$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: Dt/YV9oh1VR1UDxT+iHPp4hnDUQdRdVfCWTGM9WoJzY= Subject key identifier: 5B:68:E8:72:98:2E:FC:2B:D5:46:72:D3:89:C5:AA:53:E0:3D:31:E9 Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 043B Signing time: Thu 12 Jun 2025 23:52:53 +0000 Manifest this update: Thu 12 Jun 2025 23:52:53 +0000 Manifest next update: Thu 19 Jun 2025 23:52:53 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: DdPzxG6YRcc+TGVZu6yMK6SNHfBp6LVueNlN5ciy+dM=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: Jun 12 23:52:53 2025 GMT Not After : Jun 19 23:52:53 2025 GMT Subject: CN=684b6855-2bee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5f:71:e2:e0:f8:16:b3:a6:18:9a:4a:a0:01: 45:a0:82:fd:e9:16:77:37:92:af:39:0a:d5:76:e5: 7f:8e:7a:01:87:61:92:26:8a:36:95:79:ba:38:3e: 45:9e:ad:3d:a1:f0:cb:e2:03:ad:ff:65:9f:d1:55: 33:5c:60:67:61:38:34:d3:5f:10:df:27:44:e0:81: 22:d0:ba:ee:a9:77:66:f2:c7:28:23:86:8b:48:1d: c0:f8:cd:b3:27:21:d0:ec:65:58:a0:00:f0:cd:8a: 21:e8:4d:4f:33:d4:23:c7:20:bc:c8:d8:d1:0a:32: 8f:92:b8:5e:1f:1e:78:ab:c0:8d:5a:be:86:37:a3: 54:fe:0a:f9:9b:7e:ad:d1:2d:fc:dd:a2:a3:17:47: d1:2a:f7:22:b7:73:3a:b9:80:c2:b1:6b:38:09:ba: a5:5f:68:17:fd:61:15:c6:83:c8:03:31:6a:d6:4c: 40:2c:2a:3a:42:af:19:77:6d:b1:0c:87:af:d3:31: 19:1c:1e:a2:23:81:ab:b0:c8:68:ad:cc:7d:f9:79: c5:75:14:68:22:bf:94:f8:88:64:eb:8f:cf:52:ae: ac:f3:34:f6:80:10:71:ee:7e:5c:ab:1b:3e:77:df: 9a:30:62:3b:39:8e:75:c2:2c:d9:25:7c:8e:f8:d0: 50:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:68:E8:72:98:2E:FC:2B:D5:46:72:D3:89:C5:AA:53:E0:3D:31:E9 X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:d8:2f:6f:93:fc:44:b8:1f:e6:d6:47:1a:c4:b8:e4:97:19: 90:a8:70:51:a5:13:f8:f7:89:7b:7f:0a:cf:e9:4a:65:ce:7b: 00:be:b1:b3:61:c6:61:4b:3a:6d:fa:3e:a5:93:e7:60:f7:d3: 5c:8e:e4:74:f5:ab:9d:5a:4f:bc:c3:ed:08:b8:fe:0d:c4:42: 07:d6:21:fc:d2:dd:6b:b1:f3:2a:9a:1d:8e:3f:7e:d8:b7:3a: da:da:e4:c1:57:49:2d:f9:49:3b:26:43:e1:47:39:dc:86:c6: 3d:8d:25:f6:af:98:55:55:1a:e0:1a:b8:fd:98:ee:81:73:fe: 56:e6:4d:07:05:12:59:bb:4a:87:21:b0:ae:b0:a4:59:77:f8: 04:3a:10:16:de:cd:91:d1:0b:58:ca:5a:62:a1:df:ff:0f:67: 55:48:46:c3:42:84:14:0f:fd:d8:fa:54:21:d1:34:2d:0e:25: 3f:b4:5b:cf:cd:df:e4:8b:12:a9:e8:0f:ef:ce:67:16:c4:96: 6b:f2:b0:dc:39:8b:49:3c:57:ad:ba:a2:8c:d1:fc:52:bc:33: e8:26:0f:20:59:c3:a4:e7:8a:1c:bb:46:0a:4e:6b:1b:09:a9: 7b:77:ae:cd:77:7b:09:f6:5d:52:7b:e1:87:24:f5:d9:bc:2e: 45:3f:c6:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjUwNjEyMjM1MjUzWhcNMjUwNjE5MjM1MjUzWjAYMRYwFAYD VQQDEw02ODRiNjg1NS0yYmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2l9x4uD4FrOmGJpKoAFFoIL96RZ3N5KvOQrVduV/jnoBh2GSJoo2lXm6OD5F nq09ofDL4gOt/2Wf0VUzXGBnYTg0018Q3ydE4IEi0LruqXdm8scoI4aLSB3A+M2z JyHQ7GVYoADwzYoh6E1PM9QjxyC8yNjRCjKPkrheHx54q8CNWr6GN6NU/gr5m36t 0S383aKjF0fRKvcit3M6uYDCsWs4CbqlX2gX/WEVxoPIAzFq1kxALCo6Qq8Zd22x DIev0zEZHB6iI4GrsMhorcx9+XnFdRRoIr+U+Ihk64/PUq6s8zT2gBBx7n5cqxs+ d9+aMGI7OY51wizZJXyO+NBQvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFto6HKY Lvwr1UZy04nFqlPgPTHpMB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ2C9vk/xEuB/m1kcaxLjklxmQqHBRpRP494l7fwrP6UplznsAvrGz YcZhSzpt+j6lk+dg99NcjuR09audWk+8w+0IuP4NxEIH1iH80t1rsfMqmh2OP37Y tzra2uTBV0kt+Uk7JkPhRznchsY9jSX2r5hVVRrgGrj9mO6Bc/5W5k0HBRJZu0qH IbCusKRZd/gEOhAW3s2R0QtYylpiod//D2dVSEbDQoQUD/3Y+lQh0TQtDiU/tFvP zd/kixKp6A/vzmcWxJZr8rDcOYtJPFetuqKM0fxSvDPoJg8gWcOk54ocu0YKTmsb Cal7d67Nd3sJ9l1Se+GHJPXZvC5FP8aD -----END CERTIFICATE-----Generated at Sat Jun 14 18:50:31 2025 by rpki-client