$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft File: Vj8ylI68GzkPMqCqPzYUeFr858I.mft (raw, json) Hash identifier: hX5uxtTujfe2eM4Qnj7F1jKKvZ+atA49VnniGe3Hh7Q= Subject key identifier: B3:89:5A:37:22:06:E8:18:BC:C6:3E:BF:91:AF:90:24:5F:E1:94:5A Authority key identifier: 56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 Certificate issuer: /CN=A917AC8C/serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Certificate serial: 02D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft Manifest number: 02CD Signing time: Sat 31 May 2025 01:34:12 +0000 Manifest this update: Sat 31 May 2025 01:34:12 +0000 Manifest next update: Sat 07 Jun 2025 01:34:12 +0000 Files and hashes: 1: Vj8ylI68GzkPMqCqPzYUeFr858I.crl (hash: uG6L2oIB/y9AQ0Oyn+BAMrfPXaxvCDCW5vhLhA9NVt4=) 2: EA5EB99CEBBD11ECB3DAFE39C4F9AE02.roa (hash: +bhmDLl/B0RomjsU7MW7xevtY9GqNCpc/xDljwJVPAo=) 3: EB756434EBBD11ECB3DAFE39C4F9AE02.roa (hash: OqHjS/HS8e7S5i/skx8l2IsJyhS/M18aAyJkpcYv//Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 723 (0x2d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC8C, serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Validity Not Before: May 31 01:34:12 2025 GMT Not After : Jun 7 01:34:12 2025 GMT Subject: CN=683a5c94-9015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e1:9a:98:0e:8f:16:e5:0f:ea:bd:8b:7a:38: dc:d9:1f:10:b0:86:10:e2:d8:50:48:28:fe:fb:cd: df:37:83:ef:a8:c5:28:fb:35:0d:10:7c:1b:50:71: 2f:86:6a:a4:41:1b:72:dc:96:4b:72:b7:6d:0e:61: 8a:3d:77:68:b9:66:f7:dd:0e:1b:c4:32:41:2a:08: 59:8e:ce:07:5d:32:b0:b8:63:3b:4d:ca:70:e9:0c: c5:a6:07:9a:fa:39:ca:ce:e1:6a:12:3e:7c:d8:28: 96:65:5c:30:0c:92:80:b7:79:10:f0:7f:36:89:25: 37:3d:d5:15:bd:08:34:0a:88:49:57:f5:05:e4:a3: 90:2e:d0:e7:7b:63:bc:8b:d9:14:6f:7b:24:3f:4c: 2c:6e:d6:99:9d:01:e3:0e:8f:39:37:ea:37:26:c4: 4c:d2:27:b5:07:53:0d:bc:d7:6a:10:f5:61:be:fb: ad:b8:5e:0f:02:cf:f7:d3:58:7f:66:e4:c5:e1:70: 48:3a:44:0a:3f:5d:10:84:b1:4a:13:ba:e0:db:bc: 5f:1f:8f:2b:81:4f:91:0e:9d:9a:16:1d:0e:09:f5: f8:02:76:06:3a:61:57:43:8b:87:ae:0a:4f:69:0c: a8:8f:46:41:65:08:3e:dd:bc:e9:11:7c:b8:9d:26: 90:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:89:5A:37:22:06:E8:18:BC:C6:3E:BF:91:AF:90:24:5F:E1:94:5A X509v3 Authority Key Identifier: keyid:56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:9c:57:41:e4:51:91:69:ba:59:95:c6:52:0f:5e:39:0b:ef: b3:71:46:4e:d2:22:28:e3:18:c1:21:55:5d:c3:ea:95:c9:73: 61:f0:20:37:a9:f9:cf:52:69:d9:57:39:5b:3a:77:7e:70:92: 82:da:e3:d5:47:aa:dc:dc:fa:10:9d:68:4e:c9:2c:50:fb:ca: b3:34:a6:66:04:d6:e4:32:8e:58:1c:2f:96:2d:fc:26:1f:8b: 4a:fa:64:1a:37:47:69:e8:e1:3a:40:dd:41:ba:7f:5a:1b:81: fe:2e:de:d2:75:6e:d3:04:fb:45:00:9a:ad:57:fe:cd:2a:2f: aa:9c:76:ab:7a:27:74:0e:0d:b5:51:30:13:f5:06:e0:8d:ed: ab:22:3f:ff:22:1c:2e:89:19:b1:6f:5c:b8:f7:d1:47:3f:ba: 3e:85:ac:a7:d1:16:60:4f:cd:13:56:78:e2:82:69:d9:31:3c: 4c:7f:03:c1:b0:17:88:2d:5f:eb:db:24:d9:14:42:00:4a:a0: e0:79:1e:90:0a:ac:00:3c:9d:35:90:3e:98:be:aa:17:af:6c: ac:c3:ef:cc:4d:f3:dc:b2:95:2b:f4:c0:ce:8a:41:5d:cb:f0: e0:e0:49:29:97:7a:76:4a:b2:bd:b3:ba:c1:71:fb:b0:27:bb: e2:3c:e1:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDOEMxMTAvBgNVBAUTKDU2M0YzMjk0OEVCQzFCMzkwRjMyQTBBQTNGMzYxNDc4 NUFGQ0U3QzIwHhcNMjUwNTMxMDEzNDEyWhcNMjUwNjA3MDEzNDEyWjAYMRYwFAYD VQQDEw02ODNhNWM5NC05MDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweGamA6PFuUP6r2Lejjc2R8QsIYQ4thQSCj++83fN4PvqMUo+zUNEHwbUHEv hmqkQRty3JZLcrdtDmGKPXdouWb33Q4bxDJBKghZjs4HXTKwuGM7Tcpw6QzFpgea +jnKzuFqEj582CiWZVwwDJKAt3kQ8H82iSU3PdUVvQg0CohJV/UF5KOQLtDne2O8 i9kUb3skP0wsbtaZnQHjDo85N+o3JsRM0ie1B1MNvNdqEPVhvvutuF4PAs/301h/ ZuTF4XBIOkQKP10QhLFKE7rg27xfH48rgU+RDp2aFh0OCfX4AnYGOmFXQ4uHrgpP aQyoj0ZBZQg+3bzpEXy4nSaQGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOJWjci BugYvMY+v5GvkCRf4ZRaMB8GA1UdIwQYMBaAFFY/MpSOvBs5DzKgqj82FHha/OfC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUM4Qy84OTk2NkRDQUVC QjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6a1BNcUNxUHpZVWVGcjg1 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqOHlsSTY4R3prUE1xQ3FQellVZUZyODU4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUM4Qy84OTk2NkRDQUVCQjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6 a1BNcUNxUHpZVWVGcjg1OEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOnFdB5FGRabpZlcZSD145C++zcUZO0iIo4xjBIVVdw+qVyXNh8CA3 qfnPUmnZVzlbOnd+cJKC2uPVR6rc3PoQnWhOySxQ+8qzNKZmBNbkMo5YHC+WLfwm H4tK+mQaN0dp6OE6QN1Bun9aG4H+Lt7SdW7TBPtFAJqtV/7NKi+qnHareid0Dg21 UTAT9Qbgje2rIj//IhwuiRmxb1y499FHP7o+hayn0RZgT80TVnjigmnZMTxMfwPB sBeILV/r2yTZFEIASqDgeR6QCqwAPJ01kD6YvqoXr2ysw+/MTfPcspUr9MDOikFd y/Dg4Ekpl3p2SrK9s7rBcfuwJ7viPOGh -----END CERTIFICATE-----Generated at Sat May 31 16:44:55 2025 by rpki-client