$ rpki-client -vvf rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft File: vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft (raw, json) Hash identifier: INWftUNE4j61YRwdi2AtoGw09IGFy52bRLJn1WN30S0= Subject key identifier: 57:B2:04:91:C7:42:BD:95:39:BE:D7:14:30:E1:8A:9D:F2:AB:C1:81 Authority key identifier: BE:A7:E9:8C:5A:3F:B5:FB:D8:30:A4:35:94:41:B4:22:47:27:C7:2D Certificate issuer: /CN=A91C612E/serialNumber=BEA7E98C5A3FB5FBD830A4359441B4224727C72D Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft Manifest number: 133C Signing time: Sun 10 Aug 2025 18:33:57 +0000 Manifest this update: Sun 10 Aug 2025 18:33:57 +0000 Manifest next update: Sun 17 Aug 2025 18:33:57 +0000 Files and hashes: 1: vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.crl (hash: lcLLj7dF4QFmlzOb3GdjOctX2eoBQKYcNzanlmOh+VA=) 2: 46090834705811F099A0C739C4F9AE02.roa (hash: q4sIWsLWu93GK3GQp4d8mpOI7uP+zQCsKrY4ov8COCE=) 3: 7C0FB3666B7F11F0A9B64752C4F9AE02.roa (hash: JpEedTIu1/puLNj2dYSgai3OZfNC92ySYcXZkBGbOE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.crl rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C612E, serialNumber=BEA7E98C5A3FB5FBD830A4359441B4224727C72D Validity Not Before: Aug 10 18:33:57 2025 GMT Not After : Aug 17 18:33:57 2025 GMT Subject: CN=6898e615-348b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e0:a0:27:0b:bd:0b:43:01:7f:6e:46:17:52: af:20:2b:1c:a6:b7:6d:95:5f:cc:dc:c7:93:3a:03: b7:94:a7:15:b7:a5:28:77:49:85:d1:de:72:34:52: 80:61:3b:f5:23:fb:95:e6:c0:14:2a:57:f1:98:6a: aa:1a:96:f7:8d:68:cb:e8:b6:81:1a:a7:75:3c:59: 82:5e:6c:a4:ca:2d:7c:0b:d4:e3:60:a2:a7:d2:df: d2:e4:44:40:b5:60:a8:77:b8:02:68:8b:1f:4d:1d: ed:e0:77:20:a8:11:de:5b:fa:f2:3a:1b:8d:f7:05: 59:86:fe:25:27:3d:bc:4e:e0:a3:bc:8c:44:29:40: 65:d7:4d:8d:2c:f8:ff:47:07:2c:40:43:c2:d8:65: 43:fa:ef:05:78:60:54:e3:55:30:d0:33:22:c6:8b: 51:9e:75:ec:57:63:0b:91:7b:f6:a1:55:1b:2e:83: 74:ca:99:f0:12:74:84:58:26:08:e8:1e:9c:a4:69: bb:0f:bf:92:7e:49:42:ef:56:6d:10:af:89:7d:4e: 74:41:6b:f7:39:0f:7a:ca:13:0e:16:c6:67:8e:38: 32:b8:4b:2a:50:88:74:ed:1d:69:fc:c3:87:ce:bd: 42:74:e7:5b:8b:90:c7:78:99:bc:39:60:16:ff:eb: 86:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:B2:04:91:C7:42:BD:95:39:BE:D7:14:30:E1:8A:9D:F2:AB:C1:81 X509v3 Authority Key Identifier: keyid:BE:A7:E9:8C:5A:3F:B5:FB:D8:30:A4:35:94:41:B4:22:47:27:C7:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C612E/65BC17D20B6111EAAF042F68C4F9AE02/vqfpjFo_tfvYMKQ1lEG0Ikcnxy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:65:b3:d6:48:a1:b8:ca:5f:4f:73:5f:c2:a0:50:e5:00:d3: 