$ rpki-client -vvf rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft File: VuOUrxtay4_0gsjGAmn-oOTEJ74.mft (raw, json) Hash identifier: CxtCcKFJso/DAVD9oZhr9JzK3t5uNqe7eMJ7X/ZE+js= Subject key identifier: BB:83:D5:49:59:40:8A:5D:EE:CE:6B:7C:D8:63:EB:1D:05:82:20:A8 Authority key identifier: 56:E3:94:AF:1B:5A:CB:8F:F4:82:C8:C6:02:69:FE:A0:E4:C4:27:BE Certificate issuer: /CN=A91A995E/serialNumber=56E394AF1B5ACB8FF482C8C60269FEA0E4C427BE Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VuOUrxtay4_0gsjGAmn-oOTEJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft Manifest number: 52 Signing time: Thu 07 Aug 2025 07:53:16 +0000 Manifest this update: Thu 07 Aug 2025 07:53:15 +0000 Manifest next update: Thu 14 Aug 2025 07:53:15 +0000 Files and hashes: 1: VuOUrxtay4_0gsjGAmn-oOTEJ74.crl (hash: W/2E7xBxhNMWRpPDnbPQccOvVxzxch3ycxpeBgaiJjo=) 2: 3E41E766FA6411EFB8C12C50C4F9AE02.roa (hash: DEF0xkvw3q1tLXUQiXU0nzrLNhOtTutlaMvyugUJMpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.crl rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VuOUrxtay4_0gsjGAmn-oOTEJ74.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A995E, serialNumber=56E394AF1B5ACB8FF482C8C60269FEA0E4C427BE Validity Not Before: Aug 7 07:53:15 2025 GMT Not After : Aug 14 07:53:15 2025 GMT Subject: CN=68945b6c-50b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b3:0c:68:57:bb:58:b3:75:54:60:9f:d3:c6: be:32:1a:57:0e:01:2d:4b:2a:9f:ec:0d:9f:62:3a: 6b:d7:93:0e:f9:ca:5b:8c:2a:96:4c:e2:6e:f5:c0: 39:b6:13:a1:17:70:41:b0:98:db:69:31:83:80:83: 01:17:ac:43:0e:0e:7b:52:f4:ff:10:c8:52:72:5a: 5c:76:a4:e4:13:16:b0:68:9d:92:f4:4d:16:15:12: a0:25:2b:a5:62:86:da:22:b4:5b:b7:3f:6a:ce:8b: ab:cb:77:8a:5d:50:56:d0:22:8c:d5:49:e8:6c:fc: 4a:28:b0:15:51:a0:5b:b4:6d:8b:b9:c0:13:af:66: 6f:9e:86:40:94:e4:ce:83:73:18:d5:61:93:29:d6: 02:90:f5:5d:86:31:a6:76:e0:32:fb:08:b4:aa:d4: 34:e4:09:77:dc:75:5e:b4:8f:23:6e:37:7b:9e:fd: 18:b9:b5:7a:99:8a:20:83:af:f2:c9:68:a6:7b:85: 3b:a6:12:e9:25:54:85:d7:f3:06:2d:dc:a4:1e:6e: d0:a0:86:a4:72:d8:62:e6:48:54:b9:c4:49:18:76: 46:47:1c:5b:2d:2f:da:4a:b1:19:9d:aa:08:f6:ad: 9d:79:7f:09:96:3f:6f:35:6f:9e:c7:49:c0:8a:30: ac:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:83:D5:49:59:40:8A:5D:EE:CE:6B:7C:D8:63:EB:1D:05:82:20:A8 X509v3 Authority Key Identifier: keyid:56:E3:94:AF:1B:5A:CB:8F:F4:82:C8:C6:02:69:FE:A0:E4:C4:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VuOUrxtay4_0gsjGAmn-oOTEJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:2d:a9:5a:c3:cf:ca:e8:d6:9f:83:c7:00:8f:b4:6f:05:32: