$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: wf10cCSYjTF+3kj93NThjfMS/J502R3ue+RCL3s7umQ= Subject key identifier: 89:F0:87:68:E5:35:1B:02:60:90:67:C6:BD:15:DE:47:13:38:D2:5E Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 042B Signing time: Sat 10 May 2025 23:56:11 +0000 Manifest this update: Sat 10 May 2025 23:56:10 +0000 Manifest next update: Sat 17 May 2025 23:56:10 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: RfVg/nvbBsXE7pmOjWR7G+JX7X4D51pSfjtN9GlkjVQ=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:56:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: May 10 23:56:10 2025 GMT Not After : May 17 23:56:10 2025 GMT Subject: CN=681fe79a-e6df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fd:8f:3b:92:84:9f:4c:82:a3:66:48:04:5b: 8e:d6:30:d3:47:eb:d7:b8:99:1c:17:13:3a:3f:f5: 86:ef:d2:69:e4:8c:29:dc:54:8c:41:85:b6:59:32: e4:a4:ea:7a:a1:7e:51:47:88:59:a3:9b:20:d3:59: 99:8d:1e:a5:f6:e7:8c:b8:2d:1c:3b:37:df:a9:8f: ae:74:5d:d8:ae:d1:7d:0e:3a:72:9e:82:b8:4a:d5: 65:aa:5c:c9:9c:23:a1:1b:57:49:70:73:ea:a2:9a: d1:62:7a:b2:a4:01:31:79:ac:7a:0b:19:68:f1:c6: 6e:84:f2:9d:cf:06:8e:ab:9f:28:58:5f:88:c7:59: 6b:6e:b9:55:71:ca:0b:d3:d6:19:fc:60:f1:39:0e: a3:17:87:92:6d:56:ff:4a:d6:53:70:33:f2:3c:78: f6:68:1b:14:3f:89:85:d3:ca:4f:ff:c0:47:23:57: 68:23:82:a7:b8:ac:73:a0:3c:69:2f:98:d2:5a:24: b8:2f:37:d7:8e:d3:0d:24:f7:78:c3:e3:be:3a:8c: 92:d9:62:ce:c3:dc:43:f7:e7:1c:6e:ae:6c:4d:2d: 61:d3:fc:0f:9c:a5:4f:15:28:6c:e6:1c:57:63:37: b5:f0:26:d0:45:1a:2d:fd:cd:1c:bd:dc:bb:51:24: 94:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F0:87:68:E5:35:1B:02:60:90:67:C6:BD:15:DE:47:13:38:D2:5E X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:5e:22:98:86:74:22:88:e3:0b:45:83:69:02:9e:ec:30:f2: c0:93:89:a8:94:36:fd:2e:96:6e:4c:7f:16:c2:91:21:b7:66: b5:05:a6:45:b2:29:d3:4f:5d:c5:df:1b:bb:b0:bf:89:a2:2e: d2:cb:22:e9:59:80:c7:70:62:70:19:0a:8a:4e:b4:27:f1:db: f4:a5:d1:73:cf:76:15:57:01:f0:5b:4b:73:fd:35:c0:0e:d2: bd:21:ed:7a:e9:09:ca:4b:86:11:d6:c4:fd:bb:1f:4e:ce:b2: 37:c5:04:22:41:42:6b:05:dd:20:c3:8e:47:1a:bb:08:96:bf: d1:6e:bd:a4:02:44:93:43:52:b6:a4:e5:c5:22:5f:90:c3:c0: 90:df:7b:63:e5:fb:1a:60:fe:07:05:ed:bb:65:2d:77:65:9a: 23:9b:32:eb:96:99:78:cf:f3:ae:81:5d:1d:32:35:d8:06:e7: ae:2f:cd:0a:81:1b:75:d5:25:34:42:c2:21:f6:b0:94:ac:28: a1:86:12:50:9d:45:c7:48:b9:a9:23:5d:c1:60:ea:1b:e0:35: 86:9d:39:9e:83:fd:d9:3f:ec:4f:9c:4a:27:e2:09:76:cc:80: 9b:49:33:90:08:74:21:af:4c:a8:28:8a:bb:a9:4a:10:2a:d1: f1:34:4b:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjUwNTEwMjM1NjEwWhcNMjUwNTE3MjM1NjEwWjAYMRYwFAYD VQQDEw02ODFmZTc5YS1lNmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwf2PO5KEn0yCo2ZIBFuO1jDTR+vXuJkcFxM6P/WG79Jp5Iwp3FSMQYW2WTLk pOp6oX5RR4hZo5sg01mZjR6l9ueMuC0cOzffqY+udF3YrtF9DjpynoK4StVlqlzJ nCOhG1dJcHPqoprRYnqypAExeax6Cxlo8cZuhPKdzwaOq58oWF+Ix1lrbrlVccoL 09YZ/GDxOQ6jF4eSbVb/StZTcDPyPHj2aBsUP4mF08pP/8BHI1doI4KnuKxzoDxp L5jSWiS4LzfXjtMNJPd4w+O+OoyS2WLOw9xD9+ccbq5sTS1h0/wPnKVPFShs5hxX Yze18CbQRRot/c0cvdy7USSUpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInwh2jl NRsCYJBnxr0V3kcTONJeMB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZXiKYhnQiiOMLRYNpAp7sMPLAk4molDb9LpZuTH8WwpEht2a1BaZF sinTT13F3xu7sL+Joi7SyyLpWYDHcGJwGQqKTrQn8dv0pdFzz3YVVwHwW0tz/TXA DtK9Ie166QnKS4YR1sT9ux9OzrI3xQQiQUJrBd0gw45HGrsIlr/Rbr2kAkSTQ1K2 pOXFIl+Qw8CQ33tj5fsaYP4HBe27ZS13ZZojmzLrlpl4z/OugV0dMjXYBueuL80K gRt11SU0QsIh9rCUrCihhhJQnUXHSLmpI13BYOob4DWGnTmeg/3ZP+xPnEon4gl2 zICbSTOQCHQhr0yoKIq7qUoQKtHxNEtH -----END CERTIFICATE-----Generated at Sun May 11 07:26:19 2025 by rpki-client