$ rpki-client -vvf rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft File: VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft (raw, json) Hash identifier: F5prmfSbISSVMOUsCIGe16k5nr0+HWwMM4QpfPNFHCk= Subject key identifier: 60:66:06:FC:D2:5C:7A:65:CC:59:24:6B:33:84:75:22:CF:48:24:14 Authority key identifier: 55:E4:85:18:8C:5C:9D:2E:24:C8:34:5C:97:BC:34:62:72:1C:98:CE Certificate issuer: /CN=A912FBD2/serialNumber=55E485188C5C9D2E24C8345C97BC3462721C98CE Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VeSFGIxcnS4kyDRcl7w0YnIcmM4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft Manifest number: 03EF Signing time: Thu 03 Apr 2025 00:31:30 +0000 Manifest this update: Thu 03 Apr 2025 00:31:29 +0000 Manifest next update: Thu 10 Apr 2025 00:31:29 +0000 Files and hashes: 1: VeSFGIxcnS4kyDRcl7w0YnIcmM4.crl (hash: ydXgTh01pN1nq9qBuyEZbpThiU5nCIhXhCIZDmNP/Do=) 2: 8A7E8D5C6F5511ECB5FAA20FC4F9AE02.roa (hash: +VP5NY/+4Z/8NphSit3psl/B3s8Rh2QC3KRRxPvmIp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.crl rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VeSFGIxcnS4kyDRcl7w0YnIcmM4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FBD2 Validity Not Before: Apr 3 00:31:29 2025 GMT Not After : Apr 10 00:31:29 2025 GMT Subject: CN=67edd6e1-8036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:50:e8:c7:60:ac:bc:e8:16:6f:30:3d:9f:1e: 5f:9d:5c:cf:5b:87:66:56:b4:91:8c:1a:fd:20:de: 52:c7:6b:ae:bb:a5:6c:2e:e0:7c:16:d2:5b:fa:9a: 58:2d:ce:c0:9d:75:e3:de:3d:7c:83:f2:07:ad:d7: 0a:24:c2:d7:95:a6:cd:d9:a8:38:df:12:33:f9:5d: 16:0e:13:f4:3e:23:13:c9:76:be:30:7a:0c:dc:be: 02:e9:66:94:55:89:01:f2:7a:2a:8d:5a:c5:cd:75: dd:c2:8d:d8:21:be:3d:37:a5:bf:e3:68:4f:6c:78: 16:fb:91:45:f7:8a:f5:3d:91:15:ef:3b:7b:a9:b8: bc:97:d4:50:25:f1:df:8b:5a:32:f2:1b:18:b7:28: e5:20:00:b8:10:75:8d:10:ad:49:c1:48:5f:1f:ff: cb:27:43:88:f8:f0:7b:22:94:4f:44:f0:3e:36:a2: 83:c8:e4:4d:50:4c:16:2a:f6:f8:a1:a2:ec:82:3e: 83:af:22:ed:94:e8:8d:b8:84:ff:e2:2e:fc:f9:87: 18:59:6b:d4:de:1d:7e:46:ef:64:e8:e9:a2:64:d0: 3c:bc:16:28:e4:f4:b5:64:d9:ca:70:1c:5d:e8:56: 1e:42:7a:b2:83:ea:b1:31:36:e8:11:af:99:43:1a: e6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:66:06:FC:D2:5C:7A:65:CC:59:24:6B:33:84:75:22:CF:48:24:14 X509v3 Authority Key Identifier: keyid:55:E4:85:18:8C:5C:9D:2E:24:C8:34:5C:97:BC:34:62:72:1C:98:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VeSFGIxcnS4kyDRcl7w0YnIcmM4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:a9:2d:aa:21:85:2e:32:bc:2a:6a:91:0b:b2:ce:6e:b2:ec: 