$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft File: VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft (raw, json) Hash identifier: O1vVSnP7QAhFPRCsMmpHRxprC12vEQumVXu0cJt+ocs= Subject key identifier: 59:7C:09:DD:58:3C:DF:A1:3F:03:44:E7:18:02:1B:5B:14:5E:82:2B Authority key identifier: 56:B6:5B:80:9F:5D:AB:3A:5A:B1:57:CA:05:79:FD:8E:16:ED:CF:B3 Certificate issuer: /CN=A91DB782/serialNumber=56B65B809F5DAB3A5AB157CA0579FD8E16EDCFB3 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft Manifest number: 0103 Signing time: Fri 25 Apr 2025 04:09:56 +0000 Manifest this update: Fri 25 Apr 2025 04:09:56 +0000 Manifest next update: Fri 02 May 2025 04:09:56 +0000 Files and hashes: 1: VrZbgJ9dqzpasVfKBXn9jhbtz7M.crl (hash: lhLA9R9qQOMy4G+Vm4kJfW8QAWT5U0+2lAoKAneoJJE=) 2: F4DE3470979B11EE901E210BC4F9AE02.roa (hash: fiC0aTLSwEHcelKVanda2XAXfzpX0FepeWYGM7C3Vk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.crl rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB782, serialNumber=56B65B809F5DAB3A5AB157CA0579FD8E16EDCFB3 Validity Not Before: Apr 25 04:09:56 2025 GMT Not After : May 2 04:09:56 2025 GMT Subject: CN=680b0b14-5472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:24:f8:71:5e:d6:e0:63:5e:39:c0:da:4c:11: 6b:c1:ab:54:eb:14:8d:57:e6:7d:98:bf:58:74:52: 7b:b1:2c:4c:25:45:40:75:2c:77:da:7f:7c:67:16: e5:da:15:fb:af:11:c3:76:99:74:39:02:6b:68:d3: 8e:d1:99:1d:9a:a0:c4:ed:37:7d:0a:d0:76:8a:7a: 6d:77:6a:a9:9a:77:fb:2d:48:ec:77:fd:3c:92:40: c2:99:12:bd:c3:8f:f1:6f:b8:5b:fa:3c:38:26:58: 6b:5c:e8:1b:31:4e:7e:97:99:f2:5f:10:8c:de:14: 24:c7:46:90:f0:3d:ae:1e:7d:3d:c0:47:15:a1:57: dd:b8:a9:7d:e1:74:ac:ab:53:63:50:0c:c7:53:09: 28:f1:8c:fe:5f:09:b7:20:b2:82:94:a3:32:52:84: 58:d5:09:cf:b2:03:f8:e1:e5:f9:e2:f7:10:00:0e: 84:69:92:f8:57:4f:99:dc:87:38:1d:46:f6:4f:77: 92:d2:68:3c:b3:33:1f:1a:3b:c5:25:1b:e4:96:a3: e7:2f:b5:ae:b1:f5:d5:19:15:87:28:d2:8d:8c:04: 9a:45:50:7f:2f:e5:f0:60:c9:4d:32:d5:a8:5c:b8: 6b:a6:c2:99:45:8d:1a:7d:bf:b6:42:e9:bb:39:ee: 51:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:7C:09:DD:58:3C:DF:A1:3F:03:44:E7:18:02:1B:5B:14:5E:82:2B X509v3 Authority Key Identifier: keyid:56:B6:5B:80:9F:5D:AB:3A:5A:B1:57:CA:05:79:FD:8E:16:ED:CF:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:7a:7f:1c:ba:78:0e:12:a0:8c:3c:68:22:8e:88:2a:6a:27: