$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft File: vHENBWM8XhGwdEtxrruIriskRuM.mft (raw, json) Hash identifier: 4oRq5zrJipZ7h0LL1c/kYHrdv+po4nqQejI7wDY45Jw= Subject key identifier: EA:D2:90:E5:02:5B:24:C7:C7:5A:2F:B0:8C:84:FF:1C:CA:69:7D:6C Authority key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 Certificate issuer: /CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Certificate serial: 1365 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft Manifest number: 135E Signing time: Wed 06 Aug 2025 17:07:12 +0000 Manifest this update: Wed 06 Aug 2025 17:07:12 +0000 Manifest next update: Wed 13 Aug 2025 17:07:12 +0000 Files and hashes: 1: vHENBWM8XhGwdEtxrruIriskRuM.crl (hash: j85EWWKLTjHQnUkLq9ejoDG7wwiCNKWp5G/fjANKA+U=) 2: C2065F2CA5F311E8B54BF03DC4F9AE02.roa (hash: 7dzMQW8xZe2lq7d8lclvmxKRE19SR0FNahUj7xIAu1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 17:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4965 (0x1365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF406, serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Validity Not Before: Aug 6 17:07:12 2025 GMT Not After : Aug 13 17:07:12 2025 GMT Subject: CN=68938bc0-e81a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:be:1b:dc:fd:46:ac:a0:ca:1e:f1:5e:fa:db: ed:d0:4f:7e:19:a5:e3:97:3b:1d:02:54:63:9d:17: a3:8d:6f:92:78:2c:fe:76:6d:a1:14:8c:7a:c5:ff: 20:2c:7e:bc:d5:85:82:fe:59:54:d2:4c:3f:a7:b4: 65:58:49:64:7b:44:da:b8:fc:d0:0c:39:c0:e3:eb: 46:8a:bc:b8:ff:1b:3e:b2:06:f4:1f:86:88:0d:b7: 0f:2b:78:6d:f0:96:a0:57:f4:f8:44:ab:2c:89:00: 97:5a:ff:7c:36:3b:ce:a1:b4:fc:bc:ce:9c:5f:60: 8e:f3:1c:27:3b:30:af:8e:40:66:2b:a9:1f:07:c1: 2d:d3:a5:a6:ff:38:2f:b1:e5:fe:28:ba:f2:8e:a0: 65:1c:75:32:fc:84:0e:6e:28:8f:4f:a9:0c:ee:3a: 51:a9:60:e9:f8:62:d0:66:78:1f:c0:0c:05:bc:dc: 8b:d5:64:f1:f4:98:0f:9c:1f:49:4b:eb:60:aa:2c: 78:8c:18:ed:b9:2a:1b:b9:b6:95:58:58:b4:de:f3: b5:f9:26:69:72:a0:f2:a8:f4:6b:06:4b:3c:df:0a: 63:b4:1f:67:88:bb:bb:7f:a5:67:29:b4:b6:7f:b1: 25:d1:a3:68:29:4a:d0:e2:04:5f:0e:0b:a4:54:21: b1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:D2:90:E5:02:5B:24:C7:C7:5A:2F:B0:8C:84:FF:1C:CA:69:7D:6C X509v3 Authority Key Identifier: keyid:BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:96:eb:6d:d0:e8:53:1e:42:ad:d9:32:e3:d7:0c:3f:42:d1: 96:9e:a9:7f:df:b7:31:51:45:d0:e8:6c:ca:80:f8:d0:42:5c: 40:97:05:d1:ed:93:c4:ff:0e:72:f4:e4:60:4e:18:62:1a:ff: d1:64:51:f5:b5:a7:f5:78:8c:73:91:7a:10:66:1e:a2:66:20: 6b:8d:f9:6c:d4:68:28:69:36:64:75:37:fc:31:8b:69:9c:e1: 23:4a:24:0a:3a:af:67:e8:f0:c7:fc:ff:e5:f2:55:64:8b:01: 77:af:af:51:7f:e7:3b:13:32:37:8c:0f:28:9d:72:25:99:e9: e1:12:77:79:57:53:b3:b7:7b:1a:46:a6:94:96:ce:11:12:98: aa:ee:b6:1d:a9:5d:fc:6e:43:81:e2:c5:e2:12:e8:53:bf:58: a8:3f:b3:38:2b:a7:a4:6e:92:b2:4c:ac:24:12:b7:25:a2:88: 76:5e:cb:63:7f:4c:d5:b2:00:cf:9b:37:2a:96:2a:ef:52:d9: 8d:0c:3a:6c:0c:9c:77:64:f2:0b:c5:21:f4:03:ad:b8:26:c2: 62:e9:65:94:e4:73:7d:d9:ee:0b:62:0b:90:21:55:7c:e0:f4: 41:70:ec:7e:fc:9a:d8:eb:3a:46:f0:90:f4:e5:ff:e2:11:18: b8:90:9e:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY0MDYxMTAvBgNVBAUTKEJDNzEwRDA1NjMzQzVFMTFCMDc0NEI3MUFFQkI4OEFF MkIyNDQ2RTMwHhcNMjUwODA2MTcwNzEyWhcNMjUwODEzMTcwNzEyWjAYMRYwFAYD VQQDEw02ODkzOGJjMC1lODFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAur4b3P1GrKDKHvFe+tvt0E9+GaXjlzsdAlRjnRejjW+SeCz+dm2hFIx6xf8g LH681YWC/llU0kw/p7RlWElke0TauPzQDDnA4+tGiry4/xs+sgb0H4aIDbcPK3ht 8JagV/T4RKssiQCXWv98NjvOobT8vM6cX2CO8xwnOzCvjkBmK6kfB8Et06Wm/zgv seX+KLryjqBlHHUy/IQObiiPT6kM7jpRqWDp+GLQZngfwAwFvNyL1WTx9JgPnB9J S+tgqix4jBjtuSobubaVWFi03vO1+SZpcqDyqPRrBks83wpjtB9niLu7f6VnKbS2 f7El0aNoKUrQ4gRfDgukVCGxEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrSkOUC WyTHx1ovsIyE/xzKaX1sMB8GA1UdIwQYMBaAFLxxDQVjPF4RsHRLca67iK4rJEbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjQwNi8zRjY3MEMwQ0E1 RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFhoR3dkRXR4cnJ1SXJpc2tS dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRU5CV004WGhHd2RFdHhycnVJcmlza1J1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjQwNi8zRjY3MEMwQ0E1RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFho R3dkRXR4cnJ1SXJpc2tSdU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABlutt0OhTHkKt2TLj1ww/QtGWnql/37cxUUXQ6GzKgPjQQlxAlwXR 7ZPE/w5y9ORgThhiGv/RZFH1taf1eIxzkXoQZh6iZiBrjfls1GgoaTZkdTf8MYtp nOEjSiQKOq9n6PDH/P/l8lVkiwF3r69Rf+c7EzI3jA8onXIlmenhEnd5V1Ozt3sa RqaUls4REpiq7rYdqV38bkOB4sXiEuhTv1ioP7M4K6ekbpKyTKwkErclooh2Xstj f0zVsgDPmzcqlirvUtmNDDpsDJx3ZPILxSH0A624JsJi6WWU5HN92e4LYguQIVV8 4PRBcOx+/JrY6zpG8JD05f/iERi4kJ5s -----END CERTIFICATE-----Generated at Thu Aug 7 05:13:11 2025 by rpki-client