$ rpki-client -vvf rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft File: VB3RXhVOUI-wD9skXE528q09iB0.mft (raw, json) Hash identifier: sNH8MMwT9iJkR5nENeSDJm/dGZ8mj9LQEzRtVtSEAXs= Subject key identifier: AF:9C:37:49:2C:AD:12:9C:E9:39:29:EA:E5:15:DD:A9:A5:06:70:3A Authority key identifier: 54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D Certificate issuer: /CN=A911CE4A/serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft Manifest number: 09 Signing time: Tue 05 Aug 2025 08:51:04 +0000 Manifest this update: Tue 05 Aug 2025 08:51:03 +0000 Manifest next update: Tue 12 Aug 2025 08:51:03 +0000 Files and hashes: 1: VB3RXhVOUI-wD9skXE528q09iB0.crl (hash: tObgywHcgPYC4jaXvOFhd7E2NsJF2ynntZdmnGcZ0/M=) 2: BA2C0A9E673A11F0B876713DC4F9AE02.roa (hash: qV69gg2P4bFihZzX2d7CSbRtDBRP/ma/ao4YNWgRlJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CE4A, serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D Validity Not Before: Aug 5 08:51:03 2025 GMT Not After : Aug 12 08:51:03 2025 GMT Subject: CN=6891c5f8-f6c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d6:e4:8b:ca:57:c9:ba:8c:36:e1:ab:9c:f7: 48:24:0d:d0:44:82:e1:02:47:ce:d5:81:69:d1:5e: 1e:37:47:16:77:31:92:ec:1e:6e:ff:d1:8d:b3:3a: 07:08:4f:45:0a:64:0e:7d:0a:5b:32:25:ef:94:e1: 9c:13:00:61:ab:d3:16:eb:69:18:e5:75:1a:16:4e: a5:8c:5e:00:e4:c6:71:c0:3d:43:c0:89:06:fc:fb: 80:fa:66:2f:c6:99:5e:2c:ba:87:df:53:a8:90:c3: 35:03:cb:fb:61:23:b6:d1:db:c1:75:2b:83:ca:81: 02:d8:3b:39:a9:fe:0f:40:91:b7:dc:04:ca:44:05: c4:11:c9:cf:3b:21:06:7d:5c:87:23:22:18:e3:d2: 48:ca:80:64:c9:ce:49:d5:36:a5:61:2b:d8:94:39: 6b:ef:d6:4e:04:a3:df:57:61:1f:47:f7:10:19:bc: 3e:1c:53:92:62:3c:b8:5f:ea:59:2e:14:39:40:d0: 25:4a:29:d8:f3:bb:cc:07:48:61:fb:78:9c:99:51: 84:99:61:d0:7a:fd:b3:2e:cb:1b:2f:36:29:ff:10: 78:38:d6:bd:ea:80:97:af:88:99:d0:62:72:76:cb: 9b:8d:2d:21:7f:c5:9d:3e:72:00:1a:9b:4e:d0:96: d4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:9C:37:49:2C:AD:12:9C:E9:39:29:EA:E5:15:DD:A9:A5:06:70:3A X509v3 Authority Key Identifier: keyid:54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:9b:76:9e:a9:9f:06:32:5b:10:6c:f1:18:ee:a9:f4:79:7f: 53:06:7d:51:a6:1f:4e:0d:36:04:5e:9c:d7:7b:38:97:6d:eb: 58:33:eb:89:a3:c2:3c:8d:0b:9a:40:71:3b:1f:4d:ac:31:d4: 77:c1:1f:3d:84:54:ef:1a:b8:6b:7a:9a:f3:63:e9:e7:4e:77: f2:c4:ab:b7:ad:70:aa:14:e2:2e:ad:36:87:36:0d:eb:93:73: f7:78:9e:09:a0:9d:4c:0c:e0:52:32:c4:b2:d3:05:62:c3:b2: f2:15:3c:7d:c1:25:98:40:92:23:fb:a2:ce:a5:e3:55:6c:36: 3e:41:c5:79:2f:3a:b4:32:42:9f:80:55:f6:51:05:91:92:d5: 93:d8:89:2c:a3:f7:4f:33:df:76:c1:66:e3:ba:12:4e:7b:3a: 29:da:57:0a:b2:65:87:b1:70:9e:7a:97:52:16:d6:17:f2:25: 31:bb:ce:81:d9:63:2d:19:0c:b3:e1:2b:63:0a:e6:28:5c:d1: 8c:b6:03:2c:ce:c8:fa:f8:c2:8e:f9:db:37:15:bb:7f:7a:84: 18:48:7d:d9:23:d6:86:18:47:c2:59:00:d6:7b:86:88:06:c2: 8a:e7:45:e0:a6:93:bc:54:ef:f8:94:d1:ea:b1:4e:18:34:f7: 98:45:ea:d0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0U0QTExMC8GA1UEBRMoNTQxREQxNUUxNTRFNTA4RkIwMEZEQjI0NUM0RTc2RjJB RDNEODgxRDAeFw0yNTA4MDUwODUxMDNaFw0yNTA4MTIwODUxMDNaMBgxFjAUBgNV BAMTDTY4OTFjNWY4LWY2YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr1uSLylfJuow24auc90gkDdBEguECR87VgWnRXh43RxZ3MZLsHm7/0Y2zOgcI T0UKZA59ClsyJe+U4ZwTAGGr0xbraRjldRoWTqWMXgDkxnHAPUPAiQb8+4D6Zi/G mV4suoffU6iQwzUDy/thI7bR28F1K4PKgQLYOzmp/g9AkbfcBMpEBcQRyc87IQZ9 XIcjIhjj0kjKgGTJzknVNqVhK9iUOWvv1k4Eo99XYR9H9xAZvD4cU5JiPLhf6lku FDlA0CVKKdjzu8wHSGH7eJyZUYSZYdB6/bMuyxsvNin/EHg41r3qgJeviJnQYnJ2 y5uNLSF/xZ0+cgAam07QltQDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUr5w3SSyt EpzpOSnq5RXdqaUGcDowHwYDVR0jBBgwFoAUVB3RXhVOUI+wD9skXE528q09iB0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDRTRBL0UxRUExOUY2Njcz ODExRjBBRDU2NkQ3RkM0RjlBRTAyL1ZCM1JYaFZPVUktd0Q5c2tYRTUyOHEwOWlC MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVkIzUlhoVk9VSS13RDlza1hFNTI4cTA5aUIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD RTRBL0UxRUExOUY2NjczODExRjBBRDU2NkQ3RkM0RjlBRTAyL1ZCM1JYaFZPVUkt d0Q5c2tYRTUyOHEwOWlCMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALCbdp6pnwYyWxBs8RjuqfR5f1MGfVGmH04NNgRenNd7OJdt61gz64mj wjyNC5pAcTsfTawx1HfBHz2EVO8auGt6mvNj6edOd/LEq7etcKoU4i6tNoc2DeuT c/d4ngmgnUwM4FIyxLLTBWLDsvIVPH3BJZhAkiP7os6l41VsNj5BxXkvOrQyQp+A VfZRBZGS1ZPYiSyj908z33bBZuO6Ek57OinaVwqyZYexcJ56l1IW1hfyJTG7zoHZ Yy0ZDLPhK2MK5ihc0Yy2AyzOyPr4wo752zcVu396hBhIfdkj1oYYR8JZANZ7hogG wornReCmk7xU7/iU0eqxThg095hF6tA= -----END CERTIFICATE-----Generated at Wed Aug 6 19:34:58 2025 by rpki-client