$ rpki-client -vvf rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft File: vkY_wZGbQUKyOCgTgn-3FtbukoM.mft (raw, json) Hash identifier: DxLlTqLE4kHuUKS0IK5fBQohWxkh+zcEolm19v2IvrE= Subject key identifier: A1:ED:B8:F4:66:4B:1A:DA:C5:0A:C8:D1:FA:33:A5:AD:62:EE:A1:A7 Authority key identifier: BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 Certificate issuer: /CN=A91D40BF/serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Certificate serial: 074E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft Manifest number: 073F Signing time: Thu 24 Apr 2025 21:30:36 +0000 Manifest this update: Thu 24 Apr 2025 21:30:36 +0000 Manifest next update: Thu 01 May 2025 21:30:36 +0000 Files and hashes: 1: vkY_wZGbQUKyOCgTgn-3FtbukoM.crl (hash: PKkyIna2ngxUjUEn09orrnZm8IU66Vqqdunq58H6W+8=) 2: 28543AA0BABA11EB8A51C234C4F9AE02.roa (hash: tLbuywK1hQsCi3a1AqRQB3esx6wP54LrqFgdAXcaBdM=) 3: ACEBC29CC5B911EBB41FAF2DC4F9AE02.roa (hash: XOt7bB+UgZTY8Thh+DvUt1JxAIDEDKn5j8X2t+ws97c=) 4: 2798B9A6BABA11EB8A51C234C4F9AE02.roa (hash: +zcjX2imATb1GbMG2fycsIcaiWvdU6/+K/wkiamqX6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1870 (0x74e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D40BF, serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Validity Not Before: Apr 24 21:30:36 2025 GMT Not After : May 1 21:30:36 2025 GMT Subject: CN=680aad7c-82de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2d:cf:e4:97:86:7e:b0:29:4d:89:f2:08:b8: c9:fb:ae:49:ca:c4:ab:86:0e:05:db:a0:e8:4d:25: a9:a9:17:cd:e1:2a:0f:cb:f3:90:3c:98:a2:da:fb: ff:9a:81:a7:bc:c5:9d:ea:67:e1:e4:aa:77:20:c9: 7e:0b:69:96:41:0e:f3:83:a5:40:ce:d9:86:6a:4e: 2d:86:bd:20:dc:c2:b8:ae:95:16:60:a7:9d:dc:16: 3c:b4:3f:5c:c3:2c:30:94:3e:5c:09:68:1c:dc:e1: ad:52:ab:87:52:2f:3f:38:3f:dc:a3:f8:40:2b:a2: 08:7d:6b:e5:eb:20:89:dd:29:cf:e7:1c:a3:9c:f2: 50:57:cc:eb:06:01:a0:8c:11:c2:12:11:8a:c9:d3: 6e:77:11:56:65:8d:72:ed:4d:fa:d8:68:db:4e:60: 8a:68:78:8c:bb:96:4f:15:e3:d8:fe:03:b4:25:b5: d8:4c:6e:ca:2b:28:d3:ff:3e:f6:80:db:da:47:7a: cf:4a:e4:99:90:9d:46:ff:69:5b:1b:d0:e6:94:83: 4d:d8:f7:6b:48:20:75:87:22:7e:5d:67:68:4f:0f: f0:22:5f:e9:f3:72:af:38:ae:dc:44:21:82:49:9e: f1:3d:8c:e8:8a:f7:dc:63:f2:6c:e0:2a:d1:96:0b: 17:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:ED:B8:F4:66:4B:1A:DA:C5:0A:C8:D1:FA:33:A5:AD:62:EE:A1:A7 X509v3 Authority Key Identifier: