8f:da:36:99:41:cd:79:a7: 52:55:5a:11:68:c0:38:e6:45:84:fe:e5:4f:be:d5: 76:4d:df:a8:46:0a:5a:22:18:a7:59:6b:3c:68:f7: 4d:5d:e0:60:9a:09:48:82:1b:3e:5a:3b:83:59:fb: de:a7:d8:18:c7:64:42:ff:0a:d8:cb:e6:72:84:a2: b2:b8:28:98:83:12:3d:5c:db:1a:9d:da:e3:7e:6a: 48:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0D:24:55:AE:7C:2D:B8:83:5B:A4:5D:20:27:94:89:1F:BB:0B:4C X509v3 Authority Key Identifier: keyid:BC:1B:44:6E:97:37:E4:96:4C:07:AB:8C:B6:DC:18:06:D6:EB:FF:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBtEbpc35JZMB6uMttwYBtbr_5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:ad:fd:9a:75:78:ae:37:32:27:70:ff:ab:cf:39:fc:d3:f5: 4d:bb:c9:ac:a6:7b:90:05:9f:09:48:ea:a8:77:04:5f:e7:bf: d6:14:e2:e7:04:84:18:6a:35:00:3e:4c:e4:33:c4:70:96:d7: cb:24:c6:4e:15:cf:41:f0:6d:e4:39:a3:5e:4b:55:be:ad:be: eb:1e:8c:dc:8c:ee:6e:60:bc:5c:9f:f3:98:82:82:b6:c7:af: f6:7c:8a:0b:81:21:f1:bd:60:40:f1:09:37:8f:46:b3:4c:1a: e6:6d:f6:b2:0d:a6:eb:54:4d:55:73:2b:7a:33:b6:f9:31:48: fe:82:22:5b:86:0e:0b:97:ef:25:3b:62:2a:d7:52:54:9b:31: 4e:90:1e:9e:da:f3:16:d0:35:85:3d:13:8e:ab:da:88:64:39: a8:f8:8b:6d:d8:f3:ae:aa:16:55:cb:6c:f0:ef:cf:60:a8:7a: 4d:65:56:f7:fc:52:14:d1:99:f9:fe:3c:1e:dd:3b:08:0c:47: 03:e3:f1:a0:23:9a:7b:6b:32:73:39:df:a0:e0:23:00:38:58: 67:63:b1:fe:1c:ba:e1:e8:b7:bf:0f:3d:89:53:88:72:91:23: 76:3d:56:29:da:63:3c:d7:ba:b1:a7:82:49:89:7c:55:8b:c7: 23:80:28:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzczQTcxMTAvBgNVBAUTKEJDMUI0NDZFOTczN0U0OTY0QzA3QUI4Q0I2REMxODA2 RDZFQkZGOUIwHhcNMjUwNDI0MjIwNDQ1WhcNMjUwNTAxMjIwNDQ1WjAYMRYwFAYD VQQDEw02ODBhYjU3ZS1mZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+SSVi/ADibZyjVHUxKwzMuvGyv6TtT2hR6lHA7Ea9sHnnsmz02M5jEsPZ+S FFQ18+xZRsxXdSuYoMg7nr3gJG8Iumer85CmhPNnvCTQSWuAnRclzEabktcR+Xo/ vUdDMXpWiJbB7ui9ZaiN6xKdvywkVen9Ushfpi8rESIQzCDmrLkjnykovT/M726u Rtt3m0Yyymvw+WzASOHLYIWnVvBtjXPEcdSAkV9xj9o2mUHNeadSVVoRaMA45kWE /uVPvtV2Td+oRgpaIhinWWs8aPdNXeBgmglIghs+WjuDWfvep9gYx2RC/wrYy+Zy hKKyuCiYgxI9XNsandrjfmpIewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUNJFWu fC24g1ukXSAnlIkfuwtMMB8GA1UdIwQYMBaAFLwbRG6XN+SWTAerjLbcGAbW6/+b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzNBNy8yRDJDQjM0MDZG N0UxMUVCOUUxMzUyNTNDNEY5QUUwMi92QnRFYnBjMzVKWk1CNnVNdHR3WUJ0YnJf NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCdEVicGMzNUpaTUI2dU10dHdZQnRicl81cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzNBNy8yRDJDQjM0MDZGN0UxMUVCOUUxMzUyNTNDNEY5QUUwMi92QnRFYnBjMzVK Wk1CNnVNdHR3WUJ0YnJfNXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAorf2adXiuNzIncP+rzzn80/VNu8mspnuQBZ8JSOqodwRf57/WFOLn BIQYajUAPkzkM8RwltfLJMZOFc9B8G3kOaNeS1W+rb7rHozcjO5uYLxcn/OYgoK2 x6/2fIoLgSHxvWBA8Qk3j0azTBrmbfayDabrVE1Vcyt6M7b5MUj+giJbhg4Ll+8l O2Iq11JUmzFOkB6e2vMW0DWFPROOq9qIZDmo+Itt2POuqhZVy2zw789gqHpNZVb3 /FIU0Zn5/jwe3TsIDEcD4/GgI5p7azJzOd+g4CMAOFhnY7H+HLrh6Le/Dz2JU4hy kSN2PVYp2mM817qxp4JJiXxVi8cjgCiw -----END CERTIFICATE-----Generated at Sat Apr 26 17:03:10 2025 by rpki-client