$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft File: RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft (raw, json) Hash identifier: n3egjsRrHN5ezMCIkG/7jAVMoyBlPe109FzZkxqbm4I= Subject key identifier: 4A:64:8F:2A:79:77:EC:6A:1C:68:2F:92:D9:A2:BB:4E:56:31:0D:70 Authority key identifier: 44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D Certificate issuer: /CN=A91FF1CC/serialNumber=446FAF923BEBAF96357287FE250991C75491454D Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft Manifest number: 26 Signing time: Fri 25 Apr 2025 06:48:51 +0000 Manifest this update: Fri 25 Apr 2025 06:48:51 +0000 Manifest next update: Fri 02 May 2025 06:48:51 +0000 Files and hashes: 1: RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl (hash: vKX+P/wJ8BPf5gcbEk6kjB8z17YtsASYkn34STlZsl4=) 2: CC37DC24024311F0B8CC3D64C4F9AE02.roa (hash: p8FHrwqthntaiCGXD1qfLj6KRbEBkZSs0aBfuIq0c5c=) 3: B7E221E4024311F0BD990F64C4F9AE02.roa (hash: d1zImNClufU6mQa0qsoJOx/6gPAzww6pSPXhwifVLOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:48:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF1CC, serialNumber=446FAF923BEBAF96357287FE250991C75491454D Validity Not Before: Apr 25 06:48:51 2025 GMT Not After : May 2 06:48:51 2025 GMT Subject: CN=680b3053-5d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:47:44:6c:9b:37:73:0a:46:88:38:88:cb:b9: b2:8e:a6:de:69:f0:5f:1f:29:ec:15:cf:c7:b6:ec: 7b:66:e4:89:91:cb:59:0d:7d:41:e1:17:e5:95:cc: bd:55:ed:ba:a8:ec:f8:60:3d:b1:ad:9b:d7:a6:cd: c8:25:26:41:a2:40:46:98:d4:01:73:56:9e:8b:62: bc:1f:8d:9e:7c:a1:9c:23:90:af:f6:4e:e3:46:fe: 02:9f:d0:bc:69:62:ff:c9:80:ae:c6:a5:42:30:10: f5:de:76:b8:3b:97:8f:3c:f5:ee:ad:59:82:6b:3b: 67:1e:ae:e0:32:0a:12:13:4d:fa:27:0b:b0:e3:95: 0d:f5:d9:9d:d0:5b:33:b1:ca:8b:18:fe:be:ad:62: fa:98:7c:97:dd:57:f7:dc:e1:e5:95:3f:43:cd:e9: 7e:bd:33:55:6d:15:c0:64:f3:0b:b0:5f:4b:10:8c: 8b:86:d7:bc:91:96:60:9f:2e:a0:a5:1c:8e:0f:68: 5c:05:fc:e8:f2:f3:bc:d9:fd:f3:0e:3a:a5:37:57: 17:df:6b:b9:74:74:99:5d:5f:f7:0d:e7:b0:84:60: 79:eb:c7:01:3a:a0:a1:7c:23:ce:7d:0f:46:5b:7d: 90:88:2d:7e:2f:8b:3f:f4:a4:e2:c6:85:b3:2e:06: f2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:64:8F:2A:79:77:EC:6A:1C:68:2F:92:D9:A2:BB:4E:56:31:0D:70 X509v3 Authority Key Identifier: keyid:44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:9b:5c:aa:31:2c:01:8c:89:51:76:5b:b2:10:4e:f3:8d:43: