$ rpki-client -vvf rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft File: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft (raw, json) Hash identifier: oPeA15A6CmvryuTYJJpVk4njG4v9z1o/2+JGNbCeldo= Subject key identifier: 81:B3:1F:C3:11:F1:39:28:0A:DD:49:E6:24:BE:FD:4B:EB:14:FB:5E Authority key identifier: BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 Certificate issuer: /CN=A917B503/serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft Manifest number: A9 Signing time: Sat 31 May 2025 05:45:08 +0000 Manifest this update: Sat 31 May 2025 05:45:08 +0000 Manifest next update: Sat 07 Jun 2025 05:45:07 +0000 Files and hashes: 1: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl (hash: D9k+dZ93QX212AFgOnSb4uJN54W1ixfg400pUPpgstE=) 2: FF7048A08BB111EF8981B871C4F9AE02.roa (hash: 9uEwzB8ckH0lupP2vcJh2pZkJ61ZIv0842o4n0sbwyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B503, serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Validity Not Before: May 31 05:45:08 2025 GMT Not After : Jun 7 05:45:07 2025 GMT Subject: CN=683a9764-3296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d4:5d:30:b0:e1:ee:0c:81:2f:2f:1a:14:fe: 09:ed:44:2f:a6:54:24:d6:38:ee:9c:ea:5f:e4:91: 17:27:85:63:dc:e6:38:4e:f7:58:b0:04:3f:58:f2: dd:3c:65:7f:1c:11:4b:22:f8:b4:02:9b:ca:33:61: b9:37:15:d2:ed:fe:d6:1a:3e:f5:a5:cb:2d:b4:9f: 6e:6d:32:91:ac:80:18:8e:e6:13:11:96:5b:4c:cf: e9:a4:3f:b6:a4:a4:7e:e3:ac:9f:d4:10:c7:45:ae: 1c:74:19:cf:aa:c0:60:e3:f6:bf:d8:52:aa:82:44: 66:f1:88:6f:54:30:c2:04:10:98:6c:b1:33:68:4c: c8:50:18:6d:6e:fc:75:6e:83:22:1b:4c:36:5d:e4: 86:8c:5b:60:0b:e9:c3:01:49:c4:4a:8e:91:b3:be: 3b:23:de:28:1d:e0:79:6e:31:55:1f:c5:39:f9:77: 6c:58:08:8d:fc:d0:b3:f9:b2:55:aa:19:5f:71:f7: df:96:7a:ff:06:25:c2:77:60:e2:db:c0:af:d1:93: 30:ce:fc:d3:2e:b7:2b:ef:6f:12:2d:e4:4b:5a:05: c4:e1:d5:bb:e4:ba:65:71:3e:93:78:b9:8e:65:4d: 9c:ea:57:cd:da:14:89:57:f0:d1:5c:65:e3:bb:79: 02:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B3:1F:C3:11:F1:39:28:0A:DD:49:E6:24:BE:FD:4B:EB:14:FB:5E X509v3 Authority Key Identifier: keyid:BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:80:33:70:96:75:c3:c5:68:d0:89:d2:77:84:95:bd:e8:93: 08:2b:68:8a:f5:ea:dd:31:6d:ad:66:c3:7f:a2:03:e6:47:d9: 5f:d3:1a:a4:41:6a:0f:49:27:7c:81:38:cb:c8:0a:52:51:db: 4c:f6:ab:e0:b4:f9:50:58:91:6b:51:7e:ca:b4:0a:8e:a1:e2: 66:54:db:e1:d1:af:75:e0:b3:af:f7:0b:e4:e9:8c:f2:bc:11: 88:ad:e6:64:08:aa:3d:39:0a:b3:df:b5:c9:3f:57:c8:86:55: fe:6a:af:81:1b:8b:da:f5:e5:0c:49:a0:bc:fe:38:aa:31:40: e0:7b:fb:08:6d:a9:92:d3:c1:3e:d5:11:98:9d:25:60:53:52: 55:c8:57:51:a3:2e:22:30:af:27:46:3e:07:fe:f0:60:9b:40: 4c:71:24:06:56:5f:bc:7c:87:61:49:08:c5:62:e1:73:21:e2: a4:59:0d:12:94:8d:21:44:c1:71:df:25:5c:1e:c4:6f:62:e7: ba:23:4c:6a:39:66:48:e0:c1:4e:34:c8:74:1f:af:ca:46:d5: a0:90:09:bb:52:22:ee:e5:e9:85:70:75:e3:1e:2a:30:af:4f: bd:3d:eb:7a:fc:f8:a4:3c:e5:81:49:23:ad:d0:b6:4b:e3:02: cb:26:58:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MDMxMTAvBgNVBAUTKEJENjNFMEREQ0I1Q0Q0MUIzNDUwMURGMkU4MUEyQTcy Q0VFMzZFRjIwHhcNMjUwNTMxMDU0NTA4WhcNMjUwNjA3MDU0NTA3WjAYMRYwFAYD VQQDEw02ODNhOTc2NC0zMjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtRdMLDh7gyBLy8aFP4J7UQvplQk1jjunOpf5JEXJ4Vj3OY4TvdYsAQ/WPLd PGV/HBFLIvi0ApvKM2G5NxXS7f7WGj71pcsttJ9ubTKRrIAYjuYTEZZbTM/ppD+2 pKR+46yf1BDHRa4cdBnPqsBg4/a/2FKqgkRm8YhvVDDCBBCYbLEzaEzIUBhtbvx1 boMiG0w2XeSGjFtgC+nDAUnESo6Rs747I94oHeB5bjFVH8U5+XdsWAiN/NCz+bJV qhlfcffflnr/BiXCd2Di28Cv0ZMwzvzTLrcr728SLeRLWgXE4dW75LplcT6TeLmO ZU2c6lfN2hSJV/DRXGXju3kCswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGzH8MR 8TkoCt1J5iS+/UvrFPteMB8GA1UdIwQYMBaAFL1j4N3LXNQbNFAd8ugaKnLO427y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUwMy83Qjg4NUZFNDQz MTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFCczBVQjN5NkJvcWNzN2pi dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZXUGczY3RjMUJzMFVCM3k2Qm9xY3M3amJ2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUwMy83Qjg4NUZFNDQzMTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFC czBVQjN5NkJvcWNzN2pidkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWgDNwlnXDxWjQidJ3hJW96JMIK2iK9erdMW2tZsN/ogPmR9lf0xqk QWoPSSd8gTjLyApSUdtM9qvgtPlQWJFrUX7KtAqOoeJmVNvh0a914LOv9wvk6Yzy vBGIreZkCKo9OQqz37XJP1fIhlX+aq+BG4va9eUMSaC8/jiqMUDge/sIbamS08E+ 1RGYnSVgU1JVyFdRoy4iMK8nRj4H/vBgm0BMcSQGVl+8fIdhSQjFYuFzIeKkWQ0S lI0hRMFx3yVcHsRvYue6I0xqOWZI4MFONMh0H6/KRtWgkAm7UiLu5emFcHXjHiow r0+9Pet6/PikPOWBSSOt0LZL4wLLJlgp -----END CERTIFICATE-----Generated at Sat May 31 17:49:43 2025 by rpki-client