$ rpki-client -vvf rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.mft File: VaNt8khLtGWsMwGcBws5J0UkAic.mft (raw, json) Hash identifier: FITa62eL5Zt4hsi/bBiN6nanVmUgLxPTeoQKg6ou8as= Subject key identifier: 16:4E:A1:3D:22:DE:7D:F6:DF:F4:6E:80:D3:81:75:0F:A6:A7:C0:15 Authority key identifier: 55:A3:6D:F2:48:4B:B4:65:AC:33:01:9C:07:0B:39:27:45:24:02:27 Certificate issuer: /CN=A9134167/serialNumber=55A36DF2484BB465AC33019C070B392745240227 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VaNt8khLtGWsMwGcBws5J0UkAic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.mft Manifest number: A1 Signing time: Thu 15 May 2025 05:32:04 +0000 Manifest this update: Thu 15 May 2025 05:32:04 +0000 Manifest next update: Thu 22 May 2025 05:32:04 +0000 Files and hashes: 1: VaNt8khLtGWsMwGcBws5J0UkAic.crl (hash: dVVKBgK9dpLBuc4xl9iGRYgerKOEqK8PAvC0LgasL7s=) 2: A1A1946E3E8F11EF90A1D97EC4F9AE02.roa (hash: RjGhvtiZ99qV/uWgf+fYP1U5NceB1zdotuSd44m3FNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.crl rsync://rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VaNt8khLtGWsMwGcBws5J0UkAic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:32:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134167, serialNumber=55A36DF2484BB465AC33019C070B392745240227 Validity Not Before: May 15 05:32:04 2025 GMT Not After : May 22 05:32:04 2025 GMT Subject: CN=68257c54-355a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f9:c1:40:54:b4:9f:f0:85:31:7a:0d:1a:13: 43:a6:a6:f3:98:56:34:e2:53:fa:4b:c1:07:64:26: 19:f4:55:42:3d:66:74:1d:f0:88:1e:7d:3d:1c:5d: 6a:f1:df:38:cb:08:0a:32:a4:79:3d:83:cc:aa:4c: 2e:f9:f6:f1:0c:9d:67:64:47:68:de:98:64:f6:34: 43:63:04:0e:c2:93:e1:45:0f:48:01:14:61:d2:ac: 0e:2a:07:fc:a1:3f:0f:0a:1b:9f:7f:c9:c3:32:c2: b0:f2:7e:e7:8c:79:56:a3:02:76:fe:6e:e0:97:94: a4:83:4c:f5:ff:cc:84:01:92:4b:4e:ce:0a:90:37: 26:b6:80:ac:d4:52:56:64:4b:c2:95:ea:54:7f:94: 03:48:0a:0c:68:99:ff:d3:9f:fe:2a:ca:5e:fd:3e: 72:d6:be:64:f9:e1:c7:61:bf:4e:86:94:f4:d9:30: 8f:70:49:a7:01:22:fa:b7:64:ed:cd:d4:2a:5c:48: 9f:35:f8:b6:89:8a:7c:8f:36:89:37:6e:d0:2b:f4: 8c:96:81:af:b4:15:d1:b1:22:83:72:46:0d:48:fd: 6c:77:18:31:4a:f4:a0:13:29:8d:8d:9a:e3:6e:9d: 1d:e9:1d:64:c1:29:ce:a7:8a:82:ec:e7:1f:44:f1: 3e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4E:A1:3D:22:DE:7D:F6:DF:F4:6E:80:D3:81:75:0F:A6:A7:C0:15 X509v3 Authority Key Identifier: