$ rpki-client -vvf rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft File: VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft (raw, json) Hash identifier: h/mE0ukY3tXQn6Gkf+yX5Ap+9AZIJN3aDQM8LeLBsm0= Subject key identifier: BD:67:D4:71:D4:B6:EF:F4:83:3F:4A:A9:67:5F:6D:D1:3C:26:DA:76 Authority key identifier: 54:58:3C:29:BB:FB:50:09:DB:9C:C0:56:14:F6:3D:62:BC:B7:7C:39 Certificate issuer: /CN=A9195AA2/serialNumber=54583C29BBFB5009DB9CC05614F63D62BCB77C39 Certificate serial: 0C5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft Manifest number: 1457 Signing time: Fri 08 Aug 2025 18:40:23 +0000 Manifest this update: Fri 08 Aug 2025 18:40:22 +0000 Manifest next update: Fri 15 Aug 2025 18:40:22 +0000 Files and hashes: 1: VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl (hash: qNSBEj4EXzWAuPnZmojZYJ50tDTWW1PZEByCKqrhgtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195AA2, serialNumber=54583C29BBFB5009DB9CC05614F63D62BCB77C39 Validity Not Before: Aug 8 18:40:22 2025 GMT Not After : Aug 15 18:40:22 2025 GMT Subject: CN=68964497-5f40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ca:59:7b:da:3d:5e:f9:c9:06:95:e6:03:12: 29:0b:90:a8:95:e2:a1:21:f7:9d:b6:08:98:ac:24: 78:9a:d5:a0:ad:8d:08:98:23:b4:3e:09:5a:d2:dc: 0d:1e:fa:4e:0f:34:ea:7a:81:cd:b8:a1:8c:57:b3: 36:7a:9d:d8:d8:31:c7:17:d3:90:7d:ad:2c:93:04: 3f:e2:ca:c0:6f:63:cf:ae:3f:94:49:89:a6:19:c9: 54:d3:7a:95:37:c2:24:49:4e:0c:58:36:3a:bc:7c: 8e:ea:5f:3d:65:3c:b1:b1:cf:4e:4f:69:93:62:92: 1e:9a:37:26:47:0c:6e:d6:b3:ec:d3:ef:e4:08:42: f0:b8:be:aa:53:3f:cd:67:14:2c:86:4e:eb:3f:23: 05:ce:16:ac:63:8f:ab:30:d5:57:95:e0:64:3b:2d: 7a:fc:96:47:44:65:0e:ed:c3:bf:82:bc:14:c5:c0: 22:1b:48:4c:e6:3e:5b:bf:13:74:af:d2:f3:0a:a5: bc:e1:ee:b9:42:57:41:c9:ad:71:4f:fd:16:d7:13: 0b:e8:33:3b:11:78:ec:2a:c5:47:c6:c3:36:5c:9f: 85:2c:91:23:84:5f:f1:22:03:8a:5e:c4:62:00:50: 9e:82:1f:8d:d8:87:14:07:68:dd:99:8c:3f:a4:e0: 51:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:67:D4:71:D4:B6:EF:F4:83:3F:4A:A9:67:5F:6D:D1:3C:26:DA:76 X509v3 Authority Key Identifier: keyid:54:58:3C:29:BB:FB:50:09:DB:9C:C0:56:14:F6:3D:62:BC:B7:7C:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ee:40:08:f6:70:3c:08:9c:87:86:21:05:1a:5d:aa:b0:57: 21:fb:9e:52:e9:f4:ba:4b:73:c1:3d:a5:9d:f8:4a:d4:77:f3: 