$ rpki-client -vvf rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft File: 0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft (raw, json) Hash identifier: qCiGZ3W2CrG5N6wihNx7jiB2EEJtBdG1InawSjjVCfE= Subject key identifier: 48:08:7C:D9:27:FB:7E:58:10:63:97:24:00:BE:C0:DE:E2:59:FC:97 Authority key identifier: D1:5A:5A:F9:AF:8D:99:DF:E5:E4:4D:35:EE:55:01:05:FE:D9:45:11 Certificate issuer: /CN=A91A20A3/serialNumber=D15A5AF9AF8D99DFE5E44D35EE550105FED94511 Certificate serial: 348A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft Manifest number: 347A Signing time: Fri 18 Apr 2025 15:04:41 +0000 Manifest this update: Fri 18 Apr 2025 15:04:41 +0000 Manifest next update: Fri 25 Apr 2025 15:04:41 +0000 Files and hashes: 1: 0Vpa-a-Nmd_l5E017lUBBf7ZRRE.crl (hash: 0KSqo9PJiLKTMH3rrUcGdtFKO0Ve9UTQTuuzknrCsU0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.crl rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 15:04:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13450 (0x348a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A20A3, serialNumber=D15A5AF9AF8D99DFE5E44D35EE550105FED94511 Validity Not Before: Apr 18 15:04:41 2025 GMT Not After : Apr 25 15:04:41 2025 GMT Subject: CN=68026a09-0fe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c2:41:23:26:2e:e7:21:e5:e6:8b:99:b3:03: 10:c1:a0:f9:7c:8d:3a:8d:80:6b:54:de:e1:a2:f2: 5d:e8:42:b6:d9:13:cf:58:ba:2c:14:4a:99:22:2b: 56:19:20:1a:61:21:12:33:8b:d4:5b:6b:94:aa:27: 52:22:b5:e5:7a:e9:24:7e:db:26:31:c1:68:63:bc: 8a:91:5b:6f:31:10:a1:78:56:f6:e0:19:f4:bb:4c: 03:d8:9c:98:86:ce:79:9c:71:3b:b2:83:cd:b6:d2: 04:d3:84:dc:91:da:83:fd:1e:18:7e:f7:65:7d:bf: 0c:a8:05:d5:20:5b:2c:c0:a0:7d:26:17:be:a2:08: 46:96:e7:01:6d:d9:a3:19:22:d8:e8:6f:ff:64:be: 5f:79:e9:3f:20:7e:8e:a7:9d:71:7a:4e:9d:8e:7c: c4:73:8b:5c:a1:07:9d:33:b3:a9:c0:83:99:15:a9: b2:44:80:0d:b9:d4:9d:76:65:54:e1:b7:36:24:1d: 07:e1:64:01:b5:c9:83:39:1b:69:dd:ab:90:80:16: 79:9e:87:21:f9:f5:16:60:49:ae:1b:aa:be:2e:b0: ee:b7:75:05:e7:80:d5:1a:b2:90:b9:b4:a1:41:f4: 89:17:46:f8:00:97:35:40:f3:44:28:12:25:c5:bc: 56:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:08:7C:D9:27:FB:7E:58:10:63:97:24:00:BE:C0:DE:E2:59:FC:97 X509v3 Authority Key Identifier: keyid:D1:5A:5A:F9:AF:8D:99:DF:E5:E4:4D:35:EE:55:01:05:FE:D9:45:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:10:38:ac:ce:bd:3a:af:84:3d:cf:a2:74:e0:3b:25:61:af: