$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft File: vphUuYSZNmQ-DUAVo7N7XkSErVo.mft (raw, json) Hash identifier: C0iGwmw0ZCev7Ro3FIN1aBhGryfvcxn4MiLJsy3LrWE= Subject key identifier: 2B:04:D8:90:88:42:D8:37:76:BB:D6:8D:19:87:51:88:82:81:55:C0 Authority key identifier: BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A Certificate issuer: /CN=A9123D19/serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Certificate serial: 29C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft Manifest number: 29AD Signing time: Wed 14 May 2025 15:41:01 +0000 Manifest this update: Wed 14 May 2025 15:41:00 +0000 Manifest next update: Wed 21 May 2025 15:41:00 +0000 Files and hashes: 1: vphUuYSZNmQ-DUAVo7N7XkSErVo.crl (hash: JCQbFKecUEmcwZKweUNdPQ8avcdko6/Xfw5ooCMei2k=) 2: 73E0191A967811EA92E45A27C4F9AE02.roa (hash: ShaJe6Lrds4HI5NQVrTj2+pnsM6ohcQYrpyOOxPkL24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10689 (0x29c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D19, serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Validity Not Before: May 14 15:41:00 2025 GMT Not After : May 21 15:41:00 2025 GMT Subject: CN=6824b98c-e3b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ab:7e:50:86:d5:96:9e:bb:76:39:6e:6c:33: c8:48:b2:d6:a9:b8:dd:40:21:47:be:96:e9:39:97: d8:ea:9c:53:ff:c3:7f:c1:fa:bc:4c:12:e5:91:5e: f7:a4:b3:91:76:21:fd:e4:f6:08:53:3e:7c:ad:58: 04:41:40:d7:3f:d6:e2:f1:ae:09:4f:26:20:4b:26: 5b:e8:0f:bd:bc:b7:c4:fb:ea:ab:6d:33:29:14:8f: 31:03:30:de:49:bf:d7:1e:92:65:b5:b6:9a:b4:2a: 6d:5e:01:12:87:a2:ab:02:ad:bb:d7:37:ad:f6:ab: 8c:e5:1a:e7:30:4e:90:a8:bb:ad:ba:81:79:1f:86: 32:74:8e:a9:76:8a:80:fb:6a:a8:ce:d4:5c:86:0d: da:7a:3b:b9:6f:34:f9:92:91:ca:d8:81:f2:b9:f8: 65:50:a2:c9:01:2a:af:06:fc:2e:68:a7:90:e7:97: 46:0c:77:66:93:13:27:14:c0:84:67:90:33:40:39: d1:22:9f:00:08:9c:bb:73:8a:83:6f:a5:ad:2b:22: a2:7e:e5:2f:f7:ed:01:6f:a2:be:6e:b6:bb:ac:3c: 7a:1c:fb:13:8a:44:07:f6:30:71:90:93:79:56:79: c3:f9:49:f0:97:c8:72:68:d5:f7:0c:e7:75:16:39: ac:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:04:D8:90:88:42:D8:37:76:BB:D6:8D:19:87:51:88:82:81:55:C0 X509v3 Authority Key Identifier: keyid:BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:96:4b:57:f2:49:9a:bb:7d:6f:3b:c8:6c:3b:39:47:c2:ed: 73:2a:44:16:20:64:4a:bd:3e:c1:b5:1d:4c:99:a5:96:20:8e: 63:85:37:6e:3a:06:bf:7e:d4:0c:62:b2:fc:bd:e8:2a:5b:cf: 4f:7a:cb:bc:25:23:20:ab:1a:91:13:3a:cb:19:78:e3:b0:cd: 6a:d7:f9:46:a4:cb:28:57:98:a8:96:78:4d:dc:84:8e:19:a0: db:fa:f4:ff:13:12:52:83:e5:5a:7e:da:df:df:97:40:e6:36: 99:91:bd:70:7b:3e:1c:6e:36:3c:78:cb:4e:94:c7:79:7e:b1: 80:04:7e:09:de:ae:19:a6:5a:3a:84:8f:6e:56:46:24:12:a2: 61:69:0f:f4:d9:34:b1:17:f6:c3:bd:fc:d8:f0:6c:62:b7:ec: 51:15:5c:8f:69:fa:de:18:b1:b6:d6:b7:59:0a:91:66:47:ac: 41:bc:53:c3:22:4b:4c:e2:14:5c:1e:24:02:89:eb:54:bb:ea: 1d:fb:b6:47:0f:67:80:39:9b:49:bc:b4:ee:13:25:02:41:14: 1c:37:73:3f:0f:8d:4a:cb:77:4e:97:2f:0a:f2:7a:b4:05:30: 1f:0b:44:a2:d2:2b:5c:23:6c:29:99:b5:cf:4a:72:74:da:ef: a5:8e:ea:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMTkxMTAvBgNVBAUTKEJFOTg1NEI5ODQ5OTM2NjQzRTBENDAxNUEzQjM3QjVF NDQ4NEFENUEwHhcNMjUwNTE0MTU0MTAwWhcNMjUwNTIxMTU0MTAwWjAYMRYwFAYD VQQDEw02ODI0Yjk4Yy1lM2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06t+UIbVlp67djlubDPISLLWqbjdQCFHvpbpOZfY6pxT/8N/wfq8TBLlkV73 pLORdiH95PYIUz58rVgEQUDXP9bi8a4JTyYgSyZb6A+9vLfE++qrbTMpFI8xAzDe Sb/XHpJltbaatCptXgESh6KrAq271zet9quM5RrnME6QqLutuoF5H4YydI6pdoqA +2qoztRchg3aeju5bzT5kpHK2IHyufhlUKLJASqvBvwuaKeQ55dGDHdmkxMnFMCE Z5AzQDnRIp8ACJy7c4qDb6WtKyKifuUv9+0Bb6K+bra7rDx6HPsTikQH9jBxkJN5 VnnD+Unwl8hyaNX3DOd1FjmsFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsE2JCI Qtg3drvWjRmHUYiCgVXAMB8GA1UdIwQYMBaAFL6YVLmEmTZkPg1AFaOze15EhK1a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QxOS80MEVEODAyMDQy OUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5tUS1EVUFWbzdON1hrU0Vy Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwaFV1WVNaTm1RLURVQVZvN043WGtTRXJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QxOS80MEVEODAyMDQyOUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5t US1EVUFWbzdON1hrU0VyVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhlktX8kmau31vO8hsOzlHwu1zKkQWIGRKvT7BtR1MmaWWII5jhTdu Oga/ftQMYrL8vegqW89Pesu8JSMgqxqREzrLGXjjsM1q1/lGpMsoV5iolnhN3ISO GaDb+vT/ExJSg+Vaftrf35dA5jaZkb1wez4cbjY8eMtOlMd5frGABH4J3q4Zplo6 hI9uVkYkEqJhaQ/02TSxF/bDvfzY8Gxit+xRFVyPafreGLG21rdZCpFmR6xBvFPD IktM4hRcHiQCietUu+od+7ZHD2eAOZtJvLTuEyUCQRQcN3M/D41Ky3dOly8K8nq0 BTAfC0Si0itcI2wpmbXPSnJ02u+ljuoE -----END CERTIFICATE-----Generated at Fri May 16 14:38:16 2025 by rpki-client