$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft File: VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft (raw, json) Hash identifier: 1tObH3JtXGvMrWVC9lj8jKVvh2gOKdSs5gFsN2mTDQs= Subject key identifier: 9E:CC:08:CA:45:EC:6A:FD:E9:3D:3C:31:F4:87:B8:1C:65:A7:70:62 Authority key identifier: 56:B6:5B:80:9F:5D:AB:3A:5A:B1:57:CA:05:79:FD:8E:16:ED:CF:B3 Certificate issuer: /CN=A91DB782/serialNumber=56B65B809F5DAB3A5AB157CA0579FD8E16EDCFB3 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft Manifest number: 011E Signing time: Sun 15 Jun 2025 03:58:22 +0000 Manifest this update: Sun 15 Jun 2025 03:58:21 +0000 Manifest next update: Sun 22 Jun 2025 03:58:21 +0000 Files and hashes: 1: VrZbgJ9dqzpasVfKBXn9jhbtz7M.crl (hash: qP6YSBfIFZgX/9N6eiXFmPC0r3MM5it0AMAJwmCvhBk=) 2: F4DE3470979B11EE901E210BC4F9AE02.roa (hash: fdTip7KBE0W3pKG2131dWHPNYEedkvXm8McPxmdQVeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.crl rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB782, serialNumber=56B65B809F5DAB3A5AB157CA0579FD8E16EDCFB3 Validity Not Before: Jun 15 03:58:21 2025 GMT Not After : Jun 22 03:58:21 2025 GMT Subject: CN=684e44de-7532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5f:04:3d:c7:95:7c:80:3e:c0:fb:48:ef:3f: 08:ec:e0:af:8d:66:28:b8:50:fa:67:c6:79:c5:1a: e9:70:f7:3b:a9:4f:78:79:7b:47:d6:00:9b:e3:17: d4:ba:48:c7:76:ec:dd:4e:86:32:dc:93:7e:13:ae: 44:33:be:3a:13:9f:69:ca:30:2f:fd:a2:55:a6:d9: 3e:66:9f:68:a8:6a:42:96:49:36:30:82:29:86:31: d7:9a:c8:21:94:11:8d:89:7a:b4:57:68:c1:b3:14: da:a3:83:99:7f:99:f1:96:e3:61:81:a0:78:bf:09: 39:4a:d8:82:b2:70:e9:33:77:bd:3e:72:79:f2:64: 53:51:ec:57:37:ae:c5:27:97:ee:5c:8d:45:8d:f5: 0b:2f:1f:b4:c4:4e:b9:32:af:a2:88:c1:7e:8e:de: d2:4a:ac:68:8c:e9:7b:c9:02:35:5c:cd:17:bc:f9: 35:a7:73:d7:a6:a4:f5:17:7c:5c:88:92:bb:7d:94: f2:7b:0e:da:59:48:78:bc:83:92:bc:82:8e:52:00: 13:86:3c:b8:87:74:6d:03:2c:74:c1:cf:8e:0f:41: 52:e8:1e:1c:0d:ab:63:65:c9:56:15:e0:25:6e:41: 2b:7a:8e:ae:b1:f4:a5:0b:61:12:ec:f9:6e:b4:16: 76:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:CC:08:CA:45:EC:6A:FD:E9:3D:3C:31:F4:87:B8:1C:65:A7:70:62 X509v3 Authority Key Identifier: keyid:56:B6:5B:80:9F:5D:AB:3A:5A:B1:57:CA:05:79:FD:8E:16:ED:CF:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:ed:c4:2f:da:2a:4d:b9:8c:6c:5d:c9:bc:d2:03:45:23:54: