$ rpki-client -vvf rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft File: vJfyb7J4ln3TyjnFndCMaiwjBvk.mft (raw, json) Hash identifier: nnBNskbiCwWw09dbbUFY9sxXTuvsJPv2at6LTW5NU0o= Subject key identifier: 9B:4C:30:E9:B8:99:E5:84:A2:51:C4:D2:0F:FA:C7:AA:4B:29:6A:C3 Authority key identifier: BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 Certificate issuer: /CN=A9171845/serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Certificate serial: 04E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft Manifest number: 04DA Signing time: Tue 03 Jun 2025 00:00:25 +0000 Manifest this update: Tue 03 Jun 2025 00:00:24 +0000 Manifest next update: Tue 10 Jun 2025 00:00:24 +0000 Files and hashes: 1: vJfyb7J4ln3TyjnFndCMaiwjBvk.crl (hash: JSQ9dSLbU56N5MWX1RSuCtToYcfrngqKT6FD6gtBvO8=) 2: 8B91EDB420CD11EC97292B78C4F9AE02.roa (hash: eIj7A9yHm5UyaDqD5wlEFgtzeqxaYRyGJ855/hLNbFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1250 (0x4e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171845, serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Validity Not Before: Jun 3 00:00:24 2025 GMT Not After : Jun 10 00:00:24 2025 GMT Subject: CN=683e3b19-94dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f7:72:46:ac:fc:03:40:26:b8:9f:36:9d:ee: 70:4f:55:73:ac:af:ba:0d:a2:c7:2e:22:08:00:90: 11:28:1b:d5:b2:c4:79:3d:46:26:a1:3a:f7:95:f1: b1:61:01:a6:80:24:0f:d6:d7:9f:62:39:b0:fd:7b: 25:1c:bf:16:ca:54:9d:cd:2c:e8:d6:a8:98:1e:db: ea:ea:49:34:11:f6:fc:66:8b:d5:f8:7a:91:bf:b4: 90:2c:30:d1:a2:99:e7:ad:46:87:e2:0c:1a:7a:75: c1:67:79:9b:2f:b5:a2:b9:a7:18:1d:a1:ef:74:5e: ae:9b:ae:bf:5e:c5:14:0f:be:c7:f5:c3:12:1d:30: e9:9c:a4:de:ca:31:9c:a7:fa:76:76:c7:bf:ad:92: 9f:96:4a:bf:6a:30:dd:99:95:2b:02:11:9e:b5:4e: 4a:db:4a:16:73:0f:ee:2f:88:13:29:d6:a6:e5:a1: 11:1b:d5:25:f5:b5:62:c7:28:35:57:a1:d4:40:12: 95:84:22:34:bd:4f:bb:e8:55:77:52:69:dc:27:1c: 9d:bf:2f:ad:fa:7a:57:8f:aa:35:0c:95:14:15:d1: d1:fd:4f:67:5e:56:1f:13:c2:e0:21:84:8c:68:0b: 1a:ea:c6:bf:11:32:d1:bf:c4:ec:6a:38:3b:b2:1c: 12:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:4C:30:E9:B8:99:E5:84:A2:51:C4:D2:0F:FA:C7:AA:4B:29:6A:C3 X509v3 Authority Key Identifier: keyid:BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:80:21:36:06:89:42:0c:30:f0:95:cc:c6:a2:e1:7b:a7:7a: 