$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft File: vBRJ7peREatw2N-Y2rpOJrprxls.mft (raw, json) Hash identifier: TewmI1uO+r1V3PpYXdbNlB4sncnISbIb35VkQnoBh2I= Subject key identifier: 13:F1:9D:0F:7E:FA:FB:3F:8E:C7:F1:03:C3:0D:88:9D:99:B4:EC:FF Authority key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B Certificate issuer: /CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Certificate serial: 0728 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft Manifest number: 0721 Signing time: Mon 12 May 2025 21:37:08 +0000 Manifest this update: Mon 12 May 2025 21:37:08 +0000 Manifest next update: Mon 19 May 2025 21:37:08 +0000 Files and hashes: 1: vBRJ7peREatw2N-Y2rpOJrprxls.crl (hash: UsmELcGVu84PccgfY/7XXSc7UHeSlMqQ243cgxUmujQ=) 2: 7633392033B411EB98035F74C4F9AE02.roa (hash: 2z51i9dV66CcllhW8qVIGTGYHAdnhuR+CInt6YNJqFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1832 (0x728) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCA34, serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Validity Not Before: May 12 21:37:08 2025 GMT Not After : May 19 21:37:08 2025 GMT Subject: CN=68226a04-4005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:05:60:42:1a:36:cd:55:7d:86:05:e9:b5:18: 3e:9f:df:93:fe:fa:69:f9:6a:9b:01:29:78:1f:bf: c9:69:35:da:f7:5c:11:89:ea:08:70:59:b9:b4:27: 34:69:32:6c:d3:cd:81:8f:6c:f4:eb:e3:ee:97:88: c4:47:84:2b:94:39:c5:12:0e:90:b9:fb:1f:18:8b: d3:59:b7:e5:9b:49:35:e9:e3:f3:e9:f8:08:cb:db: 57:ad:14:41:6b:8a:68:f5:a7:b2:40:0b:02:f5:85: 4e:5d:39:7e:2f:60:3f:dc:90:45:dc:37:cb:0c:2e: 80:0e:0f:c4:1a:0b:83:81:5a:39:4e:16:35:b0:68: 57:64:9a:34:4f:17:13:1b:b3:7f:20:7c:26:e1:a9: ca:c5:2e:4c:79:1a:d7:32:ad:37:4e:70:45:53:fe: 1d:d2:e1:2f:5d:67:58:e0:ab:cb:00:63:7b:5b:bc: 0f:d1:ca:d4:9c:b8:e2:5d:51:a3:da:6f:31:75:9c: 65:86:0d:9f:f5:39:dc:86:25:0c:6f:97:1b:ef:ae: f1:b3:4c:0f:76:d7:4c:16:c7:b7:e3:4e:8b:a1:77: b5:ec:4e:90:17:76:58:de:16:cb:73:6d:0b:f0:60: 34:55:47:be:f4:6b:12:4e:8b:16:22:cc:11:96:53: 25:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:F1:9D:0F:7E:FA:FB:3F:8E:C7:F1:03:C3:0D:88:9D:99:B4:EC:FF X509v3 Authority Key Identifier: keyid:BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:22:66:b0:6f:3f:4d:65:8b:e2:ec:7a:22:04:1b:f4:00:74: 25:a0:6d:84:f4:34:f4:ab:26:a5:fd:a9:8c:e1:1d:ce:cc:3c: f7:a1:3a:47:97:46:67:b1:ee:79:f3:6e:05:7d:47:32:99:7b: 20:5a:c5:c6:6f:32:5c:1f:c2:52:cf:d3:d9:ca:42:fe:c6:11: 0c:2d:2f:ac:c7:d6:d4:25:10:02:8f:db:e6:de:d5:52:73:be: 8e:7f:32:c3:5a:80:84:c7:91:dd:c8:36:17:ac:2f:45:08:78: 46:72:ca:c6:1a:44:15:60:52:b0:1b:d7:53:9d:77:c9:84:22: 09:3c:6a:c7:47:39:a5:7c:b9:8d:2c:6a:7d:1a:8e:9f:71:23: eb:cc:17:9e:a6:5d:58:a3:9a:94:8b:90:4c:b6:00:6d:99:31: 26:ae:ef:9a:b6:cc:65:d3:68:b2:c0:aa:6a:16:51:3a:ca:5d: 53:b3:9a:1a:c0:7e:f1:90:4a:a0:ca:d4:f5:b6:34:d2:dc:4f: 29:85:f9:6b:d4:53:41:c5:50:12:6e:ec:ce:ad:1b:57:f2:b5: 1a:51:d9:bb:6e:5e:51:4f:67:ea:18:89:74:2f:71:e7:cd:25: c1:c2:85:66:96:b2:63:ba:40:57:8c:1e:57:48:70:95:82:5e: b3:ed:5e:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBMzQxMTAvBgNVBAUTKEJDMTQ0OUVFOTc5MTExQUI3MEQ4REY5OERBQkE0RTI2 QkE2QkM2NUIwHhcNMjUwNTEyMjEzNzA4WhcNMjUwNTE5MjEzNzA4WjAYMRYwFAYD VQQDEw02ODIyNmEwNC00MDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwVgQho2zVV9hgXptRg+n9+T/vpp+WqbASl4H7/JaTXa91wRieoIcFm5tCc0 aTJs082Bj2z06+Pul4jER4QrlDnFEg6QufsfGIvTWbflm0k16ePz6fgIy9tXrRRB a4po9aeyQAsC9YVOXTl+L2A/3JBF3DfLDC6ADg/EGguDgVo5ThY1sGhXZJo0TxcT G7N/IHwm4anKxS5MeRrXMq03TnBFU/4d0uEvXWdY4KvLAGN7W7wP0crUnLjiXVGj 2m8xdZxlhg2f9TnchiUMb5cb767xs0wPdtdMFse3406LoXe17E6QF3ZY3hbLc20L 8GA0VUe+9GsSTosWIswRllMlZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPxnQ9+ +vs/jsfxA8MNiJ2ZtOz/MB8GA1UdIwQYMBaAFLwUSe6XkRGrcNjfmNq6Tia6a8Zb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0EzNC82RkFBMzY3ODMz QjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVhdHcyTi1ZMnJwT0pycHJ4 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCUko3cGVSRWF0dzJOLVkycnBPSnJwcnhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0EzNC82RkFBMzY3ODMzQjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVh dHcyTi1ZMnJwT0pycHJ4bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlImawbz9NZYvi7HoiBBv0AHQloG2E9DT0qyal/amM4R3OzDz3oTpH l0Znse55824FfUcymXsgWsXGbzJcH8JSz9PZykL+xhEMLS+sx9bUJRACj9vm3tVS c76OfzLDWoCEx5HdyDYXrC9FCHhGcsrGGkQVYFKwG9dTnXfJhCIJPGrHRzmlfLmN LGp9Go6fcSPrzBeepl1Yo5qUi5BMtgBtmTEmru+atsxl02iywKpqFlE6yl1Ts5oa wH7xkEqgytT1tjTS3E8phflr1FNBxVASbuzOrRtX8rUaUdm7bl5RT2fqGIl0L3Hn zSXBwoVmlrJjukBXjB5XSHCVgl6z7V5x -----END CERTIFICATE-----Generated at Wed May 14 07:25:17 2025 by rpki-client