$ rpki-client -vvf rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft File: VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft (raw, json) Hash identifier: tjCrGUzW1v+yBuKSqc1iuUxF2i+E/IODcKfzUO7PYjM= Subject key identifier: 07:FF:7C:C4:D9:84:76:ED:C7:71:DE:07:EC:A0:8B:6E:1E:C2:40:BE Authority key identifier: 54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD Certificate issuer: /CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Certificate serial: 067A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft Manifest number: 0667 Signing time: Fri 30 May 2025 22:40:08 +0000 Manifest this update: Fri 30 May 2025 22:40:08 +0000 Manifest next update: Fri 06 Jun 2025 22:40:08 +0000 Files and hashes: 1: VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl (hash: R3CuaNnIIgJcp61mHTFNG3XZsJ1nMRAyo+77nMpTN3U=) 2: C437B01282C211EBBB08B280C4F9AE02.roa (hash: jFt3e40+ALQhrJp6OJZEoPNCJM/tKBFq4PlGOIsp684=) 3: C3AD861C82C211EBBB08B280C4F9AE02.roa (hash: ExeORiGRCNK8jvuw56sySZxqK+GOSBQ3JY3+3QQDiXc=) 4: 9EA2D73236D311EF89295180C4F9AE02.roa (hash: f2ke3ZBYV1Ribvo8r5rmx6HoUBDp7E1lgqZwRkmtN9g=) 5: C310545082C211EBBB08B280C4F9AE02.roa (hash: +qteBc7xk/iNE1OmAmAugB8Y+ErzQcUywqF9mnDTvtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:40:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790C3, serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Validity Not Before: May 30 22:40:08 2025 GMT Not After : Jun 6 22:40:08 2025 GMT Subject: CN=683a33c8-d594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ae:12:69:e1:99:56:1c:59:e6:b2:8d:57:dd: 99:a1:bd:cd:61:e4:48:d2:8c:db:4a:f8:35:26:e5: fb:1c:37:2e:7c:1f:d0:e4:04:a0:b9:0c:28:5b:e2: 69:4f:7a:6d:d5:88:c9:de:2b:87:2c:bf:b8:14:e4: 8f:1f:73:4f:20:b7:fe:d5:d0:8c:af:ad:15:7e:9d: 05:a1:88:a1:d7:d8:53:79:54:fe:3c:cb:45:e8:3b: 16:4d:44:99:9f:a6:60:0a:3e:52:4c:36:39:be:33: fb:0d:e7:eb:3c:27:36:ff:3a:a9:e7:ea:a3:22:65: 62:d5:e3:5f:f4:5a:a0:d1:10:d0:a0:f3:d6:b5:9f: 60:57:7e:d9:62:7e:e4:f2:b4:9d:10:ef:83:39:2c: 1b:18:36:a7:ad:7b:13:55:a6:eb:99:c8:57:c4:62: db:f9:5d:60:de:c8:3c:6f:06:be:55:82:a0:9f:d5: 2a:ea:26:8d:eb:15:5e:06:b2:cb:73:1e:0f:64:20: 53:41:06:cf:30:ea:a2:f5:51:56:28:3a:bb:92:8b: 55:82:04:60:cb:d0:ea:fa:1e:a3:56:76:96:61:69: 0f:69:18:f6:ef:47:a0:db:c3:e7:15:1b:e0:9a:fe: 2e:50:9a:57:46:00:10:1c:2e:0d:fa:65:93:49:b4: c2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:FF:7C:C4:D9:84:76:ED:C7:71:DE:07:EC:A0:8B:6E:1E:C2:40:BE