$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft File: vrCjIjTRl23j3iJaVReALbYTqLY.mft (raw, json) Hash identifier: 5kAYZRtn5VKvyU8ZflaYbdxdDodKFhdQyvs6z2RR1w4= Subject key identifier: 22:6F:68:2E:E9:78:F9:AA:77:EF:46:FA:73:79:86:0C:87:6F:37:78 Authority key identifier: BE:B0:A3:22:34:D1:97:6D:E3:DE:22:5A:55:17:80:2D:B6:13:A8:B6 Certificate issuer: /CN=A91AF17B/serialNumber=BEB0A32234D1976DE3DE225A5517802DB613A8B6 Certificate serial: 059F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft Manifest number: 059A Signing time: Sat 12 Apr 2025 22:50:50 +0000 Manifest this update: Sat 12 Apr 2025 22:50:49 +0000 Manifest next update: Sat 19 Apr 2025 22:50:49 +0000 Files and hashes: 1: vrCjIjTRl23j3iJaVReALbYTqLY.crl (hash: rv+ErHPkLsmKR2DxKyehV3fEoD342n43mp9EGFRxjvg=) 2: 9C955450C77E11EB9DF68B6AC4F9AE02.roa (hash: CdejYox3BV6EKy7rSMjwH4v5mRzFb0N6duLMtMnZvdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.crl rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 22:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1439 (0x59f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF17B, serialNumber=BEB0A32234D1976DE3DE225A5517802DB613A8B6 Validity Not Before: Apr 12 22:50:49 2025 GMT Not After : Apr 19 22:50:49 2025 GMT Subject: CN=67faee49-630f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f1:21:68:48:55:98:f9:91:ca:b7:de:69:b7: 3e:27:3c:16:4a:0f:ab:e4:79:91:93:f1:df:c0:05: e5:43:12:80:a0:f7:dc:d2:e8:9d:74:4b:ab:ed:d3: 62:a2:bb:5e:60:2b:92:78:f2:db:f1:09:85:25:6b: ee:01:e0:f4:fc:ba:4d:e7:2a:6b:65:9e:99:df:b3: 72:12:b1:eb:5c:fb:30:79:21:80:1d:99:b4:36:b0: df:82:e2:d4:7c:3b:13:df:2e:8e:0a:21:23:c5:bf: 50:68:3e:00:24:f6:0b:09:5f:d7:16:ab:b2:fb:36: e6:8c:6d:62:0e:cd:27:15:eb:78:72:9f:82:7f:da: 9c:9f:6d:2f:13:04:4f:71:f9:66:33:c0:1b:99:5e: 73:1c:e0:bf:56:c6:3c:35:c0:1a:1b:5d:fb:d4:8a: d3:da:68:bc:46:6f:e3:0d:47:61:0c:64:17:57:45: 27:a0:79:e1:63:e0:7f:39:7b:00:a5:3e:2c:86:5e: 6e:92:f5:3e:79:8d:bc:0e:7c:54:43:76:cb:05:b3: 83:ca:5d:a1:9c:77:c3:a8:f8:c8:6b:e1:6d:90:52: f2:22:d9:f5:7a:ef:b5:1f:12:4b:af:4a:ca:4c:9a: c0:df:38:3f:af:cf:a4:e8:01:14:2a:99:e8:36:fa: 04:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:6F:68:2E:E9:78:F9:AA:77:EF:46:FA:73:79:86:0C:87:6F:37:78 X509v3 Authority Key Identifier: keyid:BE:B0:A3:22:34:D1:97:6D:E3:DE:22:5A:55:17:80:2D:B6:13:A8:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:bb:9e:e7:b5:b4:3b:e1:11:26:2d:97:71:22:ea:09:5c:96: 