$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft File: Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft (raw, json) Hash identifier: peJSpHACC4bphwNerP4YMsG5wx7k0DnHGjPNZBFG7E4= Subject key identifier: 2A:08:9A:DC:81:E0:0D:4A:B1:03:1D:8F:68:3A:25:0D:74:AB:1F:7A Authority key identifier: 56:8D:17:91:52:47:3C:80:9A:62:E5:85:E5:AD:C9:42:86:6B:E6:59 Certificate issuer: /CN=A91E0D8B/serialNumber=568D179152473C809A62E585E5ADC942866BE659 Certificate serial: 069C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft Manifest number: 0696 Signing time: Wed 16 Apr 2025 21:55:15 +0000 Manifest this update: Wed 16 Apr 2025 21:55:14 +0000 Manifest next update: Wed 23 Apr 2025 21:55:14 +0000 Files and hashes: 1: Vo0XkVJHPICaYuWF5a3JQoZr5lk.crl (hash: 1ww+A5fdj11PyBol1vOKjA2HZJ6aznGepfddZWvyDms=) 2: 146FD366653611EB99BE491DC4F9AE02.roa (hash: vDTtnYK0urRCnkWdVJaHunlHhYBCBiIEuZyHl4rL/x4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.crl rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 21:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D8B, serialNumber=568D179152473C809A62E585E5ADC942866BE659 Validity Not Before: Apr 16 21:55:14 2025 GMT Not After : Apr 23 21:55:14 2025 GMT Subject: CN=68002743-b0ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3c:51:6e:68:6f:08:a3:30:cf:52:09:bf:cb: 85:92:f9:8b:c7:71:0d:21:ca:e9:e1:6f:6f:c2:7b: f2:b7:97:ee:ad:a9:88:ee:10:37:a5:43:66:07:01: 0d:2f:bd:f4:35:53:af:61:7c:25:4e:2b:f2:7b:fe: 32:34:01:20:61:6d:60:bc:47:b2:22:62:1e:99:14: 2c:54:14:69:9b:45:0c:4b:a6:bb:0c:87:d8:06:a6: a3:69:ee:8b:44:bb:ae:7a:05:4c:8d:45:7b:06:4b: 96:04:31:97:26:1c:a3:e3:f8:2c:5f:c4:1f:55:9c: 72:34:c1:8a:99:38:cc:71:70:1f:e3:73:f6:fe:71: f8:d4:22:87:8a:31:0c:87:38:a8:72:b3:54:6e:f6: ca:47:35:ff:65:11:a8:c6:7c:8b:11:cd:57:de:cf: d8:5e:72:21:aa:74:81:31:c5:aa:09:96:73:7e:31: 0b:92:9b:24:8e:7d:4d:c6:f6:05:ae:87:38:bc:8f: c7:23:b2:70:d0:60:2c:1c:36:3d:d7:36:80:28:94: e4:09:b1:a3:23:d8:23:02:19:0f:19:2e:ee:d6:90: e6:5f:90:8e:e6:72:2d:4e:49:41:31:bf:e9:2c:99: 01:44:32:38:e4:dc:3f:de:2e:95:72:bd:65:66:98: 74:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:08:9A:DC:81:E0:0D:4A:B1:03:1D:8F:68:3A:25:0D:74:AB:1F:7A X509v3 Authority Key Identifier: keyid:56:8D:17:91:52:47:3C:80:9A:62:E5:85:E5:AD:C9:42:86:6B:E6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:fe:a0:f4:2e:7d:0a:0d:b3:f4:2a:c1:94:9d:71:2d:30:6e: