$ rpki-client -vvf rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft File: Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft (raw, json) Hash identifier: IvLw4yDnFwm/ynzjjEX5Q5Tlv3xgmjAxnpqpO2dKSQ8= Subject key identifier: EC:5D:55:A0:24:5D:D0:4A:92:FB:79:2E:BD:44:99:51:DD:D3:16:41 Authority key identifier: 56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 Certificate issuer: /CN=A91203DC/serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Certificate serial: 2178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft Manifest number: 216D Signing time: Sat 10 May 2025 15:50:54 +0000 Manifest this update: Sat 10 May 2025 15:50:53 +0000 Manifest next update: Sat 17 May 2025 15:50:53 +0000 Files and hashes: 1: Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl (hash: wbYFP7pyMRz++TRMP16OtRxIvzFf6UZWyIq1VpWnYnY=) 2: 1D9DC82A652311EBA8CF3C4CC4F9AE02.roa (hash: lzXH47zwQqzR7U0IwcpEbq0QXTqtq0eXFrMFUkvM89M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8568 (0x2178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203DC, serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Validity Not Before: May 10 15:50:53 2025 GMT Not After : May 17 15:50:53 2025 GMT Subject: CN=681f75de-377f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6c:38:9c:3a:96:87:1d:54:f6:62:16:b7:15: aa:88:c8:97:f8:7c:6f:8f:d8:2c:15:2b:99:d2:03: 5f:53:52:41:de:7a:15:d7:3c:f5:28:d3:a0:ca:3b: 42:49:5a:56:a4:e6:b5:fc:85:4f:eb:ea:2f:8a:36: 1b:7c:3a:98:5b:57:00:9d:17:d8:dd:d8:90:e7:16: 38:6c:8c:11:47:42:4a:1f:79:e5:ac:64:c1:b6:5c: be:f4:a9:2e:fc:d6:ac:fa:33:6d:e1:14:e8:89:61: 44:21:9d:9c:48:64:ce:8e:71:d7:6b:86:1d:0e:4d: b8:db:df:b9:ea:56:23:a8:a3:d1:dc:95:23:6d:7f: 39:81:1d:be:18:0d:8c:22:3d:08:7c:b9:e6:03:60: 29:c3:d5:74:c4:d6:62:dd:7c:65:cc:aa:37:84:17: fb:ab:08:aa:f0:90:f6:be:b7:c5:fe:a5:14:7b:81: b4:5c:a2:3e:6c:b2:85:6d:28:40:6a:c2:9c:45:8d: ec:19:c4:67:f3:6e:d4:aa:8b:df:10:02:00:55:bb: 32:81:eb:82:3f:c1:9f:16:45:cc:71:2c:91:a2:45: cf:66:6b:24:0b:5c:4b:a8:64:e5:41:bf:53:91:a1: 87:17:1c:d6:8e:d2:69:e4:72:98:38:cd:f2:14:e9: 27:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5D:55:A0:24:5D:D0:4A:92:FB:79:2E:BD:44:99:51:DD:D3:16:41 X509v3 Authority Key Identifier: keyid:56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:23:7d:77:2f:54:af:3f:1c:61:91:fd:4d:b5:bb:b9:59:56: 03:f5:e7:7a:9d:dc:34:a2:ea:f4:15:4a:81:70:56:56:b7:04: 16:6f:cc:d7:6a:7f:09:78:3d:ec:89:9f:a9:a8:49:38:aa:55: e9:3d:de:f7:a6:60:4e:e0:12:ed:3c:71:74:f7:aa:91:49:1d: 0a:8e:2a:67:48:b6:24:b3:76:41:2a:15:93:c7:f0:e5:22:51: c6:cc:87:e7:91:39:bf:28:3d:6f:33:77:67:bf:11:62:8d:1c: 24:af:f6:33:d5:a6:ca:db:b4:d7:6e:ec:c4:d3:77:25:9d:14: 92:fc:d6:6c:0c:d0:4a:b1:b8:94:9d:33:cd:2f:d7:55:ff:ca: 87:e4:2f:b9:1f:35:2d:64:17:aa:bc:7c:df:54:6d:f6:81:ed: 56:fa:87:7c:ae:cb:c9:ab:42:29:ad:de:dc:15:e1:93:05:a9: e3:89:35:d2:93:c1:83:b2:ff:53:66:83:69:4e:81:ec:af:99: 4d:72:2f:8f:38:e5:77:71:17:28:d0:d8:5d:80:b8:34:15:24: 88:d9:0e:36:c2:50:86:16:b2:6d:e0:e8:88:56:5b:bf:dd:46: 0e:6a:52:56:c9:ff:6e:e4:89:48:70:01:cd:87:7c:6a:45:10: b1:b9:c4:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzREMxMTAvBgNVBAUTKDU2NDZFMDdBMEY2MDI1RjFFMjYwRjFDNDk5NkY5QTY4 MUIyOTIwNzEwHhcNMjUwNTEwMTU1MDUzWhcNMjUwNTE3MTU1MDUzWjAYMRYwFAYD VQQDEw02ODFmNzVkZS0zNzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Ww4nDqWhx1U9mIWtxWqiMiX+Hxvj9gsFSuZ0gNfU1JB3noV1zz1KNOgyjtC SVpWpOa1/IVP6+ovijYbfDqYW1cAnRfY3diQ5xY4bIwRR0JKH3nlrGTBtly+9Kku /Nas+jNt4RToiWFEIZ2cSGTOjnHXa4YdDk2429+56lYjqKPR3JUjbX85gR2+GA2M Ij0IfLnmA2Apw9V0xNZi3XxlzKo3hBf7qwiq8JD2vrfF/qUUe4G0XKI+bLKFbShA asKcRY3sGcRn827UqovfEAIAVbsygeuCP8GfFkXMcSyRokXPZmskC1xLqGTlQb9T kaGHFxzWjtJp5HKYOM3yFOkn0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxdVaAk XdBKkvt5Lr1EmVHd0xZBMB8GA1UdIwQYMBaAFFZG4HoPYCXx4mDxxJlvmmgbKSBx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNEQy9GQUQzRDZGQ0RD NDkxMUU1QTA2MjVGODJDNEY5QUUwMi9Wa2JnZWc5Z0pmSGlZUEhFbVctYWFCc3BJ SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZrYmdlZzlnSmZIaVlQSEVtVy1hYUJzcElIRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDNEQy9GQUQzRDZGQ0RDNDkxMUU1QTA2MjVGODJDNEY5QUUwMi9Wa2JnZWc5Z0pm SGlZUEhFbVctYWFCc3BJSEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYI313L1SvPxxhkf1Ntbu5WVYD9ed6ndw0our0FUqBcFZWtwQWb8zX an8JeD3siZ+pqEk4qlXpPd73pmBO4BLtPHF096qRSR0KjipnSLYks3ZBKhWTx/Dl IlHGzIfnkTm/KD1vM3dnvxFijRwkr/Yz1abK27TXbuzE03clnRSS/NZsDNBKsbiU nTPNL9dV/8qH5C+5HzUtZBeqvHzfVG32ge1W+od8rsvJq0Iprd7cFeGTBanjiTXS k8GDsv9TZoNpToHsr5lNci+POOV3cRco0NhdgLg0FSSI2Q42wlCGFrJt4OiIVlu/ 3UYOalJWyf9u5IlIcAHNh3xqRRCxucSN -----END CERTIFICATE-----Generated at Sun May 11 12:35:16 2025 by rpki-client