56:34:b7:9a:14:e3:b8:93:d7:e0:02:6b:8b:32:83:da:4f:b5: 17:f3:15:73:92:45:d7:32:01:a4:dd:0e:7f:ee:65:31:b3:56: 53:eb:f3:9e:3a:e6:af:23:7e:e5:5f:fd:e1:df:b2:95:90:fb: 95:f2:54:57:2b:d6:7e:1c:82:f3:70:70:3d:66:9e:a6:20:26: c5:58:28:1e:53:f7:54:20:60:58:dc:8e:4f:8a:9d:53:88:cc: 74:1c:ad:fb:f0:f7:fd:f6:9a:7b:f1:6c:15:e2:5a:97:da:5f: 40:24:53:f5:d2:64:0e:51:7d:56:6b:31:ed:2b:c4:d6:89:d4: ac:2e:5e:83:a6:6f:91:b6:7a:3c:53:91:49:5f:15:3f:1f:a5: d8:36:7e:28:ac:2a:10:bc:32:58:9f:eb:53:25:dc:ae:54:bb: 7a:b7:f2:84:44:90:3e:4d:1e:5b:6b:16:6b:7a:33:5b:ef:80: af:90:86:78:b9:51:70:21:5c:17:2a:94:d0:32:75:a7:23:06: bf:06:df:97:74:b8:7c:44:73:56:fa:02:28:19:18:21:24:88: 81:99:25:c6:2d:89:3b:55:ad:ce:96:a5:a1:d9:d9:0c:a5:46: 51:c9:c5:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxN0IxMTAvBgNVBAUTKEJFQjBBMzIyMzREMTk3NkRFM0RFMjI1QTU1MTc4MDJE QjYxM0E4QjYwHhcNMjUwNDEyMjI1MDQ5WhcNMjUwNDE5MjI1MDQ5WjAYMRYwFAYD VQQDEw02N2ZhZWU0OS02MzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3vEhaEhVmPmRyrfeabc+JzwWSg+r5HmRk/HfwAXlQxKAoPfc0uiddEur7dNi orteYCuSePLb8QmFJWvuAeD0/LpN5yprZZ6Z37NyErHrXPsweSGAHZm0NrDfguLU fDsT3y6OCiEjxb9QaD4AJPYLCV/XFquy+zbmjG1iDs0nFet4cp+Cf9qcn20vEwRP cflmM8AbmV5zHOC/VsY8NcAaG1371IrT2mi8Rm/jDUdhDGQXV0UnoHnhY+B/OXsA pT4shl5ukvU+eY28DnxUQ3bLBbODyl2hnHfDqPjIa+FtkFLyItn1eu+1HxJLr0rK TJrA3zg/r8+k6AEUKpnoNvoEgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJvaC7p ePmqd+9G+nN5hgyHbzd4MB8GA1UdIwQYMBaAFL6woyI00Zdt494iWlUXgC22E6i2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE3Qi9FQjAyNzdGQ0M3 N0ExMUVCQkI4MEI4NzhDNEY5QUUwMi92ckNqSWpUUmwyM2ozaUphVlJlQUxiWVRx TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZyQ2pJalRSbDIzajNpSmFWUmVBTGJZVHFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE3Qi9FQjAyNzdGQ0M3N0ExMUVCQkI4MEI4NzhDNEY5QUUwMi92ckNqSWpUUmwy M2ozaUphVlJlQUxiWVRxTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbu57ntbQ74REmLZdxIuoJXJZWNLeaFOO4k9fgAmuLMoPaT7UX8xVz kkXXMgGk3Q5/7mUxs1ZT6/OeOuavI37lX/3h37KVkPuV8lRXK9Z+HILzcHA9Zp6m ICbFWCgeU/dUIGBY3I5Pip1TiMx0HK378Pf99pp78WwV4lqX2l9AJFP10mQOUX1W azHtK8TWidSsLl6Dpm+Rtno8U5FJXxU/H6XYNn4orCoQvDJYn+tTJdyuVLt6t/KE RJA+TR5baxZrejNb74CvkIZ4uVFwIVwXKpTQMnWnIwa/Bt+XdLh8RHNW+gIoGRgh JIiBmSXGLYk7Va3OlqWh2dkMpUZRycU6 -----END CERTIFICATE-----Generated at Sun Apr 13 06:00:07 2025 by rpki-client