$ rpki-client -vvf rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft File: vbWSaolrtlGg51QKOYzV7wcUFx8.mft (raw, json) Hash identifier: N8Hj9EWEG7iL8Ikn7ZOWqDAw+CaACbF7+K3Rhe7q+i0= Subject key identifier: A5:4C:F3:F9:16:29:23:33:10:7C:C2:54:2E:AA:79:E8:1F:36:49:B7 Authority key identifier: BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F Certificate issuer: /CN=A916A5CD/serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Certificate serial: 0427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft Manifest number: 0423 Signing time: Thu 12 Jun 2025 23:56:42 +0000 Manifest this update: Thu 12 Jun 2025 23:56:41 +0000 Manifest next update: Thu 19 Jun 2025 23:56:41 +0000 Files and hashes: 1: vbWSaolrtlGg51QKOYzV7wcUFx8.crl (hash: 4pk9FBWdLHnN1yhZSNQLRkjP0jjlVvZ7IjFHX5cBP34=) 2: 66864FCE688011ECAA829E31C4F9AE02.roa (hash: w5bL3BxYC2VJUK/MoXPR18n/PN4tqZHifWiPk20fkzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1063 (0x427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A5CD, serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Validity Not Before: Jun 12 23:56:41 2025 GMT Not After : Jun 19 23:56:41 2025 GMT Subject: CN=684b6939-fded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5c:0d:2b:36:b1:f6:57:19:cf:84:48:a2:c2: 2e:c4:96:7d:bd:1c:99:00:53:8e:01:82:26:75:2f: cc:1f:57:d8:f7:78:16:37:95:10:c5:81:db:e5:44: 0f:da:74:13:9d:c7:ce:8c:3f:fe:ba:42:ef:6d:56: 00:3a:8f:8b:84:f3:67:60:20:24:df:ff:91:14:05: 72:df:a1:c1:e9:57:a6:c0:ab:bd:7a:d2:83:4c:36: 1d:7b:a1:4a:e3:cc:74:45:e1:84:46:47:ff:2a:0c: 4e:71:e5:3d:29:02:22:39:28:7e:3d:c4:a8:44:7e: 71:13:f6:fc:19:3a:1d:35:79:21:b6:45:e9:34:44: ed:8a:6a:a0:48:e2:3a:18:59:e2:d7:93:0e:83:ff: f4:40:53:95:81:2c:54:57:7e:01:15:cb:63:bc:1b: b6:ac:5b:aa:c7:5e:1b:6f:de:d3:11:9e:5f:85:6d: 84:a7:b0:be:46:eb:ae:81:f6:6f:a9:7d:b1:1a:70: 25:22:82:fe:c9:a9:11:b3:15:36:68:75:dd:20:83: 5f:64:fb:f0:a8:b0:4b:8a:05:a8:01:82:58:3e:e0: ed:52:12:36:cc:98:14:47:b9:af:9f:00:d3:3d:55: c1:99:83:b0:2c:09:bb:d5:31:d5:a7:a2:e3:3c:00: 85:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:4C:F3:F9:16:29:23:33:10:7C:C2:54:2E:AA:79:E8:1F:36:49:B7 X509v3 Authority Key Identifier: keyid:BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:93:5a:55:e2:8a:10:6b:6a:ea:bc:ff:60:1f:ab:a4:17:ca: 14:63:ab:31:ed:2e:98:2a:59:6a:a0:bf:b8:c9:bb:57:a0:86: 09:90:47:11:1d:90:cd:0d:78:9c:7a:bf:31:8a:a7:19:c6:67: 5a:48:dd:76:1e:a9:97:01:48:75:b5:09:d6:cf:96:86:82:e0: 50:a4:a3:7f:0e:0a:d5:e0:5b:8c:7f:bc:53:04:8c:d9:03:66: 1d:fe:08:b8:59:28:54:d0:53:dd:3b:69:d6:e6:33:73:98:63: cb:24:6d:10:e5:e1:e0:08:1b:39:d1:ed:f0:07:04:ab:79:7f: 4e:0a:77:c0:58:f1:6e:3e:c9:42:22:d8:a5:03:54:a5:d1:ac: bc:60:3a:b4:d3:ba:6b:7e:82:06:8c:d7:7d:f4:03:e2:55:38: e2:67:eb:b1:81:43:7a:c8:c4:90:36:df:12:cd:62:96:99:51: 53:93:65:c5:4f:2c:bc:05:c5:f7:bd:36:e0:34:4e:80:bb:51: 2a:42:f8:86:03:ad:e0:76:0e:52:26:49:19:3c:96:29:a1:9c: bf:02:82:27:73:4a:15:92:94:1f:c6:5c:01:d2:b0:71:3c:24: ad:3f:a4:b2:e1:46:3e:f0:be:f8:66:67:08:39:95:3d:b7:74: 5f:36:8f:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1Q0QxMTAvBgNVBAUTKEJEQjU5MjZBODk2QkI2NTFBMEU3NTQwQTM5OENENUVG MDcxNDE3MUYwHhcNMjUwNjEyMjM1NjQxWhcNMjUwNjE5MjM1NjQxWjAYMRYwFAYD VQQDEw02ODRiNjkzOS1mZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVwNKzax9lcZz4RIosIuxJZ9vRyZAFOOAYImdS/MH1fY93gWN5UQxYHb5UQP 2nQTncfOjD/+ukLvbVYAOo+LhPNnYCAk3/+RFAVy36HB6VemwKu9etKDTDYde6FK 48x0ReGERkf/KgxOceU9KQIiOSh+PcSoRH5xE/b8GTodNXkhtkXpNETtimqgSOI6 GFni15MOg//0QFOVgSxUV34BFctjvBu2rFuqx14bb97TEZ5fhW2Ep7C+RuuugfZv qX2xGnAlIoL+yakRsxU2aHXdIINfZPvwqLBLigWoAYJYPuDtUhI2zJgUR7mvnwDT PVXBmYOwLAm71THVp6LjPACFNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVM8/kW KSMzEHzCVC6qeegfNkm3MB8GA1UdIwQYMBaAFL21kmqJa7ZRoOdUCjmM1e8HFBcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTVDRC8yOTQzNkZDRTY4 N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRsR2c1MVFLT1l6Vjd3Y1VG eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZiV1Nhb2xydGxHZzUxUUtPWXpWN3djVUZ4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTVDRC8yOTQzNkZDRTY4N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRs R2c1MVFLT1l6Vjd3Y1VGeDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYk1pV4ooQa2rqvP9gH6ukF8oUY6sx7S6YKllqoL+4ybtXoIYJkEcR HZDNDXicer8xiqcZxmdaSN12HqmXAUh1tQnWz5aGguBQpKN/DgrV4FuMf7xTBIzZ A2Yd/gi4WShU0FPdO2nW5jNzmGPLJG0Q5eHgCBs50e3wBwSreX9OCnfAWPFuPslC ItilA1Sl0ay8YDq007prfoIGjNd99APiVTjiZ+uxgUN6yMSQNt8SzWKWmVFTk2XF Tyy8BcX3vTbgNE6Au1EqQviGA63gdg5SJkkZPJYpoZy/AoInc0oVkpQfxlwB0rBx PCStP6Sy4UY+8L74ZmcIOZU9t3RfNo9N -----END CERTIFICATE-----Generated at Sat Jun 14 17:43:27 2025 by rpki-client