$ rpki-client -vvf rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft File: vTfx1AdHvmxfXGujMH32Vgq2gaM.mft (raw, json) Hash identifier: 2TN7T//l/tCBapJcYKkQxPD02thNM0yT9zgcQa7Si+s= Subject key identifier: A0:22:F3:E8:D7:19:49:17:D9:49:83:38:E5:23:F8:9D:BA:66:AD:6B Authority key identifier: BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 Certificate issuer: /CN=A91817E6/serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft Manifest number: 0A40 Signing time: Fri 30 May 2025 20:42:09 +0000 Manifest this update: Fri 30 May 2025 20:42:09 +0000 Manifest next update: Fri 06 Jun 2025 20:42:09 +0000 Files and hashes: 1: vTfx1AdHvmxfXGujMH32Vgq2gaM.crl (hash: gDOh/e9W9ANeqyLfEKGTM9aPbDZNhqwxljzockbx414=) 2: 28C454FCB41211EF8D2EC946C4F9AE02.roa (hash: C0N61U0YEOhXRTQRllW2NuUOi6qXdqTI0gAe9H3eVh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91817E6, serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Validity Not Before: May 30 20:42:09 2025 GMT Not After : Jun 6 20:42:09 2025 GMT Subject: CN=683a1821-16f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e5:17:15:cf:0d:52:c9:0b:84:84:ba:c1:32: 86:3e:79:cd:30:01:6e:9a:d8:d6:d1:49:b9:01:0a: 09:e4:ed:48:29:05:10:eb:25:0f:e6:22:27:8b:df: 24:51:bf:65:b6:b2:c5:dc:6c:9f:3e:ab:20:cf:c3: 9c:c6:87:bc:f7:fe:25:70:d7:cf:3f:19:11:03:2e: 8b:cc:d7:94:ef:77:c5:69:da:01:9b:f8:e6:9a:59: bb:4c:0d:04:4e:b1:0e:bf:2e:1e:1d:67:26:9b:6f: f7:9e:53:a4:fc:2a:03:cd:03:d5:14:ee:bb:b1:68: df:ea:a6:42:8f:de:1d:f6:34:df:ef:40:2f:0c:dd: 9c:a1:3f:ef:46:48:57:c0:ba:86:85:b5:05:3c:2b: 9c:32:4b:76:c4:7a:8e:86:04:53:86:5b:69:ab:1b: 5a:0c:ba:a5:5b:9d:df:db:8f:a7:68:a9:fa:36:25: fa:9a:89:ed:a1:00:15:c9:8a:2a:13:de:62:29:c2: cf:40:c1:e8:a6:9c:21:db:3c:51:15:2d:5d:6e:ed: 29:df:3d:52:0c:76:90:7b:ef:db:3b:17:8d:d0:db: 68:43:dd:b9:03:09:45:ee:50:63:0c:ac:0d:50:92: 70:5b:c2:27:8a:b8:a6:e5:d2:4f:7c:65:94:fd:fe: ec:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:22:F3:E8:D7:19:49:17:D9:49:83:38:E5:23:F8:9D:BA:66:AD:6B X509v3 Authority Key Identifier: keyid:BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:99:60:79:15:82:d4:59:79:4b:95:78:37:19:63:c1:9e:0b: 2d:10:91:b3:bb:af:1d:eb:df:fd:04:b9:6c:82:4d:fb:10:25: 1e:79:d6:80:3c:90:f8:39:5f:51:4f:a9:4f:16:f5:e8:c5:68: 02:90:f3:ad:4b:dc:ed:97:55:88:f5:a4:07:b1:4a:58:03:01: c3:df:56:76:25:e7:8f:17:a0:0b:2d:22:de:fc:d5:15:e6:d4: ed:9b:ad:ff:c5:8b:bf:14:af:9a:c5:13:bb:e9:0a:af:54:e6: a8:14:e5:4b:01:04:51:43:33:71:7f:80:f9:c3:aa:cb:25:86: 96:5b:29:7d:f5:0e:d1:b2:d9:eb:b4:10:e3:88:d3:5d:e7:c2: 64:79:76:8f:d2:d8:e7:7a:1d:b3:83:1f:ae:66:a0:f3:a1:9d: 6a:d2:3a:b6:e9:51:6f:84:11:4c:32:77:d2:12:f1:78:82:b1: ff:18:bf:bf:a6:3e:c1:d7:da:29:53:bc:c6:e4:e0:18:5c:92: a7:38:a6:5a:b1:a3:99:4a:03:f6:42:7e:06:77:24:e5:f4:50: e9:59:b6:10:5f:fd:cf:8a:66:28:53:d7:11:a5:1e:d5:49:b2: 71:7b:f8:a1:72:ac:1f:b4:bf:5e:4f:3e:02:c1:32:52:a5:0f: 4e:06:d2:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTdFNjExMC8GA1UEBRMoQkQzN0YxRDQwNzQ3QkU2QzVGNUM2QkEzMzA3REY2NTYw QUI2ODFBMzAeFw0yNTA1MzAyMDQyMDlaFw0yNTA2MDYyMDQyMDlaMBgxFjAUBgNV BAMTDTY4M2ExODIxLTE2ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf5RcVzw1SyQuEhLrBMoY+ec0wAW6a2NbRSbkBCgnk7UgpBRDrJQ/mIieL3yRR v2W2ssXcbJ8+qyDPw5zGh7z3/iVw188/GREDLovM15Tvd8Vp2gGb+OaaWbtMDQRO sQ6/Lh4dZyabb/eeU6T8KgPNA9UU7ruxaN/qpkKP3h32NN/vQC8M3ZyhP+9GSFfA uoaFtQU8K5wyS3bEeo6GBFOGW2mrG1oMuqVbnd/bj6doqfo2Jfqaie2hABXJiioT 3mIpws9AweimnCHbPFEVLV1u7SnfPVIMdpB779s7F43Q22hD3bkDCUXuUGMMrA1Q knBbwieKuKbl0k98ZZT9/uz7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoCLz6NcZ SRfZSYM45SP4nbpmrWswHwYDVR0jBBgwFoAUvTfx1AdHvmxfXGujMH32Vgq2gaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxN0U2LzU1NzQwRTcwQjNC MzExRUFCMTk4Q0UwREM0RjlBRTAyL3ZUZngxQWRIdm14ZlhHdWpNSDMyVmdxMmdh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdlRmeDFBZEh2bXhmWEd1ak1IMzJWZ3EyZ2FNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgx N0U2LzU1NzQwRTcwQjNCMzExRUFCMTk4Q0UwREM0RjlBRTAyL3ZUZngxQWRIdm14 ZlhHdWpNSDMyVmdxMmdhTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGiZYHkVgtRZeUuVeDcZY8GeCy0QkbO7rx3r3/0EuWyCTfsQJR551oA8 kPg5X1FPqU8W9ejFaAKQ861L3O2XVYj1pAexSlgDAcPfVnYl548XoAstIt781RXm 1O2brf/Fi78Ur5rFE7vpCq9U5qgU5UsBBFFDM3F/gPnDqsslhpZbKX31DtGy2eu0 EOOI013nwmR5do/S2Od6HbODH65moPOhnWrSOrbpUW+EEUwyd9IS8XiCsf8Yv7+m PsHX2ilTvMbk4Bhckqc4plqxo5lKA/ZCfgZ3JOX0UOlZthBf/c+KZihT1xGlHtVJ snF7+KFyrB+0v15PPgLBMlKlD04G0rA= -----END CERTIFICATE-----Generated at Sat May 31 17:22:03 2025 by rpki-client