$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft File: RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft (raw, json) Hash identifier: e9vT+swZ4c6CpW1HdWIuD1eDiXyCdOXRn7nSS9rxuNg= Subject key identifier: CA:53:DD:2E:39:39:E9:7C:7C:1E:C3:DF:5B:0C:97:6D:8D:0E:7A:B9 Authority key identifier: 44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D Certificate issuer: /CN=A91FF1CC/serialNumber=446FAF923BEBAF96357287FE250991C75491454D Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft Manifest number: 1C Signing time: Sat 05 Apr 2025 07:13:17 +0000 Manifest this update: Sat 05 Apr 2025 07:13:17 +0000 Manifest next update: Sat 12 Apr 2025 07:13:17 +0000 Files and hashes: 1: RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl (hash: VfXQmqGzEqNEeNQvRlzLC0CkAuNWroeT8iTIwkQT5PA=) 2: CC37DC24024311F0B8CC3D64C4F9AE02.roa (hash: p8FHrwqthntaiCGXD1qfLj6KRbEBkZSs0aBfuIq0c5c=) 3: B7E221E4024311F0BD990F64C4F9AE02.roa (hash: d1zImNClufU6mQa0qsoJOx/6gPAzww6pSPXhwifVLOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF1CC Validity Not Before: Apr 5 07:13:17 2025 GMT Not After : Apr 12 07:13:17 2025 GMT Subject: CN=67f0d80d-c7b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f4:e6:5a:ad:21:aa:fe:e5:00:67:fc:b8:1b: 5e:38:de:44:9b:47:be:f8:c9:ca:97:c4:e9:4a:9e: b6:af:8b:ac:86:de:eb:ec:e8:70:db:75:28:9d:8e: cf:af:d2:19:c5:f1:19:71:23:10:35:19:7a:6e:d8: 14:06:42:b1:5e:17:25:79:18:96:47:ee:d8:0c:56: 82:7f:31:2c:a7:30:6d:d1:45:40:62:9f:3c:84:3c: 10:c2:e9:20:6a:d1:4b:32:c1:3b:ed:2d:7d:b6:df: 54:c6:92:52:d7:48:28:69:fc:ef:38:c9:b1:44:d6: 89:26:3b:2a:aa:91:ff:f5:21:49:84:57:f7:d2:26: 69:21:ec:c5:f5:89:6a:d8:8a:4d:a1:bc:56:13:52: a5:1b:3d:2f:1f:b2:62:b0:62:44:22:19:57:e9:60: 5c:e4:13:af:d6:54:e2:bd:57:a4:3f:9e:1b:9b:a1: 42:af:e9:74:3b:fd:fd:7f:d1:f4:6e:a9:92:58:76: df:74:50:69:ef:d8:53:e4:bb:41:73:f9:ae:8a:33: 0c:37:5a:ba:ee:df:92:7a:50:56:ef:e1:a1:dd:9a: 96:fa:e5:d2:ec:fd:bd:d2:60:43:61:3f:e4:db:ec: 4c:c6:5f:df:b9:29:9c:87:4c:5b:1a:ed:e6:6d:16: ed:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:53:DD:2E:39:39:E9:7C:7C:1E:C3:DF:5B:0C:97:6D:8D:0E:7A:B9 X509v3 Authority Key Identifier: keyid:44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:78:a6:be:db:5a:73:9c:f4:11:95:d0:78:42:cd:fe:09:d3: 33:af:ce:ac:b7:14:91:fc:cf:7f:89:8a:fb:4e:68:e0:c0:2c: