$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.mft File: vjdwS4x985dWFxlK8q3u2hzJvPY.mft (raw, json) Hash identifier: OYo3uxVzO81IWoF12c6Nv5f0iD+g3wC/khFtN9EQ/k0= Subject key identifier: E3:64:9F:9B:CE:CC:F0:A0:58:FA:27:0A:73:8B:00:05:98:1E:22:D5 Authority key identifier: BE:37:70:4B:8C:7D:F3:97:56:17:19:4A:F2:AD:EE:DA:1C:C9:BC:F6 Certificate issuer: /CN=A91D0432/serialNumber=BE37704B8C7DF3975617194AF2ADEEDA1CC9BCF6 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjdwS4x985dWFxlK8q3u2hzJvPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.mft Manifest number: 01D7 Signing time: Fri 13 Jun 2025 01:53:41 +0000 Manifest this update: Fri 13 Jun 2025 01:53:41 +0000 Manifest next update: Fri 20 Jun 2025 01:53:41 +0000 Files and hashes: 1: vjdwS4x985dWFxlK8q3u2hzJvPY.crl (hash: 5uC42sVPJUmUuU1HBtqoVnK9i9WlBO3ijdQTwSXW1uc=) 2: 539DF534D1FB11EDA0A31C2FC4F9AE02.roa (hash: ZwuvYUkBHuPjyaZwcok71ZoBlPTV1oL4tY+NTXiSqLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.crl rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjdwS4x985dWFxlK8q3u2hzJvPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0432, serialNumber=BE37704B8C7DF3975617194AF2ADEEDA1CC9BCF6 Validity Not Before: Jun 13 01:53:41 2025 GMT Not After : Jun 20 01:53:41 2025 GMT Subject: CN=684b84a5-784c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5a:5e:39:61:cf:e0:72:8e:af:a8:48:ef:da: 8a:b4:93:62:4f:ea:91:6f:e7:95:41:b8:82:8c:eb: 6e:a8:c3:bd:72:14:fa:ab:56:b5:8a:bc:3c:05:50: b6:e4:2d:cc:81:04:24:d7:ee:45:93:f4:08:0f:6f: 5c:63:0a:94:0c:24:e2:36:b0:af:c7:c8:e6:7b:46: 52:d5:82:c9:c3:1e:15:64:da:b7:e4:6d:67:e9:38: 9b:d9:54:76:85:5b:6b:a7:c8:e1:b9:fa:d5:dc:04: ac:14:a3:16:80:8e:24:57:48:1c:be:22:19:3b:e5: 9a:63:12:37:d7:1c:77:ea:89:8d:c3:4e:6a:aa:a5: d2:77:72:de:ec:ca:d7:1c:1a:f8:3a:4e:b6:c8:6a: a0:ae:52:9e:67:33:8f:d3:3b:f4:1d:32:31:55:a7: 5d:d7:39:16:4b:a0:6f:9b:57:c7:0c:6b:b3:08:f2: a7:a0:0d:ef:ed:e0:e3:75:67:23:1f:b2:f2:ec:75: 55:94:0d:15:fe:74:f2:ec:12:50:8d:4a:80:a7:c8: 69:e9:4c:6e:53:b8:df:c4:85:3a:e3:ce:ed:d6:b7: a9:fd:a2:aa:44:95:5d:bd:b2:25:17:a5:8f:d2:e5: e9:05:48:0f:9b:05:f5:6a:ed:3c:1b:05:cb:a5:c0: da:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:64:9F:9B:CE:CC:F0:A0:58:FA:27:0A:73:8B:00:05:98:1E:22:D5 X509v3 Authority Key Identifier: keyid:BE:37:70:4B:8C:7D:F3:97:56:17:19:4A:F2:AD:EE:DA:1C:C9:BC:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjdwS4x985dWFxlK8q3u2hzJvPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0432/E3CA18EC7B8711EDB59E3B80C4F9AE02/vjdwS4x985dWFxlK8q3u2hzJvPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:d2:27:3a:3e:91:2a:bc:63:28:7e:83:aa:a7:38:0d:01:6b: 