ac:69:8e:b2:9b:6b:e2:cc:65:fc:a6:1c:b0:ba:25:32:1e:c7: 84:5b:9b:b6:28:24:31:12:a3:f4:5c:94:8d:f6:14:d9:89:b9: 32:01:9f:31:2b:76:33:bb:d4:ce:61:39:28:0d:9a:64:e8:44: 9a:79:00:56:6a:d5:56:a4:5f:33:e7:48:c0:14:be:3d:4b:02: 83:cb:9c:9b:cf:ab:15:ff:18:76:2d:fd:f3:8a:b4:5a:b4:7d: d0:ed:56:71:49:2a:8c:6f:71:1a:e0:b6:28:00:e5:0b:fe:78: ff:3a:54:1f:de:86:d5:4e:54:88:f0:67:f2:f2:97:0e:42:10: 67:49:3c:7d:90:ed:cf:f0:18:8e:2c:cd:2f:69:f6:11:9c:e3: a4:4d:30:12:4e:b2:57:d4:4d:fb:cd:d9:80:c1:66:54:29:b8: d1:91:cc:0a:77:5f:64:77:06:31:ce:ac:ac:6e:a7:a2:fd:f6: 81:30:bb:3b:12:08:af:9f:a5:84:10:00:18:b0:1d:5a:00:b0: c9:ee:1a:ca:eb:86:f3:41:d6:4b:ac:13:74:02:fd:c9:b0:e9: d4:45:51:a6:1b:73:54:bd:f1:d6:a4:ac:d7:0c:17:aa:63:08: 05:b4:a6:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3ODIxMTAvBgNVBAUTKDU2QjY1QjgwOUY1REFCM0E1QUIxNTdDQTA1NzlGRDhF MTZFRENGQjMwHhcNMjUwNjE1MDM1ODIxWhcNMjUwNjIyMDM1ODIxWjAYMRYwFAYD VQQDEw02ODRlNDRkZS03NTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyV8EPceVfIA+wPtI7z8I7OCvjWYouFD6Z8Z5xRrpcPc7qU94eXtH1gCb4xfU ukjHduzdToYy3JN+E65EM746E59pyjAv/aJVptk+Zp9oqGpClkk2MIIphjHXmsgh lBGNiXq0V2jBsxTao4OZf5nxluNhgaB4vwk5StiCsnDpM3e9PnJ58mRTUexXN67F J5fuXI1FjfULLx+0xE65Mq+iiMF+jt7SSqxojOl7yQI1XM0XvPk1p3PXpqT1F3xc iJK7fZTyew7aWUh4vIOSvIKOUgAThjy4h3RtAyx0wc+OD0FS6B4cDatjZclWFeAl bkEreo6usfSlC2ES7PlutBZ2zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7MCMpF 7Gr96T08MfSHuBxlp3BiMB8GA1UdIwQYMBaAFFa2W4CfXas6WrFXygV5/Y4W7c+z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjc4Mi85RkVEQ0Y1Qzk3 OUIxMUVFOTg5RTYwMEFDNEY5QUUwMi9WclpiZ0o5ZHF6cGFzVmZLQlhuOWpoYnR6 N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZyWmJnSjlkcXpwYXNWZktCWG45amhidHo3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Qjc4Mi85RkVEQ0Y1Qzk3OUIxMUVFOTg5RTYwMEFDNEY5QUUwMi9WclpiZ0o5ZHF6 cGFzVmZLQlhuOWpoYnR6N00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ7cQv2ipNuYxsXcm80gNFI1SsaY6ym2vizGX8phywuiUyHseEW5u2 KCQxEqP0XJSN9hTZibkyAZ8xK3Yzu9TOYTkoDZpk6ESaeQBWatVWpF8z50jAFL49 SwKDy5ybz6sV/xh2Lf3zirRatH3Q7VZxSSqMb3Ea4LYoAOUL/nj/OlQf3obVTlSI 8Gfy8pcOQhBnSTx9kO3P8BiOLM0vafYRnOOkTTASTrJX1E37zdmAwWZUKbjRkcwK d19kdwYxzqysbqei/faBMLs7Egivn6WEEAAYsB1aALDJ7hrK64bzQdZLrBN0Av3J sOnURVGmG3NUvfHWpKzXDBeqYwgFtKZB -----END CERTIFICATE-----Generated at Sun Jun 15 08:39:38 2025 by rpki-client