$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: S7bA2ZCH7EFj4D3iDSv3i3PEVB8oyIhs/ho8gID/LpQ= Subject key identifier: 42:3A:8C:FE:C2:72:35:B3:27:BF:A7:9F:C8:70:6F:F5:96:2D:9E:85 Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: 0186 Signing time: Sat 31 May 2025 03:22:24 +0000 Manifest this update: Sat 31 May 2025 03:22:24 +0000 Manifest next update: Sat 07 Jun 2025 03:22:24 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: wyX0O3l81HlOKW25UMgNyPuOms0e1m8q5/RNnWEyiWg=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: NxTIAEmzVEkhnPtaZCQQUJAnARHilUKNCFgj1AKD+gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: May 31 03:22:24 2025 GMT Not After : Jun 7 03:22:24 2025 GMT Subject: CN=683a75f0-7a1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:04:b2:7a:8f:98:06:bd:7e:29:9c:9d:7f:8b: 50:12:50:e6:b5:5c:fe:d8:4e:43:2f:fc:a2:81:6e: ba:81:45:44:61:cb:6a:6f:07:bd:5a:75:6c:52:61: 77:37:00:35:f5:84:30:36:38:5f:7d:05:c8:6c:72: fd:fe:34:9e:23:2b:4d:c1:13:9b:3a:be:0d:89:d6: 17:4a:b1:2c:9a:8b:cc:80:38:38:1f:a2:dc:ee:9a: 70:83:47:66:01:82:89:0b:88:ea:be:74:c7:af:e8: da:af:7a:38:59:cd:0c:56:df:9a:e2:d3:dd:85:ab: 96:f3:97:71:ad:f7:42:09:79:76:f3:fc:ec:cf:a1: 1c:59:64:f7:4d:85:38:9b:7b:2b:ca:c1:3c:5e:71: a5:7b:26:56:04:3e:51:88:6c:e8:3c:70:f2:10:fa: fe:02:f4:2f:5f:5f:b7:f5:7f:de:19:ba:4e:28:f8: a2:6e:c3:65:df:16:aa:60:66:56:1f:3e:61:4e:f9: bb:90:37:ff:ae:0a:fb:d7:08:bb:62:70:1e:9c:46: 8a:0a:62:fb:c1:b1:64:ba:a3:3b:59:ba:af:a3:57: 13:c6:a7:8b:c7:28:a7:f3:10:48:b6:e0:fd:59:1e: e1:29:90:71:b6:cc:65:f1:a6:f3:ee:7f:40:e2:95: f9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:3A:8C:FE:C2:72:35:B3:27:BF:A7:9F:C8:70:6F:F5:96:2D:9E:85 X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:f6:48:17:2f:d9:f7:c3:85:20:1b:63:45:c6:f2:2d:71:fc: b6:9b:39:5e:4a:f7:dd:51:19:19:d8:a8:1e:31:68:b4:54:ca: 5a:00:ef:cc:3f:ae:91:73:39:fa:ee:24:9c:93:5b:44:1d:24: 14:9c:ae:71:4a:d0:70:8c:bd:52:d0:d4:aa:9b:0b:33:c6:99: a0:89:ea:07:f2:29:8e:43:d4:e4:d4:35:bf:9d:22:c3:9f:65: 4d:e2:9e:06:61:e4:16:27:bc:6e:6a:c1:92:65:c5:ff:ce:59: d9:77:5e:64:a4:f8:92:fe:6a:b6:a7:db:34:4d:eb:2c:7e:2c: 7c:bb:19:57:c7:97:db:2c:7d:32:08:eb:01:b9:db:62:b2:48: f3:f5:51:b1:f2:03:89:7c:8b:6a:40:a9:b4:3b:3e:60:0d:ba: cb:38:a5:2e:94:fe:4c:4a:f1:c9:16:bc:4c:71:41:7f:8d:10: 7d:43:cb:12:fd:88:6e:41:c9:4d:64:e3:54:e3:62:e2:fc:a2: 17:b7:97:ed:74:e6:75:e9:30:8f:18:d8:90:ba:0a:21:ac:b1: 39:94:74:41:d9:22:63:8d:df:05:59:21:e5:ee:1b:38:f5:f2: 71:82:0c:12:70:b1:1d:dd:33:62:8d:6b:0b:da:b4:3b:63:23: 26:fb:e0:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUwNTMxMDMyMjI0WhcNMjUwNjA3MDMyMjI0WjAYMRYwFAYD VQQDEw02ODNhNzVmMC03YTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlQSyeo+YBr1+KZydf4tQElDmtVz+2E5DL/yigW66gUVEYctqbwe9WnVsUmF3 NwA19YQwNjhffQXIbHL9/jSeIytNwRObOr4NidYXSrEsmovMgDg4H6Lc7ppwg0dm AYKJC4jqvnTHr+jar3o4Wc0MVt+a4tPdhauW85dxrfdCCXl28/zsz6EcWWT3TYU4 m3srysE8XnGleyZWBD5RiGzoPHDyEPr+AvQvX1+39X/eGbpOKPiibsNl3xaqYGZW Hz5hTvm7kDf/rgr71wi7YnAenEaKCmL7wbFkuqM7Wbqvo1cTxqeLxyin8xBItuD9 WR7hKZBxtsxl8abz7n9A4pX5NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEI6jP7C cjWzJ7+nn8hwb/WWLZ6FMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB09kgXL9n3w4UgG2NFxvItcfy2mzleSvfdURkZ2KgeMWi0VMpaAO/M P66Rczn67iSck1tEHSQUnK5xStBwjL1S0NSqmwszxpmgieoH8imOQ9Tk1DW/nSLD n2VN4p4GYeQWJ7xuasGSZcX/zlnZd15kpPiS/mq2p9s0Tessfix8uxlXx5fbLH0y COsBudtiskjz9VGx8gOJfItqQKm0Oz5gDbrLOKUulP5MSvHJFrxMcUF/jRB9Q8sS /YhuQclNZONU42Li/KIXt5ftdOZ16TCPGNiQugohrLE5lHRB2SJjjd8FWSHl7hs4 9fJxggwScLEd3TNijWsL2rQ7YyMm++AY -----END CERTIFICATE-----Generated at Sat May 31 16:27:00 2025 by rpki-client