$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.mft File: vjdwS4x985dWFxlK8q3u2hzJvPY.mft (raw, json) Hash identifier: HwOJ0IihxwQePrJjnni88ViQwVX+akgdcxkfmnkhq84= Subject key identifier: 98:7D:3E:65:50:66:F0:3D:92:A2:C0:E5:79:17:54:04:59:C6:DE:96 Authority key identifier: BE:37:70:4B:8C:7D:F3:97:56:17:19:4A:F2:AD:EE:DA:1C:C9:BC:F6 Certificate issuer: /CN=A91D0432/serialNumber=BE37704B8C7DF3975617194AF2ADEEDA1CC9BCF6 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjdwS4x985dWFxlK8q3u2hzJvPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.mft Manifest number: 01BD Signing time: Fri 25 Apr 2025 02:14:56 +0000 Manifest this update: Fri 25 Apr 2025 02:14:55 +0000 Manifest next update: Fri 02 May 2025 02:14:55 +0000 Files and hashes: 1: vjdwS4x985dWFxlK8q3u2hzJvPY.crl (hash: oiHLIlz+A3OPC3jduqT/2C+RyKZVdqh4f2781dag3qU=) 2: 539DF534D1FB11EDA0A31C2FC4F9AE02.roa (hash: qQaRN6iJWqfARGQzig/oXJzFgb+4hZU6lQ132h02tnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.crl rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjdwS4x985dWFxlK8q3u2hzJvPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0432, serialNumber=BE37704B8C7DF3975617194AF2ADEEDA1CC9BCF6 Validity Not Before: Apr 25 02:14:55 2025 GMT Not After : May 2 02:14:55 2025 GMT Subject: CN=680af020-f80e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b9:15:17:28:ad:bc:5b:c0:02:2b:7c:42:84: a4:b3:57:e9:0f:4e:b3:62:ce:1b:9b:20:d7:e5:01: 9e:f5:c7:80:ee:67:21:b6:a0:76:64:c4:1e:ef:51: 84:2e:fb:62:8c:f9:f9:5e:6f:31:d5:41:d9:e1:2b: fe:31:3c:8f:9c:63:43:bd:a6:40:59:1a:bb:1c:0d: 07:9b:20:7f:0f:0c:71:b9:4d:a1:79:bb:d7:69:e0: 11:00:47:33:fc:f3:78:85:a7:c4:0c:b2:1c:5f:ed: 61:b8:fd:d6:3e:2c:ba:0f:09:c7:f0:96:10:2c:d8: 48:29:fa:e1:b7:6d:48:25:a0:54:f4:70:28:4b:35: 9d:5d:20:cf:48:08:ab:9b:c0:a7:9c:0f:c4:19:83: 31:ff:27:20:98:2e:d7:62:50:99:e2:58:e6:a4:98: 22:bb:44:13:95:29:1b:47:76:15:80:a7:dd:de:4e: dc:93:af:d7:f7:22:93:97:45:27:2d:71:7e:5c:98: 2f:19:e2:e5:29:d1:63:43:cd:13:5e:d1:e0:a3:d6: 6b:65:57:47:08:56:66:b9:b8:ec:b6:c4:e5:ef:a4: a2:bc:80:57:b1:76:47:5a:98:b2:91:18:85:00:4d: 3e:50:87:84:22:0d:67:ba:ef:57:3b:8c:a4:2e:d3: 07:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:7D:3E:65:50:66:F0:3D:92:A2:C0:E5:79:17:54:04:59:C6:DE:96 X509v3 Authority Key Identifier: keyid:BE:37:70:4B:8C:7D:F3:97:56:17:19:4A:F2:AD:EE:DA:1C:C9:BC:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjdwS4x985dWFxlK8q3u2hzJvPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:02:e8:5c:2b:9e:30:5c:88:89:21:1e:94:32:87:c2:e0:53: 