$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft File: VlIPoddulfCBm23dSWe0VQRphp0.mft (raw, json) Hash identifier: Pp9QYrlsn//RUbJkU3jfEGZBOOklkcGZGD+qGlAw7mY= Subject key identifier: 65:8A:E8:02:94:D0:79:E4:9A:35:DE:04:E3:56:AC:B5:82:3D:92:E9 Authority key identifier: 56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D Certificate issuer: /CN=A91A91CB/serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft Manifest number: 2D Signing time: Fri 09 May 2025 06:43:10 +0000 Manifest this update: Fri 09 May 2025 06:43:10 +0000 Manifest next update: Fri 16 May 2025 06:43:10 +0000 Files and hashes: 1: VlIPoddulfCBm23dSWe0VQRphp0.crl (hash: Lkd75w8ublD1AyKv2ppvaVgZ2VkmFrUO1Rhkb9V4dxQ=) 2: EE8CD88EEA5A11EF922B276DC4F9AE02.roa (hash: NgoL1gjr88ZdEn/6hgZXntqKOlCBVmw0eMD59yFjWlQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Validity Not Before: May 9 06:43:10 2025 GMT Not After : May 16 06:43:10 2025 GMT Subject: CN=681da3fe-d197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:92:73:a7:59:49:50:a9:91:7b:4a:c6:65:f2: 30:cb:8e:be:7d:19:eb:ab:3c:77:d5:64:7c:15:a6: 68:aa:93:e1:dc:cb:43:9f:e6:9e:2e:65:f3:ab:e3: ca:83:43:56:f7:3c:19:31:20:75:3a:df:b9:62:2b: 05:87:12:72:8d:de:0b:a5:d7:97:0c:68:5a:aa:b1: a6:aa:ee:70:bc:b7:ba:a2:ce:ed:0a:4f:2e:80:06: e3:8f:ff:96:d3:8d:73:63:b7:ae:7f:5d:4c:54:8f: c0:6a:0c:a3:92:8a:b3:35:4f:b8:61:4a:27:6f:b0: ed:88:a8:a5:e3:e1:b4:e2:a0:4b:ef:17:98:9d:d6: 33:df:5b:13:30:92:a3:44:34:1e:67:0c:03:fc:e6: 25:48:84:b2:83:fc:b8:eb:bd:b5:33:72:f6:86:e7: 69:95:c6:d0:3f:eb:fb:cb:d0:ee:0c:00:f4:7d:bb: 8b:92:1d:33:ad:e7:18:38:ab:3f:68:6c:0e:dd:ba: 5e:29:4f:63:a5:bf:dc:8c:59:78:4b:7d:71:aa:e8: 6b:6b:b0:cb:29:5a:a2:ad:ab:16:34:6e:99:cd:1b: a8:2c:18:86:ef:7b:34:c9:33:ac:4b:88:ec:65:f6: dd:3a:03:2a:22:f7:46:d6:fb:36:6c:c2:8d:70:d2: 89:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:8A:E8:02:94:D0:79:E4:9A:35:DE:04:E3:56:AC:B5:82:3D:92:E9 X509v3 Authority Key Identifier: keyid:56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:7c:6d:17:3e:02:3d:d4:5b:b2:7e:a7:97:c5:2f:1a:47:6c: 4c:bb:9f:77:ef:17:cb:59:99:a6:3a:6a:22:f3:17:52:99:c4: a7:6f:a5:2b:01:fb:29:de:7b:2c:cc:d3:0c:d6:60:4e:05:58: b4:ce:20:88:fb:d1:f4:0b:20:2a:48:d8:41:99:00:6b:dc:78: ff:27:8d:36:41:82:ad:29:81:e9:8a:72:f1:95:2d:d4:38:45: 6c:dc:42:3b:c7:3d:9b:9a:b1:5e:a2:e5:cc:8d:49:e6:23:1e: 30:2c:bb:e3:1e:1b:37:49:f1:71:5b:9f:a1:e5:19:6f:0c:7c: f1:55:83:06:20:03:46:a3:cf:5e:d1:7a:1a:a4:6d:f5:7c:37: 09:ef:35:d3:99:f8:54:99:9a:50:e2:88:57:a8:b1:5e:db:ef: 7a:c1:66:d0:a2:45:52:9f:b2:e0:4f:b1:64:7d:bd:2a:0f:c7: 46:d2:0a:72:ae:ed:16:71:25:01:35:18:03:97:00:09:db:59: 65:db:7d:5a:13:7b:52:c5:85:e8:f8:2d:39:65:b2:85:d8:1f: 84:9f:d1:20:e8:12:5e:7e:f0:7c:74:19:e5:f5:0a:a8:26:3b: 8e:44:ab:15:13:32:bc:8e:4a:c0:fb:3c:8c:50:ba:99:62:d1: 2e:e5:ac:b7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoNTY1MjBGQTFENzZFOTVGMDgxOUI2RERENDk2N0I0NTUw NDY5ODY5RDAeFw0yNTA1MDkwNjQzMTBaFw0yNTA1MTYwNjQzMTBaMBgxFjAUBgNV BAMTDTY4MWRhM2ZlLWQxOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1knOnWUlQqZF7SsZl8jDLjr59GeurPHfVZHwVpmiqk+Hcy0Of5p4uZfOr48qD Q1b3PBkxIHU637liKwWHEnKN3gul15cMaFqqsaaq7nC8t7qizu0KTy6ABuOP/5bT jXNjt65/XUxUj8BqDKOSirM1T7hhSidvsO2IqKXj4bTioEvvF5id1jPfWxMwkqNE NB5nDAP85iVIhLKD/LjrvbUzcvaG52mVxtA/6/vL0O4MAPR9u4uSHTOt5xg4qz9o bA7dul4pT2Olv9yMWXhLfXGq6GtrsMspWqKtqxY0bpnNG6gsGIbvezTJM6xLiOxl 9t06Ayoi90bW+zZswo1w0okXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZYroApTQ eeSaNd4E41astYI9kukwHwYDVR0jBBgwFoAUVlIPoddulfCBm23dSWe0VQRphp0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzVCNkZBMzYwRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL1ZsSVBvZGR1bGZDQm0yM2RTV2UwVlFScGhw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVmxJUG9kZHVsZkNCbTIzZFNXZTBWUVJwaHAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MUNCLzVCNkZBMzYwRUE1QTExRUZCODRBRTQ2OEM0RjlBRTAyL1ZsSVBvZGR1bGZD Qm0yM2RTV2UwVlFScGhwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHR8bRc+Aj3UW7J+p5fFLxpHbEy7n3fvF8tZmaY6aiLzF1KZxKdvpSsB +yneeyzM0wzWYE4FWLTOIIj70fQLICpI2EGZAGvceP8njTZBgq0pgemKcvGVLdQ4 RWzcQjvHPZuasV6i5cyNSeYjHjAsu+MeGzdJ8XFbn6HlGW8MfPFVgwYgA0ajz17R ehqkbfV8NwnvNdOZ+FSZmlDiiFeosV7b73rBZtCiRVKfsuBPsWR9vSoPx0bSCnKu 7RZxJQE1GAOXAAnbWWXbfVoTe1LFhej4LTllsoXYH4Sf0SDoEl5+8Hx0GeX1Cqgm O45EqxUTMryOSsD7PIxQupli0S7lrLc= -----END CERTIFICATE-----Generated at Sat May 10 22:03:47 2025 by rpki-client