$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft File: vAWTxH2s9senekHgfeuaBhYxpIQ.mft (raw, json) Hash identifier: N6E5dCma22o0uSM2NyMolZXcfDKqoUqRCwRl89Z00+M= Subject key identifier: 4C:8C:DB:53:C8:AA:12:12:25:61:9B:93:00:B8:73:60:68:27:BC:55 Authority key identifier: BC:05:93:C4:7D:AC:F6:C7:A7:7A:41:E0:7D:EB:9A:06:16:31:A4:84 Certificate issuer: /CN=A91D0B40/serialNumber=BC0593C47DACF6C7A77A41E07DEB9A061631A484 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft Manifest number: A3 Signing time: Sun 11 May 2025 04:58:27 +0000 Manifest this update: Sun 11 May 2025 04:58:27 +0000 Manifest next update: Sun 18 May 2025 04:58:27 +0000 Files and hashes: 1: vAWTxH2s9senekHgfeuaBhYxpIQ.crl (hash: 5TM8FlwhRxwgp1yFVb3ZUC/i+shrjb+bjtOALqZINH8=) 2: 0D5C00AC38E311EF99F62432C4F9AE02.roa (hash: xQMEY6P6f4jmqeDgv/TImb1ka64GtPCQvQqQLQx2M8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.crl rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B40, serialNumber=BC0593C47DACF6C7A77A41E07DEB9A061631A484 Validity Not Before: May 11 04:58:27 2025 GMT Not After : May 18 04:58:27 2025 GMT Subject: CN=68202e73-119a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ac:b6:62:96:37:d8:29:ea:45:94:4f:4d:2e: fb:67:f2:a7:06:61:3d:3b:06:c1:75:9b:b8:42:76: ce:02:75:3f:5b:a3:54:04:e9:f0:40:0a:f0:3e:67: bb:13:ca:8f:c6:f1:00:95:3b:a8:eb:5e:fc:1e:5d: 20:b5:92:42:9a:f6:6a:49:99:45:e4:c8:60:f0:63: f7:b3:f3:95:c0:ca:da:f1:0a:49:0c:3e:1f:85:0e: 22:fc:ed:7b:9f:99:95:84:2f:28:7f:a1:32:5e:8c: e4:9d:5a:e2:b9:1e:c6:4f:2b:75:43:38:2f:18:18: f1:31:4b:70:02:6a:d9:68:93:02:ef:1b:bc:af:9b: 94:87:72:00:88:07:ca:18:01:8a:35:64:4c:c4:48: 1f:4a:45:43:d0:37:52:14:df:80:01:99:6d:20:4a: 3e:54:c1:a9:f4:ce:1f:d9:84:d3:14:ec:0d:a9:b5: 0b:ea:49:df:e2:d4:30:0f:13:91:f5:5c:4a:c2:30: d0:2b:63:b0:ca:f6:13:62:a7:61:67:4b:ad:48:1e: 28:a7:f8:5a:fb:41:08:1a:1e:95:1e:fd:a9:f1:b3: 8c:86:cb:f8:32:28:fa:07:96:5f:f5:4a:e7:f6:b7: 99:71:53:55:e2:5d:a0:71:f5:55:0c:dc:72:18:1a: 9d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:8C:DB:53:C8:AA:12:12:25:61:9B:93:00:B8:73:60:68:27:BC:55 X509v3 Authority Key Identifier: keyid:BC:05:93:C4:7D:AC:F6:C7:A7:7A:41:E0:7D:EB:9A:06:16:31:A4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:0b:cd:ed:11:ec:40:a5:ee:95:c0:7e:e9:e3:e4:56:21:3c: 