ea:4b:aa:13:1e:89:75:f0:a0:03:b2:77:d5:8e:4d:7b:e8:a8: 22:b6:1a:9c:ea:83:4a:82:13:35:51:b8:24:27:5c:e2:b8:17: 85:2b:42:8f:85:c5:36:f4:f1:fa:23:f9:3b:61:a1:77:aa:a2: 34:e2:6b:55:7f:83:4f:c6:97:3a:d8:a2:00:b1:0a:58:a4:5f: 03:45:0e:63:43:81:ad:cf:99:7d:8c:b7:d9:db:c8:41:8b:59: e2:e1:9e:9e:df:d1:a8:03:e5:99:62:a8:9b:95:81:b1:a7:f8: 18:2c:aa:aa:53:fd:55:6d:a1:c8:81:17:2d:98:5c:01:f1:ae: 79:98:98:fa:ca:a2:ab:9b:be:96:9e:a1:bb:37:a3:78:06:2d: 6d:84:70:89:d5:af:36:92:dd:54:2f:83:18:0f:64:5d:a4:9b: b3:6e:40:c0:f7:02:0f:55:04:69:ff:bd:b6:23:91:0c:b8:03: 37:a7:40:34:cd:d1:f6:9f:7e:7d:3d:89:b3:b7:6b:eb:66:7f: 64:9d:9c:96:5d:6d:6e:23:90:07:ec:35:72:67:04:1e:dc:ca: ac:86:7a:50:6c:55:ec:e4:09:1d:a5:cc:a9:02:ae:b9:f6:34: 8e:9e:cb:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3ODIxMTAvBgNVBAUTKDU2QjY1QjgwOUY1REFCM0E1QUIxNTdDQTA1NzlGRDhF MTZFRENGQjMwHhcNMjUwNDI1MDQwOTU2WhcNMjUwNTAyMDQwOTU2WjAYMRYwFAYD VQQDEw02ODBiMGIxNC01NDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmST4cV7W4GNeOcDaTBFrwatU6xSNV+Z9mL9YdFJ7sSxMJUVAdSx32n98Zxbl 2hX7rxHDdpl0OQJraNOO0ZkdmqDE7Td9CtB2inptd2qpmnf7LUjsd/08kkDCmRK9 w4/xb7hb+jw4JlhrXOgbMU5+l5nyXxCM3hQkx0aQ8D2uHn09wEcVoVfduKl94XSs q1NjUAzHUwko8Yz+Xwm3ILKClKMyUoRY1QnPsgP44eX54vcQAA6EaZL4V0+Z3Ic4 HUb2T3eS0mg8szMfGjvFJRvklqPnL7WusfXVGRWHKNKNjASaRVB/L+XwYMlNMtWo XLhrpsKZRY0afb+2Qum7Oe5R7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFl8Cd1Y PN+hPwNE5xgCG1sUXoIrMB8GA1UdIwQYMBaAFFa2W4CfXas6WrFXygV5/Y4W7c+z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjc4Mi85RkVEQ0Y1Qzk3 OUIxMUVFOTg5RTYwMEFDNEY5QUUwMi9WclpiZ0o5ZHF6cGFzVmZLQlhuOWpoYnR6 N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZyWmJnSjlkcXpwYXNWZktCWG45amhidHo3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Qjc4Mi85RkVEQ0Y1Qzk3OUIxMUVFOTg5RTYwMEFDNEY5QUUwMi9WclpiZ0o5ZHF6 cGFzVmZLQlhuOWpoYnR6N00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCven8cungOEqCMPGgijogqaifqS6oTHol18KADsnfVjk176Kgithqc 6oNKghM1UbgkJ1ziuBeFK0KPhcU29PH6I/k7YaF3qqI04mtVf4NPxpc62KIAsQpY pF8DRQ5jQ4Gtz5l9jLfZ28hBi1ni4Z6e39GoA+WZYqiblYGxp/gYLKqqU/1VbaHI gRctmFwB8a55mJj6yqKrm76WnqG7N6N4Bi1thHCJ1a82kt1UL4MYD2RdpJuzbkDA 9wIPVQRp/722I5EMuAM3p0A0zdH2n359PYmzt2vrZn9knZyWXW1uI5AH7DVyZwQe 3MqshnpQbFXs5AkdpcypAq659jSOnssr -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:50 2025 by rpki-client