30:4a:4c:c4:d5:18:4d:60:f9:ac:e0:28:59:63:1a:e5:b0:b4: 62:7f:da:ea:6c:b7:06:34:ce:5a:a5:da:76:90:5c:14:af:15: 7d:91:c9:80:05:be:27:aa:f9:67:2d:ab:73:44:53:1f:9e:25: d7:57:d0:7e:db:48:e6:99:29:bd:05:c1:35:94:29:37:a6:90: ee:ca:94:d2:4d:fe:7b:2f:68:1c:27:d7:83:6f:65:b9:45:f7: 5b:4d:d5:0a:3a:fd:2a:8a:bf:cf:5f:cc:b0:db:21:35:a3:74: 7c:47:ad:d9:47:51:6f:af:e4:a5:13:e3:83:80:71:c2:9f:c5: a9:ac:0e:b7:19:e5:6d:14:7a:c9:b1:80:4d:b5:74:2b:42:ee: 9b:12:12:ca:51:21:a6:e1:06:eb:7b:83:57:ec:ef:8c:77:65: 81:e2:87:5e:9a:3b:b5:31:f7:d4:6b:db:01:e1:a6:9f:1b:c1: 54:53:91:c0:da:40:b0:25:0b:b6:84:fb:d9:aa:b3:fe:46:21: 7a:d2:d5:89:f9:42:dc:38:41:18:28:81:73:a9:d4:6d:a3:07: 2c:bf:a1:3b:50:f9:d2:11:29:96:2c:92:44:8d:03:d9:0a:71: 76:75:ec:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjEyRTExMC8GA1UEBRMoQkVBN0U5OEM1QTNGQjVGQkQ4MzBBNDM1OTQ0MUI0MjI0 NzI3QzcyRDAeFw0yNTA4MTAxODMzNTdaFw0yNTA4MTcxODMzNTdaMBgxFjAUBgNV BAMTDTY4OThlNjE1LTM0OGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC54KAnC70LQwF/bkYXUq8gKxymt22VX8zcx5M6A7eUpxW3pSh3SYXR3nI0UoBh O/Uj+5XmwBQqV/GYaqoalveNaMvotoEap3U8WYJebKTKLXwL1ONgoqfS39LkREC1 YKh3uAJoix9NHe3gdyCoEd5b+vI6G433BVmG/iUnPbxO4KO8jEQpQGXXTY0s+P9H ByxAQ8LYZUP67wV4YFTjVTDQMyLGi1GedexXYwuRe/ahVRsug3TKmfASdIRYJgjo HpykabsPv5J+SULvVm0Qr4l9TnRBa/c5D3rKEw4WxmeOODK4SypQiHTtHWn8w4fO vUJ051uLkMd4mbw5YBb/64bHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV7IEkcdC vZU5vtcUMOGKnfKrwYEwHwYDVR0jBBgwFoAUvqfpjFo/tfvYMKQ1lEG0Ikcnxy0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2MTJFLzY1QkMxN0QyMEI2 MTExRUFBRjA0MkY2OEM0RjlBRTAyL3ZxZnBqRm9fdGZ2WU1LUTFsRUcwSWtjbnh5 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdnFmcGpGb190ZnZZTUtRMWxFRzBJa2NueHkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 MTJFLzY1QkMxN0QyMEI2MTExRUFBRjA0MkY2OEM0RjlBRTAyL3ZxZnBqRm9fdGZ2 WU1LUTFsRUcwSWtjbnh5MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADRls9ZIobjKX09zX8KgUOUA0zBKTMTVGE1g+azgKFljGuWwtGJ/2ups twY0zlql2naQXBSvFX2RyYAFvieq+Wctq3NEUx+eJddX0H7bSOaZKb0FwTWUKTem kO7KlNJN/nsvaBwn14NvZblF91tN1Qo6/SqKv89fzLDbITWjdHxHrdlHUW+v5KUT 44OAccKfxamsDrcZ5W0UesmxgE21dCtC7psSEspRIabhBut7g1fs74x3ZYHih16a O7Ux99Rr2wHhpp8bwVRTkcDaQLAlC7aE+9mqs/5GIXrS1Yn5Qtw4QRgogXOp1G2j Byy/oTtQ+dIRKZYskkSNA9kKcXZ17Ho= -----END CERTIFICATE-----Generated at Mon Aug 11 01:49:34 2025 by rpki-client