$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft File: vELDvIdcBnayn9eryfgbSpH9iok.mft (raw, json) Hash identifier: CRMJSTcbg50jtCu/S6pHY7Zmb+dMJ6Y3k/CR5N//zv4= Subject key identifier: D4:8C:97:A5:C4:0A:F2:A6:BA:42:BF:DA:3B:40:E3:CD:02:36:A7:86 Authority key identifier: BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 Certificate issuer: /CN=A91B7D14/serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft Manifest number: 7C Signing time: Sun 11 May 2025 05:28:13 +0000 Manifest this update: Sun 11 May 2025 05:28:12 +0000 Manifest next update: Sun 18 May 2025 05:28:12 +0000 Files and hashes: 1: vELDvIdcBnayn9eryfgbSpH9iok.crl (hash: 7w757H60BX1sFT9UhFjBYj/O3Xr0jP54mC7n1U8L1/Q=) 2: AAA33A7A74B011EF85E1C348C4F9AE02.roa (hash: P0ja5yGMmuugrOF5BJ+3udMpfSg7jsGxtmTDuFAzbtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:28:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D14, serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Validity Not Before: May 11 05:28:12 2025 GMT Not After : May 18 05:28:12 2025 GMT Subject: CN=6820356d-f94b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:10:40:93:03:df:a2:0e:58:33:b9:b5:12:e9: 1e:1c:66:dd:d7:4d:3e:d8:d5:a7:9e:ba:85:e2:27: 68:ae:dd:39:0d:2d:2d:82:15:68:d7:cc:9e:e4:e0: cd:3e:74:53:42:e9:d8:a0:7c:37:9e:35:12:e2:6f: ef:6f:28:d4:6f:2c:cf:56:0d:a8:93:20:72:f0:74: 5e:78:95:fe:d6:ae:38:7c:a0:42:55:26:24:63:f0: 71:56:e3:66:0b:b3:56:a3:c3:2e:92:75:eb:fe:f5: 0d:e3:d2:72:56:72:f4:3e:a9:ff:a0:54:77:41:3d: 68:a0:07:57:23:30:e2:67:19:04:b9:91:71:e7:00: db:62:c3:05:32:83:63:b8:91:41:3c:7d:fe:9d:f6: 06:07:83:f4:c9:92:e3:fd:f1:7f:6c:f1:05:d2:29: f0:f3:e1:79:8c:9a:01:45:44:e3:d6:24:51:c1:34: e0:8f:66:26:5f:cd:ee:fe:a9:0c:f0:49:82:7d:b9: e6:7d:38:a6:6c:18:a9:1f:81:22:14:12:ec:9d:cf: d9:64:c6:1c:6c:2f:4e:49:81:93:df:47:5e:db:7d: 51:8b:88:8a:54:7c:7e:0a:88:2c:d5:bd:27:d1:a7: 03:23:0f:0f:0f:c1:5b:0d:33:93:4f:94:54:1a:5f: 97:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:8C:97:A5:C4:0A:F2:A6:BA:42:BF:DA:3B:40:E3:CD:02:36:A7:86 X509v3 Authority Key Identifier: keyid:BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:4d:be:3b:98:10:9e:da:5f:46:a8:02:d7:f6:14:86:6c:fe: 91:13:5c:42:c0:6d:af:d9:28:a8:05:4a:1e:a5:c5:94:8f:a6: 5e:f2:70:a9:2c:33:a9:f5:37:b6:41:84:88:5f:23:c2:75:a9: 1e:75:9d:98:b5:4e:36:3e:db:7d:21:7a:aa:c2:c3:c1:a3:cd: 24:47:32:53:78:89:3d:38:80:c3:b5:43:c3:73:81:2d:7d:50: 35:7b:c5:b2:63:24:90:0d:2c:e9:76:82:65:5b:92:d3:8b:cc: eb:b3:36:05:22:57:2f:9f:0a:27:f8:88:ed:f2:01:65:64:82: 44:33:60:b8:20:b5:86:11:cf:c9:73:87:09:07:27:63:86:5b: eb:12:ba:ae:34:51:a3:67:e5:fe:92:83:31:db:98:1c:ba:76: 38:f0:7f:2f:01:91:60:1e:64:71:bb:52:b5:5f:81:80:23:75: 8b:34:fc:73:98:d4:4d:d8:a0:4a:7a:c7:42:56:c5:91:67:a7: c4:4b:31:3c:8d:dd:ea:c2:43:87:c2:93:88:93:c8:a7:f0:30: 45:de:12:34:8a:e0:61:2b:18:75:0d:f6:95:4f:b0:16:b2:a8: 5c:7f:59:94:a3:6b:3f:bb:f4:f0:ac:5d:5b:28:62:de:7e:3d: 06:aa:cb:5f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0QxNDExMC8GA1UEBRMoQkM0MkMzQkM4NzVDMDY3NkIyOUZEN0FCQzlGODFCNEE5 MUZEOEE4OTAeFw0yNTA1MTEwNTI4MTJaFw0yNTA1MTgwNTI4MTJaMBgxFjAUBgNV BAMTDTY4MjAzNTZkLWY5NGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFEECTA9+iDlgzubUS6R4cZt3XTT7Y1aeeuoXiJ2iu3TkNLS2CFWjXzJ7k4M0+ dFNC6digfDeeNRLib+9vKNRvLM9WDaiTIHLwdF54lf7Wrjh8oEJVJiRj8HFW42YL s1ajwy6Sdev+9Q3j0nJWcvQ+qf+gVHdBPWigB1cjMOJnGQS5kXHnANtiwwUyg2O4 kUE8ff6d9gYHg/TJkuP98X9s8QXSKfDz4XmMmgFFROPWJFHBNOCPZiZfze7+qQzw SYJ9ueZ9OKZsGKkfgSIUEuydz9lkxhxsL05JgZPfR17bfVGLiIpUfH4KiCzVvSfR pwMjDw8PwVsNM5NPlFQaX5d3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1IyXpcQK 8qa6Qr/aO0DjzQI2p4YwHwYDVR0jBBgwFoAUvELDvIdcBnayn9eryfgbSpH9iokw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RDE0L0NEQjNCOUFBNzRB RjExRUY5MUE2NjE0NkM0RjlBRTAyL3ZFTER2SWRjQm5heW45ZXJ5ZmdiU3BIOWlv ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkVMRHZJZGNCbmF5bjllcnlmZ2JTcEg5aW9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RDE0L0NEQjNCOUFBNzRBRjExRUY5MUE2NjE0NkM0RjlBRTAyL3ZFTER2SWRjQm5h eW45ZXJ5ZmdiU3BIOWlvay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB5NvjuYEJ7aX0aoAtf2FIZs/pETXELAba/ZKKgFSh6lxZSPpl7ycKks M6n1N7ZBhIhfI8J1qR51nZi1TjY+230heqrCw8GjzSRHMlN4iT04gMO1Q8NzgS19 UDV7xbJjJJANLOl2gmVbktOLzOuzNgUiVy+fCif4iO3yAWVkgkQzYLggtYYRz8lz hwkHJ2OGW+sSuq40UaNn5f6SgzHbmBy6djjwfy8BkWAeZHG7UrVfgYAjdYs0/HOY 1E3YoEp6x0JWxZFnp8RLMTyN3erCQ4fCk4iTyKfwMEXeEjSK4GErGHUN9pVPsBay qFx/WZSjaz+79PCsXVsoYt5+PQaqy18= -----END CERTIFICATE-----Generated at Mon May 12 13:17:49 2025 by rpki-client