$ rpki-client -vvf rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft File: vGOOV8p7khRPunE61ttk5tCtSZE.mft (raw, json) Hash identifier: S+bZ1k9yABb3uNUjMIPsgKB3r3nPcNAKY+yyvV2sLUY= Subject key identifier: B2:4E:2A:F6:7D:4E:10:03:D2:F1:2A:25:F2:E6:E4:70:7F:AB:52:65 Authority key identifier: BC:63:8E:57:CA:7B:92:14:4F:BA:71:3A:D6:DB:64:E6:D0:AD:49:91 Certificate issuer: /CN=A91D31B0/serialNumber=BC638E57CA7B92144FBA713AD6DB64E6D0AD4991 Certificate serial: 0294 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vGOOV8p7khRPunE61ttk5tCtSZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft Manifest number: 028F Signing time: Sun 11 May 2025 01:05:45 +0000 Manifest this update: Sun 11 May 2025 01:05:45 +0000 Manifest next update: Sun 18 May 2025 01:05:45 +0000 Files and hashes: 1: vGOOV8p7khRPunE61ttk5tCtSZE.crl (hash: ruhDHjUyjsBKgZPrYOYl6K7P6vwswBv9WpYhe7CC4XU=) 2: 7BB181E201BA11EDA4103D0DC4F9AE02.roa (hash: lORLBE7+FfhOwINAGtcBHyopu2FbSYXSTs4IIjqvS/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.crl rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vGOOV8p7khRPunE61ttk5tCtSZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:05:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D31B0, serialNumber=BC638E57CA7B92144FBA713AD6DB64E6D0AD4991 Validity Not Before: May 11 01:05:45 2025 GMT Not After : May 18 01:05:45 2025 GMT Subject: CN=681ff7e9-a373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ad:61:de:34:7e:74:da:8a:19:f2:70:fa:a9: d3:8c:43:8c:ae:d9:f7:69:69:15:aa:42:d1:3f:a2: 13:4e:8a:ae:3d:ed:72:4e:84:c1:0d:9b:a0:2f:02: 07:04:44:3f:c7:b7:9c:5f:a6:4a:eb:71:4d:f9:21: f9:d8:78:b7:ad:80:3b:2c:cc:cd:79:92:36:1b:34: 2d:bc:42:c7:2e:af:a7:28:b7:d7:9f:03:d5:d2:cc: ed:07:f1:f9:8e:cc:aa:80:36:42:0d:f0:54:93:ea: 74:9f:bb:c1:09:43:36:c3:dd:74:f8:de:83:97:90: 0f:bb:be:03:a0:51:ac:3c:28:2a:04:25:cb:f5:cf: 6c:ae:19:36:b0:ac:a1:2a:38:0f:31:91:85:09:3b: 74:5e:d6:f3:9c:2e:dd:5c:1c:03:9c:2b:93:4e:b7: 8c:d4:d8:35:fc:76:84:2d:1c:e8:0e:07:10:58:5c: a8:83:93:53:e3:23:ee:f5:88:f8:ad:67:f1:d9:60: c5:2d:8a:34:6d:91:dc:63:57:21:34:de:95:36:a1: e2:19:53:3f:a8:1f:74:94:78:87:18:a0:9b:6f:2e: fc:b1:16:0a:8d:a7:ee:14:8f:40:20:89:c0:74:0f: dc:a4:5d:bd:0d:76:30:4d:f8:8c:89:ed:cd:76:f1: 0f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:4E:2A:F6:7D:4E:10:03:D2:F1:2A:25:F2:E6:E4:70:7F:AB:52:65 X509v3 Authority Key Identifier: