$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft File: VVmDGtzt7KX6kvxOtdLt5i43qM0.mft (raw, json) Hash identifier: 0YmbvEUjS2ozq8CsAfBV2rexx3ND45OHY3wf17vAnjg= Subject key identifier: 1E:4B:2C:2E:96:EF:7D:62:D6:A7:F0:74:E0:0E:16:51:90:55:47:66 Authority key identifier: 55:59:83:1A:DC:ED:EC:A5:FA:92:FC:4E:B5:D2:ED:E6:2E:37:A8:CD Certificate issuer: /CN=A91AB2EB/serialNumber=5559831ADCEDECA5FA92FC4EB5D2EDE62E37A8CD Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft Manifest number: 0120 Signing time: Sat 09 Aug 2025 05:10:47 +0000 Manifest this update: Sat 09 Aug 2025 05:10:46 +0000 Manifest next update: Sat 16 Aug 2025 05:10:46 +0000 Files and hashes: 1: VVmDGtzt7KX6kvxOtdLt5i43qM0.crl (hash: bagZVW5uRuor4YALmFk1+pURVACqGiAXSC77uZDL4RI=) 2: B96DD308BF4311EE844DDD58C4F9AE02.roa (hash: Qyo+y73YZI83wemHD69A6cWahcYB7AOwFIX0fbO5DQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.crl rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB2EB, serialNumber=5559831ADCEDECA5FA92FC4EB5D2EDE62E37A8CD Validity Not Before: Aug 9 05:10:46 2025 GMT Not After : Aug 16 05:10:46 2025 GMT Subject: CN=6896d857-1167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:eb:c9:22:ae:4a:64:7a:b1:af:ed:e9:03:58: 47:26:7c:05:03:b3:30:12:6e:72:fe:3e:04:98:13: 4b:bc:5a:c6:5c:46:f0:c1:1c:5a:34:82:f6:68:38: 31:28:6d:3b:47:22:58:8e:32:49:34:10:39:e7:8c: 7d:62:52:ed:3f:e1:92:68:71:c3:7f:04:8d:25:5b: 29:46:76:cc:83:29:d0:42:73:88:71:f7:0b:6b:7b: b7:7a:6e:15:5d:45:6a:d5:78:17:e3:be:7a:c0:05: 3e:5c:6b:6c:22:a8:c7:f8:32:4d:44:25:9b:64:03: 11:79:62:65:8f:3c:c9:aa:ba:c2:87:03:06:4a:73: de:df:e7:d6:5e:b4:e2:fb:39:01:15:db:93:a0:c3: a5:4c:c2:25:3e:d0:f9:30:35:29:3d:8f:12:1e:31: 1a:67:33:f2:fe:22:de:ea:95:8d:6c:b9:b7:b0:fa: 93:6c:1a:be:ee:55:04:50:df:a1:e3:f8:24:04:33: f4:d3:2f:18:0c:7f:d8:74:f5:83:41:70:75:9d:7a: 62:0a:2b:47:72:60:cf:76:94:de:93:27:d3:de:83: 49:12:bb:36:e6:d2:94:23:0d:f8:0d:bf:6f:59:2d: 1a:22:fc:43:03:f6:d6:ce:73:19:e1:f5:f0:00:a4: 2c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:4B:2C:2E:96:EF:7D:62:D6:A7:F0:74:E0:0E:16:51:90:55:47:66 X509v3 Authority Key Identifier: keyid:55:59:83:1A:DC:ED:EC:A5:FA:92:FC:4E:B5:D2:ED:E6:2E:37:A8:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:65:7c:9c:e9:13:21:e2:22:bf:4f:ff:7e:51:24:82:dc:46: 