$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft File: vBRJ7peREatw2N-Y2rpOJrprxls.mft (raw, json) Hash identifier: Dg70oR40G/IE2iS0eVNcPXDUEbEnkPMaa8vE2eyoFuE= Subject key identifier: B9:CC:D6:A1:17:69:1E:83:3A:58:28:B4:E6:A2:9C:BF:80:2B:7A:F7 Authority key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B Certificate issuer: /CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Certificate serial: 071F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft Manifest number: 0718 Signing time: Thu 24 Apr 2025 21:39:55 +0000 Manifest this update: Thu 24 Apr 2025 21:39:54 +0000 Manifest next update: Thu 01 May 2025 21:39:54 +0000 Files and hashes: 1: vBRJ7peREatw2N-Y2rpOJrprxls.crl (hash: R1HbsblPRuHDNGuv9WmPIN6ajv4seWflwlWbX9/acYA=) 2: 7633392033B411EB98035F74C4F9AE02.roa (hash: 2z51i9dV66CcllhW8qVIGTGYHAdnhuR+CInt6YNJqFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1823 (0x71f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCA34, serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Validity Not Before: Apr 24 21:39:54 2025 GMT Not After : May 1 21:39:54 2025 GMT Subject: CN=680aafaa-e313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2a:de:1c:64:43:25:cd:49:32:6c:b9:26:6e: 0b:c3:d0:d7:62:5b:bf:05:74:3b:91:2c:8f:87:9e: 21:7e:63:58:36:13:92:0c:f0:bf:1f:2c:8c:a2:6d: 8f:6f:59:c1:31:4c:5a:7b:45:c5:54:85:45:e4:ca: e6:0f:1c:3e:a5:f7:b5:13:78:f2:e5:44:44:3e:f2: 74:66:cd:91:d9:d1:bd:e1:26:16:49:68:0f:92:6b: f3:57:5a:07:bd:1c:8b:66:20:db:86:cd:fc:77:fc: 57:91:d2:9d:bd:bd:99:55:b1:69:28:01:8d:d8:b9: b8:cc:c4:92:bb:32:2c:93:d0:ad:d3:4b:63:2f:66: c4:1b:a6:02:47:83:5d:dd:93:1f:95:24:9b:0a:47: 96:a3:65:c5:22:89:cd:8e:f2:e0:b7:5b:3b:4f:b1: 50:a2:ed:b9:d6:f6:f0:f3:ca:79:0e:c6:38:e8:f2: 17:5c:57:79:b4:d1:4d:dc:69:2d:93:fa:31:ce:e9: b9:19:4a:a0:e5:96:9e:9a:88:dc:0e:3e:80:80:65: 41:c2:ee:aa:dc:e4:50:09:ff:e8:1e:60:6a:9d:bf: aa:7f:88:a3:57:1e:9a:2c:4f:6a:ea:49:ea:d9:50: 6a:c2:e1:31:56:1e:eb:2e:8d:ac:82:5d:71:6a:ef: 9c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:CC:D6:A1:17:69:1E:83:3A:58:28:B4:E6:A2:9C:BF:80:2B:7A:F7 X509v3 Authority Key Identifier: keyid:BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:b5:ba:df:cd:f5:f2:41:b0:80:18:2c:5d:8e:5b:80:0e:42: 01:92:a5:8e:6d:56:e7:ec:39:5a:53:e0:fa:7b:b1:99:2a:ac: c2:bb:11:12:53:e6:95:e1:3f:b7:ac:fe:4f:9b:a7:1d:32:27: ce:83:df:99:f9:4a:c8:d3:fd:b4:e3:7a:0c:b2:3b:3b:75:86: 8f:fb:12:8f:a3:7a:2d:ed:b9:60:3e:3c:88:c9:58:fc:87:3e: e3:52:3b:88:21:f2:99:6d:1e:e9:d9:3d:df:8a:8f:6e:9f:a7: af:78:44:fa:b9:ae:6e:78:ac:9b:69:95:74:14:92:20:b0:de: 77:c8:0b:14:30:bf:d0:0b:08:b1:35:b8:42:75:87:62:7a:de: d4:bf:b1:e9:d9:25:7f:d1:5f:eb:b6:74:54:97:62:e5:fa:00: d4:df:42:b7:22:4c:86:31:e7:72:e1:32:d5:20:ac:4f:7e:bd: c8:cd:f8:7b:a4:57:2a:47:02:d5:28:ca:6f:a3:3d:21:d5:b1: e5:73:08:db:b5:fe:4d:9b:c5:29:d3:17:db:6c:0e:d8:fc:f9: 93:7a:8a:a6:36:f0:de:af:a3:ce:60:3d:60:f6:28:25:bf:67: 3d:e8:72:f0:e7:ad:8f:5c:a9:c9:e7:48:12:a3:65:9d:b2:5f: 00:16:09:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBMzQxMTAvBgNVBAUTKEJDMTQ0OUVFOTc5MTExQUI3MEQ4REY5OERBQkE0RTI2 QkE2QkM2NUIwHhcNMjUwNDI0MjEzOTU0WhcNMjUwNTAxMjEzOTU0WjAYMRYwFAYD VQQDEw02ODBhYWZhYS1lMzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CreHGRDJc1JMmy5Jm4Lw9DXYlu/BXQ7kSyPh54hfmNYNhOSDPC/HyyMom2P b1nBMUxae0XFVIVF5MrmDxw+pfe1E3jy5UREPvJ0Zs2R2dG94SYWSWgPkmvzV1oH vRyLZiDbhs38d/xXkdKdvb2ZVbFpKAGN2Lm4zMSSuzIsk9Ct00tjL2bEG6YCR4Nd 3ZMflSSbCkeWo2XFIonNjvLgt1s7T7FQou251vbw88p5DsY46PIXXFd5tNFN3Gkt k/oxzum5GUqg5ZaemojcDj6AgGVBwu6q3ORQCf/oHmBqnb+qf4ijVx6aLE9q6knq 2VBqwuExVh7rLo2sgl1xau+cuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnM1qEX aR6DOlgotOainL+AK3r3MB8GA1UdIwQYMBaAFLwUSe6XkRGrcNjfmNq6Tia6a8Zb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0EzNC82RkFBMzY3ODMz QjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVhdHcyTi1ZMnJwT0pycHJ4 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCUko3cGVSRWF0dzJOLVkycnBPSnJwcnhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0EzNC82RkFBMzY3ODMzQjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVh dHcyTi1ZMnJwT0pycHJ4bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7tbrfzfXyQbCAGCxdjluADkIBkqWObVbn7DlaU+D6e7GZKqzCuxES U+aV4T+3rP5Pm6cdMifOg9+Z+UrI0/2043oMsjs7dYaP+xKPo3ot7blgPjyIyVj8 hz7jUjuIIfKZbR7p2T3fio9un6eveET6ua5ueKybaZV0FJIgsN53yAsUML/QCwix NbhCdYdiet7Uv7Hp2SV/0V/rtnRUl2Ll+gDU30K3IkyGMedy4TLVIKxPfr3Izfh7 pFcqRwLVKMpvoz0h1bHlcwjbtf5Nm8Up0xfbbA7Y/PmTeoqmNvDer6POYD1g9igl v2c96HLw562PXKnJ50gSo2Wdsl8AFgnP -----END CERTIFICATE-----Generated at Sat Apr 26 14:13:11 2025 by rpki-client