keyid:55:A3:6D:F2:48:4B:B4:65:AC:33:01:9C:07:0B:39:27:45:24:02:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VaNt8khLtGWsMwGcBws5J0UkAic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:1b:21:9e:61:27:2d:6a:d4:f7:8d:c1:77:cd:fb:42:2f:b4: 19:4d:1b:b9:31:67:2e:37:ab:bf:e3:e8:b5:3b:8f:f3:b4:cf: fb:39:73:be:10:0b:3d:09:07:50:94:de:fd:09:aa:a6:a5:12: 6d:f2:17:f9:e1:18:c7:7e:2c:9f:90:34:ae:6a:c1:e8:c1:0b: a0:f5:c6:b9:dc:43:df:4b:74:ea:e3:bf:37:ce:f3:8e:82:c5: 4b:06:24:20:e2:64:80:56:4d:90:f0:1d:b8:fe:ed:fb:69:8c: e4:8f:f2:09:c3:62:6d:7b:7f:1d:d8:68:05:e4:c8:f9:a4:eb: 65:28:b7:fe:7b:c6:b9:85:12:32:d8:57:93:68:8b:d6:4c:1d: cd:eb:76:4b:c3:f8:1f:38:09:97:4e:43:3d:55:02:f4:0a:c1: 52:8b:df:10:2d:af:6b:8d:57:5f:af:10:8a:5b:89:b5:1c:33: 32:7b:be:3f:ce:f0:c3:69:17:3f:cf:c1:90:8a:0a:bd:48:0e: ab:53:61:24:5f:7d:31:92:b8:98:93:1f:11:9b:a8:a8:1e:67: 0f:8b:d3:a9:b5:f0:a4:73:fd:7b:c5:6b:2f:cb:c2:47:5e:db: 51:e0:99:d8:f7:24:40:67:8a:b5:5d:59:29:d6:10:08:a2:4b: ee:9d:c9:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNjcxMTAvBgNVBAUTKDU1QTM2REYyNDg0QkI0NjVBQzMzMDE5QzA3MEIzOTI3 NDUyNDAyMjcwHhcNMjUwNTE1MDUzMjA0WhcNMjUwNTIyMDUzMjA0WjAYMRYwFAYD VQQDEw02ODI1N2M1NC0zNTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvnBQFS0n/CFMXoNGhNDpqbzmFY04lP6S8EHZCYZ9FVCPWZ0HfCIHn09HF1q 8d84ywgKMqR5PYPMqkwu+fbxDJ1nZEdo3phk9jRDYwQOwpPhRQ9IARRh0qwOKgf8 oT8PChuff8nDMsKw8n7njHlWowJ2/m7gl5Skg0z1/8yEAZJLTs4KkDcmtoCs1FJW ZEvClepUf5QDSAoMaJn/05/+Kspe/T5y1r5k+eHHYb9OhpT02TCPcEmnASL6t2Tt zdQqXEifNfi2iYp8jzaJN27QK/SMloGvtBXRsSKDckYNSP1sdxgxSvSgEymNjZrj bp0d6R1kwSnOp4qC7OcfRPE+4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZOoT0i 3n323/RugNOBdQ+mp8AVMB8GA1UdIwQYMBaAFFWjbfJIS7RlrDMBnAcLOSdFJAIn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE2Ny9CNDIyNjdGNDNF OEUxMUVGOTdBODU1N0RDNEY5QUUwMi9WYU50OGtoTHRHV3NNd0djQndzNUowVWtB aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZhTnQ4a2hMdEdXc013R2NCd3M1SjBVa0FpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDE2Ny9CNDIyNjdGNDNFOEUxMUVGOTdBODU1N0RDNEY5QUUwMi9WYU50OGtoTHRH V3NNd0djQndzNUowVWtBaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGGyGeYSctatT3jcF3zftCL7QZTRu5MWcuN6u/4+i1O4/ztM/7OXO+ EAs9CQdQlN79CaqmpRJt8hf54RjHfiyfkDSuasHowQug9ca53EPfS3Tq4783zvOO gsVLBiQg4mSAVk2Q8B24/u37aYzkj/IJw2Jte38d2GgF5Mj5pOtlKLf+e8a5hRIy 2FeTaIvWTB3N63ZLw/gfOAmXTkM9VQL0CsFSi98QLa9rjVdfrxCKW4m1HDMye74/ zvDDaRc/z8GQigq9SA6rU2EkX30xkriYkx8Rm6ioHmcPi9OptfCkc/17xWsvy8JH XttR4JnY9yRAZ4q1XVkp1hAIokvunclC -----END CERTIFICATE-----Generated at Sat May 17 02:38:20 2025 by rpki-client