$ rpki-client -vvf rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.mft File: vK5XMu8hlzK0msgoTbGBTpLIaxE.mft (raw, json) Hash identifier: lmTzhP5YLvls+ckEBKQGY1vJD6inAuPSM9NpLyfAEq0= Subject key identifier: E9:C0:15:0F:32:9F:8B:13:28:93:8D:D8:8A:A4:5C:E1:28:6B:40:FB Authority key identifier: BC:AE:57:32:EF:21:97:32:B4:9A:C8:28:4D:B1:81:4E:92:C8:6B:11 Certificate issuer: /CN=A91B653B/serialNumber=BCAE5732EF219732B49AC8284DB1814E92C86B11 Certificate serial: 086A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.mft Manifest number: 085E Signing time: Fri 04 Apr 2025 20:52:18 +0000 Manifest this update: Fri 04 Apr 2025 20:52:17 +0000 Manifest next update: Fri 11 Apr 2025 20:52:17 +0000 Files and hashes: 1: vK5XMu8hlzK0msgoTbGBTpLIaxE.crl (hash: jL7AcKOp0WqlktYdtCGddbrTRT1RXRa7GIRw1Z+Fqlc=) 2: 2015E6B2C66F11EAA0B1B019C4F9AE02.roa (hash: C1ZgQz60lAzJ/pUgilayEtzS5Rl0aKnA28InX9MzEYY=) 3: 1F99EBD4C66F11EAA0B1B019C4F9AE02.roa (hash: mBsQp19MJChPAh0neRjuRaTqTqqlhbgiZ+3pPDgiX8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.crl rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2154 (0x86a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B653B Validity Not Before: Apr 4 20:52:17 2025 GMT Not After : Apr 11 20:52:17 2025 GMT Subject: CN=67f04681-d759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d3:2f:dd:34:31:c9:ce:c9:62:fa:02:f7:b4: 79:20:39:28:6a:c7:af:7f:6e:8a:27:cc:37:73:ee: 87:aa:a4:fe:2a:22:91:c1:8d:a6:c3:49:d7:37:fb: e0:fd:d9:bb:88:46:c9:0e:56:91:d8:e0:d1:0f:da: 40:b9:39:81:fc:ae:e7:b2:bb:e9:e6:a0:69:0e:c2: f5:c0:42:27:10:58:1a:4c:95:40:b7:1d:5d:13:2d: 54:16:a4:09:06:6d:64:c6:31:72:e8:28:e6:12:06: 6e:31:5c:26:c8:e3:31:ec:ef:2f:36:ba:99:6e:b6: 19:84:9d:7b:83:29:d7:0a:25:88:78:a8:48:02:8f: b1:1a:f9:6e:24:d7:28:20:41:a1:47:a3:7c:44:2c: 18:ee:86:ae:85:df:d6:aa:03:3b:ed:d3:76:8e:02: 0d:ca:97:66:66:a4:8c:07:7f:4c:47:96:85:de:dc: b2:0f:81:5d:f7:fc:45:52:b2:e6:21:ee:c2:6e:42: 8e:77:1b:e2:6f:11:ee:36:07:99:7c:92:e7:4a:a7: 7a:e8:ca:86:fd:a4:f2:a3:a4:e4:e0:28:d6:61:38: c7:ba:6f:3b:78:03:6b:6c:ee:81:07:4b:57:c5:8f: 06:79:f4:65:d4:fc:27:20:c0:5d:d1:81:20:e2:ce: 8f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:C0:15:0F:32:9F:8B:13:28:93:8D:D8:8A:A4:5C:E1:28:6B:40:FB X509v3 Authority Key Identifier: keyid:BC:AE:57:32:EF:21:97:32:B4:9A:C8:28:4D:B1:81:4E:92:C8:6B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:a5:b3:3c:62:cd:17:9a:04:59:d1:3f:56:63:79:8e:4a:6d: 