$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft File: VVmDGtzt7KX6kvxOtdLt5i43qM0.mft (raw, json) Hash identifier: Nt7wCHDa8Y0dkZJDOi1g7eMrAEKg5GtxW+r9oqNtdsY= Subject key identifier: 9D:ED:4E:E1:48:C6:CE:5A:7E:E0:A0:D2:9F:A9:CD:24:1C:D7:37:74 Authority key identifier: 55:59:83:1A:DC:ED:EC:A5:FA:92:FC:4E:B5:D2:ED:E6:2E:37:A8:CD Certificate issuer: /CN=A91AB2EB/serialNumber=5559831ADCEDECA5FA92FC4EB5D2EDE62E37A8CD Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft Manifest number: 0106 Signing time: Thu 19 Jun 2025 04:27:39 +0000 Manifest this update: Thu 19 Jun 2025 04:27:39 +0000 Manifest next update: Thu 26 Jun 2025 04:27:39 +0000 Files and hashes: 1: VVmDGtzt7KX6kvxOtdLt5i43qM0.crl (hash: v2hmx8UUVDzyZuMZKuCzkOf6DKSGwfhAwHdp+CSLMao=) 2: B96DD308BF4311EE844DDD58C4F9AE02.roa (hash: Qyo+y73YZI83wemHD69A6cWahcYB7AOwFIX0fbO5DQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.crl rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:27:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB2EB, serialNumber=5559831ADCEDECA5FA92FC4EB5D2EDE62E37A8CD Validity Not Before: Jun 19 04:27:39 2025 GMT Not After : Jun 26 04:27:39 2025 GMT Subject: CN=685391bb-fd49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b4:42:66:0f:33:4c:1b:c0:10:4f:23:5a:a7: e3:dc:7a:cf:5e:93:b2:40:3e:0a:35:b0:77:f2:5c: 7d:a3:de:78:b4:92:19:09:b5:cc:59:f0:8d:79:12: 06:d4:6b:0c:9c:95:23:37:1a:0e:5a:c5:80:65:3b: 5d:73:a3:5c:54:74:54:90:9a:c0:c3:2a:d5:e4:1a: 15:99:80:64:e7:15:57:23:75:76:8a:83:d7:48:27: de:c6:12:b3:72:c8:fa:01:26:e8:4c:bc:b9:05:36: db:d9:4b:05:79:11:a5:35:70:2e:bd:d9:f5:6a:a1: f7:0f:8c:5d:b7:09:a8:70:5c:c0:06:e9:9f:22:cc: 6e:88:4c:76:ab:22:9a:8a:64:c4:e5:b5:1f:46:ca: 77:80:a3:90:fa:b4:a9:0f:54:08:98:9b:c2:6b:d8: e4:e1:29:dd:44:2a:be:8c:4b:de:7f:0d:7d:91:a5: 82:93:1e:f1:7e:a0:78:79:27:fe:aa:57:04:63:c2: 4f:6a:0c:85:f5:5f:ca:d1:7b:18:a2:e5:87:e3:61: f3:85:e9:04:a8:d2:e6:c2:a4:92:4d:ff:6f:40:d5: 4f:f3:ea:02:37:15:30:d4:aa:14:28:98:82:10:8f: d6:4f:66:9b:1b:d0:a3:94:19:7f:f2:7e:ce:c3:a4: c1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:ED:4E:E1:48:C6:CE:5A:7E:E0:A0:D2:9F:A9:CD:24:1C:D7:37:74 X509v3 Authority Key Identifier: keyid:55:59:83:1A:DC:ED:EC:A5:FA:92:FC:4E:B5:D2:ED:E6:2E:37:A8:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:1f:6a:53:95:19:2a:ec:5a:73:01:ee:d9:3d:c9:06:f7:8c: 