c5:ca:50:35:87:f7:a6:cd:5e:06:bf:ee:4f:04:da:79:4e:da: c5:15:22:44:e9:75:85:b2:2c:53:f4:fb:45:61:f3:9f:43:93: 4f:93:ba:cf:de:71:ee:22:13:da:86:9b:36:e2:07:75:a1:16: ea:a8:2c:1d:ec:72:a6:7e:e2:af:f0:e9:8e:d8:52:bc:9a:78: 2e:71:26:dc:94:da:e8:d0:72:21:77:03:eb:1d:be:10:fd:01: fd:52:71:cb:b9:64:62:b2:11:a1:db:fd:7a:3d:a9:ec:5f:8f: f0:3d:8b:3e:8b:6b:e8:be:fa:b2:92:27:98:06:ea:b7:9b:26: 8f:67:0c:d1:25:ee:42:b1:1e:d7:16:be:f0:3b:df:0d:89:da: 62:9e:cd:f1:9d:31:5d:93:bb:7b:89:7a:63:8b:13:f5:b5:cd: 9b:0a:9b:5d:c5:34:84:9e:db:fb:78:67:a4:e6:4f:74:3f:8f: 2b:59:68:56:90:12:05:a6:37:6c:8a:b2:53:87:19:ea:85:fa: 13:5c:71:a1:e8:b4:1d:50:54:22:25:fd:02:4a:f6:2c:7b:e6: 53:03:04:c8:a5:03:84:3e:ac:86:78:27:73:4a:4e:3f:fb:9e: 71:91:07:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIwQTMxMTAvBgNVBAUTKEQxNUE1QUY5QUY4RDk5REZFNUU0NEQzNUVFNTUwMTA1 RkVEOTQ1MTEwHhcNMjUwNDE4MTUwNDQxWhcNMjUwNDI1MTUwNDQxWjAYMRYwFAYD VQQDEw02ODAyNmEwOS0wZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8JBIyYu5yHl5ouZswMQwaD5fI06jYBrVN7hovJd6EK22RPPWLosFEqZIitW GSAaYSESM4vUW2uUqidSIrXleukkftsmMcFoY7yKkVtvMRCheFb24Bn0u0wD2JyY hs55nHE7soPNttIE04TckdqD/R4Yfvdlfb8MqAXVIFsswKB9Jhe+oghGlucBbdmj GSLY6G//ZL5feek/IH6Op51xek6djnzEc4tcoQedM7OpwIOZFamyRIANudSddmVU 4bc2JB0H4WQBtcmDORtp3auQgBZ5noch+fUWYEmuG6q+LrDut3UF54DVGrKQubSh QfSJF0b4AJc1QPNEKBIlxbxWOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgIfNkn +35YEGOXJAC+wN7iWfyXMB8GA1UdIwQYMBaAFNFaWvmvjZnf5eRNNe5VAQX+2UUR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjBBMy9BRjRCOEE2MjFE OUUxMUUyOEU1M0MwOEUwOEIwMkNEMi8wVnBhLWEtTm1kX2w1RTAxN2xVQkJmN1pS UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBWcGEtYS1ObWRfbDVFMDE3bFVCQmY3WlJSRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjBBMy9BRjRCOEE2MjFEOUUxMUUyOEU1M0MwOEUwOEIwMkNEMi8wVnBhLWEtTm1k X2w1RTAxN2xVQkJmN1pSUkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1EDiszr06r4Q9z6J04DslYa/FylA1h/emzV4Gv+5PBNp5TtrFFSJE 6XWFsixT9PtFYfOfQ5NPk7rP3nHuIhPahps24gd1oRbqqCwd7HKmfuKv8OmO2FK8 mngucSbclNro0HIhdwPrHb4Q/QH9UnHLuWRishGh2/16PansX4/wPYs+i2vovvqy kieYBuq3myaPZwzRJe5CsR7XFr7wO98Nidpins3xnTFdk7t7iXpjixP1tc2bCptd xTSEntv7eGek5k90P48rWWhWkBIFpjdsirJThxnqhfoTXHGh6LQdUFQiJf0CSvYs e+ZTAwTIpQOEPqyGeCdzSk4/+55xkQeu -----END CERTIFICATE-----Generated at Sat Apr 19 00:51:27 2025 by rpki-client