$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: MOR5/vXRrf2A+oRdiUjE/mWYYJ72xY9jO+9UPoA133k= Subject key identifier: DE:F3:5C:AD:C0:75:44:6A:55:5F:F2:74:1D:29:26:FF:CE:EB:DF:8B Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: F7 Signing time: Tue 05 Aug 2025 05:45:07 +0000 Manifest this update: Tue 05 Aug 2025 05:45:07 +0000 Manifest next update: Tue 12 Aug 2025 05:45:07 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: ZqASZcNuISDxk3T7HiH1LxuZmrtmuz8gGPnzZAd7Puo=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:45:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: Aug 5 05:45:07 2025 GMT Not After : Aug 12 05:45:07 2025 GMT Subject: CN=68919a63-e351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:99:cc:f0:b4:5d:83:8c:46:79:53:51:27:aa: 50:50:b1:59:98:f9:f7:cf:7f:c7:c1:1a:b2:d1:df: 35:12:9d:3d:71:b6:66:3a:d4:00:02:15:37:72:3e: cc:d5:ba:0b:30:9a:e5:37:59:05:14:38:46:5f:6e: e5:0c:0e:d1:03:a3:64:40:e9:ec:3a:7c:4d:da:98: bf:86:f6:6c:19:47:46:82:05:c3:62:42:34:ab:3a: 5e:ab:8c:67:53:18:b0:17:ec:86:46:d4:4a:c0:f5: be:63:f7:ed:79:8d:77:58:a8:9e:99:aa:6f:36:0c: c4:68:bf:a9:b5:bc:da:23:49:25:85:e5:04:c1:12: eb:54:ff:5b:21:e7:a4:4f:ad:8b:04:36:aa:24:8b: 77:cb:f7:0d:53:12:e7:69:e3:b3:14:cb:6b:4b:7c: 66:e8:fa:53:29:20:79:5d:60:04:28:42:d4:a7:87: f6:89:59:ce:5e:d0:7a:35:ce:ce:f4:43:27:58:3b: 2e:5f:d6:87:ee:30:74:80:fe:e4:14:f8:71:5b:83: dc:a0:a3:71:f5:e8:dd:6f:7e:8f:ba:ae:a1:bd:63: 46:6b:61:36:0d:76:b4:6c:62:15:7d:f9:1e:bc:aa: 79:e7:77:97:e4:d2:92:eb:10:6e:46:0a:5c:02:c0: 2d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:F3:5C:AD:C0:75:44:6A:55:5F:F2:74:1D:29:26:FF:CE:EB:DF:8B X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:6e:b8:eb:ee:16:2f:4c:96:3f:ab:61:76:ed:94:6c:56:0d: ad:09:10:d7:e8:69:99:3f:9a:3b:7a:42:5e:52:e9:3e:b4:91: 88:34:03:01:a8:34:6b:79:c4:32:ea:43:40:14:72:e4:80:13: b7:3e:87:81:9b:9c:05:18:d7:31:a0:5b:1e:90:ca:47:82:bd: 15:59:a7:9e:ce:f4:44:e6:95:4a:28:43:90:42:b8:11:4a:2e: 61:a2:71:1a:93:89:8a:2e:1d:f6:56:f4:be:03:d8:e0:4b:33: 74:c2:13:98:74:ca:a6:16:87:d7:99:99:24:3c:55:5f:da:14: 2a:9e:30:1d:eb:a3:01:67:3b:67:ae:60:f0:70:ed:70:93:3c: a0:c0:84:70:80:03:67:3d:35:ae:f8:90:db:a2:8b:72:bc:69: 11:d8:c6:2d:54:25:e9:8c:3f:8b:aa:4d:cd:3a:4b:21:be:7c: c9:26:16:c0:55:54:ce:26:06:f1:5a:1b:19:e1:6a:bf:a9:48: 0d:d4:d7:e2:5e:88:40:3c:da:3e:21:27:4f:a3:e1:8b:84:60: f6:72:b5:8e:f7:0e:e2:dc:52:7d:4e:32:ac:9a:9b:a1:d1:c5: a0:06:24:7c:65:7e:26:ff:63:1b:6a:6b:35:4a:c9:8d:47:86: 1e:16:37:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUwODA1MDU0NTA3WhcNMjUwODEyMDU0NTA3WjAYMRYwFAYD VQQDEw02ODkxOWE2My1lMzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZnM8LRdg4xGeVNRJ6pQULFZmPn3z3/HwRqy0d81Ep09cbZmOtQAAhU3cj7M 1boLMJrlN1kFFDhGX27lDA7RA6NkQOnsOnxN2pi/hvZsGUdGggXDYkI0qzpeq4xn UxiwF+yGRtRKwPW+Y/fteY13WKiemapvNgzEaL+ptbzaI0klheUEwRLrVP9bIeek T62LBDaqJIt3y/cNUxLnaeOzFMtrS3xm6PpTKSB5XWAEKELUp4f2iVnOXtB6Nc7O 9EMnWDsuX9aH7jB0gP7kFPhxW4PcoKNx9ejdb36Puq6hvWNGa2E2DXa0bGIVffke vKp553eX5NKS6xBuRgpcAsAtfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7zXK3A dURqVV/ydB0pJv/O69+LMB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZbrjr7hYvTJY/q2F27ZRsVg2tCRDX6GmZP5o7ekJeUuk+tJGINAMB qDRrecQy6kNAFHLkgBO3PoeBm5wFGNcxoFsekMpHgr0VWaeezvRE5pVKKEOQQrgR Si5honEak4mKLh32VvS+A9jgSzN0whOYdMqmFofXmZkkPFVf2hQqnjAd66MBZztn rmDwcO1wkzygwIRwgANnPTWu+JDbootyvGkR2MYtVCXpjD+Lqk3NOkshvnzJJhbA VVTOJgbxWhsZ4Wq/qUgN1NfiXohAPNo+ISdPo+GLhGD2crWO9w7i3FJ9TjKsmpuh 0cWgBiR8ZX4m/2Mbams1SsmNR4YeFjc0 -----END CERTIFICATE-----Generated at Wed Aug 6 13:16:31 2025 by rpki-client