$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: YfIxb3MYBjVhSCLkfxuBWSn1gw6eTjZbI5zKSNwp4qY= Subject key identifier: 71:44:38:95:35:04:02:4D:59:0F:74:F4:05:CB:32:01:57:09:45:F2 Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: D5 Signing time: Sat 31 May 2025 05:16:57 +0000 Manifest this update: Sat 31 May 2025 05:16:57 +0000 Manifest next update: Sat 07 Jun 2025 05:16:57 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: I5zz0OE3ajfNSPEONtr9V9DdPPwdqXDfZW0Zm+a2FZM=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: May 31 05:16:57 2025 GMT Not After : Jun 7 05:16:57 2025 GMT Subject: CN=683a90c9-ea42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:88:a4:1c:5b:a9:c7:83:19:83:78:a8:57:45: 74:d2:62:77:a6:d9:c2:51:ce:1e:da:2e:2f:b5:85: 02:d8:90:28:06:ed:a9:99:da:1d:ba:80:65:33:d0: fe:c2:c2:56:be:e1:90:a8:3f:72:2a:25:7c:1a:0b: e5:96:e0:d9:39:dc:df:61:94:cf:f6:e2:cf:91:d7: eb:80:4c:43:ee:85:87:ff:7b:c4:08:0c:85:d5:7a: dd:6b:30:2d:76:b9:70:ee:3a:aa:54:29:54:be:0c: 62:67:4f:16:2a:73:01:1f:b2:5d:52:60:53:9f:3d: 92:aa:c5:1b:21:cc:28:de:ed:3e:84:cf:c4:76:17: 86:54:25:c0:47:64:07:3b:45:9f:4c:53:5b:41:e2: c7:f1:f9:b6:71:32:2b:2e:9e:61:0e:1f:76:83:63: 7c:9d:f8:5a:3a:e8:68:f0:5f:f7:7f:81:cc:8a:51: 3e:e5:be:8b:4e:cc:0f:e1:7b:53:a3:90:78:4a:b7: 55:6c:1d:b7:7c:ee:1f:05:13:3c:60:b9:1a:1f:d0: 8e:f6:dc:0e:59:db:c2:6d:e1:95:c5:7f:0b:c6:4f: c4:ad:41:34:62:98:c0:6c:92:2a:89:80:0d:d7:5d: 31:91:a3:18:97:6a:ce:6c:f6:60:d3:ab:f7:85:f4: 1a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:44:38:95:35:04:02:4D:59:0F:74:F4:05:CB:32:01:57:09:45:F2 X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:ba:3f:69:88:49:23:3b:36:ed:00:cd:d4:9b:b4:a2:11:5c: ef:32:9f:4c:5b:ac:e6:33:76:1d:64:95:1a:99:1d:bc:01:65: f4:6a:46:8c:bb:d1:9a:d8:e6:db:ce:c0:50:ea:d8:c8:6a:42: 7f:ed:c4:1c:bd:fb:74:9e:14:d8:a2:63:30:fa:59:8a:34:5c: df:1c:f4:14:c2:fa:10:69:8b:ef:a8:ed:fe:4d:8a:14:b4:72: d6:f7:ab:23:a1:ed:b7:3d:9a:27:98:24:15:52:43:59:78:ec: 9c:d7:50:c4:84:33:42:41:6f:13:60:8c:5a:b0:06:c1:9d:7f: a2:87:65:81:43:ce:4a:2f:da:d4:6d:f5:5e:99:38:c1:aa:c1: 5a:cd:7d:59:fc:5b:c9:4e:09:d9:79:d8:f8:0a:b2:a2:72:9b: 3f:ec:7b:bc:10:64:74:f0:da:26:55:ee:d4:f5:93:09:e8:a2: aa:05:e1:fb:74:f8:4b:ee:86:8e:f2:53:c2:78:ec:74:bb:42: e3:84:6c:a8:fb:2a:a6:c4:05:1a:36:09:b2:59:16:f3:bf:96: 58:1e:81:fa:4c:45:ee:9b:c2:87:28:46:cc:0f:53:e1:ae:14: a7:16:3e:19:41:9e:eb:0c:3e:71:21:f3:62:56:5b:e5:1f:dd: f3:61:57:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUwNTMxMDUxNjU3WhcNMjUwNjA3MDUxNjU3WjAYMRYwFAYD VQQDEw02ODNhOTBjOS1lYTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4ikHFupx4MZg3ioV0V00mJ3ptnCUc4e2i4vtYUC2JAoBu2pmdoduoBlM9D+ wsJWvuGQqD9yKiV8GgvlluDZOdzfYZTP9uLPkdfrgExD7oWH/3vECAyF1XrdazAt drlw7jqqVClUvgxiZ08WKnMBH7JdUmBTnz2SqsUbIcwo3u0+hM/EdheGVCXAR2QH O0WfTFNbQeLH8fm2cTIrLp5hDh92g2N8nfhaOuho8F/3f4HMilE+5b6LTswP4XtT o5B4SrdVbB23fO4fBRM8YLkaH9CO9twOWdvCbeGVxX8Lxk/ErUE0YpjAbJIqiYAN 110xkaMYl2rObPZg06v3hfQa1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFEOJU1 BAJNWQ909AXLMgFXCUXyMB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiuj9piEkjOzbtAM3Um7SiEVzvMp9MW6zmM3YdZJUamR28AWX0akaM u9Ga2ObbzsBQ6tjIakJ/7cQcvft0nhTYomMw+lmKNFzfHPQUwvoQaYvvqO3+TYoU tHLW96sjoe23PZonmCQVUkNZeOyc11DEhDNCQW8TYIxasAbBnX+ih2WBQ85KL9rU bfVemTjBqsFazX1Z/FvJTgnZedj4CrKicps/7Hu8EGR08NomVe7U9ZMJ6KKqBeH7 dPhL7oaO8lPCeOx0u0LjhGyo+yqmxAUaNgmyWRbzv5ZYHoH6TEXum8KHKEbMD1Ph rhSnFj4ZQZ7rDD5xIfNiVlvlH93zYVeF -----END CERTIFICATE-----Generated at Sat May 31 15:02:52 2025 by rpki-client