$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft File: vIYhQTCXFsDk3Dff_zPlqwxVStA.mft (raw, json) Hash identifier: kRVkeDqTlW8JdVdGN6AoUlrzks8kUnukp7FilaCVzG8= Subject key identifier: 41:ED:67:B7:CC:BA:F3:07:4B:2F:15:65:97:C7:F4:34:C5:C2:D5:0B Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Certificate serial: 01F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft Manifest number: 01F1 Signing time: Sat 31 May 2025 02:15:30 +0000 Manifest this update: Sat 31 May 2025 02:15:30 +0000 Manifest next update: Sat 07 Jun 2025 02:15:30 +0000 Files and hashes: 1: vIYhQTCXFsDk3Dff_zPlqwxVStA.crl (hash: GAnkM2EvbotBiJlsxY0L4KVf6sSw8mSIgSKEkAoNgHo=) 2: 3DE0E9065F0811EDB42DC97FC4F9AE02.roa (hash: MoE7MEPCOyGB/9EMlTXV0tN9ZG/UinteAkee65hBGJ0=) 3: 3F2E65045F0811EDB42DC97FC4F9AE02.roa (hash: IgAv5ZJEhwoH7uEYAUCxosir/fX/9UUdUT7CtlM0EKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA27, serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Validity Not Before: May 31 02:15:30 2025 GMT Not After : Jun 7 02:15:30 2025 GMT Subject: CN=683a6642-6567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6d:26:a1:c6:23:fa:de:e1:4a:7e:e5:bb:e3: 33:81:e6:c4:3d:93:2c:1b:2e:c1:5d:42:5e:1d:b6: 09:df:af:b9:ef:52:99:ed:1b:0f:52:49:41:ad:83: ec:cb:27:7c:c2:1c:33:f0:89:7f:da:85:7c:f1:6c: 40:0e:63:a8:56:6d:d4:0e:94:12:9a:fd:e1:e8:b6: e4:ee:ce:71:3a:0a:4c:05:20:9b:0e:43:b8:c6:6d: 47:17:83:79:3b:c0:48:b3:cd:3c:40:c2:5d:75:47: 6d:e3:54:9d:bb:a6:af:11:d8:af:cd:37:fc:c6:aa: 02:13:ca:8c:85:c7:d9:60:8e:3f:93:72:06:10:79: bd:4a:73:36:af:96:cf:8f:ed:66:49:4a:6d:1e:94: 2a:35:8d:d4:cd:6c:e1:81:92:fe:03:c7:41:de:0c: 6d:45:05:7f:3c:f6:04:7a:c4:db:08:ea:8d:ff:a3: e1:cf:f1:fc:f3:76:c6:f9:1d:ff:ec:b9:6e:0c:3d: f9:5e:2e:49:9c:d4:6a:94:13:78:72:66:03:45:bc: 8f:10:71:e1:ee:04:34:dd:54:6f:4b:a8:80:6f:06: 8f:ad:38:26:c9:c0:2e:b5:54:22:67:7b:0d:d8:40: b2:c4:79:c2:a5:11:d1:89:99:07:bc:de:4d:93:29: 8a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:ED:67:B7:CC:BA:F3:07:4B:2F:15:65:97:C7:F4:34:C5:C2:D5:0B X509v3 Authority Key Identifier: keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:26:92:68:ef:ec:c1:8a:59:c7:48:ec:3d:95:c2:68:2a:18: f1:ba:ca:e7:9b:92:46:2b:5b:89:c5:b6:fb:69:03:00:03:1c: 5e:b1:06:a6:82:f9:81:b5:ff:8f:73:89:ed:d9:90:3a:20:d2: 06:50:15:83:ec:b3:12:60:fa:47:78:78:76:e2:06:07:8e:71: 4c:32:7f:80:95:f5:2c:56:0d:92:76:3a:d2:b5:75:bf:4a:e6: 48:b9:12:a5:f2:1a:a5:77:82:d5:51:5c:61:ac:9a:ed:60:5c: 7c:1b:63:d7:72:72:fa:33:06:26:d3:ea:69:dd:c8:a1:30:e6: 35:7a:ae:b9:cd:22:10:12:a1:63:74:74:2a:87:88:37:8b:37: b6:30:b3:24:d4:2c:20:60:17:6e:79:83:28:47:2a:2e:2f:a3: cd:c7:a8:47:3e:71:0b:ae:f3:14:e2:4f:08:5f:80:51:e1:7d: b9:90:87:01:dd:46:34:99:d1:94:8c:a6:70:3a:b0:82:36:47: e7:2f:07:0c:08:70:fa:4c:54:a0:46:a5:b4:8d:98:d6:89:9d: b3:df:d6:43:23:97:59:3a:64:b2:99:58:9f:c2:69:87:e7:d6: c5:40:e3:06:31:f5:7b:3c:9e:3e:df:12:ed:ed:f2:8a:08:ed: 27:c5:f3:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC MEM1NTRBRDAwHhcNMjUwNTMxMDIxNTMwWhcNMjUwNjA3MDIxNTMwWjAYMRYwFAYD VQQDEw02ODNhNjY0Mi02NTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnG0mocYj+t7hSn7lu+MzgebEPZMsGy7BXUJeHbYJ36+571KZ7RsPUklBrYPs yyd8whwz8Il/2oV88WxADmOoVm3UDpQSmv3h6Lbk7s5xOgpMBSCbDkO4xm1HF4N5 O8BIs808QMJddUdt41Sdu6avEdivzTf8xqoCE8qMhcfZYI4/k3IGEHm9SnM2r5bP j+1mSUptHpQqNY3UzWzhgZL+A8dB3gxtRQV/PPYEesTbCOqN/6Phz/H883bG+R3/ 7LluDD35Xi5JnNRqlBN4cmYDRbyPEHHh7gQ03VRvS6iAbwaPrTgmycAutVQiZ3sN 2ECyxHnCpRHRiZkHvN5NkymKIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHtZ7fM uvMHSy8VZZfH9DTFwtULMB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0 NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUEyNy82QThCRDA4QzQ0NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZz RGszRGZmX3pQbHF3eFZTdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2JpJo7+zBilnHSOw9lcJoKhjxusrnm5JGK1uJxbb7aQMAAxxesQam gvmBtf+Pc4nt2ZA6INIGUBWD7LMSYPpHeHh24gYHjnFMMn+AlfUsVg2SdjrStXW/ SuZIuRKl8hqld4LVUVxhrJrtYFx8G2PXcnL6MwYm0+pp3cihMOY1eq65zSIQEqFj dHQqh4g3ize2MLMk1CwgYBdueYMoRyouL6PNx6hHPnELrvMU4k8IX4BR4X25kIcB 3UY0mdGUjKZwOrCCNkfnLwcMCHD6TFSgRqW0jZjWiZ2z39ZDI5dZOmSymVifwmmH 59bFQOMGMfV7PJ4+3xLt7fKKCO0nxfP8 -----END CERTIFICATE-----Generated at Sat May 31 16:38:54 2025 by rpki-client