$ rpki-client -vvf rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft File: VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft (raw, json) Hash identifier: hY1IWNlw+F4MKLou7KRDgWjKB/LMMEq95tfornaruaw= Subject key identifier: 2A:4D:45:76:3D:E9:F6:61:A7:4F:2D:D8:3B:2D:80:B9:E3:CE:0B:9A Authority key identifier: 56:BB:6F:31:37:D8:DD:9E:B9:7E:38:3B:C7:F4:61:D9:0F:85:DD:FE Certificate issuer: /CN=A91433B3/serialNumber=56BB6F3137D8DD9EB97E383BC7F461D90F85DDFE Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft Manifest number: 0198 Signing time: Sat 03 May 2025 02:51:57 +0000 Manifest this update: Sat 03 May 2025 02:51:56 +0000 Manifest next update: Sat 10 May 2025 02:51:56 +0000 Files and hashes: 1: VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl (hash: /SAF+AfzdkK0YuO81VdXQ2p5+CxCX4OL+WQ/6ixI5dQ=) 2: AB6C302EB5F311EDA0148B2DC4F9AE02.roa (hash: 4FOvuF+lrbDRETyeVF9s3HBZnjQN5y+IfUmzH88TfmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 02:51:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91433B3, serialNumber=56BB6F3137D8DD9EB97E383BC7F461D90F85DDFE Validity Not Before: May 3 02:51:56 2025 GMT Not After : May 10 02:51:56 2025 GMT Subject: CN=681584cd-e386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:58:dc:0b:00:d3:f4:48:e2:f0:43:e8:cc:16: ff:38:59:be:96:40:50:56:54:39:ac:83:cc:c6:ee: b3:64:21:d9:32:41:49:30:d7:10:c5:7c:89:1e:12: b0:12:91:34:f7:db:b2:bf:d2:c8:75:12:56:09:48: 90:92:3c:4f:bb:f9:51:f8:93:94:69:fb:d1:17:f4: 81:3f:fe:96:91:f7:04:cf:17:e1:6e:f3:13:fe:3c: 28:cf:ba:06:ba:3c:a6:44:ea:25:04:a6:db:56:7f: 3f:b5:fd:d3:ac:fc:6a:7c:62:d1:73:f1:ee:af:27: ee:b1:b3:1a:a6:20:fd:2d:d1:2c:e7:67:d0:98:c2: 5c:3f:3a:24:3a:02:e3:e1:2c:7d:00:00:84:49:c0: 1a:ee:90:a5:94:98:90:ec:3d:49:4c:44:04:0c:4f: 93:8f:8d:03:ed:3f:58:21:a3:53:f7:fb:30:52:94: 5a:14:f8:b2:a8:46:d2:90:68:9f:30:54:2d:4b:56: 7e:c9:8c:46:a8:a8:91:eb:d6:fb:c4:65:b5:0c:5a: 9d:61:3e:c7:e9:28:12:c9:0e:f8:d6:eb:5f:fe:b1: 7e:5e:b3:23:ed:aa:a9:04:1f:91:65:7f:7d:3c:06: af:ba:ae:60:bf:1d:bb:5a:3e:9d:fb:7a:f2:be:70: e9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:4D:45:76:3D:E9:F6:61:A7:4F:2D:D8:3B:2D:80:B9:E3:CE:0B:9A X509v3 Authority Key Identifier: keyid:56:BB:6F:31:37:D8:DD:9E:B9:7E:38:3B:C7:F4:61:D9:0F:85:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:48:5e:4d:88:0a:af:05:62:23:a0:2f:81:13:64:1d:35:10: 