$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft File: vvMhsD2CRd537IDdAzG_uo0IWdg.mft (raw, json) Hash identifier: pRp+lLeM8bt83C4pWpWKG3iwErs3T9FfJaXfQf5OVlo= Subject key identifier: 37:16:E9:E6:6F:A3:DE:95:D1:BC:28:5B:CC:9C:70:4F:94:D8:30:57 Authority key identifier: BE:F3:21:B0:3D:82:45:DE:77:EC:80:DD:03:31:BF:BA:8D:08:59:D8 Certificate issuer: /CN=A91EE8AC/serialNumber=BEF321B03D8245DE77EC80DD0331BFBA8D0859D8 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft Manifest number: 02BD Signing time: Sun 15 Jun 2025 02:07:09 +0000 Manifest this update: Sun 15 Jun 2025 02:07:08 +0000 Manifest next update: Sun 22 Jun 2025 02:07:08 +0000 Files and hashes: 1: vvMhsD2CRd537IDdAzG_uo0IWdg.crl (hash: Kp/BxQ5xn6ux5vPWQ+UhPW/z+r+PWYCs/UBaSCFJy0U=) 2: 5F3C0F26EAEF11EE8CCDB375C4F9AE02.roa (hash: AaKJfFADfdiocRuahwwRayJxxniMqc1ubRpa5kB8ql4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:07:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=BEF321B03D8245DE77EC80DD0331BFBA8D0859D8 Validity Not Before: Jun 15 02:07:08 2025 GMT Not After : Jun 22 02:07:08 2025 GMT Subject: CN=684e2acc-e45a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:60:1c:9a:37:91:60:29:f0:ba:51:4a:67:23: 48:41:93:fd:79:d1:25:8a:f7:3e:85:ac:53:70:f8: 95:b5:79:0a:6d:44:7b:32:8c:e2:c1:31:b7:9a:86: ea:a5:dc:0e:0c:75:72:61:7e:1b:c7:88:7a:f0:e1: b8:5c:2f:f1:7f:9e:62:1e:66:7e:4a:11:4e:ed:8e: eb:0c:e6:96:ab:05:87:a8:8d:41:ed:a7:38:03:51: 41:9b:23:df:7b:89:83:48:14:f8:69:74:ee:8d:56: 02:8d:03:d7:cf:4a:09:2e:e1:db:f4:a5:59:4c:4e: b6:d0:01:78:5a:ac:1e:f3:ff:ed:cf:25:57:7f:56: 3c:e5:23:10:21:25:d0:40:8a:c0:da:3d:f8:6c:0d: 83:f5:a4:16:79:a5:a4:8b:4d:45:94:ed:6d:32:49: 47:e1:93:77:f1:17:7d:ab:c6:f9:df:6a:e7:aa:d0: 45:9e:71:f1:39:15:6e:b6:f2:60:ba:f3:ca:0a:aa: b7:76:1c:ab:09:15:2e:ec:f8:ba:c0:3b:77:d3:7a: 69:27:d0:53:d6:9f:57:b0:00:7b:a8:cc:c5:c0:00: af:18:12:1e:b9:8d:7a:58:cc:cb:fb:81:80:48:cd: c0:d2:11:6c:f4:da:1a:4a:c1:0f:6d:ef:35:89:8c: 59:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:16:E9:E6:6F:A3:DE:95:D1:BC:28:5B:CC:9C:70:4F:94:D8:30:57 X509v3 Authority Key Identifier: keyid:BE:F3:21:B0:3D:82:45:DE:77:EC:80:DD:03:31:BF:BA:8D:08:59:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:db:d1:be:b5:cb:2f:bc:6f:73:d6:20:2b:a6:af:a2:63:0b: