$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft File: VU9dfGbsUOhKiru6mWgXfkcp02Y.mft (raw, json) Hash identifier: r+GRAIi6QPpHUMbo95MmyzASSysR5kJClk1KYNJc3MY= Subject key identifier: 05:35:0C:70:A9:56:E4:7B:50:1B:FD:1C:0E:A6:4E:61:8E:AC:5A:DE Authority key identifier: 55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 Certificate issuer: /CN=A91E8BE3/serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft Manifest number: 54 Signing time: Sat 31 May 2025 06:48:23 +0000 Manifest this update: Sat 31 May 2025 06:48:23 +0000 Manifest next update: Sat 07 Jun 2025 06:48:23 +0000 Files and hashes: 1: VU9dfGbsUOhKiru6mWgXfkcp02Y.crl (hash: V2nAshBI1yT2c8Y9EWnJToEe4f28tqkcf3K7Gp+A1vI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Validity Not Before: May 31 06:48:23 2025 GMT Not After : Jun 7 06:48:23 2025 GMT Subject: CN=683aa637-1a76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e1:58:94:c6:b8:6b:4b:1c:af:ef:fa:e0:f5: a3:38:6e:91:e8:ba:14:65:37:a2:95:f9:a2:1a:a4: a3:76:5a:57:24:fd:42:f6:f9:92:d9:bf:c4:1f:9d: 22:68:3f:13:94:c2:3a:5d:b0:3f:cf:5c:5d:47:cc: e0:1e:56:9d:3a:26:5f:28:68:ab:04:0a:9b:cf:4b: 8a:2f:d1:ce:02:a1:45:c7:88:2f:68:6b:6a:0d:6b: a9:39:6d:c0:97:21:16:57:2d:88:b4:be:25:3f:a2: b4:b0:62:45:3c:ae:5e:6e:03:1d:a8:22:9b:4f:8a: 16:00:1b:ce:77:18:23:39:3b:9c:87:21:c9:ce:07: c5:94:6e:81:72:a6:70:a5:39:6f:a2:d7:f7:7e:69: be:20:70:3e:7e:cd:55:34:ef:90:ce:d4:5e:4c:2f: 38:aa:3c:cd:9c:e5:7b:c1:68:dd:eb:a3:4a:b0:2d: ec:00:73:b4:1d:00:90:83:18:96:63:d3:68:d3:a0: 11:04:0a:37:1f:47:26:0a:c5:e0:31:1e:f0:ec:45: 12:68:1e:e7:bc:7d:bd:32:85:a2:c9:85:0a:a7:9e: 3d:ec:b3:7e:0b:fa:e9:9e:69:18:0f:3f:9e:a5:a7: e2:35:fc:0b:d9:d9:65:b6:b4:dc:a1:87:48:a6:aa: 83:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:35:0C:70:A9:56:E4:7B:50:1B:FD:1C:0E:A6:4E:61:8E:AC:5A:DE X509v3 Authority Key Identifier: keyid:55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:09:c1:97:cc:a5:b6:64:ae:78:a1:0c:ff:46:95:97:e0:35: 05:6e:71:b6:dc:f1:1a:72:69:c4:8d:07:a5:5c:d3:4d:72:d2: ff:f9:18:3e:bf:b4:96:77:ae:eb:f1:0e:40:2c:c8:70:77:22: 2e:0a:e7:14:55:c8:20:62:1c:c6:53:70:ee:e7:89:07:7d:0b: 75:d1:93:b5:0d:11:5c:31:7d:76:b1:c0:e6:13:2f:d7:15:74: bc:11:58:18:61:45:1e:30:02:88:30:42:ef:26:32:3d:3b:89: de:69:cb:6d:7a:56:ee:f9:41:a7:ba:13:f9:95:b5:11:a5:b8: 7a:fd:58:07:0f:b5:9e:97:2d:7e:3c:ec:0e:88:cd:78:4b:35: d2:1e:9f:82:fa:c5:1e:34:3e:27:df:63:10:3f:a1:dc:53:4e: 40:e7:38:b3:32:dd:5c:ec:e3:8a:7d:47:56:45:67:47:04:47: 0d:b1:c1:37:bf:d7:00:fd:2d:76:2c:69:fb:f2:a5:d4:26:05: 60:d9:24:89:f7:5c:20:82:49:5b:65:70:41:93:7f:84:c5:68: 0c:6a:d7:88:bf:ed:67:73:3f:c4:34:07:d1:40:74:4c:46:57: 08:1a:dc:8d:0a:4b:9b:8b:e9:62:89:17:b4:6f:b1:01:43:63: d7:a3:b0:9e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEJFMzExMC8GA1UEBRMoNTU0RjVEN0M2NkVDNTBFODRBOEFCQkJBOTk2ODE3N0U0 NzI5RDM2NjAeFw0yNTA1MzEwNjQ4MjNaFw0yNTA2MDcwNjQ4MjNaMBgxFjAUBgNV BAMTDTY4M2FhNjM3LTFhNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDi4ViUxrhrSxyv7/rg9aM4bpHouhRlN6KV+aIapKN2Wlck/UL2+ZLZv8QfnSJo PxOUwjpdsD/PXF1HzOAeVp06Jl8oaKsECpvPS4ov0c4CoUXHiC9oa2oNa6k5bcCX IRZXLYi0viU/orSwYkU8rl5uAx2oIptPihYAG853GCM5O5yHIcnOB8WUboFypnCl OW+i1/d+ab4gcD5+zVU075DO1F5MLziqPM2c5XvBaN3ro0qwLewAc7QdAJCDGJZj 02jToBEECjcfRyYKxeAxHvDsRRJoHue8fb0yhaLJhQqnnj3ss34L+umeaRgPP56l p+I1/AvZ2WW2tNyhh0imqoNDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBTUMcKlW 5HtQG/0cDqZOYY6sWt4wHwYDVR0jBBgwFoAUVU9dfGbsUOhKiru6mWgXfkcp02Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QkUzL0VFRUY3RkVBQkY5 QzExRUY5REE4ODI4MkM0RjlBRTAyL1ZVOWRmR2JzVU9oS2lydTZtV2dYZmtjcDAy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVlU5ZGZHYnNVT2hLaXJ1Nm1XZ1hma2NwMDJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 QkUzL0VFRUY3RkVBQkY5QzExRUY5REE4ODI4MkM0RjlBRTAyL1ZVOWRmR2JzVU9o S2lydTZtV2dYZmtjcDAyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKsJwZfMpbZkrnihDP9GlZfgNQVucbbc8RpyacSNB6Vc001y0v/5GD6/ tJZ3ruvxDkAsyHB3Ii4K5xRVyCBiHMZTcO7niQd9C3XRk7UNEVwxfXaxwOYTL9cV dLwRWBhhRR4wAogwQu8mMj07id5py216Vu75Qae6E/mVtRGluHr9WAcPtZ6XLX48 7A6IzXhLNdIen4L6xR40PiffYxA/odxTTkDnOLMy3Vzs44p9R1ZFZ0cERw2xwTe/ 1wD9LXYsafvypdQmBWDZJIn3XCCCSVtlcEGTf4TFaAxq14i/7WdzP8Q0B9FAdExG Vwga3I0KS5uL6WKJF7RvsQFDY9ejsJ4= -----END CERTIFICATE-----Generated at Sat May 31 17:06:24 2025 by rpki-client