69:38:d2:55:3e:5f:b0:7e:77:d5:39:70:83:3b:39:e7:e7:1a: d4:8a:90:9a:df:9c:5a:80:80:97:aa:ae:b3:d6:d6:ea:0b:0a: e5:7b:1d:5d:bd:65:eb:c5:6f:79:3f:c6:ec:c4:ab:18:42:89: 9b:ce:83:83:d4:d3:46:8f:3b:be:03:b0:75:09:3c:84:f5:25: 16:f1:ed:00:bb:ec:05:76:c4:35:61:01:a6:6f:d7:d8:f5:7e: 51:3b:84:d7:d5:65:7a:97:5a:a4:27:21:b0:2b:98:aa:f8:c2: 4a:d8:dc:a0:c2:b6:0f:89:27:e4:8d:c9:19:bd:4b:82:75:82: e9:fa:7a:a8:1c:9f:ae:4a:2b:60:d3:80:21:1c:8a:b0:ff:98: b2:a8:c9:4c:8f:62:58:6f:2f:a0:3f:bf:b8:22:17:5f:1e:3c: 3a:0f:70:58:4f:9c:6b:e2:5d:62:ca:7a:ac:e5:3b:63:70:ea: f7:42:97:f4:3f:54:71:43:d2:39:0f:4d:eb:8e:20:ea:01:65: 85:48:28:ff:0a:f1:3d:ee:33:4b:e3:57:7a:a9:96:a6:07:b5: 36:53:ab:c6:e1:a7:e3:12:79:20:c3:5f:55:24:f9:1d:35:7d: 7b:39:24:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyRUIxMTAvBgNVBAUTKDU1NTk4MzFBRENFREVDQTVGQTkyRkM0RUI1RDJFREU2 MkUzN0E4Q0QwHhcNMjUwNjE5MDQyNzM5WhcNMjUwNjI2MDQyNzM5WjAYMRYwFAYD VQQDEw02ODUzOTFiYi1mZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbRCZg8zTBvAEE8jWqfj3HrPXpOyQD4KNbB38lx9o954tJIZCbXMWfCNeRIG 1GsMnJUjNxoOWsWAZTtdc6NcVHRUkJrAwyrV5BoVmYBk5xVXI3V2ioPXSCfexhKz csj6ASboTLy5BTbb2UsFeRGlNXAuvdn1aqH3D4xdtwmocFzABumfIsxuiEx2qyKa imTE5bUfRsp3gKOQ+rSpD1QImJvCa9jk4SndRCq+jEvefw19kaWCkx7xfqB4eSf+ qlcEY8JPagyF9V/K0XsYouWH42HzhekEqNLmwqSSTf9vQNVP8+oCNxUw1KoUKJiC EI/WT2abG9CjlBl/8n7Ow6TBhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3tTuFI xs5afuCg0p+pzSQc1zd0MB8GA1UdIwQYMBaAFFVZgxrc7eyl+pL8TrXS7eYuN6jN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjJFQi80MzBCNUE3OEJG NDMxMUVFOEZEMzA3NThDNEY5QUUwMi9WVm1ER3R6dDdLWDZrdnhPdGRMdDVpNDNx TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZWbURHdHp0N0tYNmt2eE90ZEx0NWk0M3FNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjJFQi80MzBCNUE3OEJGNDMxMUVFOEZEMzA3NThDNEY5QUUwMi9WVm1ER3R6dDdL WDZrdnhPdGRMdDVpNDNxTTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClH2pTlRkq7FpzAe7ZPckG94xpONJVPl+wfnfVOXCDOznn5xrUipCa 35xagICXqq6z1tbqCwrlex1dvWXrxW95P8bsxKsYQombzoOD1NNGjzu+A7B1CTyE 9SUW8e0Au+wFdsQ1YQGmb9fY9X5RO4TX1WV6l1qkJyGwK5iq+MJK2NygwrYPiSfk jckZvUuCdYLp+nqoHJ+uSitg04AhHIqw/5iyqMlMj2JYby+gP7+4IhdfHjw6D3BY T5xr4l1iynqs5TtjcOr3Qpf0P1RxQ9I5D03rjiDqAWWFSCj/CvE97jNL41d6qZam B7U2U6vG4afjEnkgw19VJPkdNX17OSTf -----END CERTIFICATE-----Generated at Fri Jun 20 10:35:12 2025 by rpki-client