$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: E65seGZZ0HyeJLuskLGxNBxQRBbg8NTzwScvxve4KRU= Subject key identifier: E6:04:8A:1C:B2:F6:69:73:CF:C7:7A:DF:6D:59:AF:0F:D9:82:69:C5 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 0122 Signing time: Tue 13 May 2025 03:56:30 +0000 Manifest this update: Tue 13 May 2025 03:56:29 +0000 Manifest next update: Tue 20 May 2025 03:56:29 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: ik9GzwP6sYuZBHyDoPh0+wH3zN3L2P+y9SQ5GWSMbFs=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: May 13 03:56:29 2025 GMT Not After : May 20 03:56:29 2025 GMT Subject: CN=6822c2ee-5fed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:aa:24:c6:d8:6d:59:a7:0e:10:42:9c:50:53: ef:79:e5:88:ab:9c:9d:6f:b4:af:e8:1f:0a:66:b5: 06:4c:ab:a1:21:f7:6e:c0:0f:f7:04:f0:fc:f7:80: 4a:68:98:b3:f8:ae:ee:b6:b2:80:cb:a7:ed:f1:f9: 8b:c4:00:f9:cc:8e:8a:92:f9:8e:f9:1c:eb:f3:a5: b6:91:14:22:9f:3a:c8:11:a7:aa:c4:5c:e6:b5:d9: df:d4:d2:98:43:7e:93:48:22:eb:21:36:86:04:4c: c3:16:81:a9:fe:8f:72:6b:66:89:13:bf:67:96:7c: c4:99:40:80:77:d0:45:6f:a5:d1:3e:c2:0d:10:33: 24:9a:14:94:1e:56:4b:e6:58:8c:c0:39:72:09:7d: 5e:73:d9:f0:99:6c:b8:1c:be:cb:0d:ce:7c:d0:f0: bf:bd:9a:af:f3:9b:84:fb:10:79:53:05:e0:76:98: 9c:ec:8d:f2:cd:cf:1b:90:45:60:38:2d:e0:b4:83: d1:5b:d0:66:a5:33:6d:0b:a2:87:e3:03:11:f3:f5: 8c:bb:42:d5:9f:bd:26:85:12:ba:a1:37:8b:e6:72: c5:04:b0:3d:21:8b:a3:a1:fe:3f:4e:d1:a4:ed:36: 57:29:57:21:aa:8b:70:f2:df:0a:b2:b4:d7:5b:10: f1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:04:8A:1C:B2:F6:69:73:CF:C7:7A:DF:6D:59:AF:0F:D9:82:69:C5 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:52:20:6f:c2:2a:32:ee:d7:8d:c5:9c:31:f5:de:12:16:23: 95:0b:d3:d6:ec:ee:d1:da:d0:86:6d:93:23:06:64:26:64:23: 36:d8:fe:20:a0:c7:2f:39:08:e2:a6:b0:32:67:10:d4:ed:26: d0:73:7f:78:4f:55:c4:93:76:e0:74:3c:3a:0d:fe:d4:4f:a8: 54:5c:c9:11:4f:42:b7:38:a7:1f:3b:99:de:96:0e:92:fa:73: c7:b8:8f:a2:4d:4c:a9:52:38:b0:97:3d:b1:23:a1:e1:49:0e: db:43:43:77:84:d9:a3:b6:17:20:20:1f:53:f6:e3:b3:e6:af: a8:6a:d4:b9:73:83:3a:6d:d6:d0:88:d0:64:37:15:89:4e:f8: b7:00:96:b9:89:d9:ff:de:8b:a0:f4:8d:e3:5c:93:a9:a3:e3: f7:fd:f0:84:f7:c1:94:5d:eb:c1:1e:f9:5a:9e:64:f3:f0:15: 60:ec:cc:c1:ff:b8:6b:1c:a9:67:2f:33:5c:ff:db:50:77:ff: b6:b9:1e:1c:97:c8:01:09:34:da:11:24:a2:63:3d:01:d8:07: 60:8e:c8:89:30:25:7d:d0:85:50:2c:bd:ea:e6:3b:6b:b6:7a: ff:ba:25:88:87:45:8c:67:27:d0:9e:2d:50:1c:83:4a:a4:f0: a2:b5:c3:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUwNTEzMDM1NjI5WhcNMjUwNTIwMDM1NjI5WjAYMRYwFAYD VQQDEw02ODIyYzJlZS01ZmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KokxthtWacOEEKcUFPveeWIq5ydb7Sv6B8KZrUGTKuhIfduwA/3BPD894BK aJiz+K7utrKAy6ft8fmLxAD5zI6KkvmO+Rzr86W2kRQinzrIEaeqxFzmtdnf1NKY Q36TSCLrITaGBEzDFoGp/o9ya2aJE79nlnzEmUCAd9BFb6XRPsINEDMkmhSUHlZL 5liMwDlyCX1ec9nwmWy4HL7LDc580PC/vZqv85uE+xB5UwXgdpic7I3yzc8bkEVg OC3gtIPRW9BmpTNtC6KH4wMR8/WMu0LVn70mhRK6oTeL5nLFBLA9IYujof4/TtGk 7TZXKVchqotw8t8KsrTXWxDxOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYEihyy 9mlzz8d6321Zrw/ZgmnFMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCUiBvwioy7teNxZwx9d4SFiOVC9PW7O7R2tCGbZMjBmQmZCM22P4g oMcvOQjiprAyZxDU7SbQc394T1XEk3bgdDw6Df7UT6hUXMkRT0K3OKcfO5nelg6S +nPHuI+iTUypUjiwlz2xI6HhSQ7bQ0N3hNmjthcgIB9T9uOz5q+oatS5c4M6bdbQ iNBkNxWJTvi3AJa5idn/3oug9I3jXJOpo+P3/fCE98GUXevBHvlanmTz8BVg7MzB /7hrHKlnLzNc/9tQd/+2uR4cl8gBCTTaESSiYz0B2AdgjsiJMCV90IVQLL3q5jtr tnr/uiWIh0WMZyfQni1QHINKpPCitcM8 -----END CERTIFICATE-----Generated at Wed May 14 15:25:04 2025 by rpki-client