$ rpki-client -vvf rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft File: vNgnSl8YLOQAgCwIPo0VQi-bthE.mft (raw, json) Hash identifier: qhfVm4HXAQuyV9nI7f9u+e3o2bMPSYz4lLvOJ9lfZlE= Subject key identifier: DA:7C:FA:50:BF:8A:1F:4F:86:EE:22:34:37:67:00:38:4F:A4:0B:5B Authority key identifier: BC:D8:27:4A:5F:18:2C:E4:00:80:2C:08:3E:8D:15:42:2F:9B:B6:11 Certificate issuer: /CN=A91554E6/serialNumber=BCD8274A5F182CE400802C083E8D15422F9BB611 Certificate serial: 02BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft Manifest number: 03D3 Signing time: Sat 19 Apr 2025 01:24:18 +0000 Manifest this update: Sat 19 Apr 2025 01:24:17 +0000 Manifest next update: Sat 26 Apr 2025 01:24:17 +0000 Files and hashes: 1: vNgnSl8YLOQAgCwIPo0VQi-bthE.crl (hash: PUwET25nR3AD09WawEVZ6xYPyS4VW7ZEKBDxDdoAKNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.crl rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 01:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 700 (0x2bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91554E6, serialNumber=BCD8274A5F182CE400802C083E8D15422F9BB611 Validity Not Before: Apr 19 01:24:17 2025 GMT Not After : Apr 26 01:24:17 2025 GMT Subject: CN=6802fb41-5939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9b:9f:aa:67:a9:de:47:62:73:1d:52:48:a8: 1a:77:91:97:95:70:ee:02:8f:8f:f4:65:09:32:2e: 16:4c:b3:79:11:3c:f6:55:82:be:9c:5a:2e:85:9d: 95:64:03:75:ad:a6:2b:35:01:86:0f:e2:de:83:f4: e9:50:c2:f1:b7:44:2f:35:8c:ad:29:e0:ec:89:94: 60:ad:b5:9f:0f:0a:d9:48:ec:51:b5:71:42:98:20: c9:73:de:5d:51:33:40:d7:bb:f9:be:78:1a:78:d9: a9:eb:08:ed:7c:4e:a4:d9:64:3a:50:fc:1b:6a:29: 6d:bd:b1:dd:b8:a5:db:94:1e:5b:22:5e:fe:3c:28: 72:b6:30:bb:27:6f:db:0e:d7:59:31:57:79:2c:2c: 1d:a2:08:e7:79:2a:2d:e7:f5:00:6e:ca:91:fd:25: 59:d4:a9:41:d5:eb:ca:d7:46:c8:87:01:a0:31:d0: 8e:82:83:c8:74:04:d8:d2:4f:10:60:78:13:98:63: 9c:3a:33:db:c9:5f:22:17:c0:e7:e1:8f:e9:23:78: 50:2f:42:51:63:68:1c:3a:14:44:23:47:e1:16:3f: 53:f5:7f:22:26:df:ac:66:03:3b:4c:4b:84:55:35: 3b:50:88:15:81:b3:df:03:a1:ee:a9:ba:a2:c0:44: 3b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:7C:FA:50:BF:8A:1F:4F:86:EE:22:34:37:67:00:38:4F:A4:0B:5B X509v3 Authority Key Identifier: keyid:BC:D8:27:4A:5F:18:2C:E4:00:80:2C:08:3E:8D:15:42:2F:9B:B6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b8:5e:69:e7:05:13:bd:b5:73:ac:48:61:51:b6:73:22:90: