$ rpki-client -vvf rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft File: VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft (raw, json) Hash identifier: j/lvpDFySLxGPjhZyjK1u+atjudK4Is/PRlAYm0abAo= Subject key identifier: 76:CE:9C:6F:E4:CA:19:64:94:75:1F:91:EF:23:DB:8A:8B:06:4E:86 Authority key identifier: 54:58:3C:29:BB:FB:50:09:DB:9C:C0:56:14:F6:3D:62:BC:B7:7C:39 Certificate issuer: /CN=A9195AA2/serialNumber=54583C29BBFB5009DB9CC05614F63D62BCB77C39 Certificate serial: 0C41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft Manifest number: 141C Signing time: Sat 14 Jun 2025 18:21:09 +0000 Manifest this update: Sat 14 Jun 2025 18:21:09 +0000 Manifest next update: Sat 21 Jun 2025 18:21:09 +0000 Files and hashes: 1: VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl (hash: oABLdeYdwjAPPVUxMAZO5I5YbQ6DwEv378a/S1J75x0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:21:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3137 (0xc41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195AA2, serialNumber=54583C29BBFB5009DB9CC05614F63D62BCB77C39 Validity Not Before: Jun 14 18:21:09 2025 GMT Not After : Jun 21 18:21:09 2025 GMT Subject: CN=684dbd95-6bd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:17:b8:63:ce:e0:bc:47:dc:b8:da:e0:4a:88: 50:08:e8:82:0e:2a:50:c8:24:be:ff:6e:7b:2a:c6: 3a:83:9d:f7:eb:9f:09:4f:b0:73:bb:15:a0:30:fb: b4:79:fc:98:84:43:a6:a2:bf:e8:72:15:21:ba:e5: 17:3f:31:af:6e:40:a4:57:7c:09:be:44:70:e1:53: 8a:3f:2f:60:c3:2a:e1:97:6b:c9:08:c7:cd:5b:40: 64:dc:3a:6e:d0:6f:84:72:ab:2a:6d:c7:d7:d5:63: 50:58:18:fb:37:11:72:d8:29:16:c8:e8:f5:45:eb: 1a:bb:cb:b5:7b:63:ed:04:03:c5:ea:c1:10:21:80: 83:d5:3c:59:95:99:04:16:b2:a6:2d:07:c6:0d:8e: 65:c6:cc:00:40:ba:0c:82:83:b2:a8:dc:51:58:6f: 1b:f4:92:b5:cb:fc:0f:ae:52:04:b3:01:79:13:c0: 7a:ca:59:c7:53:ca:ce:5e:f9:69:f0:11:f6:bb:6d: c4:f4:4e:6c:9c:4f:2f:a0:59:92:7c:b8:54:b4:dc: a7:7b:1d:10:86:cd:f1:9e:3c:5e:31:84:1d:e6:2d: c3:3f:1b:f3:17:28:9c:c7:7c:0b:b1:24:2e:4e:15: e7:48:67:75:0e:bc:37:cf:50:32:bf:02:c7:97:5f: 25:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:CE:9C:6F:E4:CA:19:64:94:75:1F:91:EF:23:DB:8A:8B:06:4E:86 X509v3 Authority Key Identifier: keyid:54:58:3C:29:BB:FB:50:09:DB:9C:C0:56:14:F6:3D:62:BC:B7:7C:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:2e:94:e2:43:57:b8:64:79:9e:0c:82:89:b6:e5:a4:bc:cc: