$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft File: VCuU2GJc9xGWT9E3QSldJ616kAQ.mft (raw, json) Hash identifier: hvUhuT2WLooNsbIffEO4fNG+AvsQUTQDetondruH2TA= Subject key identifier: 5F:73:EB:4A:18:1C:E7:1F:5E:86:6F:4D:A8:73:89:63:61:CC:96:8C Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft Manifest number: 01A9 Signing time: Sat 29 Mar 2025 03:23:23 +0000 Manifest this update: Sat 29 Mar 2025 03:23:23 +0000 Manifest next update: Sat 05 Apr 2025 03:23:23 +0000 Files and hashes: 1: VCuU2GJc9xGWT9E3QSldJ616kAQ.crl (hash: wFO5fSvikfErHgt9LTgdRXuZtCN0CmYTvKKGdUnQOB0=) 2: 3352C1BAECFC11EFA398671BC4F9AE02.roa (hash: Us38glA0PRb/dVpHLW6+MQj9tdG4tZeLrUJnViUxN+4=) 3: 020607A2498711EFBB260663C4F9AE02.roa (hash: nvNzzZq+Ecqxgr++TobaSpU0AIRI4UzjKN1i1sjHamI=) 4: D13FCAEAA62E11EFBC284C42C4F9AE02.roa (hash: cwiDsaKdFR4GF6q5SXzSaW46UvaZNCjfFJfJT0yP3w0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520 Validity Not Before: Mar 29 03:23:23 2025 GMT Not After : Apr 5 03:23:23 2025 GMT Subject: CN=67e767ab-fa56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:af:55:9e:d0:4e:19:83:3f:4b:68:3b:a5:6a: 04:1c:64:81:a1:eb:96:7d:38:39:78:b4:4b:89:30: f4:d9:bc:12:b7:52:64:7a:99:16:8c:db:2b:ea:ca: 4f:d4:7c:e8:3a:c3:cc:6f:62:e4:9f:96:30:e7:7c: bc:49:90:77:66:ad:4a:cd:e3:d7:09:d0:af:24:69: 6f:16:93:62:ee:24:1d:8e:84:f3:58:fc:70:41:63: 8d:ce:a2:4d:71:ef:8d:8c:97:19:ac:fa:84:63:71: 7a:54:52:bc:9d:48:f4:5d:31:28:68:80:59:58:14: df:06:f1:2b:f3:b1:9a:34:39:0e:ec:46:89:b3:12: d7:ea:b0:a6:7f:21:d8:8a:b4:00:74:4e:48:18:d7: c1:ff:29:fc:36:97:a7:4a:f6:47:26:6f:53:fa:81: 24:46:51:65:27:5c:39:cc:08:d6:3f:57:80:7d:fc: d5:51:61:63:4e:dc:9d:73:1f:f6:94:fb:ab:5b:a2: 91:15:65:09:3a:70:d5:91:19:d2:13:bf:bf:95:aa: 97:48:08:9c:a4:fb:53:fe:b2:51:6f:00:35:ed:bd: 14:f8:b2:b6:78:9b:71:34:66:0e:d3:c4:71:61:7c: f9:9e:ee:62:3a:33:d8:52:4e:0f:db:60:b0:28:aa: 85:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:73:EB:4A:18:1C:E7:1F:5E:86:6F:4D:A8:73:89:63:61:CC:96:8C X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b4:ba:d9:2c:70:0b:44:de:68:a8:7f:77:b0:b0:6b:1b:5d: 5e:80:f1:c7:e3:96:16:f5:36:b4:9f:48:44:7d:2e:0d:c1:6e: d9:0f:64:45:23:01:0e:f8:81:bf:65:ac:68:d2:ac:28:92:5e: 60:3b:0d:1e:da:fb:fe:54:f6:6e:81:7c:44:de:52:65:c2:4f: 0f:aa:1a:54:37:c9:5e:fc:76:d1:9a:22:f8:13:05:48:71:11: fa:c2:18:02:7c:7f:e4:92:9d:ff:3b:a0:1f:10:60:7b:49:f3: 3a:20:71:33:26:53:79:4c:82:f1:0a:76:81:e2:e7:c9:e2:d7: 7d:2d:1c:14:e7:ad:00:cb:73:b5:05:df:45:23:7c:64:8d:ed: 69:c4:82:77:93:42:be:46:3f:73:74:3f:02:17:43:96:10:64: bb:5a:e3:9f:25:87:ec:96:fe:52:c7:4a:e7:0d:d6:b3:8c:0c: d6:45:b1:c5:0a:32:9c:69:1f:ee:2f:df:6a:da:3d:b5:3f:e6: 36:50:fe:77:a1:cb:44:8c:e6:4e:4d:4f:11:23:6a:4c:8a:21: 2c:bc:91:d8:4a:6e:32:4e:a4:a5:aa:f9:26:eb:19:e3:fd:c5: cd:06:20:4c:26:0c:23:51:33:27:6e:6f:5e:5f:ad:74:13:4f: ea:48:fb:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUwMzI5MDMyMzIzWhcNMjUwNDA1MDMyMzIzWjAYMRYwFAYD VQQDEw02N2U3NjdhYi1mYTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxa9VntBOGYM/S2g7pWoEHGSBoeuWfTg5eLRLiTD02bwSt1JkepkWjNsr6spP 1HzoOsPMb2Lkn5Yw53y8SZB3Zq1KzePXCdCvJGlvFpNi7iQdjoTzWPxwQWONzqJN ce+NjJcZrPqEY3F6VFK8nUj0XTEoaIBZWBTfBvEr87GaNDkO7EaJsxLX6rCmfyHY irQAdE5IGNfB/yn8NpenSvZHJm9T+oEkRlFlJ1w5zAjWP1eAffzVUWFjTtydcx/2 lPurW6KRFWUJOnDVkRnSE7+/laqXSAicpPtT/rJRbwA17b0U+LK2eJtxNGYO08Rx YXz5nu5iOjPYUk4P22CwKKqFQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9z60oY HOcfXoZvTahziWNhzJaMMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC8xNjFENEMwQUU0Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4 R1dUOUUzUVNsZEo2MTZrQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBstLrZLHALRN5oqH93sLBrG11egPHH45YW9Ta0n0hEfS4NwW7ZD2RF IwEO+IG/Zaxo0qwokl5gOw0e2vv+VPZugXxE3lJlwk8PqhpUN8le/HbRmiL4EwVI cRH6whgCfH/kkp3/O6AfEGB7SfM6IHEzJlN5TILxCnaB4ufJ4td9LRwU560Ay3O1 Bd9FI3xkje1pxIJ3k0K+Rj9zdD8CF0OWEGS7WuOfJYfslv5Sx0rnDdazjAzWRbHF CjKcaR/uL99q2j21P+Y2UP53octEjOZOTU8RI2pMiiEsvJHYSm4yTqSlqvkm6xnj /cXNBiBMJgwjUTMnbm9eX610E0/qSPt4 -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:53 2025 by rpki-client