6c:34:43:3a:47:58:b0:3b:98:72:cb:ce:6f:54:f0:cb:25:01: 9e:bb:1c:1d:2d:b8:81:9e:2d:69:1e:a4:ce:68:ff:b7:36:6a: d5:b3:f8:4d:24:00:09:95:72:10:5c:1f:cc:dc:cf:cc:4e:5b: d7:93:3e:70:2c:2a:97:b8:d2:83:7f:c2:7d:9d:b0:f4:a1:b2: 94:f0:5d:b9:2a:93:1f:d3:ff:24:d0:9e:c4:2e:e0:19:81:d0: 8a:52:6f:b8:a1:9c:76:2f:5e:c3:4e:94:ab:65:0e:9a:5e:ad: dc:53:3a:2a:0a:c5:4a:7e:aa:69:ac:42:8a:3a:0f:5e:b3:eb: 46:e1:1e:50:de:aa:d2:7c:0c:cf:f5:f1:55:4c:df:a4:60:db: 37:56:55:f9:0f:11:cd:1b:25:29:e7:7b:bb:2c:53:d5:73:a0: 8e:b4:55:7d:1a:a5:b6:3d:27:15:27:0d:a2:b4:61:b1:88:3d: 1d:bd:81:03:d5:3b:49:26:1d:f0:de:cd:1c:83:55:1b:1a:fb: 8b:4c:21:f2:eb:e1:66:b3:87:65:5f:86:75:ae:16:18:ce:3e: 40:17:a5:3f:5e:ed:86:b6:b6:59:f0:77:90:cd:ca:94:11:16: 62:29:07:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4NDUxMTAvBgNVBAUTKEJDOTdGMjZGQjI3ODk2N0REM0NBMzlDNTlERDA4QzZB MkMyMzA2RjkwHhcNMjUwNjAzMDAwMDI0WhcNMjUwNjEwMDAwMDI0WjAYMRYwFAYD VQQDEw02ODNlM2IxOS05NGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3vdyRqz8A0AmuJ82ne5wT1VzrK+6DaLHLiIIAJARKBvVssR5PUYmoTr3lfGx YQGmgCQP1tefYjmw/XslHL8WylSdzSzo1qiYHtvq6kk0Efb8ZovV+HqRv7SQLDDR opnnrUaH4gwaenXBZ3mbL7WiuacYHaHvdF6um66/XsUUD77H9cMSHTDpnKTeyjGc p/p2dse/rZKflkq/ajDdmZUrAhGetU5K20oWcw/uL4gTKdam5aERG9Ul9bVixyg1 V6HUQBKVhCI0vU+76FV3UmncJxydvy+t+npXj6o1DJUUFdHR/U9nXlYfE8LgIYSM aAsa6sa/ETLRv8Tsajg7shwSOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtMMOm4 meWEolHE0g/6x6pLKWrDMB8GA1UdIwQYMBaAFLyX8m+yeJZ908o5xZ3QjGosIwb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg0NS83QjYyQzgwODIw Q0ExMUVDQjY2QzE0NTJDNEY5QUUwMi92SmZ5YjdKNGxuM1R5am5GbmRDTWFpd2pC dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZKZnliN0o0bG4zVHlqbkZuZENNYWl3akJ2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg0NS83QjYyQzgwODIwQ0ExMUVDQjY2QzE0NTJDNEY5QUUwMi92SmZ5YjdKNGxu M1R5am5GbmRDTWFpd2pCdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwgCE2BolCDDDwlczGouF7p3psNEM6R1iwO5hyy85vVPDLJQGeuxwd LbiBni1pHqTOaP+3NmrVs/hNJAAJlXIQXB/M3M/MTlvXkz5wLCqXuNKDf8J9nbD0 obKU8F25KpMf0/8k0J7ELuAZgdCKUm+4oZx2L17DTpSrZQ6aXq3cUzoqCsVKfqpp rEKKOg9es+tG4R5Q3qrSfAzP9fFVTN+kYNs3VlX5DxHNGyUp53u7LFPVc6COtFV9 GqW2PScVJw2itGGxiD0dvYED1TtJJh3w3s0cg1UbGvuLTCHy6+Fms4dlX4Z1rhYY zj5AF6U/Xu2GtrZZ8HeQzcqUERZiKQcb -----END CERTIFICATE-----Generated at Tue Jun 3 23:57:47 2025 by rpki-client