7a:4e:db:3f:b9:69:a3:55:53:86:8a:75:6f:c2:09:c2:22:4f: 1b:e3:fe:a2:06:2e:68:59:c2:3d:66:2c:99:24:f9:a8:4b:79: 02:9a:e6:5e:f9:33:cf:e2:1b:9d:a8:58:98:95:99:0a:6b:44: c6:b5:32:8c:28:72:d1:62:5b:a8:ef:07:5f:95:60:43:2b:a9: 2c:b1:3e:d5:a1:1a:fb:b4:4d:85:97:d8:26:75:c9:be:a9:18: 2c:06:0c:a3:bc:67:82:24:ad:f8:a5:85:e8:55:e8:88:85:69: 0c:71:0c:d6:64:27:67:50:9c:78:03:83:6b:b7:f2:91:77:2d: b0:41:5c:1c:de:b0:8f:2f:e1:45:3a:58:5d:33:3e:b9:46:47: e2:f6:19:6b:db:d2:f5:63:f1:23:3e:61:50:37:f9:c2:22:c1: 71:5c:27:5e:61:89:e7:a2:cf:cc:ae:d3:40:5c:31:51:15:ba: 01:82:1a:0f:0f:99:36:b1:f2:f6:57:81:73:4f:ed:45:bf:83: 08:bf:96:a7:39:cd:2e:0d:36:85:d3:60:8a:f8:c9:ab:8b:86: ab:89:27:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBQTIxMTAvBgNVBAUTKDU0NTgzQzI5QkJGQjUwMDlEQjlDQzA1NjE0RjYzRDYy QkNCNzdDMzkwHhcNMjUwODA4MTg0MDIyWhcNMjUwODE1MTg0MDIyWjAYMRYwFAYD VQQDEw02ODk2NDQ5Ny01ZjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxspZe9o9XvnJBpXmAxIpC5ColeKhIfedtgiYrCR4mtWgrY0ImCO0Pgla0twN HvpODzTqeoHNuKGMV7M2ep3Y2DHHF9OQfa0skwQ/4srAb2PPrj+USYmmGclU03qV N8IkSU4MWDY6vHyO6l89ZTyxsc9OT2mTYpIemjcmRwxu1rPs0+/kCELwuL6qUz/N ZxQshk7rPyMFzhasY4+rMNVXleBkOy16/JZHRGUO7cO/grwUxcAiG0hM5j5bvxN0 r9LzCqW84e65QldBya1xT/0W1xML6DM7EXjsKsVHxsM2XJ+FLJEjhF/xIgOKXsRi AFCegh+N2IcUB2jdmYw/pOBRXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1n1HHU tu/0gz9KqWdfbdE8Jtp2MB8GA1UdIwQYMBaAFFRYPCm7+1AJ25zAVhT2PWK8t3w5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUFBMi8xRkUzNTdENDA2 QzUxMUVBODg4RUQ5MTlDNEY5QUUwMi9WRmc4S2J2N1VBbmJuTUJXRlBZOVlyeTNm RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGZzhLYnY3VUFuYm5NQldGUFk5WXJ5M2ZEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUFBMi8xRkUzNTdENDA2QzUxMUVBODg4RUQ5MTlDNEY5QUUwMi9WRmc4S2J2N1VB bmJuTUJXRlBZOVlyeTNmRGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb7kAI9nA8CJyHhiEFGl2qsFch+55S6fS6S3PBPaWd+ErUd/N6Tts/ uWmjVVOGinVvwgnCIk8b4/6iBi5oWcI9ZiyZJPmoS3kCmuZe+TPP4hudqFiYlZkK a0TGtTKMKHLRYluo7wdflWBDK6kssT7VoRr7tE2Fl9gmdcm+qRgsBgyjvGeCJK34 pYXoVeiIhWkMcQzWZCdnUJx4A4Nrt/KRdy2wQVwc3rCPL+FFOlhdMz65Rkfi9hlr 29L1Y/EjPmFQN/nCIsFxXCdeYYnnos/MrtNAXDFRFboBghoPD5k2sfL2V4FzT+1F v4MIv5anOc0uDTaF02CK+Mmri4ariSdV -----END CERTIFICATE-----Generated at Sun Aug 10 04:55:31 2025 by rpki-client