$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: hybftPv+lUQTV1HV+u3mTA3rp1A1wLCoAgwMGziaxqQ= Subject key identifier: A4:F0:E1:26:5B:0C:B2:2D:25:C6:60:55:85:D5:41:FB:8D:6D:C5:5E Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: CB Signing time: Fri 09 May 2025 04:51:47 +0000 Manifest this update: Fri 09 May 2025 04:51:46 +0000 Manifest next update: Fri 16 May 2025 04:51:46 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: 1XZ9AnXnJDsFMcrGhFiV/waQhzhW4nCHOTXysph3+ZE=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 04:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: May 9 04:51:46 2025 GMT Not After : May 16 04:51:46 2025 GMT Subject: CN=681d89e3-f73f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1b:31:5e:16:70:d0:a8:0f:ed:8f:50:03:24: bc:20:82:a5:15:d9:4c:09:2f:9e:98:45:2f:b9:bb: 83:17:9c:5e:6e:7a:7f:bd:01:03:35:bf:c7:ba:25: 37:71:50:ee:02:c8:bf:1e:81:27:a4:1f:1c:a5:75: b7:d3:b5:fa:23:1a:fc:e1:a7:e7:d5:21:cb:e2:6b: 96:70:98:33:3c:0c:1b:c5:ff:42:a0:bb:b7:e6:27: 81:30:0a:1b:9c:1e:f0:71:48:db:44:7f:34:31:12: 5d:65:18:51:5c:7b:32:62:da:b9:32:20:90:93:1c: a8:66:23:32:6b:fb:ab:e5:6e:b8:79:39:e5:fa:19: cb:e6:e8:a4:da:14:5b:31:dd:7e:e7:c8:9e:03:99: 95:97:f1:31:3c:7b:f2:76:27:26:07:0a:b1:5b:11: cf:25:29:2f:13:36:3d:9f:e4:26:b6:3f:66:d1:b8: b0:e7:41:a1:68:bc:7b:9c:08:03:1c:6a:1c:91:5a: 8f:1e:54:bd:c6:59:2d:8f:56:70:01:ba:e1:37:c5: f8:d4:ed:34:36:21:af:97:7a:c5:d1:28:f4:65:6d: ed:18:2b:71:0a:86:92:9a:21:63:cb:c9:a4:e4:a7: 02:a8:87:89:92:8e:28:15:ee:e5:ce:fc:d0:37:7d: b7:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F0:E1:26:5B:0C:B2:2D:25:C6:60:55:85:D5:41:FB:8D:6D:C5:5E X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:7a:24:9b:f7:b9:c5:a4:ff:9b:b0:9b:45:44:a6:ed:e5:c2: ed:b2:61:0b:41:ac:3d:b8:1c:77:51:29:0e:34:09:ff:e9:b4: e9:04:72:6d:96:a2:91:ac:1f:46:dd:e0:ea:87:20:0b:6b:c2: 9f:ca:af:03:c4:b2:96:dc:b5:a7:2f:d8:6b:11:50:b3:db:b8: 78:df:42:87:cf:fe:b8:7c:9e:97:22:ca:61:4d:7b:3b:5f:5d: 1b:14:8a:cf:1e:98:95:d4:7e:c9:e6:4c:0e:a3:aa:ea:92:90: 6a:e7:5e:a0:6c:57:93:a4:7e:41:e0:17:a5:c0:78:c9:bf:c5: 28:1e:fa:a0:9f:b2:5c:e7:bc:46:da:be:40:1e:c6:fd:c6:68: 4a:5b:46:0b:0a:43:ab:29:0d:39:27:0d:90:44:8f:1c:53:81: a3:0c:19:21:f0:1c:ab:bf:3d:98:6d:21:47:51:7d:57:e4:ac: 5d:28:97:f4:3e:6a:97:d9:f3:9d:a8:70:d7:13:b9:48:77:74: e2:35:c2:90:41:7c:14:d9:02:c4:6f:f2:c3:4f:ad:90:0f:65: 24:45:39:c0:3a:8b:3e:9f:17:ac:8d:a7:5b:a5:92:10:23:cc: 50:3a:c1:62:4c:6f:af:e3:d6:4f:f2:17:0a:67:79:55:50:96: cd:41:74:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUwNTA5MDQ1MTQ2WhcNMjUwNTE2MDQ1MTQ2WjAYMRYwFAYD VQQDEw02ODFkODllMy1mNzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRsxXhZw0KgP7Y9QAyS8IIKlFdlMCS+emEUvubuDF5xebnp/vQEDNb/HuiU3 cVDuAsi/HoEnpB8cpXW307X6Ixr84afn1SHL4muWcJgzPAwbxf9CoLu35ieBMAob nB7wcUjbRH80MRJdZRhRXHsyYtq5MiCQkxyoZiMya/ur5W64eTnl+hnL5uik2hRb Md1+58ieA5mVl/ExPHvydicmBwqxWxHPJSkvEzY9n+Qmtj9m0biw50GhaLx7nAgD HGockVqPHlS9xlktj1ZwAbrhN8X41O00NiGvl3rF0Sj0ZW3tGCtxCoaSmiFjy8mk 5KcCqIeJko4oFe7lzvzQN3230wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTw4SZb DLItJcZgVYXVQfuNbcVeMB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCueiSb97nFpP+bsJtFRKbt5cLtsmELQaw9uBx3USkONAn/6bTpBHJt lqKRrB9G3eDqhyALa8Kfyq8DxLKW3LWnL9hrEVCz27h430KHz/64fJ6XIsphTXs7 X10bFIrPHpiV1H7J5kwOo6rqkpBq516gbFeTpH5B4BelwHjJv8UoHvqgn7Jc57xG 2r5AHsb9xmhKW0YLCkOrKQ05Jw2QRI8cU4GjDBkh8Byrvz2YbSFHUX1X5KxdKJf0 PmqX2fOdqHDXE7lId3TiNcKQQXwU2QLEb/LDT62QD2UkRTnAOos+nxesjadbpZIQ I8xQOsFiTG+v49ZP8hcKZ3lVUJbNQXRy -----END CERTIFICATE-----Generated at Sat May 10 21:59:14 2025 by rpki-client