$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: HaFaAmBQiwaVmlMSA4uNWTIsxhzlka7OgdpgBWUZ9GE= Subject key identifier: B3:0C:84:F1:76:D7:CE:A9:D6:11:24:12:D5:29:44:FF:6B:6E:88:5A Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 0438 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 0434 Signing time: Sat 31 May 2025 00:31:48 +0000 Manifest this update: Sat 31 May 2025 00:31:47 +0000 Manifest next update: Sat 07 Jun 2025 00:31:47 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: B4aZsQj5DHF1m9nVdqD/5Q8q15bcqylBX8RfaNXJ9Ys=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:31:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1080 (0x438) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: May 31 00:31:47 2025 GMT Not After : Jun 7 00:31:47 2025 GMT Subject: CN=683a4df4-7b38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:43:75:b6:b8:f4:64:31:8c:a7:1b:67:19:69: cd:85:74:30:2b:74:7f:1b:b9:dd:08:ce:35:1e:02: 43:80:67:d1:8b:93:83:7c:e5:7e:f9:2a:3d:00:9c: 7d:02:bd:ec:f4:e5:10:39:16:1d:df:a8:74:d9:50: 51:ac:63:3e:77:96:99:be:7d:fa:ec:b9:d1:9c:3b: 38:cc:ca:8c:e7:af:cb:85:34:ed:72:9e:e4:13:50: 4a:15:91:e8:3e:4a:16:e9:53:4a:90:bd:3e:61:51: 27:bc:d9:1f:80:41:9c:d8:0a:9d:74:ae:20:3f:a8: 5c:9a:55:21:b0:9d:5e:13:d0:d2:d9:3e:0c:e8:2e: d2:a2:eb:bd:d5:b1:01:34:2e:e9:90:b4:50:6c:37: f4:01:e8:1f:b3:1a:de:c1:bd:0a:d8:88:0d:17:54: ed:3b:0c:72:f2:c5:f7:10:da:88:96:a2:f7:83:ca: e9:bb:1f:f6:a2:43:ff:32:56:b8:0d:47:a1:ef:ac: c9:51:b9:82:39:59:12:3c:d1:31:d2:3c:3d:18:9a: cf:dd:66:72:98:2c:ea:21:cb:9b:7c:f8:67:14:7a: 56:91:b3:25:fc:82:b4:f7:2e:93:81:b9:ec:67:66: b5:f5:f9:13:6f:ed:aa:0f:11:9e:b0:f7:8b:9a:5c: 75:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0C:84:F1:76:D7:CE:A9:D6:11:24:12:D5:29:44:FF:6B:6E:88:5A X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:12:f7:a7:7e:84:ab:f0:b4:1a:f0:e9:53:29:a2:e9:3e:fb: 57:b4:5e:c9:73:bb:b3:f9:87:73:4d:ab:12:7f:c9:b8:e6:1b: 7c:81:12:53:71:c3:b4:ca:b5:bd:bc:ef:a7:df:12:cd:a6:13: b4:ec:60:ea:52:92:19:e1:52:09:34:64:42:be:1d:2c:20:4c: 68:f9:4c:c3:29:11:cd:23:0c:2d:bb:f8:33:9c:fc:3e:5a:b1: eb:8c:92:7b:2a:6d:f2:6f:de:d5:b0:7e:ec:b8:ff:f6:0b:8b: 04:0e:d0:04:99:82:e1:08:07:88:94:80:67:26:57:a3:1d:f1: 1d:0f:fc:13:b5:89:7a:f7:36:e1:02:41:d3:d9:45:c9:6b:6c: 6b:21:93:f7:c5:d3:19:ba:b8:67:f4:d4:12:7b:3d:e9:28:8d: ab:a6:43:fa:5b:d6:19:3e:d3:74:67:97:f7:88:37:24:b5:4f: 00:60:a0:7e:69:d6:d3:7b:e0:99:b4:9b:ad:73:92:a7:94:37: fb:cd:d6:8b:f9:2e:59:47:a4:e8:ac:26:36:cd:ae:e9:7a:f9: fe:e6:4f:eb:fe:51:0e:e7:5b:e6:91:85:55:9a:05:40:97:f6: 75:76:b7:0a:12:2b:1c:be:2c:94:88:bd:d5:32:37:0c:b2:b8: 5d:84:37:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjUwNTMxMDAzMTQ3WhcNMjUwNjA3MDAzMTQ3WjAYMRYwFAYD VQQDEw02ODNhNGRmNC03YjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkN1trj0ZDGMpxtnGWnNhXQwK3R/G7ndCM41HgJDgGfRi5ODfOV++So9AJx9 Ar3s9OUQORYd36h02VBRrGM+d5aZvn367LnRnDs4zMqM56/LhTTtcp7kE1BKFZHo PkoW6VNKkL0+YVEnvNkfgEGc2AqddK4gP6hcmlUhsJ1eE9DS2T4M6C7Souu91bEB NC7pkLRQbDf0Aegfsxrewb0K2IgNF1TtOwxy8sX3ENqIlqL3g8rpux/2okP/Mla4 DUeh76zJUbmCOVkSPNEx0jw9GJrP3WZymCzqIcubfPhnFHpWkbMl/IK09y6Tgbns Z2a19fkTb+2qDxGesPeLmlx1UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMMhPF2 186p1hEkEtUpRP9rbohaMB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQEvenfoSr8LQa8OlTKaLpPvtXtF7Jc7uz+YdzTasSf8m45ht8gRJT ccO0yrW9vO+n3xLNphO07GDqUpIZ4VIJNGRCvh0sIExo+UzDKRHNIwwtu/gznPw+ WrHrjJJ7Km3yb97VsH7suP/2C4sEDtAEmYLhCAeIlIBnJlejHfEdD/wTtYl69zbh AkHT2UXJa2xrIZP3xdMZurhn9NQSez3pKI2rpkP6W9YZPtN0Z5f3iDcktU8AYKB+ adbTe+CZtJutc5KnlDf7zdaL+S5ZR6TorCY2za7pevn+5k/r/lEO51vmkYVVmgVA l/Z1drcKEiscviyUiL3VMjcMsrhdhDf3 -----END CERTIFICATE-----Generated at Sat May 31 16:35:54 2025 by rpki-client