$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft File: VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft (raw, json) Hash identifier: T7B+U/oUH35ij1FJmM8w9Lvm5m+zSi7zbabKB9pFaiE= Subject key identifier: 86:73:F9:55:BA:3D:0C:95:54:6F:10:7B:AD:6F:DC:8A:D1:F5:F0:99 Authority key identifier: 56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A Certificate issuer: /CN=A91D6F2B/serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A Certificate serial: 0359 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft Manifest number: 0354 Signing time: Tue 03 Jun 2025 01:14:34 +0000 Manifest this update: Tue 03 Jun 2025 01:14:33 +0000 Manifest next update: Tue 10 Jun 2025 01:14:33 +0000 Files and hashes: 1: VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl (hash: 9EupE0kCYBMr0IjtnSeq8MNw9Jf22D0eRCCsC6HAuvU=) 2: 2A22D2FCB6CB11ECA43EEE87C4F9AE02.roa (hash: KlAC54soZmN85lgdd13wHGCcsR/XbE59aQyhJMVb4zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:14:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6F2B, serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A Validity Not Before: Jun 3 01:14:33 2025 GMT Not After : Jun 10 01:14:33 2025 GMT Subject: CN=683e4c7a-88a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b9:a7:f1:09:09:42:cf:02:39:a1:82:8e:9c: 3d:6a:eb:c5:ce:ee:56:d3:86:5c:51:e0:34:5a:3b: 13:35:ad:ed:7c:10:f6:9e:19:b0:cf:5a:6b:94:9f: 03:83:86:ba:11:a4:8b:88:0b:04:4c:a9:17:67:a5: 4e:a5:54:88:67:7c:f9:73:75:ad:de:10:71:6f:69: 82:33:54:76:90:6e:60:4e:bc:8f:eb:c3:79:5f:91: 94:a2:02:28:68:69:95:d9:d8:69:0c:71:fc:80:b7: b9:b9:26:82:5f:09:dd:6a:51:59:e5:cc:40:3d:c0: d7:72:87:3d:85:fc:b5:68:25:fd:91:8f:9f:79:31: d2:c3:7f:c1:00:68:32:de:d5:41:3c:29:55:da:7d: ba:ca:f7:2d:35:fe:50:fa:cd:e8:3c:d3:f4:80:78: d2:17:2f:f1:6b:8c:cf:00:cc:83:cc:2a:0a:3b:64: b9:d1:d7:e0:f1:ed:d5:7f:b5:b3:c1:f6:b1:4e:4e: 1b:00:4d:54:66:c8:6a:23:6f:b1:ef:e7:63:84:94: f6:95:91:41:2b:f6:9d:c2:55:b2:8f:e1:5f:da:4c: fa:4d:55:9b:ca:a3:bd:6a:ef:ef:0f:46:b5:98:bc: cf:71:33:5c:4e:eb:fb:e6:47:ed:ae:e8:a1:84:54: 12:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:73:F9:55:BA:3D:0C:95:54:6F:10:7B:AD:6F:DC:8A:D1:F5:F0:99 X509v3 Authority Key Identifier: keyid:56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:52:d6:7e:9b:8e:01:f8:1e:36:bf:9e:a0:cb:19:da:7d:d8: ae:c9:11:88:34:7a:8a:96:52:72:5e:33:9b:70:4b:88:ac:54: c9:3f:6d:37:39:4c:e8:2f:e8:7e:63:33:8d:c8:35:7b:6f:5e: e9:e5:7d:a2:7a:01:06:39:d5:d0:4e:d3:71:66:b9:3e:92:cd: 8c:e7:a7:b7:a2:b4:c2:95:cc:94:75:ac:64:8a:94:d5:80:b1: 68:1c:a0:47:96:e4:67:80:57:91:7f:bf:f8:66:92:9b:7f:63: 68:a1:54:7c:b6:94:13:53:f5:31:b1:49:48:9b:e2:72:ac:0b: 44:1d:84:93:2e:b0:60:fe:39:c9:00:36:c5:05:9f:44:35:1e: d5:d0:cc:92:fc:38:c7:2d:5b:fe:bf:da:73:dc:b0:6b:3c:f6: 04:0f:53:84:07:f8:5a:e3:dc:4b:44:ec:7c:ee:e8:96:6f:e8: 55:6f:bb:f5:79:f8:a4:5a:a4:68:eb:ea:1a:05:1c:6c:29:2f: d1:c3:bb:87:42:da:e7:71:0a:37:89:e0:1a:85:de:1a:8d:f2: 87:b7:f5:6d:7c:c1:0a:8a:bd:ab:9e:71:d8:a9:ff:ae:c9:77: d6:fd:59:24:b3:f5:f3:ad:ef:01:36:74:b4:c6:15:9a:a2:f8: 5f:c9:79:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZGMkIxMTAvBgNVBAUTKDU2MzhDQjFFMjZEMTE5OURBQkU4QjhDN0VEMjJCMDND NENFOEM4MEEwHhcNMjUwNjAzMDExNDMzWhcNMjUwNjEwMDExNDMzWjAYMRYwFAYD VQQDEw02ODNlNGM3YS04OGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bmn8QkJQs8COaGCjpw9auvFzu5W04ZcUeA0WjsTNa3tfBD2nhmwz1prlJ8D g4a6EaSLiAsETKkXZ6VOpVSIZ3z5c3Wt3hBxb2mCM1R2kG5gTryP68N5X5GUogIo aGmV2dhpDHH8gLe5uSaCXwndalFZ5cxAPcDXcoc9hfy1aCX9kY+feTHSw3/BAGgy 3tVBPClV2n26yvctNf5Q+s3oPNP0gHjSFy/xa4zPAMyDzCoKO2S50dfg8e3Vf7Wz wfaxTk4bAE1UZshqI2+x7+djhJT2lZFBK/adwlWyj+Ff2kz6TVWbyqO9au/vD0a1 mLzPcTNcTuv75kftruihhFQS6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZz+VW6 PQyVVG8Qe61v3IrR9fCZMB8GA1UdIwQYMBaAFFY4yx4m0Rmdq+i4x+0isDxM6MgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkYyQi8zMzg2Njc2NkI2 QzkxMUVDODlCREM2ODdDNEY5QUUwMi9WampMSGliUkdaMnI2TGpIN1NLd1BFem95 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqakxIaWJSR1oycjZMakg3U0t3UEV6b3lBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkYyQi8zMzg2Njc2NkI2QzkxMUVDODlCREM2ODdDNEY5QUUwMi9WampMSGliUkda MnI2TGpIN1NLd1BFem95QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeUtZ+m44B+B42v56gyxnafdiuyRGINHqKllJyXjObcEuIrFTJP203 OUzoL+h+YzONyDV7b17p5X2iegEGOdXQTtNxZrk+ks2M56e3orTClcyUdaxkipTV gLFoHKBHluRngFeRf7/4ZpKbf2NooVR8tpQTU/UxsUlIm+JyrAtEHYSTLrBg/jnJ ADbFBZ9ENR7V0MyS/DjHLVv+v9pz3LBrPPYED1OEB/ha49xLROx87uiWb+hVb7v1 efikWqRo6+oaBRxsKS/Rw7uHQtrncQo3ieAahd4ajfKHt/VtfMEKir2rnnHYqf+u yXfW/Vkks/Xzre8BNnS0xhWaovhfyXm9 -----END CERTIFICATE-----Generated at Tue Jun 3 23:46:45 2025 by rpki-client