2d:9b:b7:a7:fa:e4:98:26:ca:37:32:a0:94:22:79:52:90:fc: c4:9e:fa:ba:9a:c0:1b:f0:f3:aa:c4:ff:b8:d0:1f:c1:55:5f: 48:d6:52:3a:a7:63:b8:b1:e6:cd:1d:bf:5b:44:c8:f1:de:01: b9:a4:06:22:df:f6:11:7f:33:02:68:43:18:ca:f2:40:12:b3: 3d:0b:87:2c:99:86:7e:8f:a1:4b:81:c3:5d:f4:e9:c3:1a:be: 7d:f3:bd:92:b6:65:55:32:56:91:3c:05:5f:46:08:3a:e5:92: 78:fd:bd:ab:a8:6c:a6:ee:11:26:92:ad:66:5d:de:2d:1b:6d: bb:95:2f:9c:2f:ae:f7:54:fc:bd:6f:0f:b7:8b:2c:77:a5:55: b6:fb:f3:18:49:7f:65:87:b7:8a:f6:c1:5b:eb:66:bc:fc:ce: 1c:ca:da:2b:98:cc:76:1c:61:ea:9b:82:75:f2:cd:6e:3d:0f: 97:05:cd:81:06:10:1a:bc:fa:e0:8e:73:45:85:fc:d9:38:73: 2e:44:8b:77:0e:cd:1e:99:c8:23:cb:2c:99:2a:54:5f:bb:b8: 6d:f6:72:13:fc:77:02:be:82:8a:d6:ba:d5:b2:ae:a0:30:ec: 4a:bc:09:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCNDAxMTAvBgNVBAUTKEJDMDU5M0M0N0RBQ0Y2QzdBNzdBNDFFMDdERUI5QTA2 MTYzMUE0ODQwHhcNMjUwNTExMDQ1ODI3WhcNMjUwNTE4MDQ1ODI3WjAYMRYwFAYD VQQDEw02ODIwMmU3My0xMTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ay2YpY32CnqRZRPTS77Z/KnBmE9OwbBdZu4QnbOAnU/W6NUBOnwQArwPme7 E8qPxvEAlTuo6178Hl0gtZJCmvZqSZlF5Mhg8GP3s/OVwMra8QpJDD4fhQ4i/O17 n5mVhC8of6EyXozknVriuR7GTyt1QzgvGBjxMUtwAmrZaJMC7xu8r5uUh3IAiAfK GAGKNWRMxEgfSkVD0DdSFN+AAZltIEo+VMGp9M4f2YTTFOwNqbUL6knf4tQwDxOR 9VxKwjDQK2OwyvYTYqdhZ0utSB4op/ha+0EIGh6VHv2p8bOMhsv4Mij6B5Zf9Urn 9reZcVNV4l2gcfVVDNxyGBqdowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyM21PI qhISJWGbkwC4c2BoJ7xVMB8GA1UdIwQYMBaAFLwFk8R9rPbHp3pB4H3rmgYWMaSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEI0MC8yODQwQzhBNjM4 RTAxMUVGOTRCODREN0ZDNEY5QUUwMi92QVdUeEgyczlzZW5la0hnZmV1YUJoWXhw SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZBV1R4SDJzOXNlbmVrSGdmZXVhQmhZeHBJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEI0MC8yODQwQzhBNjM4RTAxMUVGOTRCODREN0ZDNEY5QUUwMi92QVdUeEgyczlz ZW5la0hnZmV1YUJoWXhwSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSC83tEexApe6VwH7p4+RWITwtm7en+uSYJso3MqCUInlSkPzEnvq6 msAb8POqxP+40B/BVV9I1lI6p2O4sebNHb9bRMjx3gG5pAYi3/YRfzMCaEMYyvJA ErM9C4csmYZ+j6FLgcNd9OnDGr59872StmVVMlaRPAVfRgg65ZJ4/b2rqGym7hEm kq1mXd4tG227lS+cL673VPy9bw+3iyx3pVW2+/MYSX9lh7eK9sFb62a8/M4cytor mMx2HGHqm4J18s1uPQ+XBc2BBhAavPrgjnNFhfzZOHMuRIt3Ds0emcgjyyyZKlRf u7ht9nIT/HcCvoKK1rrVsq6gMOxKvAmW -----END CERTIFICATE-----Generated at Mon May 12 12:51:07 2025 by rpki-client