$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: aCyc6yGUEEkHKhvnHQ0GbtugOMLEvJOAuQCYYLfKZW8= Subject key identifier: 3F:B2:41:8B:D8:9F:80:E6:8C:F0:D7:E9:78:90:69:BD:D7:BC:91:27 Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: 016A Signing time: Mon 07 Apr 2025 02:56:29 +0000 Manifest this update: Mon 07 Apr 2025 02:56:28 +0000 Manifest next update: Mon 14 Apr 2025 02:56:28 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: +ryq1f09S/jToYs9YBtjz2tb9nxX6//KYpiHhyYydjQ=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: rtZPUDV9v5M5UjLf6mnKGmlSZjqBzQjmkl2wyx5PPSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 02:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C Validity Not Before: Apr 7 02:56:28 2025 GMT Not After : Apr 14 02:56:28 2025 GMT Subject: CN=67f33edd-a8ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b1:24:34:08:3e:ee:b6:18:1d:61:be:0d:e4: 6e:d8:42:59:e8:80:50:4d:ef:7f:1f:6d:32:e4:78: 8c:e7:a8:62:1d:44:ca:f5:2f:51:be:54:56:7d:a2: df:87:00:01:05:be:a6:3e:d9:1b:ec:70:3f:2b:41: ca:00:5c:b9:9d:a7:fe:ac:f1:cf:05:d2:a2:2c:db: 6d:9a:42:c8:0b:ff:24:a4:8a:f9:fc:b8:57:a1:d4: fa:b0:dd:7d:57:63:8e:11:5f:1a:a5:9b:0d:58:a1: ee:34:a7:f0:3e:a2:92:fa:df:3a:17:28:aa:77:13: 75:b8:d3:41:3e:7a:f6:63:b6:b5:ca:4c:dc:db:11: 92:eb:8a:b3:25:3f:45:4a:6c:1d:e9:be:e7:05:17: 9a:e9:6f:41:9e:3a:57:6f:a1:36:4e:54:21:11:22: 9c:37:3c:c5:1c:91:0e:ce:49:ef:9b:c4:c0:60:ad: 29:f0:eb:7a:d3:4e:6a:07:90:f9:ec:d6:cd:7a:46: 4e:d4:ac:c4:72:db:7d:e3:92:f9:8e:8d:c9:36:a1: 43:16:d4:1a:05:a4:1b:7a:16:de:e5:f2:2a:42:78: 17:96:fb:5a:95:f2:7d:57:b4:ae:a0:6d:91:0c:fd: 3a:16:c5:cc:a2:fc:bc:f2:3f:7f:9f:bf:2a:20:53: d0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B2:41:8B:D8:9F:80:E6:8C:F0:D7:E9:78:90:69:BD:D7:BC:91:27 X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:97:30:37:73:60:82:6e:c7:3d:f5:c6:e3:7c:5b:c2:9e:e2: 9d:9c:01:85:90:a6:84:df:7d:b1:54:50:b5:f1:f5:11:89:09: b2:25:34:bf:7f:e3:b2:35:cc:99:0e:65:57:d3:b2:5e:35:40: 40:7f:18:42:46:1e:f6:7a:69:f8:24:4a:f9:a9:a1:9f:a0:3d: e4:f8:de:bf:7c:3a:d0:f2:fb:20:1e:f3:bb:03:20:69:71:34: c1:bb:2c:ea:2a:cd:a6:28:a5:f1:b8:d7:93:2d:fe:45:17:c0: 95:ba:fc:31:ef:cf:c9:0a:bf:ff:f7:34:88:a8:3a:47:a5:6c: ed:53:75:7f:36:16:63:e5:c7:be:ce:ca:65:e0:9f:a0:3c:ea: 8d:d6:3e:77:c8:2c:55:c8:df:6e:0c:70:f3:45:9f:d2:6e:4d: 30:c6:7d:2d:9c:9a:68:ba:2b:cc:4b:c5:ba:8c:a7:31:07:9d: ef:52:bc:c9:e2:00:a7:be:93:64:46:61:ee:89:b9:9d:d2:74: c7:69:e3:a0:95:74:34:40:ad:e9:2c:74:5c:f5:f0:30:99:8a: d3:72:8a:9d:33:b0:9a:ba:29:37:b6:5a:25:ee:74:05:4b:68: 5c:fb:f8:89:fc:7a:f7:58:d2:ea:e7:68:a0:57:92:46:8d:6f: e6:de:2e:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUwNDA3MDI1NjI4WhcNMjUwNDE0MDI1NjI4WjAYMRYwFAYD VQQDEw02N2YzM2VkZC1hOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLEkNAg+7rYYHWG+DeRu2EJZ6IBQTe9/H20y5HiM56hiHUTK9S9RvlRWfaLf hwABBb6mPtkb7HA/K0HKAFy5naf+rPHPBdKiLNttmkLIC/8kpIr5/LhXodT6sN19 V2OOEV8apZsNWKHuNKfwPqKS+t86FyiqdxN1uNNBPnr2Y7a1ykzc2xGS64qzJT9F Smwd6b7nBRea6W9BnjpXb6E2TlQhESKcNzzFHJEOzknvm8TAYK0p8Ot6005qB5D5 7NbNekZO1KzEctt945L5jo3JNqFDFtQaBaQbehbe5fIqQngXlvtalfJ9V7SuoG2R DP06FsXMovy88j9/n78qIFPQLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+yQYvY n4DmjPDX6XiQab3XvJEnMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDClzA3c2CCbsc99cbjfFvCnuKdnAGFkKaE332xVFC18fURiQmyJTS/ f+OyNcyZDmVX07JeNUBAfxhCRh72emn4JEr5qaGfoD3k+N6/fDrQ8vsgHvO7AyBp cTTBuyzqKs2mKKXxuNeTLf5FF8CVuvwx78/JCr//9zSIqDpHpWztU3V/NhZj5ce+ zspl4J+gPOqN1j53yCxVyN9uDHDzRZ/Sbk0wxn0tnJpouivMS8W6jKcxB53vUrzJ 4gCnvpNkRmHuibmd0nTHaeOglXQ0QK3pLHRc9fAwmYrTcoqdM7Cauik3tlol7nQF S2hc+/iJ/Hr3WNLq52igV5JGjW/m3i4c -----END CERTIFICATE-----Generated at Mon Apr 7 05:49:59 2025 by rpki-client