keyid:BC:63:8E:57:CA:7B:92:14:4F:BA:71:3A:D6:DB:64:E6:D0:AD:49:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vGOOV8p7khRPunE61ttk5tCtSZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:da:e3:26:4d:93:67:67:3d:61:98:36:e4:d8:d1:5e:22:b6: d3:61:aa:c3:88:e7:93:e1:b1:b7:dd:40:f5:44:0b:74:48:e2: 9a:48:64:e3:b9:be:2b:66:c3:75:6c:48:b4:10:df:f1:85:d8: 09:03:80:b5:14:45:02:a6:8f:e8:c4:35:33:4f:2f:ec:ac:ce: ac:74:dd:f6:7e:a3:66:4b:15:3c:9b:a7:15:f5:0a:5a:e4:bd: 50:e2:a6:2e:c3:3c:d5:b4:b4:0d:b1:49:42:a2:eb:b4:ad:5d: f9:ed:7d:27:91:dc:83:b4:17:3a:6f:59:4f:35:74:d3:04:0b: 7f:a4:1c:55:c2:a7:fe:90:99:11:09:33:68:bf:b7:81:ed:a3: 39:90:97:71:00:2c:a5:33:7a:88:0b:f5:7b:23:dc:36:7c:4f: a9:09:69:c4:52:7c:a8:a1:ad:a2:97:31:71:ad:2f:6f:ea:3f: e7:f8:04:7d:30:29:06:b8:3f:58:22:90:17:ee:2b:e6:65:4b: 0d:bd:d6:d1:e7:39:4a:f2:ca:20:73:85:e3:93:ed:2a:b0:86: 2f:6f:cc:4a:ef:6e:01:9c:6a:a5:83:7b:6a:6a:03:cb:91:27: 11:e0:73:57:f0:f6:3e:1d:4e:52:2c:1e:a9:33:59:43:49:6d: c8:dc:c6:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxQjAxMTAvBgNVBAUTKEJDNjM4RTU3Q0E3QjkyMTQ0RkJBNzEzQUQ2REI2NEU2 RDBBRDQ5OTEwHhcNMjUwNTExMDEwNTQ1WhcNMjUwNTE4MDEwNTQ1WjAYMRYwFAYD VQQDEw02ODFmZjdlOS1hMzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoa1h3jR+dNqKGfJw+qnTjEOMrtn3aWkVqkLRP6ITToquPe1yToTBDZugLwIH BEQ/x7ecX6ZK63FN+SH52Hi3rYA7LMzNeZI2GzQtvELHLq+nKLfXnwPV0sztB/H5 jsyqgDZCDfBUk+p0n7vBCUM2w910+N6Dl5APu74DoFGsPCgqBCXL9c9srhk2sKyh KjgPMZGFCTt0XtbznC7dXBwDnCuTTreM1Ng1/HaELRzoDgcQWFyog5NT4yPu9Yj4 rWfx2WDFLYo0bZHcY1chNN6VNqHiGVM/qB90lHiHGKCbby78sRYKjafuFI9AIInA dA/cpF29DXYwTfiMie3NdvEPxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJOKvZ9 ThAD0vEqJfLm5HB/q1JlMB8GA1UdIwQYMBaAFLxjjlfKe5IUT7pxOtbbZObQrUmR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzFCMC8xNUNGNUE4ODAx QjYxMUVEQjFBNEQyODJDNEY5QUUwMi92R09PVjhwN2toUlB1bkU2MXR0azV0Q3RT WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZHT09WOHA3a2hSUHVuRTYxdHRrNXRDdFNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzFCMC8xNUNGNUE4ODAxQjYxMUVEQjFBNEQyODJDNEY5QUUwMi92R09PVjhwN2to UlB1bkU2MXR0azV0Q3RTWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM2uMmTZNnZz1hmDbk2NFeIrbTYarDiOeT4bG33UD1RAt0SOKaSGTj ub4rZsN1bEi0EN/xhdgJA4C1FEUCpo/oxDUzTy/srM6sdN32fqNmSxU8m6cV9Qpa 5L1Q4qYuwzzVtLQNsUlCouu0rV357X0nkdyDtBc6b1lPNXTTBAt/pBxVwqf+kJkR CTNov7eB7aM5kJdxACylM3qIC/V7I9w2fE+pCWnEUnyooa2ilzFxrS9v6j/n+AR9 MCkGuD9YIpAX7ivmZUsNvdbR5zlK8sogc4Xjk+0qsIYvb8xK724BnGqlg3tqagPL kScR4HNX8PY+HU5SLB6pM1lDSW3I3MYM -----END CERTIFICATE-----Generated at Sun May 11 13:25:36 2025 by rpki-client