$ rpki-client -vvf rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft File: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft (raw, json) Hash identifier: vdJSGqHgwHnMm/heDz9Pojyj9GaVl1fQhy/5Y0cj8DA= Subject key identifier: 7B:BE:D2:A8:5B:31:69:26:19:19:BE:79:6F:04:3D:8B:63:1E:1B:F8 Authority key identifier: BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 Certificate issuer: /CN=A917B503/serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft Manifest number: 82 Signing time: Thu 13 Mar 2025 04:44:00 +0000 Manifest this update: Thu 13 Mar 2025 04:44:00 +0000 Manifest next update: Thu 20 Mar 2025 04:44:00 +0000 Files and hashes: 1: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl (hash: KaaosEsMtwp9PNjYyy4JClXzHWh2HpYAM/av+FiF3K0=) 2: FF7048A08BB111EF8981B871C4F9AE02.roa (hash: 9uEwzB8ckH0lupP2vcJh2pZkJ61ZIv0842o4n0sbwyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B503 Validity Not Before: Mar 13 04:44:00 2025 GMT Not After : Mar 20 04:44:00 2025 GMT Subject: CN=67d26290-8b81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:66:63:95:65:a5:dd:0f:03:37:2a:cc:d6:25: e8:ba:91:aa:2c:c8:98:31:8e:31:19:42:c7:cb:97: c6:b9:ed:81:59:e3:3a:8e:72:21:97:32:de:2a:64: 61:d1:9b:7a:9a:ea:5a:80:91:f7:39:a1:0a:a0:82: b5:43:62:21:e6:e3:ee:b7:e0:62:61:b3:0e:34:a8: 4c:95:d6:14:d1:7f:4c:9f:c4:ef:7b:ec:f8:eb:51: 51:0f:de:5a:6e:96:14:a1:9b:af:52:01:95:23:af: 27:06:9c:07:22:88:d6:3c:b3:ae:21:36:ed:9d:06: f5:35:82:a1:51:fc:cb:e4:d8:1b:4c:da:7c:59:c3: 4d:66:1b:e7:81:77:1d:fb:b7:0f:ac:ee:a7:6c:84: 72:65:bb:9b:b9:83:b3:68:7b:21:7c:e0:0b:af:f8: e8:05:90:26:0d:34:25:d1:5d:23:fc:31:01:65:05: 6a:76:9f:da:51:9f:7c:ce:f4:86:b8:ec:4f:70:15: 14:11:3d:0e:21:ab:5d:9b:b1:12:87:67:2e:83:9d: 0c:38:45:7f:9f:40:aa:27:c3:c7:a3:14:f9:99:8e: 65:52:90:b8:b0:3b:2b:dd:ee:0e:06:42:71:3f:56: 60:70:46:e0:33:e0:de:44:15:4b:60:1d:9f:03:80: e9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BE:D2:A8:5B:31:69:26:19:19:BE:79:6F:04:3D:8B:63:1E:1B:F8 X509v3 Authority Key Identifier: keyid:BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:e3:1b:eb:2d:00:2a:b4:73:1f:a7:2e:e3:64:69:46:51:b2: 43:06:a8:7e:9a:be:43:ca:e6:20:4d:bf:60:c6:42:29:da:e5: 22:df:60:75:13:3d:13:39:51:34:38:6a:ea:31:40:92:f3:de: 00:40:3d:27:ae:ad:75:fc:ee:f3:45:ea:6b:b1:bb:34:3b:57: 6b:b4:2c:66:fb:36:a3:a3:0a:02:f1:bd:94:27:22:5e:61:cb: e8:43:ec:d0:f6:87:a8:0c:b8:2f:e0:15:e9:c8:36:82:de:15: 22:b5:71:ea:db:7c:d5:21:5b:49:cb:76:1c:cb:8c:3a:46:54: d1:fa:78:a9:12:f3:23:d9:27:f1:4c:c7:d3:13:0a:23:51:ab: 9e:c1:1b:02:5a:45:32:17:60:ba:31:cc:f4:2e:30:89:4b:8b: 43:b3:be:ed:a1:9d:6e:eb:10:72:fa:0e:91:29:74:2e:05:9d: 81:ab:60:2e:8a:18:74:dd:08:6f:04:5b:8a:e9:47:6b:92:40: 12:dd:ca:30:d4:87:9f:5f:37:85:c0:c8:31:ff:94:4a:a4:e7: 3f:0c:76:b3:b5:36:2e:37:28:d8:11:78:7d:92:b6:13:5b:d1: c6:6e:20:fb:ea:c3:7a:40:ac:61:b1:de:51:66:94:b5:94:03: ef:1b:13:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MDMxMTAvBgNVBAUTKEJENjNFMEREQ0I1Q0Q0MUIzNDUwMURGMkU4MUEyQTcy Q0VFMzZFRjIwHhcNMjUwMzEzMDQ0NDAwWhcNMjUwMzIwMDQ0NDAwWjAYMRYwFAYD VQQDEw02N2QyNjI5MC04YjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWZjlWWl3Q8DNyrM1iXoupGqLMiYMY4xGULHy5fGue2BWeM6jnIhlzLeKmRh 0Zt6mupagJH3OaEKoIK1Q2Ih5uPut+BiYbMONKhMldYU0X9Mn8Tve+z461FRD95a bpYUoZuvUgGVI68nBpwHIojWPLOuITbtnQb1NYKhUfzL5NgbTNp8WcNNZhvngXcd +7cPrO6nbIRyZbubuYOzaHshfOALr/joBZAmDTQl0V0j/DEBZQVqdp/aUZ98zvSG uOxPcBUUET0OIatdm7ESh2cug50MOEV/n0CqJ8PHoxT5mY5lUpC4sDsr3e4OBkJx P1ZgcEbgM+DeRBVLYB2fA4DpLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHu+0qhb MWkmGRm+eW8EPYtjHhv4MB8GA1UdIwQYMBaAFL1j4N3LXNQbNFAd8ugaKnLO427y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUwMy83Qjg4NUZFNDQz MTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFCczBVQjN5NkJvcWNzN2pi dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZXUGczY3RjMUJzMFVCM3k2Qm9xY3M3amJ2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUwMy83Qjg4NUZFNDQzMTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFC czBVQjN5NkJvcWNzN2pidkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd4xvrLQAqtHMfpy7jZGlGUbJDBqh+mr5DyuYgTb9gxkIp2uUi32B1 Ez0TOVE0OGrqMUCS894AQD0nrq11/O7zReprsbs0O1drtCxm+zajowoC8b2UJyJe YcvoQ+zQ9oeoDLgv4BXpyDaC3hUitXHq23zVIVtJy3Ycy4w6RlTR+nipEvMj2Sfx TMfTEwojUauewRsCWkUyF2C6Mcz0LjCJS4tDs77toZ1u6xBy+g6RKXQuBZ2Bq2Au ihh03QhvBFuK6UdrkkAS3cow1IefXzeFwMgx/5RKpOc/DHaztTYuNyjYEXh9krYT W9HGbiD76sN6QKxhsd5RZpS1lAPvGxNv -----END CERTIFICATE-----Generated at Thu Mar 13 21:29:14 2025 by rpki-client