$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft File: VB4KZv5g86rAJQLO8eSOYnpi90E.mft (raw, json) Hash identifier: MXU8WSAR9PbQ8PmUctk7vawuw6VDwynpzPRlE5RVyr0= Subject key identifier: 1F:82:CF:0F:A2:ED:C8:1F:78:E2:35:90:82:F2:E9:58:72:65:2A:CE Authority key identifier: 54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 Certificate issuer: /CN=A91288D9/serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Certificate serial: 0B32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft Manifest number: 0B2A Signing time: Fri 08 Aug 2025 19:29:37 +0000 Manifest this update: Fri 08 Aug 2025 19:29:37 +0000 Manifest next update: Fri 15 Aug 2025 19:29:37 +0000 Files and hashes: 1: VB4KZv5g86rAJQLO8eSOYnpi90E.crl (hash: geUHiQgLMToCPZsCsBTkq7ZyJdJu8cMYC7QkoRcOBPg=) 2: E0FCE614425811EAADEA3B45C4F9AE02.roa (hash: 4i/qRxDxm1IhOaEBUeWCrIN1RXkz58rViMQa88EFEXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2866 (0xb32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Validity Not Before: Aug 8 19:29:37 2025 GMT Not After : Aug 15 19:29:37 2025 GMT Subject: CN=68965021-76fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a0:1b:65:ac:0b:d2:e1:66:b7:c5:b1:4f:fa: 2e:db:23:f0:ef:ab:f5:89:3a:60:e6:3f:3f:77:04: c2:fd:0e:cf:b7:f2:97:77:0e:40:04:50:f4:eb:5f: 3f:81:e7:97:07:11:82:11:55:2f:16:6c:0e:d5:86: 51:33:32:11:c5:42:46:92:df:56:15:6d:a1:1b:52: 3b:9b:36:85:69:c4:0c:82:2f:e6:c6:7b:c2:35:44: 6c:b5:29:e0:1c:a1:e7:3f:21:d7:4c:52:bd:0f:0a: 09:54:11:cc:34:53:87:a1:4d:43:6b:a3:11:5d:15: 71:ec:36:cf:79:4c:41:58:a7:47:0c:94:35:7d:c0: 03:a5:e4:08:4e:72:12:37:b4:66:52:d6:81:4f:7d: b2:f6:02:e6:f8:b4:f8:af:2e:5c:ac:79:86:de:3c: 16:be:e1:b6:b6:5b:b6:f3:0d:a6:f9:d2:1f:70:19: 9d:34:1c:d7:1d:22:04:f2:d9:63:d2:93:29:04:5f: ca:d0:cb:8b:e4:40:b1:6c:e5:1a:9c:81:f9:04:9b: a8:f0:68:13:f1:8b:94:c6:a9:5c:f9:d4:64:cb:1d: 3d:a8:99:8f:24:53:c7:db:9b:81:8e:53:74:1d:18: 4f:cc:dd:fb:5e:04:4c:d1:3c:43:bd:66:aa:f4:b6: 7c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:82:CF:0F:A2:ED:C8:1F:78:E2:35:90:82:F2:E9:58:72:65:2A:CE X509v3 Authority Key Identifier: keyid:54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:34:f5:b9:97:26:b3:cb:e1:d0:5c:14:d9:99:de:41:ff:7d: 39:5c:fb:bc:40:a8:4a:9c:5c:47:1e:16:3b:42:bd:3c:b2:f8: ee:bd:be:dd:74:1b:7f:18:f3:10:35:4b:3a:d2:34:87:34:95: 8e:9b:30:2a:c1:72:97:86:63:e7:c4:41:7b:d5:d6:f2:ab:71: 34:06:39:91:63:24:93:47:a8:e2:e6:90:1e:5d:8e:bb:54:22: 03:05:12:65:6e:45:00:27:15:54:eb:e6:85:40:64:eb:9e:f8: a3:36:f7:04:8b:15:67:2b:9d:12:d8:dc:e9:e1:5e:b1:dd:3b: 43:70:ee:8c:a9:4a:ae:66:4a:23:66:26:ad:5f:4f:3f:76:a6: 69:70:c0:d6:11:ff:d5:31:25:55:b0:1e:19:23:d7:37:80:4e: fb:93:44:d5:b3:bf:42:b9:ba:8a:15:cb:48:3d:82:29:5b:0c: af:23:c2:4f:cb:00:02:d4:db:68:c4:64:cc:a5:e1:71:d2:74: 92:95:fb:ae:1e:e6:9c:ba:08:5b:91:36:5b:11:ca:3d:23:8d: 4d:eb:16:5f:8f:d4:32:88:ec:c8:1f:2a:0e:d7:ea:cc:c7:d3: 80:f4:e7:fc:50:0b:1b:a2:85:68:ac:56:4a:6b:b7:f8:f5:1e: 3f:9f:d6:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKDU0MUUwQTY2RkU2MEYzQUFDMDI1MDJDRUYxRTQ4RTYy N0E2MkY3NDEwHhcNMjUwODA4MTkyOTM3WhcNMjUwODE1MTkyOTM3WjAYMRYwFAYD VQQDEw02ODk2NTAyMS03NmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm6AbZawL0uFmt8WxT/ou2yPw76v1iTpg5j8/dwTC/Q7Pt/KXdw5ABFD0618/ geeXBxGCEVUvFmwO1YZRMzIRxUJGkt9WFW2hG1I7mzaFacQMgi/mxnvCNURstSng HKHnPyHXTFK9DwoJVBHMNFOHoU1Da6MRXRVx7DbPeUxBWKdHDJQ1fcADpeQITnIS N7RmUtaBT32y9gLm+LT4ry5crHmG3jwWvuG2tlu28w2m+dIfcBmdNBzXHSIE8tlj 0pMpBF/K0MuL5ECxbOUanIH5BJuo8GgT8YuUxqlc+dRkyx09qJmPJFPH25uBjlN0 HRhPzN37XgRM0TxDvWaq9LZ8TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+Czw+i 7cgfeOI1kILy6VhyZSrOMB8GA1UdIwQYMBaAFFQeCmb+YPOqwCUCzvHkjmJ6YvdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9CQTU5NTM1RTQy NTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2ckFKUUxPOGVTT1lucGk5 MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZCNEtadjVnODZyQUpRTE84ZVNPWW5waTkwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODhEOS9CQTU5NTM1RTQyNTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2 ckFKUUxPOGVTT1lucGk5MEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGNPW5lyazy+HQXBTZmd5B/305XPu8QKhKnFxHHhY7Qr08svjuvb7d dBt/GPMQNUs60jSHNJWOmzAqwXKXhmPnxEF71dbyq3E0BjmRYySTR6ji5pAeXY67 VCIDBRJlbkUAJxVU6+aFQGTrnvijNvcEixVnK50S2Nzp4V6x3TtDcO6MqUquZkoj ZiatX08/dqZpcMDWEf/VMSVVsB4ZI9c3gE77k0TVs79CubqKFctIPYIpWwyvI8JP ywAC1NtoxGTMpeFx0nSSlfuuHuacughbkTZbEco9I41N6xZfj9QyiOzIHyoO1+rM x9OA9Of8UAsbooVorFZKa7f49R4/n9bC -----END CERTIFICATE-----Generated at Sat Aug 9 23:12:29 2025 by rpki-client