53:73:0c:25:f9:52:6f:9d:10:ff:8d:e0:e6:0c:51:11:ad:25: fa:b8:72:16:70:de:96:99:c0:d6:88:7b:0f:dd:82:8f:e5:20: 02:67:0d:d5:5a:49:31:c2:96:1f:66:14:8a:6b:84:83:81:f4: 8e:ab:6c:ef:b9:fa:35:0b:56:c3:5a:f7:cd:b3:f3:ee:20:70: 08:b9:01:5f:43:74:0a:c6:ed:12:43:c4:2a:98:38:89:5c:25: 48:94:19:d2:1c:78:fc:60:cd:f4:d7:f8:5c:7b:95:60:73:ae: c8:c8:41:e4:e5:cc:87:9a:b5:ba:44:bd:55:bb:9d:58:a3:53: c7:ec:b5:f6:d2:61:fc:80:ac:87:95:e5:6b:b4:5c:c9:48:0f: 04:be:9e:3d:69:e7:db:04:a9:f1:c2:00:82:c8:52:b0:7c:65: de:81:cc:0d:b4:c7:79:90:0c:2b:5c:e2:fe:7e:c1:36:8d:fb: 18:0b:d8:0c:f0:ef:32:6c:8d:7a:32:12:ad:3d:7c:2c:44:47: 8d:96:fd:32:b6:5f:c9:01:7e:0b:39:36:c5:ea:6b:8d:3b:48: 13:31:c9:b6:aa:e5:da:3e:2d:f9:5d:fa:1e:0d:33:18:ab:65: 90:5b:23:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCRDIxMTAvBgNVBAUTKDU1RTQ4NTE4OEM1QzlEMkUyNEM4MzQ1Qzk3QkMzNDYy NzIxQzk4Q0UwHhcNMjUwNDAzMDAzMTI5WhcNMjUwNDEwMDAzMTI5WjAYMRYwFAYD VQQDEw02N2VkZDZlMS04MDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FDox2CsvOgWbzA9nx5fnVzPW4dmVrSRjBr9IN5Sx2uuu6VsLuB8FtJb+ppY Lc7AnXXj3j18g/IHrdcKJMLXlabN2ag43xIz+V0WDhP0PiMTyXa+MHoM3L4C6WaU VYkB8noqjVrFzXXdwo3YIb49N6W/42hPbHgW+5FF94r1PZEV7zt7qbi8l9RQJfHf i1oy8hsYtyjlIAC4EHWNEK1JwUhfH//LJ0OI+PB7IpRPRPA+NqKDyORNUEwWKvb4 oaLsgj6DryLtlOiNuIT/4i78+YcYWWvU3h1+Ru9k6OmiZNA8vBYo5PS1ZNnKcBxd 6FYeQnqyg+qxMTboEa+ZQxrm8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBmBvzS XHplzFkkazOEdSLPSCQUMB8GA1UdIwQYMBaAFFXkhRiMXJ0uJMg0XJe8NGJyHJjO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkJEMi82RDc0OTc4QzZG NTExMUVDOTY1MURBMDlDNEY5QUUwMi9WZVNGR0l4Y25TNGt5RFJjbDd3MFluSWNt TTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZlU0ZHSXhjblM0a3lEUmNsN3cwWW5JY21NNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkJEMi82RDc0OTc4QzZGNTExMUVDOTY1MURBMDlDNEY5QUUwMi9WZVNGR0l4Y25T NGt5RFJjbDd3MFluSWNtTTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXqS2qIYUuMrwqapELss5usuxTcwwl+VJvnRD/jeDmDFERrSX6uHIW cN6WmcDWiHsP3YKP5SACZw3VWkkxwpYfZhSKa4SDgfSOq2zvufo1C1bDWvfNs/Pu IHAIuQFfQ3QKxu0SQ8QqmDiJXCVIlBnSHHj8YM301/hce5Vgc67IyEHk5cyHmrW6 RL1Vu51Yo1PH7LX20mH8gKyHleVrtFzJSA8Evp49aefbBKnxwgCCyFKwfGXegcwN tMd5kAwrXOL+fsE2jfsYC9gM8O8ybI16MhKtPXwsREeNlv0ytl/JAX4LOTbF6muN O0gTMcm2quXaPi35XfoeDTMYq2WQWyMG -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:29 2025 by rpki-client