$ rpki-client -vvf rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft File: vTfx1AdHvmxfXGujMH32Vgq2gaM.mft (raw, json) Hash identifier: JHQGaRBJ9bpiFYyH8Ct+fuyij6k8mZJEUbHwPvAdeCo= Subject key identifier: 43:B7:39:E3:41:32:1E:96:D7:C0:1F:0E:50:BA:E0:7F:54:B9:F1:D4 Authority key identifier: BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 Certificate issuer: /CN=A91817E6/serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft Manifest number: 09EC Signing time: Fri 04 Apr 2025 20:42:22 +0000 Manifest this update: Fri 04 Apr 2025 20:42:22 +0000 Manifest next update: Fri 11 Apr 2025 20:42:22 +0000 Files and hashes: 1: vTfx1AdHvmxfXGujMH32Vgq2gaM.crl (hash: Mj+ngU5v4EPGY0OBwZntO+Gt2RVDY1DCRqRysbKo5Mc=) 2: 28C454FCB41211EF8D2EC946C4F9AE02.roa (hash: C0N61U0YEOhXRTQRllW2NuUOi6qXdqTI0gAe9H3eVh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91817E6 Validity Not Before: Apr 4 20:42:22 2025 GMT Not After : Apr 11 20:42:22 2025 GMT Subject: CN=67f0442e-bb0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:79:a8:8c:aa:cc:f9:ae:fa:6f:8a:d4:cd:a6: dd:64:93:5c:ce:8e:e0:b6:52:fd:e1:e8:26:80:eb: 43:40:51:f0:9e:90:8b:18:27:93:a3:7a:29:ba:67: d3:98:ab:4d:c1:24:7b:05:fc:58:a6:86:f0:cf:fe: 0d:6d:b1:60:9d:88:7d:96:59:db:26:12:fd:6f:7b: 60:4e:42:ab:db:7a:fb:d8:43:c3:74:77:e2:4f:c7: 72:33:19:d1:89:01:d6:f5:b6:bf:d1:18:5a:f7:7e: 8b:bb:4b:16:4f:fc:90:6d:64:65:68:89:20:89:e5: ca:25:a6:98:16:bc:90:ae:80:68:ee:29:4d:38:bf: 98:f2:43:54:f9:b2:3c:1f:1b:51:28:3b:60:94:00: 24:fc:5d:67:1e:36:7f:68:68:e7:e9:ea:67:3d:98: d8:11:fb:a2:30:bd:ba:4c:37:8d:75:71:71:96:fc: 21:91:66:c1:de:21:d6:da:ff:1e:80:b6:11:a3:91: 6c:75:d7:d6:c4:70:97:e8:88:fe:d0:03:a9:95:4b: 58:41:aa:e8:c7:e5:26:c7:79:3d:e7:c0:8d:84:26: e7:16:68:99:7e:76:d7:a6:98:07:60:98:f1:c8:ee: c2:f6:31:9a:a8:0c:3d:8e:38:4d:13:2e:97:0d:35: c0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B7:39:E3:41:32:1E:96:D7:C0:1F:0E:50:BA:E0:7F:54:B9:F1:D4 X509v3 Authority Key Identifier: keyid:BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:fa:a2:9e:f6:cf:4a:e1:e8:34:af:79:98:d0:c3:88:ff:a4: 52:94:bd:da:a4:91:a9:aa:95:03:a8:8b:93:82:90:db:c1:86: 45:69:02:d4:21:8b:97:bd:03:66:c2:61:5a:2b:55:01:09:a6: cd:ab:fc:af:3a:90:63:d0:6f:69:c5:7b:60:29:9b:aa:c9:d3: 11:9e:57:10:fa:8d:e9:80:40:e5:ad:26:f0:90:89:5d:91:01: a1:1a:27:b3:24:e7:7c:f6:2a:bd:23:f9:af:65:48:ba:fd:19: 2a:b3:23:e7:b2:65:ae:f0:a9:88:19:d0:98:3b:5d:73:bb:a4: b6:ef:c1:d5:f5:4d:21:ba:62:62:00:15:d8:8a:9f:bd:6a:32: af:01:b4:ff:e3:c0:ff:7b:68:f8:62:00:28:6c:b5:39:dd:60: 15:fe:ab:91:7b:5e:aa:ac:0d:6b:83:ae:a7:96:d0:40:aa:a5: 5c:8c:98:d4:f3:60:1b:63:1b:a8:c5:7c:57:c2:dd:47:28:b4: c7:94:fa:46:59:5e:aa:dc:fb:1b:c0:88:1b:fa:12:92:c2:ff: 9e:e7:d2:14:b4:72:ce:71:dc:52:c8:23:16:ff:c9:66:1d:28: 08:79:59:36:99:e4:59:5c:2e:bd:3e:34:06:6d:79:fa:5e:c2: 04:7d:c6:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTdFNjExMC8GA1UEBRMoQkQzN0YxRDQwNzQ3QkU2QzVGNUM2QkEzMzA3REY2NTYw QUI2ODFBMzAeFw0yNTA0MDQyMDQyMjJaFw0yNTA0MTEyMDQyMjJaMBgxFjAUBgNV BAMTDTY3ZjA0NDJlLWJiMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUeaiMqsz5rvpvitTNpt1kk1zOjuC2Uv3h6CaA60NAUfCekIsYJ5Ojeim6Z9OY q03BJHsF/FimhvDP/g1tsWCdiH2WWdsmEv1ve2BOQqvbevvYQ8N0d+JPx3IzGdGJ Adb1tr/RGFr3fou7SxZP/JBtZGVoiSCJ5colppgWvJCugGjuKU04v5jyQ1T5sjwf G1EoO2CUACT8XWceNn9oaOfp6mc9mNgR+6IwvbpMN411cXGW/CGRZsHeIdba/x6A thGjkWx119bEcJfoiP7QA6mVS1hBqujH5SbHeT3nwI2EJucWaJl+dtemmAdgmPHI 7sL2MZqoDD2OOE0TLpcNNcBpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ7c540Ey HpbXwB8OULrgf1S58dQwHwYDVR0jBBgwFoAUvTfx1AdHvmxfXGujMH32Vgq2gaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxN0U2LzU1NzQwRTcwQjNC MzExRUFCMTk4Q0UwREM0RjlBRTAyL3ZUZngxQWRIdm14ZlhHdWpNSDMyVmdxMmdh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdlRmeDFBZEh2bXhmWEd1ak1IMzJWZ3EyZ2FNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgx N0U2LzU1NzQwRTcwQjNCMzExRUFCMTk4Q0UwREM0RjlBRTAyL3ZUZngxQWRIdm14 ZlhHdWpNSDMyVmdxMmdhTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHj6op72z0rh6DSveZjQw4j/pFKUvdqkkamqlQOoi5OCkNvBhkVpAtQh i5e9A2bCYVorVQEJps2r/K86kGPQb2nFe2Apm6rJ0xGeVxD6jemAQOWtJvCQiV2R AaEaJ7Mk53z2Kr0j+a9lSLr9GSqzI+eyZa7wqYgZ0Jg7XXO7pLbvwdX1TSG6YmIA FdiKn71qMq8BtP/jwP97aPhiAChstTndYBX+q5F7XqqsDWuDrqeW0ECqpVyMmNTz YBtjG6jFfFfC3UcotMeU+kZZXqrc+xvAiBv6EpLC/57n0hS0cs5x3FLIIxb/yWYd KAh5WTaZ5FlcLr0+NAZtefpewgR9xjc= -----END CERTIFICATE-----Generated at Sat Apr 5 05:59:50 2025 by rpki-client