$ rpki-client -vvf rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft File: VTcR8u_pSETEP3dtRRAYwGSXLJo.mft (raw, json) Hash identifier: Ntp5IJ5zgKwTOU5iedoVMpAZp3k/xTE7c29KWBE1EBI= Subject key identifier: 48:20:7E:15:16:97:BE:FB:BF:A9:E4:18:DF:A8:48:7E:C2:6E:C6:14 Authority key identifier: 55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A Certificate issuer: /CN=A911AAB5/serialNumber=553711F2EFE94844C43F776D451018C064972C9A Certificate serial: 0C20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft Manifest number: 0C15 Signing time: Sat 14 Jun 2025 18:33:38 +0000 Manifest this update: Sat 14 Jun 2025 18:33:38 +0000 Manifest next update: Sat 21 Jun 2025 18:33:38 +0000 Files and hashes: 1: VTcR8u_pSETEP3dtRRAYwGSXLJo.crl (hash: 15Vn0LW0W2cgD4y6GYt7MsXE2LgY0z7UaeG2/0rkClI=) 2: 65EE26547A8711ECBA5D244DC4F9AE02.roa (hash: 9jpZ67QWGAJhgEp9yZYa+B85oL6nxjWkZcfSp/yeSCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AAB5, serialNumber=553711F2EFE94844C43F776D451018C064972C9A Validity Not Before: Jun 14 18:33:38 2025 GMT Not After : Jun 21 18:33:38 2025 GMT Subject: CN=684dc082-dc5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:05:04:cd:80:c7:b2:b6:30:e4:c1:00:67:7a: cd:e9:9d:cc:fe:b7:99:64:a0:68:7b:64:dd:89:14: 29:57:ae:2b:f5:dc:c5:70:cd:30:71:ef:96:c8:5e: c9:d5:d3:bd:7c:67:47:a8:c9:ff:eb:fa:31:c6:2c: 05:28:87:3b:ce:21:83:13:9d:80:cf:3a:b5:b3:d8: 0a:f2:83:f6:94:95:c9:55:e8:e3:32:77:10:3b:48: f9:dc:bb:69:df:e6:9e:f9:1c:d1:fe:a9:bd:ab:9e: 82:d7:c2:c0:79:3b:cd:98:a0:94:f3:1c:62:24:ef: 0c:05:19:d7:f4:32:39:62:a0:8c:ed:0a:b3:b1:4e: 95:2d:b3:ad:9f:8a:80:07:27:3a:e6:4a:be:1f:0c: 3e:7a:02:66:50:1e:82:8f:b3:cb:74:f6:cd:cd:4d: e5:21:9d:cd:2e:b2:f8:85:a4:f0:56:fb:cc:9b:81: c6:15:58:96:78:7e:a6:05:1e:86:57:38:60:cd:77: 43:e8:0f:ef:4b:38:04:cb:e8:06:d1:2e:b2:70:96: 48:bd:4b:98:6b:11:c4:c0:cd:69:4d:a0:f7:13:d9: e1:cf:47:ec:25:0e:29:7a:d1:84:93:a8:da:87:4c: df:39:66:40:c4:16:7a:d7:9e:e6:73:87:ec:e3:1b: d5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:20:7E:15:16:97:BE:FB:BF:A9:E4:18:DF:A8:48:7E:C2:6E:C6:14 X509v3 Authority Key Identifier: keyid:55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:60:26:50:1a:83:e7:40:a0:9b:3f:8c:cb:32:b6:c6:06:8b: cc:ba:88:f3:48:35:61:20:55:bd:74:58:45:4f:f9:ff:5a:3a: 87:3e:62:61:a7:9c:60:67:27:40:91:be:0c:19:e3:fc:db:28: 0e:62:1c:96:4b:8f:ae:f3:23:03:c6:ca:a0:96:b0:b1:ee:52: 50:b8:e3:52:4b:53:70:1f:21:d8:fe:ee:02:80:4b:73:d2:d5: 26:1a:2b:b5:ca:a2:11:aa:80:4a:a6:59:5b:40:a6:2c:a0:96: 68:43:68:bd:00:7c:9c:f1:c8:34:c5:78:fd:ab:31:1b:84:74: c1:fc:d4:f9:ec:b1:c2:0e:a5:0e:74:3f:de:31:d6:cb:66:f5: 1b:b2:7a:72:0b:e5:15:be:78:f1:7b:97:1f:f0:fd:a2:7e:1a: 78:1e:05:bf:37:8d:47:90:9a:f4:ef:4f:70:2b:aa:25:72:92: fb:8b:c0:46:fc:2c:09:b0:6c:65:6f:6d:49:7b:25:2f:14:72: 0f:3d:3b:22:76:61:3f:b2:e2:7c:01:c6:f8:2e:23:bc:94:0b: fc:4b:6e:fe:4c:1b:a8:9c:46:e6:7b:12:80:39:0a:75:44:f5: 35:a8:e5:74:b1:91:6f:a6:a0:61:07:39:3b:74:f3:0a:be:90: f7:1e:32:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFBQjUxMTAvBgNVBAUTKDU1MzcxMUYyRUZFOTQ4NDRDNDNGNzc2RDQ1MTAxOEMw NjQ5NzJDOUEwHhcNMjUwNjE0MTgzMzM4WhcNMjUwNjIxMTgzMzM4WjAYMRYwFAYD VQQDEw02ODRkYzA4Mi1kYzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQUEzYDHsrYw5MEAZ3rN6Z3M/reZZKBoe2TdiRQpV64r9dzFcM0wce+WyF7J 1dO9fGdHqMn/6/oxxiwFKIc7ziGDE52Azzq1s9gK8oP2lJXJVejjMncQO0j53Ltp 3+ae+RzR/qm9q56C18LAeTvNmKCU8xxiJO8MBRnX9DI5YqCM7QqzsU6VLbOtn4qA Byc65kq+Hww+egJmUB6Cj7PLdPbNzU3lIZ3NLrL4haTwVvvMm4HGFViWeH6mBR6G VzhgzXdD6A/vSzgEy+gG0S6ycJZIvUuYaxHEwM1pTaD3E9nhz0fsJQ4petGEk6ja h0zfOWZAxBZ6157mc4fs4xvVkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEggfhUW l777v6nkGN+oSH7CbsYUMB8GA1UdIwQYMBaAFFU3EfLv6UhExD93bUUQGMBklyya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUFCNS9BM0JERTdBMDEw RjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNFVEVQM2R0UlJBWXdHU1hM Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZUY1I4dV9wU0VURVAzZHRSUkFZd0dTWExKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUFCNS9BM0JERTdBMDEwRjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNF VEVQM2R0UlJBWXdHU1hMSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbYCZQGoPnQKCbP4zLMrbGBovMuojzSDVhIFW9dFhFT/n/WjqHPmJh p5xgZydAkb4MGeP82ygOYhyWS4+u8yMDxsqglrCx7lJQuONSS1NwHyHY/u4CgEtz 0tUmGiu1yqIRqoBKpllbQKYsoJZoQ2i9AHyc8cg0xXj9qzEbhHTB/NT57LHCDqUO dD/eMdbLZvUbsnpyC+UVvnjxe5cf8P2ifhp4HgW/N41HkJr0709wK6olcpL7i8BG /CwJsGxlb21JeyUvFHIPPTsidmE/suJ8Acb4LiO8lAv8S27+TBuonEbmexKAOQp1 RPU1qOV0sZFvpqBhBzk7dPMKvpD3HjLF -----END CERTIFICATE-----Generated at Sun Jun 15 08:38:55 2025 by rpki-client