$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft File: vHENBWM8XhGwdEtxrruIriskRuM.mft (raw, json) Hash identifier: m42H9lYjqGGN1Y3ts9bgXyFOJRaaU83nR+y49CsUXHA= Subject key identifier: 3D:30:98:F7:9B:3F:67:51:2C:32:C0:36:49:85:66:87:75:66:34:EA Authority key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 Certificate issuer: /CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Certificate serial: 1326 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft Manifest number: 131F Signing time: Fri 04 Apr 2025 17:06:53 +0000 Manifest this update: Fri 04 Apr 2025 17:06:52 +0000 Manifest next update: Fri 11 Apr 2025 17:06:52 +0000 Files and hashes: 1: vHENBWM8XhGwdEtxrruIriskRuM.crl (hash: Za81AOsmJnN459jMMyAp1L3tb6yaarTepo543oQTRB8=) 2: C2065F2CA5F311E8B54BF03DC4F9AE02.roa (hash: 7dzMQW8xZe2lq7d8lclvmxKRE19SR0FNahUj7xIAu1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4902 (0x1326) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF406 Validity Not Before: Apr 4 17:06:52 2025 GMT Not After : Apr 11 17:06:52 2025 GMT Subject: CN=67f011ad-57ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:b9:d4:4f:0f:b7:57:02:62:13:27:f9:18:1c: d5:89:92:a4:e5:b6:36:e5:ae:a9:82:70:38:fd:36: 49:1d:6f:db:6a:c9:bd:43:ba:76:61:58:e1:7f:f0: 81:2a:5f:ec:4a:d1:e2:b1:7c:86:09:8c:4f:3e:5e: 2a:86:10:c5:08:ff:db:e5:2d:38:f9:3c:07:93:8b: 95:12:c8:88:5f:cd:96:1c:11:d5:78:61:c1:d2:95: c0:1d:91:d0:46:c9:3f:56:00:60:a7:85:b7:87:3f: 1f:1f:08:1e:40:f2:6e:fa:2f:f3:03:9d:cc:6f:e6: 5c:8b:44:c2:9f:19:7f:1f:24:4d:72:d5:ae:25:7b: 82:af:d3:8d:20:80:af:16:43:e3:77:d2:9e:f6:1c: 07:73:37:63:da:43:3f:f1:a2:3f:24:44:d1:ad:28: 1e:f3:0e:84:08:69:07:d3:81:e3:aa:6f:c1:c8:a4: 7e:c7:7a:48:91:bf:30:0e:40:2d:13:45:54:00:44: 1f:6c:d3:c1:6b:96:de:96:b2:fb:b2:e8:ce:ca:86: 48:e0:a4:df:04:bb:e8:a3:49:bc:f0:3a:f8:19:e1: 68:8b:0c:d8:0a:13:6a:58:b4:93:01:20:66:10:42: 73:02:95:d4:c8:46:58:4c:51:1b:24:c2:86:b5:a6: 4c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:30:98:F7:9B:3F:67:51:2C:32:C0:36:49:85:66:87:75:66:34:EA X509v3 Authority Key Identifier: keyid:BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:ed:01:6f:87:3c:5d:43:a4:40:01:20:f0:b8:55:2e:a0:6c: d3:b7:ae:2c:63:71:e8:8a:8e:dc:a2:c0:ee:b5:8e:41:84:57: e5:3e:e7:79:5c:17:d7:a7:65:1c:d1:ae:6a:7a:27:71:c9:e3: fb:ad:fc:69:7a:fb:84:fb:48:9a:99:50:f9:e6:22:66:e7:02: d1:67:24:36:28:01:86:43:81:21:dd:63:61:05:cd:96:4e:d3: b2:12:1c:bb:2b:e9:d3:07:08:68:68:2a:86:a1:17:23:09:87: 6d:6e:e8:66:16:26:95:d2:e1:60:e5:ff:d0:05:ac:ef:d9:97: eb:ab:ff:d0:5f:3c:45:ed:34:c9:8d:9a:0c:22:f6:0d:3e:c6: c2:bf:3c:63:52:9e:be:68:22:14:d9:67:6f:41:ee:74:db:d8: ea:ed:36:a0:6b:59:21:3d:2d:e4:99:f4:0f:7c:af:7e:26:79: 14:90:a4:29:4f:b7:ed:23:b6:dc:4d:b3:79:00:e5:68:0e:13: e4:08:06:56:9b:31:ac:0c:65:97:60:63:d6:05:24:20:ea:f8: ba:ff:93:b5:8f:09:6b:e0:0c:c2:06:94:97:de:7e:ad:85:5d: 97:59:c4:2f:c3:31:32:7b:d6:98:76:6a:15:c7:80:36:cf:28: 9b:15:18:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY0MDYxMTAvBgNVBAUTKEJDNzEwRDA1NjMzQzVFMTFCMDc0NEI3MUFFQkI4OEFF MkIyNDQ2RTMwHhcNMjUwNDA0MTcwNjUyWhcNMjUwNDExMTcwNjUyWjAYMRYwFAYD VQQDEw02N2YwMTFhZC01N2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+7nUTw+3VwJiEyf5GBzViZKk5bY25a6pgnA4/TZJHW/basm9Q7p2YVjhf/CB Kl/sStHisXyGCYxPPl4qhhDFCP/b5S04+TwHk4uVEsiIX82WHBHVeGHB0pXAHZHQ Rsk/VgBgp4W3hz8fHwgeQPJu+i/zA53Mb+Zci0TCnxl/HyRNctWuJXuCr9ONIICv FkPjd9Ke9hwHczdj2kM/8aI/JETRrSge8w6ECGkH04Hjqm/ByKR+x3pIkb8wDkAt E0VUAEQfbNPBa5belrL7sujOyoZI4KTfBLvoo0m88Dr4GeFoiwzYChNqWLSTASBm EEJzApXUyEZYTFEbJMKGtaZM9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0wmPeb P2dRLDLANkmFZod1ZjTqMB8GA1UdIwQYMBaAFLxxDQVjPF4RsHRLca67iK4rJEbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjQwNi8zRjY3MEMwQ0E1 RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFhoR3dkRXR4cnJ1SXJpc2tS dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRU5CV004WGhHd2RFdHhycnVJcmlza1J1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjQwNi8zRjY3MEMwQ0E1RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFho R3dkRXR4cnJ1SXJpc2tSdU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM7QFvhzxdQ6RAASDwuFUuoGzTt64sY3Hoio7cosDutY5BhFflPud5 XBfXp2Uc0a5qeidxyeP7rfxpevuE+0iamVD55iJm5wLRZyQ2KAGGQ4Eh3WNhBc2W TtOyEhy7K+nTBwhoaCqGoRcjCYdtbuhmFiaV0uFg5f/QBazv2Zfrq//QXzxF7TTJ jZoMIvYNPsbCvzxjUp6+aCIU2WdvQe5029jq7Taga1khPS3kmfQPfK9+JnkUkKQp T7ftI7bcTbN5AOVoDhPkCAZWmzGsDGWXYGPWBSQg6vi6/5O1jwlr4AzCBpSX3n6t hV2XWcQvwzEye9aYdmoVx4A2zyibFRiD -----END CERTIFICATE-----Generated at Sun Apr 6 15:05:36 2025 by rpki-client