$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft File: ipvaaFOfcVjLATcgqZNvJkuaU3s.mft (raw, json) Hash identifier: bvX3N46Lr01dnDUwVpyj6AP5r7c/UlJX0gk/l74NnZE= Subject key identifier: 4C:D7:67:BF:93:34:A5:CF:FB:2B:53:A4:71:69:0C:97:74:AD:80:76 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0D2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft Manifest number: 0D1B Signing time: Thu 08 May 2025 18:04:53 +0000 Manifest this update: Thu 08 May 2025 18:04:52 +0000 Manifest next update: Thu 15 May 2025 18:04:52 +0000 Files and hashes: 1: ipvaaFOfcVjLATcgqZNvJkuaU3s.crl (hash: 2MLHBU4SUAXEorvwezr+PW7G48xQEtoxG/q4zBpV2Fg=) 2: F23EB988E9A811E9864E3674C4F9AE02.roa (hash: UHG9imzuae0kc1/YQZIGw4No6LetRC00ffO99sNT/HY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 18:04:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3370 (0xd2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: May 8 18:04:52 2025 GMT Not After : May 15 18:04:52 2025 GMT Subject: CN=681cf244-bf69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:50:17:05:00:48:71:e4:98:2b:b2:58:13:67: 91:e4:54:f9:35:d4:a3:bc:0c:98:ec:36:10:c5:4d: 2c:2b:65:5a:0a:48:44:92:bf:04:a2:cc:c0:48:31: 3f:86:85:b2:fe:3d:9e:b8:e2:ae:23:57:c5:2e:4b: a0:1c:ee:a5:d5:f0:cb:7c:43:05:89:b5:37:1e:2a: f9:7f:87:c6:a4:71:56:ac:95:d0:72:03:e3:aa:ce: 1c:e2:e6:fa:d3:fb:cc:8d:cd:76:49:aa:62:2e:11: e4:aa:4f:b4:00:03:c4:5c:b1:fe:52:e3:a3:f4:96: 8a:b2:a6:59:46:d9:24:7d:45:8a:87:d7:10:8d:24: 7e:9c:29:95:81:46:c1:02:a6:fc:db:f9:31:52:2f: 41:3d:cb:ff:f1:a1:39:5d:48:c3:15:db:53:3e:53: 31:9a:4f:ed:11:58:df:18:c5:11:5d:c7:a0:ae:93: 8f:ad:4a:f6:be:d5:98:17:0e:fa:7a:6d:ea:a5:a1: b5:e9:c0:32:63:50:9f:9f:96:3a:5d:ae:70:15:e6: 02:78:71:8f:a3:fd:cd:18:f1:85:a7:68:a0:95:9d: c4:7b:c5:fd:5e:9d:7a:31:70:7f:6b:82:c1:ee:fb: 18:26:f4:1a:bc:90:a3:f2:60:e1:1d:dd:ae:3d:c3: 78:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D7:67:BF:93:34:A5:CF:FB:2B:53:A4:71:69:0C:97:74:AD:80:76 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:d1:ef:70:c1:60:67:67:b6:45:90:d7:95:08:71:e5:5c:27: fb:31:7c:c2:32:29:34:99:09:4f:43:6c:65:00:85:02:c4:6e: 3d:a8:24:6f:a6:02:14:fd:33:24:59:74:ec:f3:a8:eb:f1:fd: b8:45:6f:0a:fe:b3:cd:63:be:a0:c2:4f:37:a3:94:c0:8e:ac: ee:98:bd:4e:49:e3:48:06:98:15:b8:64:1e:db:20:33:c1:d0: bb:9d:aa:61:5e:1f:4e:28:6a:1f:4f:01:de:6e:f6:c8:0d:ba: de:8f:83:11:22:4f:c8:fe:3f:0e:a1:c7:fe:27:2b:6e:8d:f4: 32:f6:74:a2:7b:19:7e:03:83:0d:2c:bf:6a:33:30:7f:e0:8b: d5:e6:bc:85:23:e7:f5:c8:2b:14:17:af:af:69:a1:b9:32:87: fb:9a:3e:ca:dd:bb:fe:51:2d:c3:28:8c:d0:3d:7a:84:a3:09: 66:91:17:d0:a8:9c:03:c5:81:5f:8b:d7:45:a7:87:59:51:4c: 83:69:97:48:56:c8:92:34:fd:72:91:98:ad:99:11:bf:a1:7a: ae:e3:67:79:5a:c2:d4:8a:09:c4:65:ec:62:94:f7:c8:bd:10: f7:c8:ec:3f:b7:65:3b:c1:d5:36:5e:95:42:db:b2:f2:f2:2d: fc:57:d9:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUwNTA4MTgwNDUyWhcNMjUwNTE1MTgwNDUyWjAYMRYwFAYD VQQDEw02ODFjZjI0NC1iZjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11AXBQBIceSYK7JYE2eR5FT5NdSjvAyY7DYQxU0sK2VaCkhEkr8EoszASDE/ hoWy/j2euOKuI1fFLkugHO6l1fDLfEMFibU3Hir5f4fGpHFWrJXQcgPjqs4c4ub6 0/vMjc12SapiLhHkqk+0AAPEXLH+UuOj9JaKsqZZRtkkfUWKh9cQjSR+nCmVgUbB Aqb82/kxUi9BPcv/8aE5XUjDFdtTPlMxmk/tEVjfGMURXcegrpOPrUr2vtWYFw76 em3qpaG16cAyY1Cfn5Y6Xa5wFeYCeHGPo/3NGPGFp2iglZ3Ee8X9Xp16MXB/a4LB 7vsYJvQavJCj8mDhHd2uPcN4YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzXZ7+T NKXP+ytTpHFpDJd0rYB2MB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg1Ny9GMTMwN0I3NERBRDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNW akxBVGNncVpOdkprdWFVM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC0e9wwWBnZ7ZFkNeVCHHlXCf7MXzCMik0mQlPQ2xlAIUCxG49qCRv pgIU/TMkWXTs86jr8f24RW8K/rPNY76gwk83o5TAjqzumL1OSeNIBpgVuGQe2yAz wdC7naphXh9OKGofTwHebvbIDbrej4MRIk/I/j8Oocf+JytujfQy9nSiexl+A4MN LL9qMzB/4IvV5ryFI+f1yCsUF6+vaaG5Mof7mj7K3bv+US3DKIzQPXqEowlmkRfQ qJwDxYFfi9dFp4dZUUyDaZdIVsiSNP1ykZitmRG/oXqu42d5WsLUignEZexilPfI vRD3yOw/t2U7wdU2XpVC27Ly8i38V9mI -----END CERTIFICATE-----Generated at Sat May 10 14:47:42 2025 by rpki-client