$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft File: ipvaaFOfcVjLATcgqZNvJkuaU3s.mft (raw, json) Hash identifier: c4TcxHUmyLWiS7yjGRJhU83rWLgGgaVM47MrsU5vysE= Subject key identifier: 56:2D:47:0C:4D:89:A9:F5:2A:99:4E:5E:E8:5D:63:E3:DA:41:A5:BE Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0D37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft Manifest number: 0D27 Signing time: Fri 30 May 2025 18:31:27 +0000 Manifest this update: Fri 30 May 2025 18:31:26 +0000 Manifest next update: Fri 06 Jun 2025 18:31:26 +0000 Files and hashes: 1: ipvaaFOfcVjLATcgqZNvJkuaU3s.crl (hash: LjmOFZvPZDWa7GIHlu4si+ob81CvMN+2WeAuGqkDziU=) 2: F23EB988E9A811E9864E3674C4F9AE02.roa (hash: H71fhd8JZc5XXH6DNUerfJbZNQyJaOd/VCkFhoBssG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:31:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3383 (0xd37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: May 30 18:31:26 2025 GMT Not After : Jun 6 18:31:26 2025 GMT Subject: CN=6839f97f-e7f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:19:53:17:04:7e:49:7b:68:97:09:dc:08:c0: f0:14:a6:f6:15:74:08:f1:3a:22:f8:2d:01:fd:5f: a8:eb:e7:9b:aa:44:03:93:ae:a2:cb:42:dd:c1:ba: 8e:d5:64:db:37:fd:1b:d6:a5:f1:6c:41:a6:66:be: ff:c3:58:e3:61:83:77:39:98:de:fe:65:03:0f:a6: 8b:29:c7:09:d7:0e:53:d7:5f:e4:2e:79:37:c5:b5: 26:20:63:5d:ac:6c:d4:4c:ff:34:02:8f:ff:fa:b8: 8a:a3:0f:d7:eb:1b:82:c1:b0:c5:9f:51:f1:4d:05: 25:e9:b1:23:5b:6e:99:93:6b:7c:ca:e5:26:10:a5: 6c:a1:ab:b3:2f:2c:55:0b:ea:3c:3a:91:9c:27:f9: e5:98:db:4b:7a:17:3b:6e:e6:88:52:56:71:8e:29: b2:5a:3e:7f:1e:4f:1c:5d:4d:49:7a:a6:dc:47:8a: 1e:81:36:2d:15:65:d3:ea:24:77:75:52:33:8e:0b: 04:22:a9:fd:fe:4e:fe:2c:81:23:26:46:3d:e7:ee: 25:cf:54:d9:e4:9e:a8:b5:7e:05:5c:37:fd:5a:97: c0:78:87:5e:3e:c1:f6:42:75:ea:a9:1b:ab:70:d5: cb:76:64:6a:4a:2d:77:f5:13:3c:cd:bd:85:e2:17: 13:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:2D:47:0C:4D:89:A9:F5:2A:99:4E:5E:E8:5D:63:E3:DA:41:A5:BE X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:ee:8c:83:fb:94:be:ce:f3:39:ad:c2:b7:a9:5b:7f:b7:6c: a4:1c:07:03:16:81:77:8a:03:3c:ba:5a:98:22:47:e2:79:b2: 73:93:52:7f:9d:da:c4:79:ad:73:13:bc:e1:68:65:be:0d:7e: 60:99:b8:f5:4c:0b:8a:77:0a:3c:d6:31:4d:91:6a:6d:96:21: 01:4a:49:43:d4:11:78:33:6c:51:dd:77:dd:44:6e:0b:8a:c7: d1:87:ed:df:45:04:db:7c:68:eb:b2:ba:a0:60:99:b8:c5:d3: 1c:2d:a4:c5:0c:cc:2c:d8:bd:20:ca:a5:af:f0:ef:c2:68:72: 4f:13:1e:6c:3c:9e:f6:e5:18:af:b5:b1:fa:03:33:cb:74:97: 27:fe:8b:d9:e4:27:bb:eb:43:5b:85:38:c9:3f:1d:b8:0f:8e: 7f:19:fc:dc:0d:80:05:98:b0:0c:68:19:aa:e7:8d:c9:5c:fa: 91:a6:94:25:b3:bd:21:09:c6:ce:23:9a:66:44:74:e4:ef:8b: c7:dd:ae:92:f7:f0:d6:4c:44:1c:51:15:7a:95:e4:5c:5a:de: 40:9e:8f:33:82:fa:c3:87:46:ee:90:74:ef:35:85:41:56:b6: f1:9e:f4:42:df:7a:81:03:a3:55:05:b2:b7:5f:bf:7a:1d:bf: 20:f5:6a:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUwNTMwMTgzMTI2WhcNMjUwNjA2MTgzMTI2WjAYMRYwFAYD VQQDEw02ODM5Zjk3Zi1lN2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBlTFwR+SXtolwncCMDwFKb2FXQI8Toi+C0B/V+o6+ebqkQDk66iy0LdwbqO 1WTbN/0b1qXxbEGmZr7/w1jjYYN3OZje/mUDD6aLKccJ1w5T11/kLnk3xbUmIGNd rGzUTP80Ao//+riKow/X6xuCwbDFn1HxTQUl6bEjW26Zk2t8yuUmEKVsoauzLyxV C+o8OpGcJ/nlmNtLehc7buaIUlZxjimyWj5/Hk8cXU1JeqbcR4oegTYtFWXT6iR3 dVIzjgsEIqn9/k7+LIEjJkY95+4lz1TZ5J6otX4FXDf9WpfAeIdePsH2QnXqqRur cNXLdmRqSi139RM8zb2F4hcTjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYtRwxN ian1KplOXuhdY+PaQaW+MB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg1Ny9GMTMwN0I3NERBRDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNW akxBVGNncVpOdkprdWFVM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC17oyD+5S+zvM5rcK3qVt/t2ykHAcDFoF3igM8ulqYIkfiebJzk1J/ ndrEea1zE7zhaGW+DX5gmbj1TAuKdwo81jFNkWptliEBSklD1BF4M2xR3XfdRG4L isfRh+3fRQTbfGjrsrqgYJm4xdMcLaTFDMws2L0gyqWv8O/CaHJPEx5sPJ725Riv tbH6AzPLdJcn/ovZ5Ce760NbhTjJPx24D45/GfzcDYAFmLAMaBmq543JXPqRppQl s70hCcbOI5pmRHTk74vH3a6S9/DWTEQcURV6leRcWt5Ano8zgvrDh0bukHTvNYVB VrbxnvRC33qBA6NVBbK3X796Hb8g9Wpl -----END CERTIFICATE-----Generated at Sat May 31 16:28:37 2025 by rpki-client