$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft File: VCuU2GJc9xGWT9E3QSldJ616kAQ.mft (raw, json) Hash identifier: ne2qNDyTcFJxltYol5X/Nx7DJqc452amQAkLy4PvUkc= Subject key identifier: 29:19:DE:91:11:90:1C:65:CE:E9:85:83:D7:79:3D:ED:1A:34:05:16 Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft Manifest number: 01C3 Signing time: Tue 13 May 2025 02:53:46 +0000 Manifest this update: Tue 13 May 2025 02:53:46 +0000 Manifest next update: Tue 20 May 2025 02:53:46 +0000 Files and hashes: 1: VCuU2GJc9xGWT9E3QSldJ616kAQ.crl (hash: EzDI4hkACBFRP1DfPSUI+yd76ZPd21c99+j2GMSg4qE=) 2: 3352C1BAECFC11EFA398671BC4F9AE02.roa (hash: Us38glA0PRb/dVpHLW6+MQj9tdG4tZeLrUJnViUxN+4=) 3: 020607A2498711EFBB260663C4F9AE02.roa (hash: nvNzzZq+Ecqxgr++TobaSpU0AIRI4UzjKN1i1sjHamI=) 4: 05F505961AA311F0A475D464C4F9AE02.roa (hash: OSQRdlcQj6k764THSK6rh8dF7UxUy6xyA8imS71zqwM=) 5: D13FCAEAA62E11EFBC284C42C4F9AE02.roa (hash: zHCopvhlSI3/gyDKf4blYHqhGA6hr7IEtv0USDnvf9g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: May 13 02:53:46 2025 GMT Not After : May 20 02:53:46 2025 GMT Subject: CN=6822b43a-93e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:02:3b:dd:d4:cf:d5:fc:19:2d:7f:ff:04:bb: 06:eb:b9:51:fc:3d:25:a2:92:bf:0a:c1:78:83:b3: 30:f5:51:5d:f0:8d:27:28:af:fb:c1:d9:49:77:3d: 7e:5f:2e:e4:46:23:cf:c8:f7:58:5c:b4:70:83:e0: e6:0a:a6:b1:16:6f:28:4a:32:ed:3f:4a:bd:5a:aa: 66:5a:45:7b:c7:26:1e:95:40:82:18:5a:af:02:71: 06:65:51:0a:48:85:35:fa:3f:e5:b5:7a:d0:08:29: fd:55:08:98:c5:a6:b8:06:a9:00:e7:cd:d9:29:3c: bb:e1:c6:00:1f:3a:77:65:be:65:6e:38:f8:04:02: 62:1e:e1:a5:1a:76:a9:ac:df:f4:ee:be:2d:4f:c7: 36:ea:54:94:53:3c:be:ae:24:43:4b:c9:57:8b:3d: f7:9d:40:24:78:d6:27:8d:4b:11:8e:3c:90:0b:e4: c5:5b:9d:20:9e:d4:30:b3:df:bd:d2:a3:8b:80:b9: a6:77:dd:16:62:77:6b:5b:9a:78:f6:d8:c5:62:be: 52:77:a3:5b:f5:73:92:67:1f:fe:ca:23:d3:f5:03: ca:ec:5b:cb:e8:e3:04:73:9d:24:88:01:52:09:e9: d0:07:2d:6f:0f:e0:40:c9:ca:c8:38:de:06:5b:45: 97:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:19:DE:91:11:90:1C:65:CE:E9:85:83:D7:79:3D:ED:1A:34:05:16 X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:ad:a9:cd:7a:3b:d7:46:8d:75:98:2e:e3:f8:72:88:c7:5e: 5a:c1:26:d0:d5:1a:f6:05:62:f5:33:43:6e:c0:e1:c8:41:5d: 12:b5:da:28:c1:c9:1c:d3:77:7e:d1:d3:c2:fa:68:40:fc:a5: 4a:92:8e:43:c3:74:bf:c7:20:a8:4b:3a:ba:5b:ef:76:e9:42: 6b:d5:ac:9c:38:ed:4e:c2:5c:1f:d0:c7:c0:20:1a:c8:c9:37: 9a:c7:41:df:40:b7:4e:ef:a7:0e:39:43:13:49:db:30:83:3b: 1f:37:06:70:6c:ca:6e:d0:71:1d:53:55:41:43:0e:cf:2b:c2: 56:1f:87:01:23:3f:c9:0c:66:41:d9:ff:e3:c7:4d:9f:9f:35: dd:3d:d7:57:79:28:5f:27:e0:ab:f1:db:1f:f5:9e:c6:f9:dc: 41:cf:e3:40:5f:8a:22:1f:d1:a2:ee:52:7f:80:b2:54:8e:4a: 6e:2d:d3:0b:31:c9:46:1f:41:80:ee:50:34:4a:91:b3:77:51: ca:25:d3:6d:09:ed:0e:97:0d:6d:36:9f:d8:85:6d:85:6f:c9: 3f:d4:5e:b7:c3:39:d9:2e:1e:94:7f:63:d3:86:6f:e0:83:71: 73:fa:20:b9:ea:79:8f:05:71:e1:68:fa:14:97:b9:1a:69:12: e3:bf:f1:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUwNTEzMDI1MzQ2WhcNMjUwNTIwMDI1MzQ2WjAYMRYwFAYD VQQDEw02ODIyYjQzYS05M2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnAI73dTP1fwZLX//BLsG67lR/D0lopK/CsF4g7Mw9VFd8I0nKK/7wdlJdz1+ Xy7kRiPPyPdYXLRwg+DmCqaxFm8oSjLtP0q9WqpmWkV7xyYelUCCGFqvAnEGZVEK SIU1+j/ltXrQCCn9VQiYxaa4BqkA583ZKTy74cYAHzp3Zb5lbjj4BAJiHuGlGnap rN/07r4tT8c26lSUUzy+riRDS8lXiz33nUAkeNYnjUsRjjyQC+TFW50gntQws9+9 0qOLgLmmd90WYndrW5p49tjFYr5Sd6Nb9XOSZx/+yiPT9QPK7FvL6OMEc50kiAFS CenQBy1vD+BAycrION4GW0WXLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkZ3pER kBxlzumFg9d5Pe0aNAUWMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC8xNjFENEMwQUU0Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4 R1dUOUUzUVNsZEo2MTZrQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcranNejvXRo11mC7j+HKIx15awSbQ1Rr2BWL1M0NuwOHIQV0Stdoo wckc03d+0dPC+mhA/KVKko5Dw3S/xyCoSzq6W+926UJr1aycOO1Owlwf0MfAIBrI yTeax0HfQLdO76cOOUMTSdswgzsfNwZwbMpu0HEdU1VBQw7PK8JWH4cBIz/JDGZB 2f/jx02fnzXdPddXeShfJ+Cr8dsf9Z7G+dxBz+NAX4oiH9Gi7lJ/gLJUjkpuLdML MclGH0GA7lA0SpGzd1HKJdNtCe0Olw1tNp/YhW2Fb8k/1F63wznZLh6Uf2PThm/g g3Fz+iC56nmPBXHhaPoUl7kaaRLjv/FG -----END CERTIFICATE-----Generated at Tue May 13 15:45:02 2025 by rpki-client