$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: O5d8le3nN8hUI2+s3RsGleqHLycvfQ9MKb0PIg7SnKQ= Subject key identifier: 92:71:5E:DB:40:27:33:F0:61:12:7E:5C:42:8D:18:D3:BD:BA:4D:8C Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 0427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 0423 Signing time: Fri 25 Apr 2025 00:09:26 +0000 Manifest this update: Fri 25 Apr 2025 00:09:25 +0000 Manifest next update: Fri 02 May 2025 00:09:25 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: /nJQQsXEoBwCyZ1glTo3x3lPaafhK25yVHD7tlgzdgs=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1063 (0x427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: Apr 25 00:09:25 2025 GMT Not After : May 2 00:09:25 2025 GMT Subject: CN=680ad2b6-76cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ae:ee:d4:0b:4f:f2:6e:05:6e:87:d3:a4:17: 38:49:26:cf:d5:e4:eb:b5:56:82:9b:64:1d:d3:9d: fa:48:80:6d:c6:73:d7:29:48:8d:ea:d8:76:4b:a4: db:7a:79:d1:45:8b:99:73:b7:2a:26:4b:24:72:70: 6d:53:7b:7b:19:cf:4c:80:92:bc:ab:6c:5c:46:34: 75:47:54:ba:43:cd:e0:21:91:d3:90:9d:45:07:8f: 66:6a:c2:13:15:6a:ff:13:20:f3:12:f7:fd:7b:08: 0a:c9:11:c2:75:bc:ff:fe:4a:25:a4:ce:d4:57:3d: 10:7c:ba:be:9a:c4:39:04:34:85:fe:70:e1:83:ef: d6:3c:0a:8c:01:59:7d:51:e1:6e:b8:cc:88:9b:ee: 01:41:5f:55:ec:a8:5c:a8:eb:12:86:e3:6c:e5:c4: e8:38:b8:b6:5f:5c:c3:4c:9f:13:51:76:66:ab:70: f3:d3:4f:63:59:37:b6:f0:2d:bf:85:1c:04:b4:6c: d0:09:f1:e1:13:d4:14:9e:1c:cc:ce:bd:ab:3a:28: 2f:5e:1a:6d:28:17:9f:e4:1a:9e:d4:71:27:ad:96: ab:9c:ef:0b:72:ed:15:fd:40:2e:63:bb:c2:74:a9: dc:6b:72:71:cc:ae:82:1b:0b:45:45:a7:a7:fd:bd: 3c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:71:5E:DB:40:27:33:F0:61:12:7E:5C:42:8D:18:D3:BD:BA:4D:8C X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:84:a7:24:43:52:5a:f2:73:83:83:fa:d3:39:3b:b8:60:c4: aa:8f:d7:3f:8c:ac:4a:d9:79:7d:f1:86:dd:bd:d4:7c:d6:7d: 81:89:31:98:ef:99:69:0c:90:15:91:7c:99:90:70:3d:1e:a8: f6:0b:70:ae:3e:07:ad:d3:ea:cb:9e:11:f3:79:9c:30:ca:0a: f4:8d:2c:10:9f:13:49:04:c5:89:05:98:74:6d:75:06:f4:36: 09:ef:3a:47:19:1d:d0:f9:32:88:21:4a:d3:b4:a2:49:3e:27: c4:bc:97:2a:33:5f:d8:28:2e:be:82:30:bd:1a:da:3f:99:ed: e8:9d:8e:f6:ea:a7:d6:e9:b3:da:1a:5a:5d:15:5d:a4:13:63: e5:9b:f6:8a:1d:ea:98:77:20:93:bf:82:62:d9:5c:4f:c4:45: 09:80:b4:37:31:81:f9:80:1f:31:b3:1e:4b:45:de:11:34:b3: 24:56:d6:66:40:77:6b:0a:e1:6b:10:f3:f6:95:ba:7c:4b:17: 6f:44:28:cd:36:14:10:2b:04:73:00:90:85:86:d3:c2:46:07: 6a:38:45:91:9d:d3:56:23:e7:47:08:01:a0:f9:de:9a:2f:46: 5f:06:f4:b7:5f:74:e9:34:ac:cd:a6:c2:6d:0e:e3:eb:e0:61: 8f:0f:40:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjUwNDI1MDAwOTI1WhcNMjUwNTAyMDAwOTI1WjAYMRYwFAYD VQQDEw02ODBhZDJiNi03NmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApa7u1AtP8m4FbofTpBc4SSbP1eTrtVaCm2Qd0536SIBtxnPXKUiN6th2S6Tb ennRRYuZc7cqJkskcnBtU3t7Gc9MgJK8q2xcRjR1R1S6Q83gIZHTkJ1FB49masIT FWr/EyDzEvf9ewgKyRHCdbz//kolpM7UVz0QfLq+msQ5BDSF/nDhg+/WPAqMAVl9 UeFuuMyIm+4BQV9V7KhcqOsShuNs5cToOLi2X1zDTJ8TUXZmq3Dz009jWTe28C2/ hRwEtGzQCfHhE9QUnhzMzr2rOigvXhptKBef5Bqe1HEnrZarnO8Lcu0V/UAuY7vC dKnca3JxzK6CGwtFRaen/b085QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJxXttA JzPwYRJ+XEKNGNO9uk2MMB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArhKckQ1Ja8nODg/rTOTu4YMSqj9c/jKxK2Xl98YbdvdR81n2BiTGY 75lpDJAVkXyZkHA9Hqj2C3CuPget0+rLnhHzeZwwygr0jSwQnxNJBMWJBZh0bXUG 9DYJ7zpHGR3Q+TKIIUrTtKJJPifEvJcqM1/YKC6+gjC9Gto/me3onY726qfW6bPa GlpdFV2kE2Plm/aKHeqYdyCTv4Ji2VxPxEUJgLQ3MYH5gB8xsx5LRd4RNLMkVtZm QHdrCuFrEPP2lbp8SxdvRCjNNhQQKwRzAJCFhtPCRgdqOEWRndNWI+dHCAGg+d6a L0ZfBvS3X3TpNKzNpsJtDuPr4GGPD0BH -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:55 2025 by rpki-client