$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft File: 3VM9EaneKrkYCFCDvoLVFDTfRUA.mft (raw, json) Hash identifier: Pdb8J8mJTJF+bhcX/R9kY8zyRN9x1Vk0CCgiynkze6A= Subject key identifier: 40:C1:42:94:61:36:F2:D2:4C:12:35:73:36:ED:4E:D6:06:D9:2B:93 Authority key identifier: DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 Certificate issuer: /CN=A91C8EB6/serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Certificate serial: 15B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft Manifest number: 15AC Signing time: Thu 24 Apr 2025 16:47:53 +0000 Manifest this update: Thu 24 Apr 2025 16:47:52 +0000 Manifest next update: Thu 01 May 2025 16:47:52 +0000 Files and hashes: 1: 3VM9EaneKrkYCFCDvoLVFDTfRUA.crl (hash: NSRXoYUdJx3HCvD9sjtlq7/SK3ovQ92UKvB/dLeNZA4=) 2: 116B4B06282011E8BBA2F625C4F9AE02.roa (hash: Xq7aDp/RYbNUbH8lamtxHtlBICT7QgYLuIupGmw4yJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5556 (0x15b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EB6, serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Validity Not Before: Apr 24 16:47:52 2025 GMT Not After : May 1 16:47:52 2025 GMT Subject: CN=680a6b38-3574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ae:2a:46:d4:78:7b:5d:dd:55:d4:1b:a7:96: 18:fd:5b:f7:3b:a4:a9:d2:47:4b:27:50:5f:03:55: f0:10:8a:41:a4:fc:53:41:03:9c:a7:f5:bc:07:eb: 40:97:f0:04:4f:a9:79:9d:23:6e:c3:51:52:43:18: f1:84:93:12:42:6c:08:f8:04:94:93:3d:62:51:ca: 7e:fe:66:70:15:fa:7c:bf:5d:25:86:e0:ba:47:e5: a2:bd:7a:74:40:70:37:1b:cf:99:61:a4:cf:34:b2: 84:7a:70:7e:34:72:48:a7:ed:e9:b4:47:47:4a:96: 05:80:ff:c0:a8:84:9f:3f:a9:4a:f6:89:56:d7:4c: 71:90:6f:af:67:2c:f0:0c:a5:3d:09:f1:0b:0b:9f: 76:45:1b:89:93:58:9c:bc:a7:af:64:6e:ab:75:44: b6:cc:2c:c1:11:a3:9f:9b:6d:97:66:83:77:50:5b: 3a:a2:ae:42:b9:46:2f:f7:b1:34:b5:6c:48:80:73: e6:a3:fb:e6:45:fa:4b:57:5a:ec:24:9e:4b:50:ea: e0:03:07:f4:4f:59:9b:6e:77:20:7a:88:d0:2b:8f: 30:69:f5:c9:fc:4a:30:64:02:83:f2:5b:39:69:5e: be:d5:b3:14:6f:4e:cb:06:6c:09:c4:69:62:2e:3a: 3b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C1:42:94:61:36:F2:D2:4C:12:35:73:36:ED:4E:D6:06:D9:2B:93 X509v3 Authority Key Identifier: keyid:DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:9d:17:0f:0c:89:db:7b:75:57:fc:16:2f:8b:93:3a:81:be: f5:25:7c:e7:45:d4:55:01:29:91:74:19:6b:fb:a5:3e:75:da: 18:59:3c:78:2c:49:a9:3d:14:01:cf:fd:de:89:31:8a:de:c0: 29:31:74:44:10:8c:60:ac:05:c7:a1:c5:4e:c0:78:b5:98:19: 7b:72:be:fb:d5:5b:0a:b0:6a:f1:01:5c:14:ac:fe:1e:ec:b8: 47:22:98:60:01:c3:a0:2c:b4:92:e8:9d:c3:2a:0f:b5:23:1c: af:64:ec:c7:ef:90:30:e5:09:69:dd:30:28:7b:9b:d7:58:08: 2f:20:7f:f2:7b:3f:93:41:76:3b:5f:ee:96:5a:62:79:5b:02: 8a:01:4e:70:fb:a8:73:5b:77:94:b3:91:04:21:ac:00:6d:f1: 2d:e2:40:dc:ef:fb:31:ea:12:34:ad:a1:4c:ad:cb:0d:24:b8: 42:30:b0:18:a6:d4:38:54:cc:2a:5e:00:60:3a:84:7a:9e:bb: 72:4e:e7:2c:94:6a:bf:2f:db:20:63:7f:08:cd:98:65:3b:dc: 61:4a:0a:0a:2d:7a:8a:70:eb:ad:0a:15:b1:05:71:8f:07:d9: 84:c7:0a:8f:a4:e7:28:d5:ee:70:c0:b0:d1:87:b5:a4:c7:af: 23:20:cc:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFQjYxMTAvBgNVBAUTKERENTMzRDExQTlERTJBQjkxODA4NTA4M0JFODJENTE0 MzRERjQ1NDAwHhcNMjUwNDI0MTY0NzUyWhcNMjUwNTAxMTY0NzUyWjAYMRYwFAYD VQQDEw02ODBhNmIzOC0zNTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAta4qRtR4e13dVdQbp5YY/Vv3O6Sp0kdLJ1BfA1XwEIpBpPxTQQOcp/W8B+tA l/AET6l5nSNuw1FSQxjxhJMSQmwI+ASUkz1iUcp+/mZwFfp8v10lhuC6R+WivXp0 QHA3G8+ZYaTPNLKEenB+NHJIp+3ptEdHSpYFgP/AqISfP6lK9olW10xxkG+vZyzw DKU9CfELC592RRuJk1icvKevZG6rdUS2zCzBEaOfm22XZoN3UFs6oq5CuUYv97E0 tWxIgHPmo/vmRfpLV1rsJJ5LUOrgAwf0T1mbbncgeojQK48wafXJ/EowZAKD8ls5 aV6+1bMUb07LBmwJxGliLjo7EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDBQpRh NvLSTBI1czbtTtYG2SuTMB8GA1UdIwQYMBaAFN1TPRGp3iq5GAhQg76C1RQ030VA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVCNi8xMDhGNTNBRTI4 MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUtya1lDRkNEdm9MVkZEVGZS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNWTTlFYW5lS3JrWUNGQ0R2b0xWRkRUZlJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVCNi8xMDhGNTNBRTI4MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUty a1lDRkNEdm9MVkZEVGZSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATnRcPDInbe3VX/BYvi5M6gb71JXznRdRVASmRdBlr+6U+ddoYWTx4 LEmpPRQBz/3eiTGK3sApMXREEIxgrAXHocVOwHi1mBl7cr771VsKsGrxAVwUrP4e 7LhHIphgAcOgLLSS6J3DKg+1IxyvZOzH75Aw5Qlp3TAoe5vXWAgvIH/yez+TQXY7 X+6WWmJ5WwKKAU5w+6hzW3eUs5EEIawAbfEt4kDc7/sx6hI0raFMrcsNJLhCMLAY ptQ4VMwqXgBgOoR6nrtyTucslGq/L9sgY38IzZhlO9xhSgoKLXqKcOutChWxBXGP B9mExwqPpOco1e5wwLDRh7Wkx68jIMwm -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:39 2025 by rpki-client