a6:11:92:4e:b7:ae:d5:51:ca:68:0f:fb:76:bb:28:a0:70:68: 3d:80:7f:8a:98:38:25:15:92:af:66:2d:93:cf:1a:3b:c0:57: 7f:05:f7:96:dc:13:a6:86:f1:25:f4:4b:48:cb:75:9e:fc:81: f1:98:24:74:e6:ad:b0:5b:03:1c:9d:33:3c:21:12:41:6e:5a: dc:b2:f2:89:95:5f:e3:30:36:b7:dc:ef:bf:4f:ed:f2:11:fc: 59:b7:13:10:da:4a:ab:32:c0:af:39:3c:01:34:f4:ef:5b:49: ff:fd:9b:5d:2a:ff:3f:4f:72:08:4f:0d:61:39:40:96:8b:4e: f2:b3:95:36:49:4a:28:1c:cd:84:84:75:7a:d4:db:83:dd:52: 56:5f:cb:e5:8e:1e:5f:16:bc:d0:4b:00:38:f1:e8:f0:28:39: f3:89:4d:34:d3:24:82:0c:1f:9a:a4:54:d6:65:72:ef:9e:76: be:95:20:0e:77:38:36:a2:05:f4:cb:ee:58:d1:e1:92:1d:a0: a5:34:24:8a:4a:1e:fe:89:84:88:dc:10:95:c8:ff:b9:79:7a: 6d:cf:f8:66:df:ab:68:1c:a8:ff:20:e3:38:e9:1c:78:cf:f9: 93:b5:32:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEOEIxMTAvBgNVBAUTKDU2OEQxNzkxNTI0NzNDODA5QTYyRTU4NUU1QURDOTQy ODY2QkU2NTkwHhcNMjUwNDE2MjE1NTE0WhcNMjUwNDIzMjE1NTE0WjAYMRYwFAYD VQQDEw02ODAwMjc0My1iMGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjxRbmhvCKMwz1IJv8uFkvmLx3ENIcrp4W9vwnvyt5furamI7hA3pUNmBwEN L730NVOvYXwlTivye/4yNAEgYW1gvEeyImIemRQsVBRpm0UMS6a7DIfYBqajae6L RLuuegVMjUV7BkuWBDGXJhyj4/gsX8QfVZxyNMGKmTjMcXAf43P2/nH41CKHijEM hziocrNUbvbKRzX/ZRGoxnyLEc1X3s/YXnIhqnSBMcWqCZZzfjELkpskjn1NxvYF roc4vI/HI7Jw0GAsHDY91zaAKJTkCbGjI9gjAhkPGS7u1pDmX5CO5nItTklBMb/p LJkBRDI45Nw/3i6Vcr1lZph0aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoImtyB 4A1KsQMdj2g6JQ10qx96MB8GA1UdIwQYMBaAFFaNF5FSRzyAmmLlheWtyUKGa+ZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Qi80QTZENkMwQTY1 MzQxMUVCQjZCOEYwMTlDNEY5QUUwMi9WbzBYa1ZKSFBJQ2FZdVdGNWEzSlFvWnI1 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZvMFhrVkpIUElDYVl1V0Y1YTNKUW9acjVsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEQ4Qi80QTZENkMwQTY1MzQxMUVCQjZCOEYwMTlDNEY5QUUwMi9WbzBYa1ZKSFBJ Q2FZdVdGNWEzSlFvWnI1bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy/qD0Ln0KDbP0KsGUnXEtMG6mEZJOt67VUcpoD/t2uyigcGg9gH+K mDglFZKvZi2Tzxo7wFd/BfeW3BOmhvEl9EtIy3We/IHxmCR05q2wWwMcnTM8IRJB blrcsvKJlV/jMDa33O+/T+3yEfxZtxMQ2kqrMsCvOTwBNPTvW0n//ZtdKv8/T3II Tw1hOUCWi07ys5U2SUooHM2EhHV61NuD3VJWX8vljh5fFrzQSwA48ejwKDnziU00 0ySCDB+apFTWZXLvnna+lSAOdzg2ogX0y+5Y0eGSHaClNCSKSh7+iYSI3BCVyP+5 eXptz/hm36toHKj/IOM46Rx4z/mTtTJU -----END CERTIFICATE-----Generated at Fri Apr 18 00:43:48 2025 by rpki-client