f7:2d:10:5d:ed:77:1a:02:61:c7:99:d1:e5:34:14:22:80:9a: 20:f0:d2:06:69:be:ac:64:13:57:ff:d3:df:0e:13:38:a9:2b: 6b:d4:9d:55:20:50:48:2e:dd:a6:35:e3:91:63:19:df:da:c1: e4:b1:e8:8a:d7:40:6c:b5:60:36:7d:07:86:fe:62:47:68:f9: 75:5f:81:33:87:ed:93:8d:05:5d:36:cf:22:fb:99:fc:08:a0: d3:48:ff:5a:d9:d6:bd:5a:06:2d:0c:5b:92:5b:62:70:4e:6c: d3:a3:20:3c:48:06:59:a2:ff:74:66:a1:75:ab:81:98:c1:9c: c5:ff:40:4d:72:5d:87:d7:f4:35:d7:3e:71:60:4c:50:1f:9b: f7:82:7b:0e:21:36:33:fa:bb:57:d5:7c:48:4a:05:ae:45:4f: a5:4b:57:1c:47:e6:37:82:99:34:f8:68:fb:ad:44:c2:6f:02: 8e:1d:f2:81:2c:86:14:8d:82:9f:d9:c8:6f:88:4c:fc:ce:1d: 9d:a3:8f:dd:8a:21:ea:8d:d2:75:b4:a6:9b:2f:4d:95:9a:01: 8a:e7:f4:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjFDQzExMC8GA1UEBRMoNDQ2RkFGOTIzQkVCQUY5NjM1NzI4N0ZFMjUwOTkxQzc1 NDkxNDU0RDAeFw0yNTA0MDUwNzEzMTdaFw0yNTA0MTIwNzEzMTdaMBgxFjAUBgNV BAMTDTY3ZjBkODBkLWM3YjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC59OZarSGq/uUAZ/y4G1443kSbR774ycqXxOlKnravi6yG3uvs6HDbdSidjs+v 0hnF8RlxIxA1GXpu2BQGQrFeFyV5GJZH7tgMVoJ/MSynMG3RRUBinzyEPBDC6SBq 0UsywTvtLX2231TGklLXSChp/O84ybFE1okmOyqqkf/1IUmEV/fSJmkh7MX1iWrY ik2hvFYTUqUbPS8fsmKwYkQiGVfpYFzkE6/WVOK9V6Q/nhuboUKv6XQ7/f1/0fRu qZJYdt90UGnv2FPku0Fz+a6KMww3Wrru35J6UFbv4aHdmpb65dLs/b3SYENhP+Tb 7EzGX9+5KZyHTFsa7eZtFu0xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUylPdLjk5 6Xx8HsPfWwyXbY0OerkwHwYDVR0jBBgwFoAURG+vkjvrr5Y1cof+JQmRx1SRRU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGMUNDLzNBRkMzM0UyRUY2 MzExRUZCRjY0QUI2QUM0RjlBRTAyL1JHLXZranZycjVZMWNvZi1KUW1SeDFTUlJV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUkctdmtqdnJyNVkxY29mLUpRbVJ4MVNSUlUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG MUNDLzNBRkMzM0UyRUY2MzExRUZCRjY0QUI2QUM0RjlBRTAyL1JHLXZranZycjVZ MWNvZi1KUW1SeDFTUlJVMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAh4pr7bWnOc9BGV0HhCzf4J0zOvzqy3FJH8z3+JivtOaODALPctEF3t dxoCYceZ0eU0FCKAmiDw0gZpvqxkE1f/098OEzipK2vUnVUgUEgu3aY145FjGd/a weSx6IrXQGy1YDZ9B4b+Ykdo+XVfgTOH7ZONBV02zyL7mfwIoNNI/1rZ1r1aBi0M W5JbYnBObNOjIDxIBlmi/3RmoXWrgZjBnMX/QE1yXYfX9DXXPnFgTFAfm/eCew4h NjP6u1fVfEhKBa5FT6VLVxxH5jeCmTT4aPutRMJvAo4d8oEshhSNgp/ZyG+ITPzO HZ2jj92KIeqN0nW0ppsvTZWaAYrn9Dc= -----END CERTIFICATE-----Generated at Sun Apr 6 15:18:09 2025 by rpki-client