af:c7:34:cb:5f:e6:db:bb:50:ce:12:23:06:be:1f:2c:29:fb: 9f:bb:4d:1d:78:82:ef:91:37:77:b7:1a:dc:bd:3c:85:8d:85: a9:fe:b4:33:45:87:c3:9c:ef:13:b5:bc:4c:4b:8d:98:17:1a: 41:9c:3d:18:c0:e2:46:5f:f4:89:e3:4b:74:11:2b:79:87:c5: b5:f0:84:a1:01:bf:5b:84:c5:dd:49:54:6c:ad:51:28:fb:fb: fe:b0:58:2a:5e:bd:aa:55:28:95:40:dd:98:5c:ef:aa:4e:64: 64:0c:9a:85:8c:72:a4:18:0d:a9:99:e4:31:83:f2:ed:1e:b3: 02:98:ee:ab:c3:9d:e2:be:a5:e9:cc:26:02:2d:52:7f:e7:f9: 8c:b8:82:f8:72:b3:d0:c4:48:59:47:39:47:aa:ed:d0:5a:1e: bc:74:b8:5e:d3:21:e8:84:f1:d0:c7:00:79:b0:e8:54:28:5e: 80:84:df:4b:32:11:57:50:f4:95:ee:2d:1c:8c:44:e0:85:05: 29:02:b4:41:40:cd:06:1e:61:7e:ca:b0:78:c1:4b:4b:5b:3d: 4d:20:02:46:58:0e:e2:d4:f4:7d:2c:7f:01:30:71:52:18:76: f6:d3:8b:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU0RTYxMTAvBgNVBAUTKEJDRDgyNzRBNUYxODJDRTQwMDgwMkMwODNFOEQxNTQy MkY5QkI2MTEwHhcNMjUwNDE5MDEyNDE3WhcNMjUwNDI2MDEyNDE3WjAYMRYwFAYD VQQDEw02ODAyZmI0MS01OTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5ufqmep3kdicx1SSKgad5GXlXDuAo+P9GUJMi4WTLN5ETz2VYK+nFouhZ2V ZAN1raYrNQGGD+Leg/TpUMLxt0QvNYytKeDsiZRgrbWfDwrZSOxRtXFCmCDJc95d UTNA17v5vngaeNmp6wjtfE6k2WQ6UPwbailtvbHduKXblB5bIl7+PChytjC7J2/b DtdZMVd5LCwdogjneSot5/UAbsqR/SVZ1KlB1evK10bIhwGgMdCOgoPIdATY0k8Q YHgTmGOcOjPbyV8iF8Dn4Y/pI3hQL0JRY2gcOhREI0fhFj9T9X8iJt+sZgM7TEuE VTU7UIgVgbPfA6HuqbqiwEQ7eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNp8+lC/ ih9Phu4iNDdnADhPpAtbMB8GA1UdIwQYMBaAFLzYJ0pfGCzkAIAsCD6NFUIvm7YR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTRFNi85RjA2Nzc0OEVE NEIxMUVDQUI4RkFBNzdDNEY5QUUwMi92TmduU2w4WUxPUUFnQ3dJUG8wVlFpLWJ0 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOZ25TbDhZTE9RQWdDd0lQbzBWUWktYnRoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTRFNi85RjA2Nzc0OEVENEIxMUVDQUI4RkFBNzdDNEY5QUUwMi92TmduU2w4WUxP UUFnQ3dJUG8wVlFpLWJ0aEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsuF5p5wUTvbVzrEhhUbZzIpCvxzTLX+bbu1DOEiMGvh8sKfufu00d eILvkTd3txrcvTyFjYWp/rQzRYfDnO8TtbxMS42YFxpBnD0YwOJGX/SJ40t0ESt5 h8W18IShAb9bhMXdSVRsrVEo+/v+sFgqXr2qVSiVQN2YXO+qTmRkDJqFjHKkGA2p meQxg/LtHrMCmO6rw53ivqXpzCYCLVJ/5/mMuIL4crPQxEhZRzlHqu3QWh68dLhe 0yHohPHQxwB5sOhUKF6AhN9LMhFXUPSV7i0cjETghQUpArRBQM0GHmF+yrB4wUtL Wz1NIAJGWA7i1PR9LH8BMHFSGHb204vZ -----END CERTIFICATE-----Generated at Sun Apr 20 05:01:57 2025 by rpki-client