$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: slUnVF1ZSJxUF5UE0wtPYpLaHMMOFxHsQv2+OPt4SH0= Subject key identifier: 5A:68:93:DF:11:AC:C6:5A:42:04:E3:AF:DD:C8:29:E2:0E:BB:03:3E Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: 0129 Signing time: Fri 25 Apr 2025 03:43:41 +0000 Manifest this update: Fri 25 Apr 2025 03:43:41 +0000 Manifest next update: Fri 02 May 2025 03:43:40 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: Yv36I9OT/tKsJXQLVOPA9wX9FV/VbZq5yOdu824DAr0=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: DaoJhbsGXkUC42pkhjpzJhDA/mxo+1TSGX1zlEEQkMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: Apr 25 03:43:41 2025 GMT Not After : May 2 03:43:40 2025 GMT Subject: CN=680b04ed-f728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:60:cf:71:68:27:92:76:3f:82:50:ce:8a:8f: 72:74:f9:e0:1e:5c:75:58:ae:d4:ba:74:69:17:63: 0e:3b:07:f7:74:d8:3a:6e:30:23:5a:47:2f:0a:70: a0:8a:ad:c2:60:06:72:91:d8:f7:41:5b:a4:22:70: 3c:34:eb:4c:b2:0f:e3:eb:a4:31:72:5f:9e:35:cd: 05:8d:12:58:d7:f6:c2:b2:d9:55:f7:99:d0:ba:12: 25:19:82:15:70:5e:9f:d3:9c:d4:4b:b0:9d:2c:81: 9a:1f:8a:15:04:49:b1:f6:5a:9f:8a:34:d6:d6:46: 2f:9b:cd:67:45:3a:11:21:e1:41:29:74:54:55:50: 9e:ae:95:46:31:4d:be:4e:14:64:99:ae:ae:a2:55: 33:f3:ad:43:51:46:94:ad:cb:17:37:b6:92:df:e8: 8a:3b:13:4d:65:13:09:0e:0c:79:db:19:4d:a3:7d: a3:f5:ae:49:5e:99:5c:96:59:57:2e:66:b3:ad:e3: 90:4b:46:9b:47:10:21:b0:43:c7:ae:1f:5b:26:00: 63:5a:ef:1c:36:ea:93:71:b0:b4:b2:6b:3d:bb:a1: ed:07:22:9c:f1:57:49:9d:d7:7d:3e:86:e4:5a:9d: 10:e1:b7:bf:e0:da:a3:2f:9e:f6:00:53:3c:72:2f: ba:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:68:93:DF:11:AC:C6:5A:42:04:E3:AF:DD:C8:29:E2:0E:BB:03:3E X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:d1:ed:83:2f:5b:f4:63:18:87:db:8b:fc:ca:b2:20:2b:1b: 9e:cd:39:37:45:6d:2d:2b:06:75:c6:a2:96:94:5f:a7:81:4b: 3e:06:46:22:07:a5:60:f0:8c:4c:fa:7a:6b:29:4c:b8:aa:c2: c9:9c:af:7d:53:42:3f:22:30:39:77:18:79:76:61:22:3b:d0: e9:ec:ea:0d:13:a3:86:01:07:d0:a9:60:3a:a1:eb:0c:4b:7c: 6c:ac:91:4e:ec:44:3a:8e:70:37:1c:1c:6a:b2:56:f2:e4:bd: fe:02:82:79:23:ff:0e:24:d6:0c:ab:9d:f1:d1:51:e2:39:84: 7e:ff:4c:a7:c7:33:a1:50:b4:10:3c:ed:60:af:2b:6c:e8:d3: ff:44:2c:1d:f7:28:d2:b3:7f:f4:9a:f3:2b:94:2c:51:37:9a: 9a:b2:04:77:4a:5e:46:e8:18:4b:6e:68:1d:98:9e:4a:1b:a3: 96:2b:d4:03:6c:81:f0:dc:42:ed:14:6a:10:2a:58:4b:c1:42: ac:f7:4d:c9:ce:a6:35:49:9b:58:4f:d1:9c:84:96:52:46:e9: ea:b9:b9:81:9e:07:62:3f:f4:5e:66:77:c9:aa:c3:81:40:21: f3:6a:3a:61:b4:7a:84:9b:48:4c:76:03:e1:a3:26:03:fd:a5: e6:34:04:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjUwNDI1MDM0MzQxWhcNMjUwNTAyMDM0MzQwWjAYMRYwFAYD VQQDEw02ODBiMDRlZC1mNzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WDPcWgnknY/glDOio9ydPngHlx1WK7UunRpF2MOOwf3dNg6bjAjWkcvCnCg iq3CYAZykdj3QVukInA8NOtMsg/j66Qxcl+eNc0FjRJY1/bCstlV95nQuhIlGYIV cF6f05zUS7CdLIGaH4oVBEmx9lqfijTW1kYvm81nRToRIeFBKXRUVVCerpVGMU2+ ThRkma6uolUz861DUUaUrcsXN7aS3+iKOxNNZRMJDgx52xlNo32j9a5JXplclllX LmazreOQS0abRxAhsEPHrh9bJgBjWu8cNuqTcbC0sms9u6HtByKc8VdJndd9Pobk Wp0Q4be/4NqjL572AFM8ci+6DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpok98R rMZaQgTjr93IKeIOuwM+MB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR MUpkdmJpbGhFN3J5S296MTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA30e2DL1v0YxiH24v8yrIgKxuezTk3RW0tKwZ1xqKWlF+ngUs+BkYi B6Vg8IxM+nprKUy4qsLJnK99U0I/IjA5dxh5dmEiO9Dp7OoNE6OGAQfQqWA6oesM S3xsrJFO7EQ6jnA3HBxqslby5L3+AoJ5I/8OJNYMq53x0VHiOYR+/0ynxzOhULQQ PO1gryts6NP/RCwd9yjSs3/0mvMrlCxRN5qasgR3Sl5G6BhLbmgdmJ5KG6OWK9QD bIHw3ELtFGoQKlhLwUKs903JzqY1SZtYT9GchJZSRunqubmBngdiP/ReZnfJqsOB QCHzajphtHqEm0hMdgPhoyYD/aXmNATp -----END CERTIFICATE-----Generated at Sat Apr 26 05:17:18 2025 by rpki-client