$ rpki-client -vvf rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft File: VTcR8u_pSETEP3dtRRAYwGSXLJo.mft (raw, json) Hash identifier: wnbvUBGJiSf58XMe25MHadlB/JTJNErm9qSXK3zk9tU= Subject key identifier: AC:55:8E:CC:CC:28:B3:88:0D:6F:E0:A9:4C:F7:41:A4:5C:52:CD:90 Authority key identifier: 55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A Certificate issuer: /CN=A911AAB5/serialNumber=553711F2EFE94844C43F776D451018C064972C9A Certificate serial: 0C3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft Manifest number: 0C31 Signing time: Fri 08 Aug 2025 18:53:14 +0000 Manifest this update: Fri 08 Aug 2025 18:53:14 +0000 Manifest next update: Fri 15 Aug 2025 18:53:14 +0000 Files and hashes: 1: VTcR8u_pSETEP3dtRRAYwGSXLJo.crl (hash: xARKfBLzz6QddV0RMKjngeRzxhOjcERSubC0glw4/2w=) 2: 65EE26547A8711ECBA5D244DC4F9AE02.roa (hash: 9jpZ67QWGAJhgEp9yZYa+B85oL6nxjWkZcfSp/yeSCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AAB5, serialNumber=553711F2EFE94844C43F776D451018C064972C9A Validity Not Before: Aug 8 18:53:14 2025 GMT Not After : Aug 15 18:53:14 2025 GMT Subject: CN=6896479a-b05d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9c:aa:6f:b3:d9:04:f8:25:37:ee:b2:79:9c: 8b:93:c1:ea:2b:47:dd:5c:2d:a4:1a:60:1e:47:c1: 26:70:cd:c3:f7:a2:37:e8:78:da:c8:2b:50:ea:7b: 3b:66:26:23:eb:08:95:ab:ef:50:73:12:0e:58:6c: 19:9f:76:6e:d8:d2:ef:22:a0:b0:d0:b1:11:01:6f: f8:f4:f6:46:33:ff:bb:3e:59:1b:6d:6a:e2:5b:42: 1f:85:bb:a1:91:ff:29:40:70:a2:0b:23:37:9b:64: f7:f2:8d:7e:7f:5f:1e:06:9c:42:f1:21:13:f5:db: 59:7a:b0:93:51:e4:7b:f6:c4:a4:9c:ad:4d:b9:fe: 25:89:49:ad:1e:70:29:f7:48:bb:96:2f:a7:c5:d8: 78:14:b2:92:a3:0b:2a:8f:9e:33:ba:e0:5e:57:11: 3f:24:1d:4c:45:30:fc:85:7d:44:49:dc:a7:7a:3a: 38:29:e1:76:37:04:c0:92:cb:c5:96:c7:50:74:8e: 5a:3c:db:36:f4:bb:0e:b9:df:ae:01:7f:d4:d1:e6: 61:8b:c7:bf:83:20:93:17:14:97:0c:ab:bb:ee:7a: 6f:8e:2c:90:ab:93:61:9f:4b:7e:bd:56:cd:ad:78: 5b:c0:98:f5:9c:db:68:08:6a:41:7b:a7:70:89:61: fa:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:55:8E:CC:CC:28:B3:88:0D:6F:E0:A9:4C:F7:41:A4:5C:52:CD:90 X509v3 Authority Key Identifier: keyid:55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:84:d0:0b:b0:56:00:56:a4:62:b1:cd:3c:0c:ac:1d:09:10: 1a:13:0c:2c:a0:fc:90:77:57:ae:a0:45:03:30:1c:8a:5e:9e: 80:c8:0f:a9:6c:7a:33:b1:c1:ad:72:de:07:4a:37:1d:c5:86: 34:00:cd:f2:76:05:a9:3a:8a:74:52:c0:5b:4e:f6:74:93:06: 6a:8c:21:28:48:ab:58:bf:2d:c3:75:39:ac:7c:4e:e1:94:3d: 1f:1d:9f:af:32:62:38:2f:ae:b4:83:bf:bd:8a:92:9f:48:3f: 24:7f:8c:bd:a7:c3:6e:cb:ce:1e:6a:69:68:d1:25:93:9a:76: bf:e0:12:fc:e3:3b:d7:91:22:41:ad:a0:64:c6:cc:50:dd:d6: a9:11:60:fa:f7:f0:51:e0:b0:9c:c7:66:96:38:61:53:ca:f3: 5b:56:bd:08:5e:64:ff:3f:03:20:27:96:a7:8f:b6:7a:95:e0: ca:11:95:b7:30:67:c8:f8:8a:bd:c6:b2:0f:4c:d0:83:47:d2: b2:51:29:b9:d7:f0:ac:54:7f:3f:de:d9:04:a0:1f:3a:e2:b3: 6c:d7:f2:23:e2:aa:80:6e:a1:56:11:69:31:dc:ca:a7:69:0d: 53:06:93:54:19:ab:b4:16:33:10:89:64:b8:76:aa:92:14:b5: 10:53:da:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFBQjUxMTAvBgNVBAUTKDU1MzcxMUYyRUZFOTQ4NDRDNDNGNzc2RDQ1MTAxOEMw NjQ5NzJDOUEwHhcNMjUwODA4MTg1MzE0WhcNMjUwODE1MTg1MzE0WjAYMRYwFAYD VQQDEw02ODk2NDc5YS1iMDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZyqb7PZBPglN+6yeZyLk8HqK0fdXC2kGmAeR8EmcM3D96I36HjayCtQ6ns7 ZiYj6wiVq+9QcxIOWGwZn3Zu2NLvIqCw0LERAW/49PZGM/+7PlkbbWriW0Ifhbuh kf8pQHCiCyM3m2T38o1+f18eBpxC8SET9dtZerCTUeR79sSknK1Nuf4liUmtHnAp 90i7li+nxdh4FLKSowsqj54zuuBeVxE/JB1MRTD8hX1ESdynejo4KeF2NwTAksvF lsdQdI5aPNs29LsOud+uAX/U0eZhi8e/gyCTFxSXDKu77npvjiyQq5Nhn0t+vVbN rXhbwJj1nNtoCGpBe6dwiWH6owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxVjszM KLOIDW/gqUz3QaRcUs2QMB8GA1UdIwQYMBaAFFU3EfLv6UhExD93bUUQGMBklyya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUFCNS9BM0JERTdBMDEw RjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNFVEVQM2R0UlJBWXdHU1hM Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZUY1I4dV9wU0VURVAzZHRSUkFZd0dTWExKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUFCNS9BM0JERTdBMDEwRjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNF VEVQM2R0UlJBWXdHU1hMSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARhNALsFYAVqRisc08DKwdCRAaEwwsoPyQd1euoEUDMByKXp6AyA+p bHozscGtct4HSjcdxYY0AM3ydgWpOop0UsBbTvZ0kwZqjCEoSKtYvy3DdTmsfE7h lD0fHZ+vMmI4L660g7+9ipKfSD8kf4y9p8Nuy84eamlo0SWTmna/4BL84zvXkSJB raBkxsxQ3dapEWD69/BR4LCcx2aWOGFTyvNbVr0IXmT/PwMgJ5anj7Z6leDKEZW3 MGfI+Iq9xrIPTNCDR9KyUSm51/CsVH8/3tkEoB864rNs1/Ij4qqAbqFWEWkx3Mqn aQ1TBpNUGau0FjMQiWS4dqqSFLUQU9rP -----END CERTIFICATE-----Generated at Sat Aug 9 15:10:45 2025 by rpki-client