$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: POfqvgka6fw2S7jX2W06O2D13DEl2Ym5SEEXHsw9Xag= Subject key identifier: E9:90:70:8C:DE:3F:76:35:38:A0:3F:69:42:68:CD:09:D2:C7:DA:DC Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: 013A Signing time: Sat 31 May 2025 04:05:11 +0000 Manifest this update: Sat 31 May 2025 04:05:10 +0000 Manifest next update: Sat 07 Jun 2025 04:05:10 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: n4yHaX1eWB46bEwLNW1kEJiyW5UxKjSCLHmuqKh/kN8=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: DaoJhbsGXkUC42pkhjpzJhDA/mxo+1TSGX1zlEEQkMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: May 31 04:05:10 2025 GMT Not After : Jun 7 04:05:10 2025 GMT Subject: CN=683a7ff7-9a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:80:5e:1e:6e:90:3f:6d:e2:8d:aa:62:a6:fa: ec:24:e6:34:52:b8:22:2b:a7:5c:c9:7c:fc:0e:69: 1e:a2:fa:bd:99:ed:30:8a:10:31:58:fe:cb:8e:ee: 8e:6c:8b:1b:c8:81:f5:07:da:72:5f:02:d0:09:64: e0:10:78:61:e8:c6:1c:d9:f0:6d:6a:35:e0:5e:46: 53:a2:f6:3e:27:ec:67:07:50:38:da:d0:14:eb:de: 71:ec:19:3a:2a:1f:14:db:3c:5c:0c:d3:c9:63:f0: e3:8e:28:aa:b0:41:5f:14:27:96:9f:c8:86:cb:76: db:a2:78:42:7d:0e:2a:b9:10:64:b3:44:31:df:77: 75:95:3f:be:31:28:b1:58:4d:f0:96:de:68:8f:23: f2:f1:55:e0:45:6b:1f:e3:75:01:0e:91:6d:d6:ce: 8e:23:9c:3d:58:7b:dc:2e:90:4b:63:fc:59:3b:78: 93:d8:fa:c1:37:c1:6a:4c:02:c0:6c:73:8a:b1:87: 15:14:dd:39:34:73:fc:cc:60:ab:e6:9a:e3:b8:a5: 08:8e:11:c7:1c:2f:3a:76:14:81:fd:28:22:77:e9: 22:42:89:ba:f7:24:fb:85:88:66:04:63:a6:e8:8b: eb:75:50:74:84:7d:7f:af:ac:b9:b0:0a:99:39:aa: 50:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:90:70:8C:DE:3F:76:35:38:A0:3F:69:42:68:CD:09:D2:C7:DA:DC X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:68:c4:4f:ed:0a:91:6f:c7:bf:ed:72:5b:bd:f1:e7:b9:aa: 5d:cd:e5:2e:3e:43:70:d1:bc:ae:6a:a5:8b:c5:75:a4:96:07: 5e:68:27:97:d6:51:24:bb:21:84:dd:ad:7e:46:bb:23:65:e3: 45:e6:ae:83:1a:2c:36:5c:36:8b:1b:1b:7e:28:bb:c1:df:e8: 3b:9f:83:17:7a:0d:c2:a6:c6:26:28:6e:29:73:3a:40:79:2e: 43:14:c4:65:a2:f2:74:eb:32:c2:77:cd:e7:fd:80:a2:c0:dc: 76:fa:25:88:b4:a7:4c:c0:6e:30:c3:37:c6:6f:77:58:8a:47: 13:59:24:b2:64:e0:d7:5e:58:7b:0f:14:bc:bf:83:d6:95:c4: 5d:41:b4:0d:34:87:cb:ff:41:4d:dc:2b:fd:8e:c0:db:a3:f7: 93:8a:65:b2:27:97:ad:c1:34:f2:e6:26:73:c1:95:b2:1c:72: ec:fa:1a:76:a4:60:b8:c9:0c:ce:81:21:33:61:6b:ae:89:60: 4d:bb:30:2e:08:2a:e3:8d:ee:ab:4e:7c:67:55:1f:15:4d:d8: 06:68:53:8e:b6:df:61:66:fa:95:d5:a9:35:c0:11:bd:da:49: df:77:88:6c:9c:0d:58:15:40:ca:cf:e2:e6:36:74:af:5c:71: 1b:69:5e:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjUwNTMxMDQwNTEwWhcNMjUwNjA3MDQwNTEwWjAYMRYwFAYD VQQDEw02ODNhN2ZmNy05YTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5YBeHm6QP23ijapipvrsJOY0UrgiK6dcyXz8Dmkeovq9me0wihAxWP7Lju6O bIsbyIH1B9pyXwLQCWTgEHhh6MYc2fBtajXgXkZTovY+J+xnB1A42tAU695x7Bk6 Kh8U2zxcDNPJY/DjjiiqsEFfFCeWn8iGy3bbonhCfQ4quRBks0Qx33d1lT++MSix WE3wlt5ojyPy8VXgRWsf43UBDpFt1s6OI5w9WHvcLpBLY/xZO3iT2PrBN8FqTALA bHOKsYcVFN05NHP8zGCr5prjuKUIjhHHHC86dhSB/Sgid+kiQom69yT7hYhmBGOm 6IvrdVB0hH1/r6y5sAqZOapQCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmQcIze P3Y1OKA/aUJozQnSx9rcMB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR MUpkdmJpbGhFN3J5S296MTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIaMRP7QqRb8e/7XJbvfHnuapdzeUuPkNw0byuaqWLxXWklgdeaCeX 1lEkuyGE3a1+RrsjZeNF5q6DGiw2XDaLGxt+KLvB3+g7n4MXeg3CpsYmKG4pczpA eS5DFMRlovJ06zLCd83n/YCiwNx2+iWItKdMwG4wwzfGb3dYikcTWSSyZODXXlh7 DxS8v4PWlcRdQbQNNIfL/0FN3Cv9jsDbo/eTimWyJ5etwTTy5iZzwZWyHHLs+hp2 pGC4yQzOgSEzYWuuiWBNuzAuCCrjje6rTnxnVR8VTdgGaFOOtt9hZvqV1ak1wBG9 2knfd4hsnA1YFUDKz+LmNnSvXHEbaV4f -----END CERTIFICATE-----Generated at Sat May 31 16:53:46 2025 by rpki-client