$ rpki-client -vvf rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft File: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft (raw, json) Hash identifier: 1OuvZsQ6Gs2xK0NvwAzsgn+mFURTrN4jbift2OhyWl8= Subject key identifier: 89:D0:87:6F:6E:B2:47:0F:C8:A5:4B:06:3E:3C:08:30:8D:4D:B0:86 Authority key identifier: BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 Certificate issuer: /CN=A917B503/serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft Manifest number: A2 Signing time: Thu 15 May 2025 05:33:37 +0000 Manifest this update: Thu 15 May 2025 05:33:37 +0000 Manifest next update: Thu 22 May 2025 05:33:37 +0000 Files and hashes: 1: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl (hash: nNT+/WtrT9aaaOZA4tmlw3Tzxt5HgjMXGq4vpRhBtso=) 2: FF7048A08BB111EF8981B871C4F9AE02.roa (hash: 9uEwzB8ckH0lupP2vcJh2pZkJ61ZIv0842o4n0sbwyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B503, serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Validity Not Before: May 15 05:33:37 2025 GMT Not After : May 22 05:33:37 2025 GMT Subject: CN=68257cb1-4a74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:00:38:e0:65:d5:8f:54:b0:e6:66:9b:51:5e: 6e:84:65:58:67:e5:a8:d2:ac:c3:1d:e8:7e:23:54: 51:01:c3:8d:13:76:b5:d5:ae:97:de:ee:bc:41:32: 5d:db:1e:97:fd:9c:4e:97:b2:24:3c:47:c7:b9:a8: d2:6c:8c:01:16:ec:71:f5:1d:c5:4b:40:f6:aa:6b: d6:a3:10:12:bb:a9:f9:d5:42:22:78:a4:41:fa:50: 46:ba:d4:73:8e:85:00:07:a5:e3:ef:32:91:33:1f: 47:be:d5:30:7e:36:65:89:f0:e8:ce:9d:b6:13:55: c3:51:ee:65:a1:b4:c4:d2:ca:46:78:b0:ff:4c:9c: 09:14:6f:8f:f4:e8:56:ff:68:71:48:41:35:34:f9: c4:9c:a0:67:d6:81:3f:90:5a:0c:e8:ba:40:f8:48: 9d:83:4c:da:1b:5b:55:79:94:21:db:68:db:ed:60: f3:57:58:e5:68:29:b8:2f:86:25:23:64:98:90:cb: f9:5f:7a:87:85:9a:e7:e3:da:8b:8f:3b:7d:1d:95: 70:8a:ce:d2:7c:85:7c:ab:70:b9:6c:e2:cd:18:3d: 72:af:3d:4d:5b:3e:a0:c0:64:b1:51:3f:f2:6c:9a: 14:43:5f:ab:b8:8e:79:b9:a1:aa:09:79:7d:35:4f: 81:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D0:87:6F:6E:B2:47:0F:C8:A5:4B:06:3E:3C:08:30:8D:4D:B0:86 X509v3 Authority Key Identifier: keyid:BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:ee:4b:c6:74:16:55:eb:4e:c5:b5:4a:53:0e:7a:70:8f:64: 22:11:97:ba:8e:f9:65:33:4c:82:86:e7:0f:3e:55:4b:e8:5b: e2:c6:a0:b0:21:3e:c6:58:93:0b:1b:ad:4e:75:47:39:b5:3b: 36:81:e5:77:66:a0:fa:d5:51:09:44:c4:c1:68:f4:a2:bc:87: 84:16:4e:d6:91:f7:e1:95:f3:f7:9a:a3:b8:c8:8d:07:56:5c: db:1f:fc:92:24:43:2d:fc:38:d9:e8:cd:38:67:78:7a:66:a0: b6:f4:ac:21:11:31:39:94:42:94:bd:dd:f9:56:f7:82:1c:cc: 25:2d:b3:89:fd:87:12:67:68:21:a1:45:30:75:ea:b4:6c:dd: 5c:a7:42:0c:eb:db:b2:6a:b4:8c:6b:85:42:f2:0f:b6:c5:53: cf:06:3d:22:93:ae:5a:f0:6c:0d:54:c0:d0:85:5f:0d:ae:69: e8:71:bd:99:97:54:30:f7:47:86:5b:2d:4a:20:2b:62:18:5d: c0:ff:92:0a:9c:21:ed:6f:e3:c6:ca:9e:4e:e1:c5:d7:c8:df: 10:27:c3:6e:4c:b7:b8:89:a5:7e:e0:d2:be:e2:ec:6e:b3:71: 45:7c:da:57:70:1d:7b:ee:b0:dc:6e:23:bf:e9:df:7e:43:fe: 92:84:f4:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MDMxMTAvBgNVBAUTKEJENjNFMEREQ0I1Q0Q0MUIzNDUwMURGMkU4MUEyQTcy Q0VFMzZFRjIwHhcNMjUwNTE1MDUzMzM3WhcNMjUwNTIyMDUzMzM3WjAYMRYwFAYD VQQDEw02ODI1N2NiMS00YTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gA44GXVj1Sw5mabUV5uhGVYZ+Wo0qzDHeh+I1RRAcONE3a11a6X3u68QTJd 2x6X/ZxOl7IkPEfHuajSbIwBFuxx9R3FS0D2qmvWoxASu6n51UIieKRB+lBGutRz joUAB6Xj7zKRMx9HvtUwfjZlifDozp22E1XDUe5lobTE0spGeLD/TJwJFG+P9OhW /2hxSEE1NPnEnKBn1oE/kFoM6LpA+Eidg0zaG1tVeZQh22jb7WDzV1jlaCm4L4Yl I2SYkMv5X3qHhZrn49qLjzt9HZVwis7SfIV8q3C5bOLNGD1yrz1NWz6gwGSxUT/y bJoUQ1+ruI55uaGqCXl9NU+BQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInQh29u skcPyKVLBj48CDCNTbCGMB8GA1UdIwQYMBaAFL1j4N3LXNQbNFAd8ugaKnLO427y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUwMy83Qjg4NUZFNDQz MTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFCczBVQjN5NkJvcWNzN2pi dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZXUGczY3RjMUJzMFVCM3k2Qm9xY3M3amJ2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUwMy83Qjg4NUZFNDQzMTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFC czBVQjN5NkJvcWNzN2pidkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL7kvGdBZV607FtUpTDnpwj2QiEZe6jvllM0yChucPPlVL6FvixqCw IT7GWJMLG61OdUc5tTs2geV3ZqD61VEJRMTBaPSivIeEFk7WkffhlfP3mqO4yI0H VlzbH/ySJEMt/DjZ6M04Z3h6ZqC29KwhETE5lEKUvd35VveCHMwlLbOJ/YcSZ2gh oUUwdeq0bN1cp0IM69uyarSMa4VC8g+2xVPPBj0ik65a8GwNVMDQhV8Nrmnocb2Z l1Qw90eGWy1KICtiGF3A/5IKnCHtb+PGyp5O4cXXyN8QJ8NuTLe4iaV+4NK+4uxu s3FFfNpXcB177rDcbiO/6d9+Q/6ShPS4 -----END CERTIFICATE-----Generated at Sat May 17 01:05:05 2025 by rpki-client