$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft File: vBRJ7peREatw2N-Y2rpOJrprxls.mft (raw, json) Hash identifier: L+aRDQTPg3NHi8vyTSE+WJ/LCYTzF3fdFFMTyHBJ/vM= Subject key identifier: 33:D0:27:38:A9:5E:65:A2:37:80:BB:5B:E5:31:75:04:D8:12:39:8A Authority key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B Certificate issuer: /CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Certificate serial: 0716 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft Manifest number: 070F Signing time: Sun 06 Apr 2025 21:32:22 +0000 Manifest this update: Sun 06 Apr 2025 21:32:21 +0000 Manifest next update: Sun 13 Apr 2025 21:32:21 +0000 Files and hashes: 1: vBRJ7peREatw2N-Y2rpOJrprxls.crl (hash: 1aC8IrMIJyB1L9wlgvWx/+LOHIaeMY7eidxUEYvSolY=) 2: 7633392033B411EB98035F74C4F9AE02.roa (hash: 2z51i9dV66CcllhW8qVIGTGYHAdnhuR+CInt6YNJqFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 21:32:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1814 (0x716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCA34 Validity Not Before: Apr 6 21:32:21 2025 GMT Not After : Apr 13 21:32:21 2025 GMT Subject: CN=67f2f2e5-3718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0d:56:f0:e1:83:cb:6a:fb:94:19:3a:63:d3: fe:62:c7:d5:cf:a0:57:c7:6a:11:7a:11:85:97:fc: 80:b1:eb:4e:8d:46:e3:0d:50:9d:9b:2f:da:44:d1: 43:b4:97:2c:e1:4b:f7:8b:14:1e:70:8a:35:51:44: 14:70:f2:85:48:02:ae:35:8f:cd:c1:d9:48:cb:76: 44:2f:a7:68:98:16:1f:de:cf:f5:97:d1:81:90:8e: 04:9e:b5:5b:9d:a1:34:ea:09:89:1b:b4:f5:c3:c5: a8:cd:3d:94:85:b8:bf:d9:f7:11:dc:2e:c2:ab:bf: d5:f2:df:4a:65:95:84:32:1d:4b:9f:93:22:88:d9: c0:07:e8:d8:31:77:8b:73:c4:a3:49:20:24:4b:66: 43:2a:c1:a2:c6:f9:ea:c4:1c:1a:48:af:de:a6:31: b2:ca:53:2a:23:c1:7f:86:db:69:46:5b:0f:ae:ea: 4e:4b:98:27:eb:d7:ea:48:b6:ab:08:d4:3e:94:e1: 0f:a3:fb:18:49:48:45:d8:e7:db:63:ac:c1:41:8f: db:9d:0f:0e:87:50:95:ea:3e:89:e7:56:a7:75:d4: 94:85:97:72:8f:f7:aa:43:3d:1f:8b:4a:a1:88:0f: 81:3f:e5:a8:92:54:74:48:17:21:67:7b:49:52:d1: f0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D0:27:38:A9:5E:65:A2:37:80:BB:5B:E5:31:75:04:D8:12:39:8A X509v3 Authority Key Identifier: keyid:BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:92:ca:f8:71:b8:71:3a:6a:f5:d2:5d:b6:60:55:09:3c:9f: 69:36:3f:3e:aa:49:a2:16:da:f9:57:35:93:82:b4:74:b1:a2: cb:11:9e:14:6e:c7:d5:f3:41:e1:51:ee:ee:a6:e2:89:45:de: 96:2b:33:72:68:bf:f5:b3:8c:a4:05:7e:34:65:ec:83:3f:9f: 3c:d8:f9:c7:61:68:a8:6f:99:24:74:f8:76:54:50:f6:f9:31: bc:1e:68:bb:76:12:9c:7c:99:58:96:6c:04:a6:b0:31:df:91: 27:d8:44:9a:f6:b7:d7:91:79:c0:c4:86:1a:ea:85:eb:28:e1: 13:08:6a:25:16:81:d8:da:02:35:b0:8a:f7:ce:e8:5b:2b:42: 48:fe:b8:31:19:9f:cd:e8:30:6e:28:75:6f:6a:26:14:bd:3f: 5a:31:34:50:70:48:74:25:b9:63:0d:66:6d:79:9d:15:11:e4: 6f:6e:13:d3:bd:fe:83:8b:d8:a9:f4:7d:0e:09:61:22:d5:2f: 73:6c:3b:75:4e:46:b3:52:a2:7c:fe:3d:eb:8b:4c:ff:7a:1a: a5:77:4a:f9:e5:23:02:53:b2:42:ad:06:a7:1c:fb:c5:bf:1e: 9e:b3:c9:d0:0d:f2:0d:9f:bd:c8:14:b1:d7:87:fd:d3:67:f9: 13:2a:77:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBMzQxMTAvBgNVBAUTKEJDMTQ0OUVFOTc5MTExQUI3MEQ4REY5OERBQkE0RTI2 QkE2QkM2NUIwHhcNMjUwNDA2MjEzMjIxWhcNMjUwNDEzMjEzMjIxWjAYMRYwFAYD VQQDEw02N2YyZjJlNS0zNzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQ1W8OGDy2r7lBk6Y9P+YsfVz6BXx2oRehGFl/yAsetOjUbjDVCdmy/aRNFD tJcs4Uv3ixQecIo1UUQUcPKFSAKuNY/NwdlIy3ZEL6domBYf3s/1l9GBkI4EnrVb naE06gmJG7T1w8WozT2Uhbi/2fcR3C7Cq7/V8t9KZZWEMh1Ln5MiiNnAB+jYMXeL c8SjSSAkS2ZDKsGixvnqxBwaSK/epjGyylMqI8F/httpRlsPrupOS5gn69fqSLar CNQ+lOEPo/sYSUhF2OfbY6zBQY/bnQ8Oh1CV6j6J51anddSUhZdyj/eqQz0fi0qh iA+BP+WoklR0SBchZ3tJUtHwJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPQJzip XmWiN4C7W+UxdQTYEjmKMB8GA1UdIwQYMBaAFLwUSe6XkRGrcNjfmNq6Tia6a8Zb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0EzNC82RkFBMzY3ODMz QjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVhdHcyTi1ZMnJwT0pycHJ4 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCUko3cGVSRWF0dzJOLVkycnBPSnJwcnhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0EzNC82RkFBMzY3ODMzQjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVh dHcyTi1ZMnJwT0pycHJ4bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBksr4cbhxOmr10l22YFUJPJ9pNj8+qkmiFtr5VzWTgrR0saLLEZ4U bsfV80HhUe7upuKJRd6WKzNyaL/1s4ykBX40ZeyDP5882PnHYWiob5kkdPh2VFD2 +TG8Hmi7dhKcfJlYlmwEprAx35En2ESa9rfXkXnAxIYa6oXrKOETCGolFoHY2gI1 sIr3zuhbK0JI/rgxGZ/N6DBuKHVvaiYUvT9aMTRQcEh0JbljDWZteZ0VEeRvbhPT vf6Di9ip9H0OCWEi1S9zbDt1TkazUqJ8/j3ri0z/ehqld0r55SMCU7JCrQanHPvF vx6es8nQDfINn73IFLHXh/3TZ/kTKnfj -----END CERTIFICATE-----Generated at Mon Apr 7 05:02:28 2025 by rpki-client