$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: mlFsX1k7nT0EE+pjVKio/NjEtxxgEu6fRZbHJspmENg= Subject key identifier: 9A:BD:03:99:6C:12:8C:B9:E3:72:05:52:EA:D2:78:E7:54:F3:A2:32 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0C39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0C2B Signing time: Fri 30 May 2025 18:46:29 +0000 Manifest this update: Fri 30 May 2025 18:46:28 +0000 Manifest next update: Fri 06 Jun 2025 18:46:28 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: gIDuF8c142xSs6MUGVmMnJaknaze97pInpP1LRDrqJc=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: CC9X+3CcYjfvDOG+Jd491zfowlADhabzoyJw/gqJGUg=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: erICH0cme0SAzh4DFMOpR5Ja+e0q51Z/KWddXql4mQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:46:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3129 (0xc39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: May 30 18:46:28 2025 GMT Not After : Jun 6 18:46:28 2025 GMT Subject: CN=6839fd05-0618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:49:57:fb:d2:59:8d:e7:78:5d:18:f7:29:3a: 2b:de:18:3d:d0:4d:fd:a7:bc:df:41:3c:2c:e6:26: 60:d2:e5:3d:01:7b:44:6b:51:a8:ce:a3:26:77:d2: ac:9a:bc:51:60:b1:90:97:37:e5:13:87:95:27:e3: 3f:c7:72:7b:55:ea:bd:5e:75:1c:10:5a:72:8a:02: fa:17:d5:96:17:8d:3e:1c:91:95:34:1d:9b:96:9c: 37:e6:3c:47:4e:6b:c9:aa:fe:d2:41:83:97:73:d0: f3:f3:0f:c3:70:73:9e:fc:42:ce:10:09:05:93:51: e2:93:6a:de:28:43:45:76:a0:04:0a:3a:75:94:09: 1d:41:23:8a:a7:8e:3e:34:37:58:f2:87:e0:63:33: d3:1c:cc:f2:5c:01:16:00:44:3b:74:a1:d6:40:76: c9:2a:3c:6f:01:1f:04:65:e5:72:d0:ef:d9:c9:28: 00:16:3e:d0:65:96:e3:fc:28:e9:6e:5b:3a:b6:f6: 7b:47:30:31:d1:27:c7:d8:31:19:99:dd:6e:1c:51: bb:37:4e:d6:96:ca:b8:fe:23:4a:f7:be:8d:36:db: be:ff:f8:df:3f:6b:ce:0d:92:c0:48:1e:53:c7:69: c4:c3:93:03:e8:bc:13:b6:cf:bf:04:54:89:1a:33: 46:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:BD:03:99:6C:12:8C:B9:E3:72:05:52:EA:D2:78:E7:54:F3:A2:32 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:19:2e:12:51:fc:1a:de:33:1f:0a:27:59:a7:1e:1f:1e:2c: 79:e0:78:ca:e6:86:02:71:b9:1b:4e:d0:09:39:f7:c9:11:1e: 3a:33:26:d5:97:4c:c8:37:97:ae:2b:71:e6:85:14:76:a3:93: 24:0e:b7:00:a6:e3:26:e3:23:1e:3a:89:37:37:89:be:61:82: 61:b1:71:03:c4:7f:9a:f4:4d:d3:da:27:a6:5d:9b:c3:fa:6f: cf:17:52:61:05:a2:04:40:e2:2f:75:d9:d0:5e:14:17:a2:3a: a9:ef:a6:28:45:ab:f3:2f:70:16:58:ce:c0:48:14:b0:6f:09: 18:17:e4:68:e4:e7:04:cd:b6:3f:22:cf:7a:e6:19:33:09:d6: 2f:b0:cf:ee:02:cd:62:54:e8:92:03:06:02:1d:02:3f:d4:c4: 95:06:e5:0f:83:1b:11:9b:bb:fc:a0:5b:ac:ee:20:25:35:94: 39:77:25:61:40:4a:07:51:12:51:99:af:ba:e5:e0:ab:45:ea: 89:34:54:a0:3f:79:49:44:2f:8d:98:63:af:76:9d:ad:80:a5: 14:0a:38:6b:2f:88:fc:c0:72:2d:00:d8:26:ee:2c:7b:b4:fa: 9a:52:8a:aa:62:27:6d:a1:c5:ae:ac:d0:74:b7:8c:6d:81:97: 28:51:17:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUwNTMwMTg0NjI4WhcNMjUwNjA2MTg0NjI4WjAYMRYwFAYD VQQDEw02ODM5ZmQwNS0wNjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ElX+9JZjed4XRj3KTor3hg90E39p7zfQTws5iZg0uU9AXtEa1GozqMmd9Ks mrxRYLGQlzflE4eVJ+M/x3J7Veq9XnUcEFpyigL6F9WWF40+HJGVNB2blpw35jxH TmvJqv7SQYOXc9Dz8w/DcHOe/ELOEAkFk1Hik2reKENFdqAECjp1lAkdQSOKp44+ NDdY8ofgYzPTHMzyXAEWAEQ7dKHWQHbJKjxvAR8EZeVy0O/ZySgAFj7QZZbj/Cjp bls6tvZ7RzAx0SfH2DEZmd1uHFG7N07Wlsq4/iNK976NNtu+//jfP2vODZLASB5T x2nEw5MD6LwTts+/BFSJGjNG5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJq9A5ls Eoy543IFUurSeOdU86IyMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0GS4SUfwa3jMfCidZpx4fHix54HjK5oYCcbkbTtAJOffJER46MybV l0zIN5euK3HmhRR2o5MkDrcApuMm4yMeOok3N4m+YYJhsXEDxH+a9E3T2iemXZvD +m/PF1JhBaIEQOIvddnQXhQXojqp76YoRavzL3AWWM7ASBSwbwkYF+Ro5OcEzbY/ Is965hkzCdYvsM/uAs1iVOiSAwYCHQI/1MSVBuUPgxsRm7v8oFus7iAlNZQ5dyVh QEoHURJRma+65eCrReqJNFSgP3lJRC+NmGOvdp2tgKUUCjhrL4j8wHItANgm7ix7 tPqaUoqqYidtocWurNB0t4xtgZcoURdU -----END CERTIFICATE-----Generated at Sat May 31 16:52:17 2025 by rpki-client