$ rpki-client -vvf rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft File: vbWSaolrtlGg51QKOYzV7wcUFx8.mft (raw, json) Hash identifier: pfJhkUWBBer2LuO29WdTb1+KqMl1Q/K1+t5/acN8oCg= Subject key identifier: 0C:A7:65:84:50:56:05:44:E3:A8:CE:16:38:D2:76:A1:CA:01:87:67 Authority key identifier: BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F Certificate issuer: /CN=A916A5CD/serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Certificate serial: 0443 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft Manifest number: 043F Signing time: Thu 07 Aug 2025 00:49:44 +0000 Manifest this update: Thu 07 Aug 2025 00:49:43 +0000 Manifest next update: Thu 14 Aug 2025 00:49:43 +0000 Files and hashes: 1: vbWSaolrtlGg51QKOYzV7wcUFx8.crl (hash: WgDyJtlw0U5ILzJ9R9uNgQZRcgRlmqb90LOBs1ifgHs=) 2: 66864FCE688011ECAA829E31C4F9AE02.roa (hash: w5bL3BxYC2VJUK/MoXPR18n/PN4tqZHifWiPk20fkzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1091 (0x443) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A5CD, serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Validity Not Before: Aug 7 00:49:43 2025 GMT Not After : Aug 14 00:49:43 2025 GMT Subject: CN=6893f828-6d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c3:30:8d:9a:52:04:bc:c3:4a:d2:78:11:3a: 01:a1:06:d1:27:cc:fe:ed:dc:f7:e9:6b:b0:62:d8: 88:97:44:ca:fa:d5:69:71:aa:39:5b:bb:f8:62:8c: 48:c0:4d:ae:49:e5:40:e0:38:ba:37:a5:1e:21:15: 58:43:7d:75:b4:95:de:17:f9:b4:1a:a0:84:4c:cb: df:44:87:0b:8d:20:5d:37:05:37:42:03:83:4f:95: 9b:57:a6:49:f7:48:a2:18:8f:ce:d6:40:4a:88:85: 48:1d:88:c5:df:38:71:74:e0:c9:2e:d5:e2:2d:00: 6c:55:a6:31:9e:37:88:b6:47:a0:15:db:ca:cc:50: e2:ba:97:4a:e6:a3:ca:c0:25:9b:28:79:47:c7:ab: 38:5b:ed:fa:3f:d4:8d:b1:41:7b:48:67:61:4d:88: fe:55:c5:03:d7:35:ce:6a:e3:a0:71:bf:cf:68:61: 4e:7e:97:19:ac:92:c6:0a:0d:b7:4b:2f:c8:b8:b4: be:72:f6:41:4d:ca:08:4a:7d:7c:56:e4:f9:96:3e: 96:13:54:78:c2:64:97:ff:ad:2c:6b:5e:b4:f5:2b: bb:e0:6c:dc:3a:e3:9e:e2:84:ca:20:77:fa:27:29: 87:70:ba:cc:3d:6a:01:03:05:ea:94:a3:5a:d1:f6: 73:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A7:65:84:50:56:05:44:E3:A8:CE:16:38:D2:76:A1:CA:01:87:67 X509v3 Authority Key Identifier: keyid:BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:72:5d:dd:90:e2:99:90:1b:a3:be:34:22:75:68:a7:62:6f: 13:b6:4c:6b:e1:b6:6b:35:6a:d0:45:04:87:0d:ac:d3:9a:10: b2:1f:75:a7:37:73:89:ce:8a:28:fd:e1:f4:b6:32:70:10:64: dd:65:a2:9d:bc:21:bc:df:f3:e5:56:0e:72:fd:7b:ad:f5:d1: df:5b:8f:0b:d2:91:4f:71:d1:5a:49:06:83:16:cf:ed:35:63: 3d:5f:32:c0:6f:f9:68:cf:22:e5:37:70:43:67:21:53:ea:2b: 0a:da:74:57:5b:7a:d0:9c:68:f1:1e:9a:1c:b3:63:7c:5a:2d: b3:92:80:f3:ff:39:5e:d6:da:52:bf:be:3a:92:71:b3:4d:66: 70:41:52:34:3b:10:e7:5d:e2:91:99:82:bc:13:98:0a:50:a9: 33:e3:a4:a8:49:44:ee:26:e7:a5:5a:85:80:05:0c:6a:22:d0: 41:99:b4:e1:1a:c7:e4:e1:12:8e:ec:87:60:8b:cf:2e:42:a8: e1:21:72:52:6b:13:c4:24:c4:dc:1b:6f:55:e8:99:cc:a2:96: 0d:e5:31:ac:d7:77:07:45:37:a2:dd:c9:ff:2a:25:c8:e3:12: 5f:49:0a:85:42:96:15:df:2c:72:1f:ab:03:9d:c8:72:80:5a: 48:77:93:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1Q0QxMTAvBgNVBAUTKEJEQjU5MjZBODk2QkI2NTFBMEU3NTQwQTM5OENENUVG MDcxNDE3MUYwHhcNMjUwODA3MDA0OTQzWhcNMjUwODE0MDA0OTQzWjAYMRYwFAYD VQQDEw02ODkzZjgyOC02ZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsMwjZpSBLzDStJ4EToBoQbRJ8z+7dz36WuwYtiIl0TK+tVpcao5W7v4YoxI wE2uSeVA4Di6N6UeIRVYQ311tJXeF/m0GqCETMvfRIcLjSBdNwU3QgODT5WbV6ZJ 90iiGI/O1kBKiIVIHYjF3zhxdODJLtXiLQBsVaYxnjeItkegFdvKzFDiupdK5qPK wCWbKHlHx6s4W+36P9SNsUF7SGdhTYj+VcUD1zXOauOgcb/PaGFOfpcZrJLGCg23 Sy/IuLS+cvZBTcoISn18VuT5lj6WE1R4wmSX/60sa1609Su74GzcOuOe4oTKIHf6 JymHcLrMPWoBAwXqlKNa0fZzmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAynZYRQ VgVE46jOFjjSdqHKAYdnMB8GA1UdIwQYMBaAFL21kmqJa7ZRoOdUCjmM1e8HFBcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTVDRC8yOTQzNkZDRTY4 N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRsR2c1MVFLT1l6Vjd3Y1VG eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZiV1Nhb2xydGxHZzUxUUtPWXpWN3djVUZ4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTVDRC8yOTQzNkZDRTY4N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRs R2c1MVFLT1l6Vjd3Y1VGeDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJcl3dkOKZkBujvjQidWinYm8Ttkxr4bZrNWrQRQSHDazTmhCyH3Wn N3OJzooo/eH0tjJwEGTdZaKdvCG83/PlVg5y/Xut9dHfW48L0pFPcdFaSQaDFs/t NWM9XzLAb/lozyLlN3BDZyFT6isK2nRXW3rQnGjxHpocs2N8Wi2zkoDz/zle1tpS v746knGzTWZwQVI0OxDnXeKRmYK8E5gKUKkz46SoSUTuJuelWoWABQxqItBBmbTh Gsfk4RKO7Idgi88uQqjhIXJSaxPEJMTcG29V6JnMopYN5TGs13cHRTei3cn/KiXI 4xJfSQqFQpYV3yxyH6sDnchygFpId5Mb -----END CERTIFICATE-----Generated at Fri Aug 8 00:07:34 2025 by rpki-client