$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: lKCYyWmWd9ugjTD/2pF6wLRKhMHZMW9aWoiGFtOtCrM= Subject key identifier: A0:F8:D3:52:92:88:1C:9A:49:09:30:8D:42:EB:20:FC:D6:29:AD:C6 Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: 0173 Signing time: Fri 25 Apr 2025 03:00:52 +0000 Manifest this update: Fri 25 Apr 2025 03:00:51 +0000 Manifest next update: Fri 02 May 2025 03:00:51 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: 86G0wMWAAxhKsU7UvmmYixlRq/3OHq2AGw9meZIyu/M=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: rtZPUDV9v5M5UjLf6mnKGmlSZjqBzQjmkl2wyx5PPSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: Apr 25 03:00:51 2025 GMT Not After : May 2 03:00:51 2025 GMT Subject: CN=680afae4-54ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:33:09:66:7c:2e:de:46:b0:bc:e0:2a:59:c5: 34:3c:cd:97:e5:38:46:49:c0:e1:1a:16:7e:22:5c: b2:d0:29:23:93:2b:a7:c2:4a:e2:a9:9e:6c:fe:60: 56:9d:02:0a:d7:c4:d7:41:86:60:29:3a:14:c0:66: 57:1b:9a:f7:59:db:7a:3e:a8:68:80:60:e7:1d:6b: bb:c0:a9:c9:d4:71:9e:87:47:38:4d:34:20:20:29: ff:3a:75:b6:eb:28:21:7f:2d:05:0f:84:df:7f:81: 35:27:36:56:fd:6f:74:e4:54:01:02:ea:21:8a:cf: 39:a8:d5:18:1a:d6:e1:ef:f5:28:cc:df:31:92:7f: e6:1a:55:8e:49:01:1b:7c:35:8b:90:3a:da:85:df: 1a:bc:81:44:61:36:5e:ea:82:1c:fc:5f:73:c8:81: 48:4d:e0:e1:2d:04:e2:0f:ed:c8:9e:0e:d1:31:17: ae:cd:d6:b9:f7:c3:5e:47:5f:7a:2d:66:54:3c:65: de:1f:ad:f5:79:73:51:a5:97:79:2f:77:96:ac:d9: 3b:31:70:cd:3a:68:c1:9a:98:1a:c7:5b:d8:0d:c5: e8:97:73:d2:d2:28:0e:c9:a0:c5:0d:73:9b:a8:16: c3:8f:5d:57:ea:a1:a9:96:78:ca:f3:64:2a:d2:bb: 84:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F8:D3:52:92:88:1C:9A:49:09:30:8D:42:EB:20:FC:D6:29:AD:C6 X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:08:d5:f8:27:73:98:bf:6b:7d:e0:87:3f:ab:84:8e:54:28: 68:74:eb:15:1c:0a:dd:d9:57:9f:8e:21:b8:d7:47:05:36:f6: 7c:b7:e8:38:b7:96:55:68:57:9e:4b:41:26:d2:56:61:78:17: 82:54:3c:1b:32:af:0d:09:ff:6d:3b:3a:00:2e:aa:d6:cd:dd: 68:b4:fb:24:1a:f1:fe:4d:e6:cf:05:a9:03:7f:88:9b:2e:7f: 11:65:f8:09:a9:43:73:6b:ba:a9:f2:eb:4a:1b:8d:85:1d:d8: 65:82:67:3b:e5:fa:aa:00:80:d9:5c:91:3c:5f:8b:45:a4:76: c4:b6:f8:9c:ed:28:e2:b9:d5:44:40:cf:16:06:e6:30:b8:7b: e4:de:7d:45:93:51:24:80:4f:79:d6:b1:70:5d:b6:c3:ff:7b: 65:f4:0e:37:60:70:50:d4:e4:cb:44:97:51:e7:92:3c:30:c8: 0f:b3:cd:cf:22:0d:2f:63:76:01:f7:36:8c:a3:4c:84:33:0f: 97:32:68:74:68:9d:45:39:d3:b6:e0:e1:c8:72:cb:a4:1d:a3: 1d:fc:1d:1f:f1:ed:e3:9f:a2:2d:8d:9f:cf:c1:73:21:95:61: 81:ec:64:db:fe:3f:be:d1:57:09:4d:52:eb:d9:99:00:52:ed: 42:70:84:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUwNDI1MDMwMDUxWhcNMjUwNTAyMDMwMDUxWjAYMRYwFAYD VQQDEw02ODBhZmFlNC01NGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zMJZnwu3kawvOAqWcU0PM2X5ThGScDhGhZ+Ilyy0CkjkyunwkriqZ5s/mBW nQIK18TXQYZgKToUwGZXG5r3Wdt6PqhogGDnHWu7wKnJ1HGeh0c4TTQgICn/OnW2 6yghfy0FD4Tff4E1JzZW/W905FQBAuohis85qNUYGtbh7/UozN8xkn/mGlWOSQEb fDWLkDrahd8avIFEYTZe6oIc/F9zyIFITeDhLQTiD+3Ing7RMReuzda598NeR196 LWZUPGXeH631eXNRpZd5L3eWrNk7MXDNOmjBmpgax1vYDcXol3PS0igOyaDFDXOb qBbDj11X6qGplnjK82Qq0ruE/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKD401KS iByaSQkwjULrIPzWKa3GMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5CNX4J3OYv2t94Ic/q4SOVChodOsVHArd2VefjiG410cFNvZ8t+g4 t5ZVaFeeS0Em0lZheBeCVDwbMq8NCf9tOzoALqrWzd1otPskGvH+TebPBakDf4ib Ln8RZfgJqUNza7qp8utKG42FHdhlgmc75fqqAIDZXJE8X4tFpHbEtvic7SjiudVE QM8WBuYwuHvk3n1Fk1EkgE951rFwXbbD/3tl9A43YHBQ1OTLRJdR55I8MMgPs83P Ig0vY3YB9zaMo0yEMw+XMmh0aJ1FOdO24OHIcsukHaMd/B0f8e3jn6ItjZ/PwXMh lWGB7GTb/j++0VcJTVLr2ZkAUu1CcIR0 -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:29 2025 by rpki-client