8f:a1:91:6c:71:8b:13:c8:ae:eb:44:36:2d:6e:e6:96:5a:b9: f1:b6:c5:28:94:c7:3a:19:88:8a:99:94:a6:f2:1e:ba:20:e6: 31:7f:8e:02:1e:3c:75:44:cf:7d:e5:c1:3f:70:8b:a9:9b:b0: f4:75:35:84:d0:2c:d0:ea:e5:5f:30:83:2f:78:f4:fe:03:22: fc:48:bf:fb:3c:8a:c3:9b:23:6c:81:52:21:37:e4:2d:07:e2: c8:20:9f:e1:65:ca:76:40:2b:c8:29:6a:e1:e1:59:c5:bd:8b: 4f:66:86:e1:a6:30:41:43:cf:ca:71:ac:fd:e7:69:a6:10:42: 84:f7:7b:87:5c:cd:30:b8:74:5c:3f:dc:1b:a5:65:a9:0a:cd: 7c:d4:a7:4a:c5:11:62:8c:c3:98:8e:54:39:f1:06:53:a1:8b: 95:f4:f4:e3:71:4c:2b:1d:b9:88:b0:28:8c:3d:55:c1:7a:53: 92:b5:f3:32:52:44:a6:7c:2f:23:9c:7f:f1:de:ae:8c:b3:60: d1:3e:f0:5f:63:83:85:ea:0e:46:bb:0a:0f:89:68:03:68:9e: 51:7e:33:af:09:bd:19:7f:06:8a:51:bc:39:ce:5b:ce:ce:88: 48:dd:10:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA0MzIxMTAvBgNVBAUTKEJFMzc3MDRCOEM3REYzOTc1NjE3MTk0QUYyQURFRURB MUNDOUJDRjYwHhcNMjUwNDI1MDIxNDU1WhcNMjUwNTAyMDIxNDU1WjAYMRYwFAYD VQQDEw02ODBhZjAyMC1mODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7kVFyitvFvAAit8QoSks1fpD06zYs4bmyDX5QGe9ceA7mchtqB2ZMQe71GE LvtijPn5Xm8x1UHZ4Sv+MTyPnGNDvaZAWRq7HA0HmyB/DwxxuU2hebvXaeARAEcz /PN4hafEDLIcX+1huP3WPiy6DwnH8JYQLNhIKfrht21IJaBU9HAoSzWdXSDPSAir m8CnnA/EGYMx/ycgmC7XYlCZ4ljmpJgiu0QTlSkbR3YVgKfd3k7ck6/X9yKTl0Un LXF+XJgvGeLlKdFjQ80TXtHgo9ZrZVdHCFZmubjstsTl76SivIBXsXZHWpiykRiF AE0+UIeEIg1nuu9XO4ykLtMHgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJh9PmVQ ZvA9kqLA5XkXVARZxt6WMB8GA1UdIwQYMBaAFL43cEuMffOXVhcZSvKt7tocybz2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDQzMi9FM0NBMThFQzdC ODcxMUVEQjU5RTNCODBDNEY5QUUwMi92amR3UzR4OTg1ZFdGeGxLOHEzdTJoekp2 UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZqZHdTNHg5ODVkV0Z4bEs4cTN1Mmh6SnZQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDQzMi9FM0NBMThFQzdCODcxMUVEQjU5RTNCODBDNEY5QUUwMi92amR3UzR4OTg1 ZFdGeGxLOHEzdTJoekp2UFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaAuhcK54wXIiJIR6UMofC4FOPoZFscYsTyK7rRDYtbuaWWrnxtsUo lMc6GYiKmZSm8h66IOYxf44CHjx1RM995cE/cIupm7D0dTWE0CzQ6uVfMIMvePT+ AyL8SL/7PIrDmyNsgVIhN+QtB+LIIJ/hZcp2QCvIKWrh4VnFvYtPZobhpjBBQ8/K caz952mmEEKE93uHXM0wuHRcP9wbpWWpCs181KdKxRFijMOYjlQ58QZToYuV9PTj cUwrHbmIsCiMPVXBelOStfMyUkSmfC8jnH/x3q6Ms2DRPvBfY4OF6g5GuwoPiWgD aJ5RfjOvCb0ZfwaKUbw5zlvOzohI3RAg -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:14 2025 by rpki-client