$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: 6p4seB6UaBUVmEGomUjeY4jCk2Pl2MtRfNw+zLsIxjo= Subject key identifier: 31:9C:08:E9:13:6C:92:B6:7F:6C:37:EF:04:BA:9A:58:9B:C4:56:C8 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0C31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0C23 Signing time: Mon 12 May 2025 18:27:34 +0000 Manifest this update: Mon 12 May 2025 18:27:33 +0000 Manifest next update: Mon 19 May 2025 18:27:33 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: ivhAILm5snaf6jNKXByi4gg6ttvY+lzvkzZLfjUzBfI=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: CC9X+3CcYjfvDOG+Jd491zfowlADhabzoyJw/gqJGUg=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: erICH0cme0SAzh4DFMOpR5Ja+e0q51Z/KWddXql4mQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3121 (0xc31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: May 12 18:27:33 2025 GMT Not After : May 19 18:27:33 2025 GMT Subject: CN=68223d95-d09f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c4:42:30:82:22:37:48:93:d1:6f:47:2d:3a: 8d:c6:15:79:aa:32:9a:2f:88:41:e1:18:88:5a:72: 34:b0:b7:89:7c:e7:fe:84:f4:e0:76:0a:17:6f:78: 07:7d:86:5e:bc:4c:11:d8:e3:87:50:15:98:21:8e: f0:e9:57:de:9b:25:7b:79:a3:47:6c:55:e6:5a:75: d2:d8:f9:0e:e0:64:bf:87:eb:f8:e5:1d:3b:5d:c2: e7:72:fa:cc:fa:2c:28:c9:44:f6:8d:f8:9f:57:d5: 47:97:d4:a1:fc:29:f0:66:ab:1b:3d:51:23:cb:92: eb:6d:f4:7d:e4:da:ae:69:c0:8e:8d:25:24:84:71: 59:48:6a:db:cc:e5:d8:23:66:57:de:af:52:0e:4d: 79:7a:8e:eb:e6:23:d3:8f:a7:86:59:35:83:1f:dd: f6:dc:ec:b6:39:12:77:48:78:fc:a6:78:ba:21:6d: 30:3a:ea:93:cc:23:02:69:24:a5:00:03:f5:64:45: 09:3a:91:7e:72:87:88:a4:9c:a0:57:89:5a:29:d6: 83:b9:2e:bc:07:6e:0c:b1:04:ae:32:49:f8:3c:56: 31:2d:a6:26:29:be:d6:f1:56:82:74:17:48:14:05: 78:76:6c:87:f8:bb:51:32:d5:b8:6f:a2:31:de:49: 59:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9C:08:E9:13:6C:92:B6:7F:6C:37:EF:04:BA:9A:58:9B:C4:56:C8 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:ed:f9:ac:91:ba:01:57:36:d5:47:97:ee:49:35:94:95:f4: d3:af:24:62:4e:8b:9b:6c:30:65:e7:18:e6:fc:60:08:db:b7: e6:a7:f1:34:ee:5d:e7:ee:b1:61:05:5e:5e:67:59:ab:95:11: 4b:36:c8:7f:35:03:8b:9f:9c:6d:93:dd:cd:4b:49:d7:02:a9: dd:b5:07:d4:7f:73:60:54:8c:14:3e:3f:bf:e6:b3:e3:6e:bc: 93:f6:ed:f7:c0:95:5c:41:56:50:52:22:09:cc:51:0d:78:fb: 3a:51:9e:82:3e:12:73:dc:bd:5a:60:68:a6:ed:91:23:2b:e5: ca:d4:a5:e8:44:71:60:f9:59:a5:61:67:27:06:50:ca:a0:d9: 9f:bf:c8:01:5a:fc:7e:c7:e2:67:c0:97:dd:40:04:f4:61:e5: 0b:62:39:27:71:50:59:27:13:76:4a:b1:5f:df:24:23:54:85: 60:d5:e3:5f:1d:2e:9a:48:a4:c0:68:79:0e:32:30:c2:04:b9: 2a:ec:7c:bc:9b:9a:0f:15:86:de:44:95:80:31:52:54:b6:2c: f6:79:70:11:99:2c:6a:d1:2a:d0:ec:9a:10:ba:37:dd:cd:9a: ab:77:1e:a3:84:ef:af:3a:42:49:a0:ba:99:64:95:96:41:64: 4a:14:02:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUwNTEyMTgyNzMzWhcNMjUwNTE5MTgyNzMzWjAYMRYwFAYD VQQDEw02ODIyM2Q5NS1kMDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsRCMIIiN0iT0W9HLTqNxhV5qjKaL4hB4RiIWnI0sLeJfOf+hPTgdgoXb3gH fYZevEwR2OOHUBWYIY7w6VfemyV7eaNHbFXmWnXS2PkO4GS/h+v45R07XcLncvrM +iwoyUT2jfifV9VHl9Sh/CnwZqsbPVEjy5LrbfR95NquacCOjSUkhHFZSGrbzOXY I2ZX3q9SDk15eo7r5iPTj6eGWTWDH9323Oy2ORJ3SHj8pni6IW0wOuqTzCMCaSSl AAP1ZEUJOpF+coeIpJygV4laKdaDuS68B24MsQSuMkn4PFYxLaYmKb7W8VaCdBdI FAV4dmyH+LtRMtW4b6Ix3klZCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGcCOkT bJK2f2w37wS6mlibxFbIMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi7fmskboBVzbVR5fuSTWUlfTTryRiToubbDBl5xjm/GAI27fmp/E0 7l3n7rFhBV5eZ1mrlRFLNsh/NQOLn5xtk93NS0nXAqndtQfUf3NgVIwUPj+/5rPj bryT9u33wJVcQVZQUiIJzFENePs6UZ6CPhJz3L1aYGim7ZEjK+XK1KXoRHFg+Vml YWcnBlDKoNmfv8gBWvx+x+JnwJfdQAT0YeULYjkncVBZJxN2SrFf3yQjVIVg1eNf HS6aSKTAaHkOMjDCBLkq7Hy8m5oPFYbeRJWAMVJUtiz2eXARmSxq0SrQ7JoQujfd zZqrdx6jhO+vOkJJoLqZZJWWQWRKFAJ8 -----END CERTIFICATE-----Generated at Wed May 14 03:07:56 2025 by rpki-client