8d:36:94:ca:71:cd:79:35:e6:a0:c3:e5:e6:13:05:15:2d:6f: 39:72:b3:ab:2e:f8:60:87:c5:3c:34:52:48:98:2d:a1:8f:07: 5b:9b:cf:71:09:7b:28:f5:56:14:e2:03:ad:a5:25:d4:ae:ce: c6:0d:39:e8:44:e1:f5:32:af:03:92:3a:7f:4c:66:06:20:78: c2:25:e0:5c:27:dc:bc:65:3c:58:f5:62:a0:be:fa:5d:f2:2f: 50:f7:c8:db:65:0d:73:79:ce:dc:c2:70:2f:de:37:e8:f0:5b: 30:e1:8c:e3:35:7b:60:e6:64:44:3c:59:af:b5:52:e0:5d:4a: 9f:b0:9e:ae:0c:07:f5:1b:e1:7b:d8:a9:70:f8:c4:1b:e3:77: b3:64:28:31:af:ca:bc:83:d6:6c:20:cf:36:3e:99:51:0e:42: 88:79:e4:a1:92:c0:18:59:80:3b:12:a1:04:66:1b:15:d1:7b: 0d:ab:12:80:59:55:0a:e0:9a:89:ae:a0:19:89:14:87:82:0e: 84:55:85:e1:0a:b3:84:3e:25:28:28:5d:a2:33:2f:12:ea:52: d9:88:4d:91:07:0d:4b:c5:4d:5e:f8:3b:f8:c6:8c:cc:47:94: 66:b3:99:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyRUIxMTAvBgNVBAUTKDU1NTk4MzFBRENFREVDQTVGQTkyRkM0RUI1RDJFREU2 MkUzN0E4Q0QwHhcNMjUwODA5MDUxMDQ2WhcNMjUwODE2MDUxMDQ2WjAYMRYwFAYD VQQDEw02ODk2ZDg1Ny0xMTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+vJIq5KZHqxr+3pA1hHJnwFA7MwEm5y/j4EmBNLvFrGXEbwwRxaNIL2aDgx KG07RyJYjjJJNBA554x9YlLtP+GSaHHDfwSNJVspRnbMgynQQnOIcfcLa3u3em4V XUVq1XgX4756wAU+XGtsIqjH+DJNRCWbZAMReWJljzzJqrrChwMGSnPe3+fWXrTi +zkBFduToMOlTMIlPtD5MDUpPY8SHjEaZzPy/iLe6pWNbLm3sPqTbBq+7lUEUN+h 4/gkBDP00y8YDH/YdPWDQXB1nXpiCitHcmDPdpTekyfT3oNJErs25tKUIw34Db9v WS0aIvxDA/bWznMZ4fXwAKQswwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5LLC6W 731i1qfwdOAOFlGQVUdmMB8GA1UdIwQYMBaAFFVZgxrc7eyl+pL8TrXS7eYuN6jN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjJFQi80MzBCNUE3OEJG NDMxMUVFOEZEMzA3NThDNEY5QUUwMi9WVm1ER3R6dDdLWDZrdnhPdGRMdDVpNDNx TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZWbURHdHp0N0tYNmt2eE90ZEx0NWk0M3FNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjJFQi80MzBCNUE3OEJGNDMxMUVFOEZEMzA3NThDNEY5QUUwMi9WVm1ER3R6dDdL WDZrdnhPdGRMdDVpNDNxTTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVZXyc6RMh4iK/T/9+USSC3EaNNpTKcc15Neagw+XmEwUVLW85crOr Lvhgh8U8NFJImC2hjwdbm89xCXso9VYU4gOtpSXUrs7GDTnoROH1Mq8Dkjp/TGYG IHjCJeBcJ9y8ZTxY9WKgvvpd8i9Q98jbZQ1zec7cwnAv3jfo8Fsw4YzjNXtg5mRE PFmvtVLgXUqfsJ6uDAf1G+F72Klw+MQb43ezZCgxr8q8g9ZsIM82PplRDkKIeeSh ksAYWYA7EqEEZhsV0XsNqxKAWVUK4JqJrqAZiRSHgg6EVYXhCrOEPiUoKF2iMy8S 6lLZiE2RBw1LxU1e+Dv4xozMR5Rms5mo -----END CERTIFICATE-----Generated at Sat Aug 9 20:44:30 2025 by rpki-client