d0:b6:17:56:7d:90:d7:be:23:4d:c4:54:75:a3:ad:21:12:43: 90:48:b1:80:f7:17:b5:e1:bc:6f:f4:a0:b3:e4:1a:e9:9a:c6: 6c:86:f6:85:bc:a1:38:66:bf:3d:8f:5f:b5:5c:42:4c:21:be: 9f:55:3a:f7:f2:65:09:29:d9:0f:16:a1:70:44:2f:fc:62:cf: f2:23:e4:82:15:7d:d5:5f:a6:e9:d5:b6:de:0b:e2:9a:33:71: ad:ae:a9:a1:bf:90:39:84:b3:b1:07:36:00:54:e1:61:33:92: 95:26:2f:0e:a9:9b:21:0f:a3:fa:56:ad:fe:8a:a5:a6:e1:4b: 7c:b2:42:a3:e5:16:a5:d3:8f:3a:35:ba:76:3e:dc:3f:d3:36: 19:02:32:6a:45:f9:bc:94:65:e5:1d:dd:74:4f:20:c0:db:bf: e7:09:01:94:47:c4:61:88:e8:e8:2c:14:48:a4:4b:0c:f4:1e: 58:56:43:74:f7:aa:13:d1:86:92:60:02:ea:92:7c:98:2f:b2: 7c:16:d2:31:99:1b:26:22:b6:22:b6:bc:a8:61:07:a9:7d:81: f4:4a:96:39:9f:a7:44:fd:72:3e:b3:a7:0a:da:5b:d4:81:ed: f5:c0:6c:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKEJFRjMyMUIwM0Q4MjQ1REU3N0VDODBERDAzMzFCRkJB OEQwODU5RDgwHhcNMjUwNjE1MDIwNzA4WhcNMjUwNjIyMDIwNzA4WjAYMRYwFAYD VQQDEw02ODRlMmFjYy1lNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWAcmjeRYCnwulFKZyNIQZP9edElivc+haxTcPiVtXkKbUR7MoziwTG3mobq pdwODHVyYX4bx4h68OG4XC/xf55iHmZ+ShFO7Y7rDOaWqwWHqI1B7ac4A1FBmyPf e4mDSBT4aXTujVYCjQPXz0oJLuHb9KVZTE620AF4Wqwe8//tzyVXf1Y85SMQISXQ QIrA2j34bA2D9aQWeaWki01FlO1tMklH4ZN38Rd9q8b532rnqtBFnnHxORVutvJg uvPKCqq3dhyrCRUu7Pi6wDt303ppJ9BT1p9XsAB7qMzFwACvGBIeuY16WMzL+4GA SM3A0hFs9NoaSsEPbe81iYxZzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcW6eZv o96V0bwoW8yccE+U2DBXMB8GA1UdIwQYMBaAFL7zIbA9gkXed+yA3QMxv7qNCFnY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi92dk1oc0QyQ1JkNTM3SURkQXpHX3VvMElX ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z2TWhzRDJDUmQ1MzdJRGRBekdfdW8wSVdkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi92dk1oc0QyQ1Jk NTM3SURkQXpHX3VvMElXZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl29G+tcsvvG9z1iArpq+iYwvQthdWfZDXviNNxFR1o60hEkOQSLGA 9xe14bxv9KCz5BrpmsZshvaFvKE4Zr89j1+1XEJMIb6fVTr38mUJKdkPFqFwRC/8 Ys/yI+SCFX3VX6bp1bbeC+KaM3Gtrqmhv5A5hLOxBzYAVOFhM5KVJi8OqZshD6P6 Vq3+iqWm4Ut8skKj5Ral0486Nbp2Ptw/0zYZAjJqRfm8lGXlHd10TyDA27/nCQGU R8RhiOjoLBRIpEsM9B5YVkN096oT0YaSYALqknyYL7J8FtIxmRsmIrYitryoYQep fYH0SpY5n6dE/XI+s6cK2lvUge31wGz7 -----END CERTIFICATE-----Generated at Sun Jun 15 05:16:04 2025 by rpki-client