38:16:af:85:f9:8e:20:89:63:f1:7a:9b:b3:83:29:79:f2:61: 03:92:fc:c5:b8:64:72:85:bb:6d:eb:10:67:35:86:8c:0e:c8: 80:a4:1e:28:c9:c5:75:eb:54:85:2f:e0:0d:5a:d2:bb:20:e2: 00:77:a4:64:fc:8b:e8:a6:b5:df:1b:dc:9c:43:c4:9e:fa:05: 0f:58:37:3e:79:28:4d:c6:43:75:12:d9:49:c2:dd:95:b5:91: 26:c1:8f:cc:de:dd:3b:7d:d2:13:e0:60:89:86:bc:d3:d9:e5: 38:4c:7d:08:57:83:3d:ea:ab:fe:d8:1c:28:f3:d1:df:0e:48: dd:20:6e:55:fe:77:b2:5e:55:e3:62:47:0c:bb:4c:ef:bd:81: 1c:14:e7:77:c0:08:2f:67:cf:9d:03:13:69:c8:b0:b1:5c:58: 7a:0a:f8:e8:8a:c2:32:6d:ec:80:6a:28:52:4b:57:ad:7a:6c: c2:50:6b:46:79:f3:a6:05:50:0e:e2:02:3e:17:97:9a:34:07: 84:56:15:95:06:9d:75:fb:59:58:e1:79:94:b4:96:e5:32:2b: 00:e3:34:30:6d:04:11:39:24:cf:b0:fe:0c:72:78:d1:48:b9: 19:3f:8c:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1M0IxMTAvBgNVBAUTKEJDQUU1NzMyRUYyMTk3MzJCNDlBQzgyODREQjE4MTRF OTJDODZCMTEwHhcNMjUwNDA0MjA1MjE3WhcNMjUwNDExMjA1MjE3WjAYMRYwFAYD VQQDEw02N2YwNDY4MS1kNzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9Mv3TQxyc7JYvoC97R5IDkoasevf26KJ8w3c+6HqqT+KiKRwY2mw0nXN/vg /dm7iEbJDlaR2ODRD9pAuTmB/K7nsrvp5qBpDsL1wEInEFgaTJVAtx1dEy1UFqQJ Bm1kxjFy6CjmEgZuMVwmyOMx7O8vNrqZbrYZhJ17gynXCiWIeKhIAo+xGvluJNco IEGhR6N8RCwY7oauhd/WqgM77dN2jgINypdmZqSMB39MR5aF3tyyD4Fd9/xFUrLm Ie7CbkKOdxvibxHuNgeZfJLnSqd66MqG/aTyo6Tk4CjWYTjHum87eANrbO6BB0tX xY8GefRl1PwnIMBd0YEg4s6PxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnAFQ8y n4sTKJON2IqkXOEoa0D7MB8GA1UdIwQYMBaAFLyuVzLvIZcytJrIKE2xgU6SyGsR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjUzQi8yOTM4M0NERUMy MEMxMUVBQjgxMkEwMUFDNEY5QUUwMi92SzVYTXU4aGx6SzBtc2dvVGJHQlRwTElh eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZLNVhNdThobHpLMG1zZ29UYkdCVHBMSWF4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjUzQi8yOTM4M0NERUMyMEMxMUVBQjgxMkEwMUFDNEY5QUUwMi92SzVYTXU4aGx6 SzBtc2dvVGJHQlRwTElheEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1pbM8Ys0XmgRZ0T9WY3mOSm04Fq+F+Y4giWPxepuzgyl58mEDkvzF uGRyhbtt6xBnNYaMDsiApB4oycV161SFL+ANWtK7IOIAd6Rk/IvoprXfG9ycQ8Se +gUPWDc+eShNxkN1EtlJwt2VtZEmwY/M3t07fdIT4GCJhrzT2eU4TH0IV4M96qv+ 2Bwo89HfDkjdIG5V/neyXlXjYkcMu0zvvYEcFOd3wAgvZ8+dAxNpyLCxXFh6Cvjo isIybeyAaihSS1etemzCUGtGefOmBVAO4gI+F5eaNAeEVhWVBp11+1lY4XmUtJbl MisA4zQwbQQROSTPsP4McnjRSLkZP4yN -----END CERTIFICATE-----Generated at Sat Apr 5 19:20:31 2025 by rpki-client