e7:b1:f0:d4:1b:dd:9a:00:2a:7c:fb:b0:a5:04:d1:46:d9:47: c8:25:e1:15:73:02:5d:b3:45:f4:8e:71:28:5b:c2:c2:ee:aa: ac:63:3d:61:5b:70:2d:f3:b7:33:83:3d:5f:c2:e6:42:5e:04: 34:af:2b:bf:f2:c5:d4:6f:90:df:52:64:90:c3:e9:4e:9c:37: fb:a1:0e:80:96:15:07:4a:5c:41:84:a5:b8:fe:b6:b6:f2:55: bd:f4:df:7e:37:9a:ac:96:7f:8d:90:e0:48:7b:7d:b7:d6:64: 99:46:90:86:4e:cb:b9:e6:b0:13:38:9f:f1:dd:d1:12:7b:af: d1:5c:f6:91:7d:05:4c:6b:5e:dd:bb:40:67:93:b7:37:ec:1a: 56:42:e6:8e:25:e9:1b:14:2e:eb:3f:85:03:15:7e:dd:9e:7d: 4f:cf:d9:cf:7b:7d:45:e7:dd:db:c2:ca:39:76:9d:b8:c1:cd: 7d:8d:e9:eb:2d:80:18:73:09:38:6f:3b:7e:aa:2e:de:f8:02: 9b:03:a4:f3:d7:3f:f4:5d:97:9c:9b:b1:71:99:66:5d:07:5c: 94:2e:f5:90:a6:df:52:dd:0d:a6:ec:00:01:c0:44:75:7c:df: 45:bc:6b:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBQTIxMTAvBgNVBAUTKDU0NTgzQzI5QkJGQjUwMDlEQjlDQzA1NjE0RjYzRDYy QkNCNzdDMzkwHhcNMjUwNjE0MTgyMTA5WhcNMjUwNjIxMTgyMTA5WjAYMRYwFAYD VQQDEw02ODRkYmQ5NS02YmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4he4Y87gvEfcuNrgSohQCOiCDipQyCS+/257KsY6g533658JT7BzuxWgMPu0 efyYhEOmor/ochUhuuUXPzGvbkCkV3wJvkRw4VOKPy9gwyrhl2vJCMfNW0Bk3Dpu 0G+EcqsqbcfX1WNQWBj7NxFy2CkWyOj1Resau8u1e2PtBAPF6sEQIYCD1TxZlZkE FrKmLQfGDY5lxswAQLoMgoOyqNxRWG8b9JK1y/wPrlIEswF5E8B6ylnHU8rOXvlp 8BH2u23E9E5snE8voFmSfLhUtNynex0Qhs3xnjxeMYQd5i3DPxvzFyicx3wLsSQu ThXnSGd1Drw3z1AyvwLHl18lHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbOnG/k yhlklHUfke8j24qLBk6GMB8GA1UdIwQYMBaAFFRYPCm7+1AJ25zAVhT2PWK8t3w5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUFBMi8xRkUzNTdENDA2 QzUxMUVBODg4RUQ5MTlDNEY5QUUwMi9WRmc4S2J2N1VBbmJuTUJXRlBZOVlyeTNm RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGZzhLYnY3VUFuYm5NQldGUFk5WXJ5M2ZEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUFBMi8xRkUzNTdENDA2QzUxMUVBODg4RUQ5MTlDNEY5QUUwMi9WRmc4S2J2N1VB bmJuTUJXRlBZOVlyeTNmRGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBULpTiQ1e4ZHmeDIKJtuWkvMznsfDUG92aACp8+7ClBNFG2UfIJeEV cwJds0X0jnEoW8LC7qqsYz1hW3At87czgz1fwuZCXgQ0ryu/8sXUb5DfUmSQw+lO nDf7oQ6AlhUHSlxBhKW4/ra28lW99N9+N5qsln+NkOBIe3231mSZRpCGTsu55rAT OJ/x3dESe6/RXPaRfQVMa17du0Bnk7c37BpWQuaOJekbFC7rP4UDFX7dnn1Pz9nP e31F593bwso5dp24wc19jenrLYAYcwk4bzt+qi7e+AKbA6Tz1z/0XZecm7FxmWZd B1yULvWQpt9S3Q2m7AABwER1fN9FvGte -----END CERTIFICATE-----Generated at Sun Jun 15 10:09:34 2025 by rpki-client