ea:e6:ba:97:ce:7a:9c:f7:85:42:d4:43:c4:47:d3:93:0d:dc: 78:24:b4:03:80:25:b2:ed:ce:34:67:bc:a9:56:7c:00:d8:07: 72:14:96:65:32:ca:94:d4:39:99:81:5d:38:d4:df:fc:35:a6: d4:30:9a:53:b1:32:50:d4:bc:24:ff:3d:ca:8b:e4:0d:45:93: 99:26:48:fa:ca:cc:f7:96:33:49:95:79:f7:92:1a:d8:40:e7: 24:cf:84:34:83:73:98:07:70:fe:b7:5c:d8:09:26:b1:d6:78: 8a:35:fa:db:b1:66:27:a7:f2:a4:69:1b:67:31:70:31:e3:68: 66:f4:b1:e4:6b:ba:49:fe:af:47:0c:c4:db:58:0b:33:ff:60: 91:f8:94:c3:b7:ef:d3:3e:67:4e:9e:2f:a0:c4:3a:6c:ae:72: 7c:47:26:e1:14:77:3e:ca:9b:ee:27:2f:ee:ea:60:2f:13:04: 07:bf:5f:46:c7:8e:8e:29:74:29:bb:90:5e:61:3a:c7:60:ff: 53:b4:8b:9d:bd:d7:46:d7:c4:3b:41:bc:00:e4:bd:e2:81:37: 84:c1:1c:5d:5a:e1:f5:a0:eb:7b:45:38:18:1a:ea:48:d7:17: e9:0f:a4:7f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjFDQzExMC8GA1UEBRMoNDQ2RkFGOTIzQkVCQUY5NjM1NzI4N0ZFMjUwOTkxQzc1 NDkxNDU0RDAeFw0yNTA0MjUwNjQ4NTFaFw0yNTA1MDIwNjQ4NTFaMBgxFjAUBgNV BAMTDTY4MGIzMDUzLTVkNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsR0RsmzdzCkaIOIjLubKOpt5p8F8fKewVz8e27Htm5ImRy1kNfUHhF+WVzL1V 7bqo7PhgPbGtm9emzcglJkGiQEaY1AFzVp6LYrwfjZ58oZwjkK/2TuNG/gKf0Lxp Yv/JgK7GpUIwEPXedrg7l4889e6tWYJrO2ceruAyChITTfonC7DjlQ312Z3QWzOx yosY/r6tYvqYfJfdV/fc4eWVP0PN6X69M1VtFcBk8wuwX0sQjIuG17yRlmCfLqCl HI4PaFwF/Ojy87zZ/fMOOqU3Vxffa7l0dJldX/cN57CEYHnrxwE6oKF8I859D0Zb fZCILX4viz/0pOLGhbMuBvKDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSmSPKnl3 7GocaC+S2aK7TlYxDXAwHwYDVR0jBBgwFoAURG+vkjvrr5Y1cof+JQmRx1SRRU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGMUNDLzNBRkMzM0UyRUY2 MzExRUZCRjY0QUI2QUM0RjlBRTAyL1JHLXZranZycjVZMWNvZi1KUW1SeDFTUlJV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUkctdmtqdnJyNVkxY29mLUpRbVJ4MVNSUlUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG MUNDLzNBRkMzM0UyRUY2MzExRUZCRjY0QUI2QUM0RjlBRTAyL1JHLXZranZycjVZ MWNvZi1KUW1SeDFTUlJVMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFabXKoxLAGMiVF2W7IQTvONQ+rmupfOepz3hULUQ8RH05MN3HgktAOA JbLtzjRnvKlWfADYB3IUlmUyypTUOZmBXTjU3/w1ptQwmlOxMlDUvCT/PcqL5A1F k5kmSPrKzPeWM0mVefeSGthA5yTPhDSDc5gHcP63XNgJJrHWeIo1+tuxZien8qRp G2cxcDHjaGb0seRrukn+r0cMxNtYCzP/YJH4lMO379M+Z06eL6DEOmyucnxHJuEU dz7Km+4nL+7qYC8TBAe/X0bHjo4pdCm7kF5hOsdg/1O0i52910bXxDtBvADkveKB N4TBHF1a4fWg63tFOBga6kjXF+kPpH8= -----END CERTIFICATE-----Generated at Sat Apr 26 14:15:54 2025 by rpki-client