$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft File: M-VCXQNo-C_4W5uEf0EjitWNTlA.mft (raw, json) Hash identifier: AQrbheI5cHRvw2aCQKTKGTp9xiOVK7wKsTz6n9eImLw= Subject key identifier: 41:7A:5F:60:5E:36:53:17:F4:E3:0C:8C:F4:9A:0C:9F:62:73:E6:42 Authority key identifier: 33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 Certificate issuer: /CN=A91CFD5A/serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft Manifest number: F5 Signing time: Wed 07 May 2025 04:24:56 +0000 Manifest this update: Wed 07 May 2025 04:24:55 +0000 Manifest next update: Wed 14 May 2025 04:24:55 +0000 Files and hashes: 1: M-VCXQNo-C_4W5uEf0EjitWNTlA.crl (hash: mgxudcd+rE1H0sorTqR4j0TujcX+XqVj/xSIbwcIhZY=) 2: D677E18AB9AF11EE97EEDB49C4F9AE02.roa (hash: LUJnGhbUriDz5PEXzwqHVqGRqenH5+Jp3evLId0QNQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 04:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A, serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Validity Not Before: May 7 04:24:55 2025 GMT Not After : May 14 04:24:55 2025 GMT Subject: CN=681ae097-1cd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3a:1a:c8:44:85:c4:8c:72:99:7d:40:76:df: f6:95:8f:22:0d:6c:22:f3:42:51:2c:50:5e:a6:7e: 88:57:d5:63:bc:47:31:2c:ff:90:a0:63:d2:e9:4f: a2:81:e9:3c:bd:c4:73:5a:8f:55:ee:89:f4:99:02: 4a:fd:2c:ad:7f:b9:1f:c3:a2:cd:d0:6f:01:3e:cc: 37:c0:21:85:6e:3f:0c:01:c8:2d:09:45:9b:06:ba: 46:2c:b9:69:69:d9:e7:ab:7f:31:95:85:8f:df:71: 0c:9b:d0:3e:ed:94:f0:a0:4c:0f:19:65:f1:48:45: ea:1e:b1:da:c6:de:02:ef:82:88:c3:1a:3c:15:37: 6d:9d:be:7c:97:3a:d0:26:dd:7f:22:54:56:a8:74: fa:37:d5:d4:80:f6:22:5c:a6:f8:8c:ce:7e:9d:f4: db:8d:ed:15:36:08:c2:9b:44:1e:82:f1:fc:00:af: f9:1c:10:e7:69:13:04:cd:a0:f3:c7:b1:1e:56:b5: f9:92:7e:d2:3a:b3:4c:48:ce:8e:83:f1:ac:7d:7e: 20:2e:08:3f:f4:1d:27:4d:29:14:01:b5:0e:90:d5: e2:54:1d:ae:ff:cc:84:c9:9c:3b:4a:4f:41:a3:9e: eb:ca:10:98:40:ed:82:d1:99:95:23:20:68:fc:fd: b0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:7A:5F:60:5E:36:53:17:F4:E3:0C:8C:F4:9A:0C:9F:62:73:E6:42 X509v3 Authority Key Identifier: keyid:33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:96:b0:94:06:f4:1d:06:f9:50:7d:18:7a:d4:0f:96:52:b8: ab:65:86:a4:9d:17:ce:63:84:a0:8b:46:30:e7:90:0c:8b:d5: 17:36:b8:78:f3:d7:a4:fe:d3:44:b5:21:72:f8:3c:ff:85:ae: da:7f:67:92:33:f6:47:3e:5b:0a:00:1f:12:3e:30:8a:0c:d9: 91:f4:c3:8e:f9:bb:04:d8:9e:8d:aa:3f:90:84:88:13:be:6a: 64:25:10:11:4e:f0:d0:c8:54:60:c8:7e:b4:f7:c0:4e:22:57: f7:89:3c:15:32:22:f3:a1:e7:31:3d:88:f4:78:42:a6:f3:d6: 7b:48:d7:da:0a:d4:1a:c4:69:f2:d1:ed:8b:78:6e:11:c9:e5: 2f:0e:e5:db:9f:3b:78:40:1d:47:f6:a3:f4:44:74:52:4b:dd: bd:fa:8a:21:ae:a2:a8:8c:c1:b3:b0:42:aa:c8:ce:47:a5:e2: 55:04:51:6c:5b:57:d9:5b:02:05:28:8c:f7:2b:ff:45:25:21: 66:b9:e7:b6:7a:74:01:e5:4f:8c:26:29:60:2a:32:83:cb:50: 20:10:b5:67:06:4c:85:5d:bf:1e:78:3f:21:fb:df:e5:24:fa: f8:e8:8a:81:e3:af:6f:a8:38:45:be:3e:fd:12:09:ed:8f:e3: 35:64:e5:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDMzRTU0MjVEMDM2OEY4MkZGODVCOUI4NDdGNDEyMzhB RDU4RDRFNTAwHhcNMjUwNTA3MDQyNDU1WhcNMjUwNTE0MDQyNDU1WjAYMRYwFAYD VQQDEw02ODFhZTA5Ny0xY2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszoayESFxIxymX1Adt/2lY8iDWwi80JRLFBepn6IV9VjvEcxLP+QoGPS6U+i gek8vcRzWo9V7on0mQJK/Sytf7kfw6LN0G8BPsw3wCGFbj8MAcgtCUWbBrpGLLlp adnnq38xlYWP33EMm9A+7ZTwoEwPGWXxSEXqHrHaxt4C74KIwxo8FTdtnb58lzrQ Jt1/IlRWqHT6N9XUgPYiXKb4jM5+nfTbje0VNgjCm0QegvH8AK/5HBDnaRMEzaDz x7EeVrX5kn7SOrNMSM6Og/GsfX4gLgg/9B0nTSkUAbUOkNXiVB2u/8yEyZw7Sk9B o57ryhCYQO2C0ZmVIyBo/P2wawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEF6X2Be NlMX9OMMjPSaDJ9ic+ZCMB8GA1UdIwQYMBaAFDPlQl0DaPgv+FubhH9BI4rVjU5Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS81RkI3REMwOEI5 QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1DXzRXNXVFZjBFaml0V05U bEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00tVkNYUU5vLUNfNFc1dUVmMEVqaXRXTlRsQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS81RkI3REMwOEI5QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1D XzRXNXVFZjBFaml0V05UbEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIlrCUBvQdBvlQfRh61A+WUrirZYaknRfOY4Sgi0Yw55AMi9UXNrh4 89ek/tNEtSFy+Dz/ha7af2eSM/ZHPlsKAB8SPjCKDNmR9MOO+bsE2J6Nqj+QhIgT vmpkJRARTvDQyFRgyH6098BOIlf3iTwVMiLzoecxPYj0eEKm89Z7SNfaCtQaxGny 0e2LeG4RyeUvDuXbnzt4QB1H9qP0RHRSS929+oohrqKojMGzsEKqyM5HpeJVBFFs W1fZWwIFKIz3K/9FJSFmuee2enQB5U+MJilgKjKDy1AgELVnBkyFXb8eeD8h+9/l JPr46IqB469vqDhFvj79Egntj+M1ZOXb -----END CERTIFICATE-----Generated at Thu May 8 12:40:15 2025 by rpki-client