c9:a4:cd:64:a7:1d:f6:a7:9c:7b:3c:a2:90:2d:f3:e1:0f:37: 8a:9b:c6:89:c3:16:9e:ce:fd:8c:8e:47:e1:53:c0:67:f0:ab: 3f:58:05:5b:7d:8b:7a:01:d4:6c:7a:70:f6:3e:d0:b4:da:6a: 0a:a3:5a:97:50:07:55:52:83:81:39:00:e6:f8:87:c3:e8:4e: 1f:cd:9e:e0:c0:f1:67:05:13:06:a2:4a:c4:01:4e:a5:a2:d9: 1e:67:90:16:dd:cb:a2:0f:17:ba:6e:b6:bf:37:b3:b5:7d:15: 43:55:aa:fe:55:86:84:60:7e:34:f0:5e:eb:68:c3:3b:bf:39: e6:77:54:b3:1a:fb:4f:67:50:93:15:de:c5:24:b7:06:ec:be: 06:99:20:b6:2f:1c:8b:82:4c:ca:3a:17:01:b4:ae:7e:26:2b: fc:0b:79:d2:cc:cf:43:d3:3c:9f:df:28:e2:1b:e0:ad:a7:c5: e3:34:7d:ff:61:b0:2c:73:b8:b4:44:d2:f9:6f:10:bd:e2:99: f3:b1:9a:5c:e0:09:9f:38:a6:55:13:bb:32:f4:10:4e:67:14: bd:0c:17:d1:33:cf:7b:85:cf:ac:d6:ec:07:4b:3a:2b:70:d2: 21:01:64:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTk1RTExMC8GA1UEBRMoNTZFMzk0QUYxQjVBQ0I4RkY0ODJDOEM2MDI2OUZFQTBF NEM0MjdCRTAeFw0yNTA4MDcwNzUzMTVaFw0yNTA4MTQwNzUzMTVaMBgxFjAUBgNV BAMTDTY4OTQ1YjZjLTUwYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPswxoV7tYs3VUYJ/Txr4yGlcOAS1LKp/sDZ9iOmvXkw75yluMKpZM4m71wDm2 E6EXcEGwmNtpMYOAgwEXrEMODntS9P8QyFJyWlx2pOQTFrBonZL0TRYVEqAlK6Vi htoitFu3P2rOi6vLd4pdUFbQIozVSehs/EoosBVRoFu0bYu5wBOvZm+ehkCU5M6D cxjVYZMp1gKQ9V2GMaZ24DL7CLSq1DTkCXfcdV60jyNuN3ue/Ri5tXqZiiCDr/LJ aKZ7hTumEuklVIXX8wYt3KQebtCghqRy2GLmSFS5xEkYdkZHHFstL9pKsRmdqgj2 rZ15fwmWP281b57HScCKMKyzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUu4PVSVlA il3uzmt82GPrHQWCIKgwHwYDVR0jBBgwFoAUVuOUrxtay4/0gsjGAmn+oOTEJ74w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OTVFLzJFN0FGMjk4RkE2 MjExRUY5NTU1NUMwRUM0RjlBRTAyL1Z1T1VyeHRheTRfMGdzakdBbW4tb09URUo3 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVnVPVXJ4dGF5NF8wZ3NqR0Ftbi1vT1RFSjc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OTVFLzJFN0FGMjk4RkE2MjExRUY5NTU1NUMwRUM0RjlBRTAyL1Z1T1VyeHRheTRf MGdzakdBbW4tb09URUo3NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGstqVrDz8ro1p+DxwCPtG8FMsmkzWSnHfannHs8opAt8+EPN4qbxonD Fp7O/YyOR+FTwGfwqz9YBVt9i3oB1Gx6cPY+0LTaagqjWpdQB1VSg4E5AOb4h8Po Th/NnuDA8WcFEwaiSsQBTqWi2R5nkBbdy6IPF7putr83s7V9FUNVqv5VhoRgfjTw Xutowzu/OeZ3VLMa+09nUJMV3sUktwbsvgaZILYvHIuCTMo6FwG0rn4mK/wLedLM z0PTPJ/fKOIb4K2nxeM0ff9hsCxzuLRE0vlvEL3imfOxmlzgCZ84plUTuzL0EE5n FL0MF9Ezz3uFz6zW7AdLOitw0iEBZLE= -----END CERTIFICATE-----Generated at Sat Aug 9 02:45:54 2025 by rpki-client