$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft File: vphUuYSZNmQ-DUAVo7N7XkSErVo.mft (raw, json) Hash identifier: OvJ/lZC15yqtq9fvAwY8OoUTju8lS3Akwf0WgwJUhqc= Subject key identifier: 79:86:4A:82:12:CE:0E:BA:D0:CB:42:1F:9C:68:19:62:5A:4E:CD:F2 Authority key identifier: BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A Certificate issuer: /CN=A9123D19/serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Certificate serial: 29EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft Manifest number: 29DA Signing time: Sun 10 Aug 2025 15:33:00 +0000 Manifest this update: Sun 10 Aug 2025 15:33:00 +0000 Manifest next update: Sun 17 Aug 2025 15:33:00 +0000 Files and hashes: 1: vphUuYSZNmQ-DUAVo7N7XkSErVo.crl (hash: Vhiw45QG1CXUGEGOS3LSoaujkCFLma/BjR/yzBUrH/E=) 2: 73E0191A967811EA92E45A27C4F9AE02.roa (hash: ShaJe6Lrds4HI5NQVrTj2+pnsM6ohcQYrpyOOxPkL24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10734 (0x29ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D19, serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Validity Not Before: Aug 10 15:33:00 2025 GMT Not After : Aug 17 15:33:00 2025 GMT Subject: CN=6898bbac-1f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9d:a4:f9:b8:95:0c:76:8d:d8:7c:53:ab:92: dc:da:2b:6d:9c:60:27:97:6e:46:cc:ed:59:5b:20: 85:4c:d9:9b:f8:25:64:3b:9c:4c:71:8f:0d:d6:a4: 61:36:dd:29:09:c3:b8:18:d0:3a:62:93:5e:ed:a5: 71:43:25:d0:31:56:0b:0f:2e:50:e2:b3:5b:98:ad: 95:41:8e:54:5c:8f:9c:48:93:d1:be:b4:bb:aa:d4: 47:55:f4:e2:03:7e:1c:34:a1:28:70:cd:6f:3c:1b: 7a:c4:f0:4c:4a:3b:32:8f:12:67:8e:5a:e0:53:04: 9d:e8:f6:48:db:e9:0a:f6:eb:33:88:fe:2a:7b:01: b6:3d:12:fc:a1:d0:99:dc:d6:03:fa:ea:68:1e:a0: ac:87:16:9b:00:c9:a6:f7:20:51:3f:81:f3:41:fc: f5:f1:c0:0c:cb:1c:ee:63:22:bd:13:4a:50:52:15: c6:45:06:f7:7c:3e:a0:f4:3b:f9:d1:85:dd:94:f3: b8:66:72:3b:af:c5:6c:cc:6c:2e:68:33:9e:05:c8: 30:ea:e2:d0:3c:6f:bb:0a:55:d2:2d:f0:83:46:4f: c4:73:df:2f:08:f7:b9:c7:42:ef:f8:79:e5:0c:22: 3e:e5:f1:dd:67:1b:47:9f:83:cc:f6:7e:a0:8e:b0: b6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:86:4A:82:12:CE:0E:BA:D0:CB:42:1F:9C:68:19:62:5A:4E:CD:F2 X509v3 Authority Key Identifier: keyid:BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b0:e6:6e:dc:54:63:1c:e1:dc:a4:8f:ba:f2:fa:9d:c6:b3: 32:55:30:35:35:01:bd:30:48:f9:96:5e:5c:a4:b2:5b:ad:99: 5e:4e:89:7e:dc:e6:42:4c:ec:06:a2:33:e0:1f:67:05:d7:2d: ea:54:31:df:8e:af:06:ff:ec:a4:5e:fe:b0:2a:e7:1b:cf:4d: 21:1e:1e:e8:76:35:28:e9:2a:ba:d5:76:ed:41:c3:95:34:94: 73:e5:ff:be:eb:78:5a:13:ab:00:cd:23:3b:35:21:3d:02:12: a5:0b:a5:6d:2a:28:d7:21:7f:f7:f8:db:5c:36:3a:87:c1:20: ee:ea:e5:e0:a9:3b:16:33:ea:d1:e2:cf:f6:98:0b:52:87:4e: db:0d:74:fc:0b:7f:3b:6d:a3:4a:1f:1f:2d:f8:fe:29:18:a3: 26:f8:fc:69:9a:c1:c9:16:25:51:54:0a:c9:f2:d7:c6:04:e1: 04:c5:69:d9:a2:e2:53:23:f5:bd:13:8d:56:04:a7:bd:97:dd: c6:4a:3a:2e:34:49:83:68:1f:ea:75:14:b4:bd:43:1f:4b:d0: aa:3d:d6:dd:9c:d1:54:c0:52:0d:b5:85:7f:6c:a7:99:72:0b: 88:6e:6d:90:11:5e:e8:18:1e:ae:8a:f2:52:8f:0f:1b:1b:2e: c7:74:80:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMTkxMTAvBgNVBAUTKEJFOTg1NEI5ODQ5OTM2NjQzRTBENDAxNUEzQjM3QjVF NDQ4NEFENUEwHhcNMjUwODEwMTUzMzAwWhcNMjUwODE3MTUzMzAwWjAYMRYwFAYD VQQDEw02ODk4YmJhYy0xZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt52k+biVDHaN2HxTq5Lc2ittnGAnl25GzO1ZWyCFTNmb+CVkO5xMcY8N1qRh Nt0pCcO4GNA6YpNe7aVxQyXQMVYLDy5Q4rNbmK2VQY5UXI+cSJPRvrS7qtRHVfTi A34cNKEocM1vPBt6xPBMSjsyjxJnjlrgUwSd6PZI2+kK9usziP4qewG2PRL8odCZ 3NYD+upoHqCshxabAMmm9yBRP4HzQfz18cAMyxzuYyK9E0pQUhXGRQb3fD6g9Dv5 0YXdlPO4ZnI7r8VszGwuaDOeBcgw6uLQPG+7ClXSLfCDRk/Ec98vCPe5x0Lv+Hnl DCI+5fHdZxtHn4PM9n6gjrC2FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmGSoIS zg660MtCH5xoGWJaTs3yMB8GA1UdIwQYMBaAFL6YVLmEmTZkPg1AFaOze15EhK1a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QxOS80MEVEODAyMDQy OUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5tUS1EVUFWbzdON1hrU0Vy Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwaFV1WVNaTm1RLURVQVZvN043WGtTRXJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QxOS80MEVEODAyMDQyOUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5t US1EVUFWbzdON1hrU0VyVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAisOZu3FRjHOHcpI+68vqdxrMyVTA1NQG9MEj5ll5cpLJbrZleTol+ 3OZCTOwGojPgH2cF1y3qVDHfjq8G/+ykXv6wKucbz00hHh7odjUo6Sq61XbtQcOV NJRz5f++63haE6sAzSM7NSE9AhKlC6VtKijXIX/3+NtcNjqHwSDu6uXgqTsWM+rR 4s/2mAtSh07bDXT8C387baNKHx8t+P4pGKMm+PxpmsHJFiVRVArJ8tfGBOEExWnZ ouJTI/W9E41WBKe9l93GSjouNEmDaB/qdRS0vUMfS9CqPdbdnNFUwFINtYV/bKeZ cguIbm2QEV7oGB6uivJSjw8bGy7HdIAE -----END CERTIFICATE-----Generated at Mon Aug 11 07:30:30 2025 by rpki-client