59:78:78:49:83:9c:e7:0b:97:10:91:36:cb:8e:b9:33:bb:00: 10:f9:e2:d3:e0:6f:a0:30:32:c1:f9:60:68:af:23:72:36:b8: 97:6e:75:cb:9f:da:d2:13:75:77:3f:33:86:dc:ed:ee:68:41: 0c:3a:15:6a:bc:08:ca:ab:2c:71:06:d8:f0:4a:2f:91:56:00: 69:1d:2b:03:36:50:f4:64:0b:6c:94:1d:30:e2:fd:ce:b5:01: e7:49:4f:7a:9a:df:5a:d2:8e:53:aa:2d:18:8f:37:a3:20:e4: df:99:e6:47:34:76:de:f4:70:70:aa:69:9b:ae:0c:e1:0f:6e: 1d:07:01:79:e3:c1:dd:e2:1a:81:a3:60:23:29:d8:90:ab:9f: 1a:17:dd:a4:57:d8:2c:fb:99:fe:46:4c:f0:92:d6:89:51:a7: e7:65:ab:ac:75:d8:db:75:35:0e:01:d7:63:95:b3:b6:1e:8c: 19:f5:88:6f:50:b2:0f:c6:d1:21:75:f0:58:b2:29:b1:fd:67: 10:32:9d:13:10:be:96:48:40:81:e6:0f:4f:37:be:6d:6a:54: 2b:bf:7f:d1:73:bf:a4:c7:bf:39:e2:00:8d:8f:a9:ca:ec:ce: 47:e0:bb:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA0MzIxMTAvBgNVBAUTKEJFMzc3MDRCOEM3REYzOTc1NjE3MTk0QUYyQURFRURB MUNDOUJDRjYwHhcNMjUwNjEzMDE1MzQxWhcNMjUwNjIwMDE1MzQxWjAYMRYwFAYD VQQDEw02ODRiODRhNS03ODRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1peOWHP4HKOr6hI79qKtJNiT+qRb+eVQbiCjOtuqMO9chT6q1a1irw8BVC2 5C3MgQQk1+5Fk/QID29cYwqUDCTiNrCvx8jme0ZS1YLJwx4VZNq35G1n6Tib2VR2 hVtrp8jhufrV3ASsFKMWgI4kV0gcviIZO+WaYxI31xx36omNw05qqqXSd3Le7MrX HBr4Ok62yGqgrlKeZzOP0zv0HTIxVadd1zkWS6Bvm1fHDGuzCPKnoA3v7eDjdWcj H7Ly7HVVlA0V/nTy7BJQjUqAp8hp6UxuU7jfxIU6487t1rep/aKqRJVdvbIlF6WP 0uXpBUgPmwX1au08GwXLpcDaewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONkn5vO zPCgWPonCnOLAAWYHiLVMB8GA1UdIwQYMBaAFL43cEuMffOXVhcZSvKt7tocybz2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDQzMi9FM0NBMThFQzdC ODcxMUVEQjU5RTNCODBDNEY5QUUwMi92amR3UzR4OTg1ZFdGeGxLOHEzdTJoekp2 UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZqZHdTNHg5ODVkV0Z4bEs4cTN1Mmh6SnZQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDQzMi9FM0NBMThFQzdCODcxMUVEQjU5RTNCODBDNEY5QUUwMi92amR3UzR4OTg1 ZFdGeGxLOHEzdTJoekp2UFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg0ic6PpEqvGMofoOqpzgNAWtZeHhJg5znC5cQkTbLjrkzuwAQ+eLT 4G+gMDLB+WBoryNyNriXbnXLn9rSE3V3PzOG3O3uaEEMOhVqvAjKqyxxBtjwSi+R VgBpHSsDNlD0ZAtslB0w4v3OtQHnSU96mt9a0o5Tqi0YjzejIOTfmeZHNHbe9HBw qmmbrgzhD24dBwF548Hd4hqBo2AjKdiQq58aF92kV9gs+5n+RkzwktaJUafnZaus ddjbdTUOAddjlbO2HowZ9YhvULIPxtEhdfBYsimx/WcQMp0TEL6WSECB5g9PN75t alQrv3/Rc7+kx7854gCNj6nK7M5H4LuA -----END CERTIFICATE-----Generated at Sat Jun 14 19:33:13 2025 by rpki-client