keyid:BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:53:03:a6:72:ec:75:59:b4:32:a8:07:9f:ef:a1:bc:8a:a4: 88:57:1b:c5:09:b7:49:0a:89:36:18:be:bb:6c:5a:87:60:a5: be:9b:f2:9d:a1:da:ce:49:a5:32:55:47:25:ed:a4:74:6c:13: 5b:54:67:db:f2:08:eb:99:b6:8c:95:af:91:5a:b3:5e:78:25: 3a:87:b1:25:47:0d:04:6a:0f:39:51:cd:59:31:f8:35:96:ee: 8b:1a:99:17:d6:6b:ea:09:f9:9e:6a:5f:11:a0:81:40:4b:ad: 11:7b:a4:b9:1e:2d:44:b8:dd:8e:cb:a5:01:75:8b:8b:c3:67: 54:e6:6d:c3:51:9d:56:4a:3f:ee:e0:91:89:e9:b5:67:d2:c3: 44:69:b4:16:22:ff:54:b1:55:9f:53:cc:00:96:d6:28:a2:a3: 0e:d6:f3:74:13:7e:08:7c:ef:58:e6:37:1c:d1:e5:1f:df:66: bf:c3:8a:ae:01:9d:26:dc:b7:47:60:74:c1:22:82:4b:34:75: 1e:f0:06:aa:2a:d1:77:d8:1a:cf:51:7c:58:ed:d3:62:12:90: 37:a6:ad:14:2f:8c:02:d1:c2:fa:c4:99:db:3b:5e:f8:2a:4a: 81:5d:21:64:10:f4:c4:73:1c:cc:1c:cc:7a:59:a4:d2:75:8f: ea:0e:04:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQwQkYxMTAvBgNVBAUTKEJFNDYzRkMxOTE5QjQxNDJCMjM4MjgxMzgyN0ZCNzE2 RDZFRTkyODMwHhcNMjUwNDI0MjEzMDM2WhcNMjUwNTAxMjEzMDM2WjAYMRYwFAYD VQQDEw02ODBhYWQ3Yy04MmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzC3P5JeGfrApTYnyCLjJ+65JysSrhg4F26DoTSWpqRfN4SoPy/OQPJii2vv/ moGnvMWd6mfh5Kp3IMl+C2mWQQ7zg6VAztmGak4thr0g3MK4rpUWYKed3BY8tD9c wywwlD5cCWgc3OGtUquHUi8/OD/co/hAK6IIfWvl6yCJ3SnP5xyjnPJQV8zrBgGg jBHCEhGKydNudxFWZY1y7U362GjbTmCKaHiMu5ZPFePY/gO0JbXYTG7KKyjT/z72 gNvaR3rPSuSZkJ1G/2lbG9DmlINN2PdrSCB1hyJ+XWdoTw/wIl/p83KvOK7cRCGC SZ7xPYzoivfcY/Js4CrRlgsX6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHtuPRm SxraxQrI0fozpa1i7qGnMB8GA1UdIwQYMBaAFL5GP8GRm0FCsjgoE4J/txbW7pKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDBCRi8yN0I3QTI4NDI0 QzAxMUVCQjYyQjQzODdDNEY5QUUwMi92a1lfd1pHYlFVS3lPQ2dUZ24tM0Z0YnVr b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZrWV93WkdiUVVLeU9DZ1Rnbi0zRnRidWtvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDBCRi8yN0I3QTI4NDI0QzAxMUVCQjYyQjQzODdDNEY5QUUwMi92a1lfd1pHYlFV S3lPQ2dUZ24tM0Z0YnVrb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuUwOmcux1WbQyqAef76G8iqSIVxvFCbdJCok2GL67bFqHYKW+m/Kd odrOSaUyVUcl7aR0bBNbVGfb8gjrmbaMla+RWrNeeCU6h7ElRw0Eag85Uc1ZMfg1 lu6LGpkX1mvqCfmeal8RoIFAS60Re6S5Hi1EuN2Oy6UBdYuLw2dU5m3DUZ1WSj/u 4JGJ6bVn0sNEabQWIv9UsVWfU8wAltYooqMO1vN0E34IfO9Y5jcc0eUf32a/w4qu AZ0m3LdHYHTBIoJLNHUe8AaqKtF32BrPUXxY7dNiEpA3pq0UL4wC0cL6xJnbO174 KkqBXSFkEPTEcxzMHMx6WaTSdY/qDgQE -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:07 2025 by rpki-client