$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft File: VU9dfGbsUOhKiru6mWgXfkcp02Y.mft (raw, json) Hash identifier: /UL+LDgL3qkoNeVQ8/YQaR5g69d5cA2joqoPuHXTrrA= Subject key identifier: 21:CE:75:11:5B:4B:E9:27:82:BA:AA:BA:37:74:1A:AB:FF:48:B7:7F Authority key identifier: 55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 Certificate issuer: /CN=A91E8BE3/serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft Manifest number: 43 Signing time: Fri 25 Apr 2025 06:26:22 +0000 Manifest this update: Fri 25 Apr 2025 06:26:22 +0000 Manifest next update: Fri 02 May 2025 06:26:22 +0000 Files and hashes: 1: VU9dfGbsUOhKiru6mWgXfkcp02Y.crl (hash: ItTD6XYlR0OT2zMKhm/8k2CdP4GJsTOqB+GKf+JY+SY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Validity Not Before: Apr 25 06:26:22 2025 GMT Not After : May 2 06:26:22 2025 GMT Subject: CN=680b2b0e-4186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b7:3d:0d:3f:46:3f:1f:34:13:38:d1:7a:40: 79:15:5a:24:00:4a:cb:19:20:09:cc:80:8f:f2:4c: 12:11:50:1f:f4:26:d9:90:37:e0:ba:e7:b9:b5:cc: 42:95:ec:6d:e6:08:d2:c3:2f:b9:50:0b:24:6a:27: ea:a5:6a:e7:fa:39:71:94:36:3e:51:03:ca:c2:a6: 50:56:58:44:fa:f4:15:02:a2:ed:32:8c:7c:67:94: 8c:94:3c:13:d0:a2:7a:1a:e7:32:8d:26:f7:1f:0e: 3f:4c:1f:e9:78:dd:27:46:de:e3:0a:d7:67:e6:af: 54:5c:aa:b1:61:51:2c:ea:82:dd:f2:87:7e:65:88: f5:44:56:a0:1b:75:00:9a:2e:c3:49:20:c6:c9:35: 3e:76:03:df:ad:5d:78:27:01:90:c1:b0:c2:94:1e: 44:bf:ff:8a:bc:42:8e:54:3f:49:2e:d4:cb:46:26: f4:4f:f1:d4:8f:a8:00:4a:ef:e8:9e:83:c5:6f:f7: 00:b2:43:82:c8:05:22:d5:85:b2:e5:81:9b:f8:c1: 02:fc:8e:16:3a:d0:1e:3b:83:7d:8f:fb:99:ac:18: 68:98:66:b3:40:80:ec:23:4a:7b:29:66:ec:f9:89: 1e:ab:bd:af:ae:6f:90:b8:20:3b:02:f8:6c:c1:84: d0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CE:75:11:5B:4B:E9:27:82:BA:AA:BA:37:74:1A:AB:FF:48:B7:7F X509v3 Authority Key Identifier: keyid:55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:32:62:78:64:5d:a7:c3:8a:ac:c0:7c:55:f5:95:6b:e8:90: 15:a0:ac:f1:ff:76:c0:c4:3e:a6:e6:d5:44:78:f9:95:cf:b1: dd:4e:6d:cd:d2:9c:1a:41:f8:ad:cd:92:29:0d:44:25:c5:7e: a9:9c:da:0b:17:08:08:f0:ec:72:e4:3a:12:6a:21:e9:2f:b9: a2:ff:77:86:8b:eb:f0:b8:72:28:5d:5c:a7:00:3d:97:54:5f: 1d:00:40:a3:1d:95:d7:f0:2d:ca:55:50:97:c6:81:6c:21:0d: b0:ff:0d:eb:88:08:c9:c5:f8:b7:9b:8e:df:79:63:34:44:2d: 6d:f5:a0:51:da:e4:83:7d:fa:40:03:1f:80:2d:de:1f:89:b3: 73:ba:e8:af:4b:6d:61:ed:0d:f7:27:8a:46:b7:7b:af:5d:54: 3e:61:ab:bb:73:3b:81:28:83:b2:ae:39:f9:3e:22:46:c8:73: 36:73:e0:d4:96:cd:d6:ad:dc:7a:dd:0d:06:1a:fd:b8:6a:31: fc:b0:6f:6d:f1:10:f8:92:a5:3a:30:95:b6:67:1b:00:c7:94: 49:ea:4d:e1:50:d6:c9:70:6f:11:da:3c:f4:1d:1d:d0:db:77: 78:29:6e:33:d9:2d:e4:ad:35:a5:3f:ed:ca:40:5c:07:03:e2: f4:ad:0f:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEJFMzExMC8GA1UEBRMoNTU0RjVEN0M2NkVDNTBFODRBOEFCQkJBOTk2ODE3N0U0 NzI5RDM2NjAeFw0yNTA0MjUwNjI2MjJaFw0yNTA1MDIwNjI2MjJaMBgxFjAUBgNV BAMTDTY4MGIyYjBlLTQxODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTtz0NP0Y/HzQTONF6QHkVWiQASssZIAnMgI/yTBIRUB/0JtmQN+C657m1zEKV 7G3mCNLDL7lQCyRqJ+qlauf6OXGUNj5RA8rCplBWWET69BUCou0yjHxnlIyUPBPQ onoa5zKNJvcfDj9MH+l43SdG3uMK12fmr1RcqrFhUSzqgt3yh35liPVEVqAbdQCa LsNJIMbJNT52A9+tXXgnAZDBsMKUHkS//4q8Qo5UP0ku1MtGJvRP8dSPqABK7+ie g8Vv9wCyQ4LIBSLVhbLlgZv4wQL8jhY60B47g32P+5msGGiYZrNAgOwjSnspZuz5 iR6rva+ub5C4IDsC+GzBhNAHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIc51EVtL 6SeCuqq6N3Qaq/9It38wHwYDVR0jBBgwFoAUVU9dfGbsUOhKiru6mWgXfkcp02Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QkUzL0VFRUY3RkVBQkY5 QzExRUY5REE4ODI4MkM0RjlBRTAyL1ZVOWRmR2JzVU9oS2lydTZtV2dYZmtjcDAy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVlU5ZGZHYnNVT2hLaXJ1Nm1XZ1hma2NwMDJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 QkUzL0VFRUY3RkVBQkY5QzExRUY5REE4ODI4MkM0RjlBRTAyL1ZVOWRmR2JzVU9o S2lydTZtV2dYZmtjcDAyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK0yYnhkXafDiqzAfFX1lWvokBWgrPH/dsDEPqbm1UR4+ZXPsd1Obc3S nBpB+K3NkikNRCXFfqmc2gsXCAjw7HLkOhJqIekvuaL/d4aL6/C4cihdXKcAPZdU Xx0AQKMdldfwLcpVUJfGgWwhDbD/DeuICMnF+Lebjt95YzRELW31oFHa5IN9+kAD H4At3h+Js3O66K9LbWHtDfcnika3e69dVD5hq7tzO4Eog7KuOfk+IkbIczZz4NSW zdat3HrdDQYa/bhqMfywb23xEPiSpTowlbZnGwDHlEnqTeFQ1slwbxHaPPQdHdDb d3gpbjPZLeStNaU/7cpAXAcD4vStD9Y= -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:50 2025 by rpki-client