X509v3 Authority Key Identifier: keyid:54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:7c:bf:bb:e3:66:66:43:12:90:15:ae:bb:7b:00:06:b5:f9: 08:19:66:55:6c:49:43:9b:1b:eb:c4:47:6b:36:66:66:42:b2: c8:82:ea:9a:7b:84:1d:2a:9b:7b:b4:26:81:8c:62:15:4e:58: ee:06:c8:04:97:07:4f:49:04:0e:c7:73:91:86:30:36:3b:ea: d3:f1:ac:a4:00:0f:77:fc:02:4a:16:04:e3:47:31:d2:a7:58: 61:8d:48:6e:75:08:b9:3d:27:17:3b:36:ac:15:72:1e:6f:09: 05:d3:af:58:06:cc:bf:c0:97:0e:61:15:53:9c:0c:77:99:5f: 01:ee:70:60:ac:d4:6b:27:c9:f3:fa:dd:a0:8e:6d:06:66:5e: 1d:1d:b4:b7:43:6f:c5:8d:d1:7c:1e:22:b5:1d:e1:f1:ed:91: d1:58:68:22:ce:8e:5a:c6:5a:8f:80:bd:74:9b:12:6c:1a:2f: b1:b9:a6:76:e3:78:7f:5f:d8:ec:6a:b4:4e:e0:9a:c6:27:17: b3:d4:65:c7:29:78:9d:23:11:3e:91:3c:08:4f:ff:6c:99:8b: d3:17:c8:ed:b1:42:a0:82:b0:88:cb:9c:94:9f:f3:ab:7f:22: fe:6b:4c:11:31:0e:af:03:ea:f7:9c:f6:d0:e9:55:2a:70:38: 4f:d6:42:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwQzMxMTAvBgNVBAUTKDU0ODdCNjNGNDRENjkxRDQzNTY4OEFGRTNDOEFDMjdC RkQ5MTEyQUQwHhcNMjUwNTMwMjI0MDA4WhcNMjUwNjA2MjI0MDA4WjAYMRYwFAYD VQQDEw02ODNhMzNjOC1kNTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzK4SaeGZVhxZ5rKNV92Zob3NYeRI0ozbSvg1JuX7HDcufB/Q5ASguQwoW+Jp T3pt1YjJ3iuHLL+4FOSPH3NPILf+1dCMr60Vfp0FoYih19hTeVT+PMtF6DsWTUSZ n6ZgCj5STDY5vjP7DefrPCc2/zqp5+qjImVi1eNf9Fqg0RDQoPPWtZ9gV37ZYn7k 8rSdEO+DOSwbGDanrXsTVabrmchXxGLb+V1g3sg8bwa+VYKgn9Uq6iaN6xVeBrLL cx4PZCBTQQbPMOqi9VFWKDq7kotVggRgy9Dq+h6jVnaWYWkPaRj270eg28PnFRvg mv4uUJpXRgAQHC4N+mWTSbTC5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAf/fMTZ hHbtx3HeB+ygi24ewkC+MB8GA1UdIwQYMBaAFFSHtj9E1pHUNWiK/jyKwnv9kRKt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBDMy84NTUzMDVFMjgy QzAxMUVCQkFDRTJBN0JDNEY5QUUwMi9WSWUyUDBUV2tkUTFhSXItUElyQ2VfMlJF cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJZTJQMFRXa2RRMWFJci1QSXJDZV8yUkVxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBDMy84NTUzMDVFMjgyQzAxMUVCQkFDRTJBN0JDNEY5QUUwMi9WSWUyUDBUV2tk UTFhSXItUElyQ2VfMlJFcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOfL+742ZmQxKQFa67ewAGtfkIGWZVbElDmxvrxEdrNmZmQrLIguqa e4QdKpt7tCaBjGIVTljuBsgElwdPSQQOx3ORhjA2O+rT8aykAA93/AJKFgTjRzHS p1hhjUhudQi5PScXOzasFXIebwkF069YBsy/wJcOYRVTnAx3mV8B7nBgrNRrJ8nz +t2gjm0GZl4dHbS3Q2/FjdF8HiK1HeHx7ZHRWGgizo5axlqPgL10mxJsGi+xuaZ2 43h/X9jsarRO4JrGJxez1GXHKXidIxE+kTwIT/9smYvTF8jtsUKggrCIy5yUn/Or fyL+a0wRMQ6vA+r3nPbQ6VUqcDhP1kJi -----END CERTIFICATE-----Generated at Sat May 31 17:09:00 2025 by rpki-client