62:a6:ae:fd:9b:c7:c8:3f:c8:14:ae:46:6e:8c:60:8c:f2:61: 77:83:a7:d1:d3:0e:2d:76:b9:71:90:74:f4:a9:20:54:76:b4: d9:d2:de:14:45:5f:2d:e1:11:80:96:87:3d:df:1c:57:72:09: de:70:ca:b6:5c:b7:09:19:18:4f:2e:14:0b:85:c3:dc:a8:bd: 05:63:26:81:f1:4b:6a:32:6f:86:73:0d:63:b2:d1:2a:f1:a6: 57:99:fb:ec:ee:6e:ed:76:ca:70:13:91:7c:d2:c1:08:57:99: 9d:c1:14:37:db:75:9b:5e:15:15:f5:1c:5c:36:63:9c:de:ab: fa:e1:30:42:da:f5:bc:ab:32:94:80:44:41:b0:1c:a2:69:ef: 07:55:b1:50:19:d9:f0:76:e8:7f:02:95:39:1c:26:aa:db:d0: fc:b0:5a:ba:98:86:67:50:3b:78:9e:f2:62:70:90:53:6b:f8: e2:6e:13:fe:8d:37:b4:58:f8:d7:bd:6e:31:d5:79:19:1d:cf: b6:ba:6f:d6:93:80:28:a7:d4:43:c8:81:59:f0:d4:46:09:cf: dc:c7:9e:6c:84:32:5f:81:12:5a:48:c7:bb:4a:a9:d0:e3:10: 94:3f:bc:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzQjMxMTAvBgNVBAUTKDU2QkI2RjMxMzdEOEREOUVCOTdFMzgzQkM3RjQ2MUQ5 MEY4NURERkUwHhcNMjUwNTAzMDI1MTU2WhcNMjUwNTEwMDI1MTU2WjAYMRYwFAYD VQQDEw02ODE1ODRjZC1lMzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVjcCwDT9Eji8EPozBb/OFm+lkBQVlQ5rIPMxu6zZCHZMkFJMNcQxXyJHhKw EpE099uyv9LIdRJWCUiQkjxPu/lR+JOUafvRF/SBP/6WkfcEzxfhbvMT/jwoz7oG ujymROolBKbbVn8/tf3TrPxqfGLRc/HuryfusbMapiD9LdEs52fQmMJcPzokOgLj 4Sx9AACEScAa7pCllJiQ7D1JTEQEDE+Tj40D7T9YIaNT9/swUpRaFPiyqEbSkGif MFQtS1Z+yYxGqKiR69b7xGW1DFqdYT7H6SgSyQ741utf/rF+XrMj7aqpBB+RZX99 PAavuq5gvx27Wj6d+3ryvnDpIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpNRXY9 6fZhp08t2DstgLnjzguaMB8GA1UdIwQYMBaAFFa7bzE32N2euX44O8f0YdkPhd3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzNCMy9CREZFMThDQ0I1 RjAxMUVEQTdEMEVGN0NDNEY5QUUwMi9WcnR2TVRmWTNaNjVmamc3eF9SaDJRLUYz ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZydHZNVGZZM1o2NWZqZzd4X1JoMlEtRjNmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzNCMy9CREZFMThDQ0I1RjAxMUVEQTdEMEVGN0NDNEY5QUUwMi9WcnR2TVRmWTNa NjVmamc3eF9SaDJRLUYzZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZSF5NiAqvBWIjoC+BE2QdNRBipq79m8fIP8gUrkZujGCM8mF3g6fR 0w4tdrlxkHT0qSBUdrTZ0t4URV8t4RGAloc93xxXcgnecMq2XLcJGRhPLhQLhcPc qL0FYyaB8UtqMm+Gcw1jstEq8aZXmfvs7m7tdspwE5F80sEIV5mdwRQ323WbXhUV 9RxcNmOc3qv64TBC2vW8qzKUgERBsByiae8HVbFQGdnwduh/ApU5HCaq29D8sFq6 mIZnUDt4nvJicJBTa/jibhP+jTe0WPjXvW4x1XkZHc+2um/Wk4Aop9RDyIFZ8NRG Cc/cx55shDJfgRJaSMe7SqnQ4xCUP7y7 -----END CERTIFICATE-----Generated at Mon May 5 03:10:11 2025 by rpki-client