$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft File: vNzosG8FliNAMAycR0e1olGiGcQ.mft (raw, json) Hash identifier: zygZxkzsxzzLOIYPneynfPC0mn8kVcoN+YeON6Qt8So= Subject key identifier: 6D:EE:37:FF:BB:53:85:CB:7B:E2:F4:17:6D:5E:CB:40:57:3C:F6:27 Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 34CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft Manifest number: 34BA Signing time: Fri 08 Aug 2025 14:56:37 +0000 Manifest this update: Fri 08 Aug 2025 14:56:37 +0000 Manifest next update: Fri 15 Aug 2025 14:56:37 +0000 Files and hashes: 1: vNzosG8FliNAMAycR0e1olGiGcQ.crl (hash: KHv7EmqxFykINE4d4BlIT2Vc24C0VYeN8CdNKV7iDTA=) 2: 3FEFA562483D11EC82E81112C4F9AE02.roa (hash: rK0c8XECyvN9kLfaJ8Yz0Teq8RiIt0v2rBtEKSM98ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13514 (0x34ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8, serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: Aug 8 14:56:37 2025 GMT Not After : Aug 15 14:56:37 2025 GMT Subject: CN=68961025-8eac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:25:d8:09:58:d5:ca:df:4e:71:0d:83:e8:84: 14:71:fa:67:c9:55:c1:30:cf:7b:c9:7a:4a:c9:18: d2:46:c3:8c:35:8d:98:80:2c:2e:7f:d6:7a:53:eb: 43:28:de:34:24:37:ff:15:e6:2b:42:19:62:41:8f: 72:30:2b:4b:46:e0:09:81:22:78:f7:30:78:fc:33: f9:b2:e5:ff:ec:49:97:83:a4:e0:9d:ba:61:69:75: a6:12:7d:7d:3d:f6:f5:e9:74:19:da:e4:e2:85:11: bb:fb:05:4d:93:4f:4c:74:05:d8:3f:65:c9:51:e8: 8e:d8:fd:be:41:39:00:b7:47:d5:e1:f6:18:84:7b: d1:6a:ff:cf:1a:ca:63:04:d5:73:ce:49:92:78:7d: 91:1c:d9:05:5f:f3:00:13:3f:00:e8:dd:27:05:e8: 91:22:ed:d0:26:1d:12:e9:6c:7e:bb:eb:90:9b:ff: 42:cd:69:cc:d0:6f:7f:73:31:50:8e:5e:c9:42:d7: 76:1f:08:75:28:d6:36:f6:23:93:eb:f5:18:12:7f: 1e:71:6a:bb:43:7b:25:86:a5:77:c5:dc:81:d5:19: 2a:11:bf:35:36:72:bd:7c:86:b2:55:ea:5d:11:ce: b1:fe:fe:20:a7:24:e8:31:10:fc:5e:ac:a6:70:21: ae:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:EE:37:FF:BB:53:85:CB:7B:E2:F4:17:6D:5E:CB:40:57:3C:F6:27 X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b4:15:86:33:c0:70:b7:08:08:85:dc:c8:a5:7e:a2:6b:00: 6b:f0:d2:e2:7b:3e:a3:21:5c:a6:2c:73:15:38:b2:8a:7f:75: 28:40:fa:62:88:5a:ea:ac:c6:87:fe:d5:2c:18:11:d0:4c:a5: 4a:84:7b:9a:c0:91:76:15:87:09:bc:3b:fb:00:82:d2:a1:68: 75:12:00:17:a5:98:ca:14:4a:ef:83:df:eb:5c:0b:71:33:a2: 65:a0:fc:61:5c:df:4b:5e:36:b3:72:2a:ac:b6:02:01:9e:e7: d8:e1:df:b9:1d:4d:3b:48:bf:71:e0:f1:69:c8:6a:60:2a:17: 20:39:33:27:a8:7a:ed:b8:b9:d6:8c:80:8e:39:13:a6:4b:83: d6:4c:8e:47:f0:fb:0c:e5:1b:10:bd:64:ea:bd:8e:52:94:20: bb:a6:8c:82:d0:fc:47:ed:1b:b5:03:16:e2:7a:b1:48:ea:c0: d1:7f:86:80:b6:ad:fa:f1:36:f5:98:50:f2:aa:68:ad:d6:25: 2b:ff:d9:4e:df:00:8b:79:01:5f:5f:e0:c0:a7:6e:5e:b1:eb: a3:5f:e5:cc:6a:81:5b:b4:c2:20:b3:cf:9b:ca:42:2f:23:cb: bb:fc:6b:ad:7b:71:e8:4a:5d:e2:5f:24:00:30:97:18:7d:6c: e0:c2:b1:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjUwODA4MTQ1NjM3WhcNMjUwODE1MTQ1NjM3WjAYMRYwFAYD VQQDEw02ODk2MTAyNS04ZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyXYCVjVyt9OcQ2D6IQUcfpnyVXBMM97yXpKyRjSRsOMNY2YgCwuf9Z6U+tD KN40JDf/FeYrQhliQY9yMCtLRuAJgSJ49zB4/DP5suX/7EmXg6TgnbphaXWmEn19 Pfb16XQZ2uTihRG7+wVNk09MdAXYP2XJUeiO2P2+QTkAt0fV4fYYhHvRav/PGspj BNVzzkmSeH2RHNkFX/MAEz8A6N0nBeiRIu3QJh0S6Wx+u+uQm/9CzWnM0G9/czFQ jl7JQtd2Hwh1KNY29iOT6/UYEn8ecWq7Q3slhqV3xdyB1RkqEb81NnK9fIayVepd Ec6x/v4gpyToMRD8XqymcCGuEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3uN/+7 U4XLe+L0F21ey0BXPPYnMB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjVFOC9BMUYyM0E2NDFEOTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4Rmxp TkFNQXljUjBlMW9sR2lHY1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwtBWGM8BwtwgIhdzIpX6iawBr8NLiez6jIVymLHMVOLKKf3UoQPpi iFrqrMaH/tUsGBHQTKVKhHuawJF2FYcJvDv7AILSoWh1EgAXpZjKFErvg9/rXAtx M6JloPxhXN9LXjazciqstgIBnufY4d+5HU07SL9x4PFpyGpgKhcgOTMnqHrtuLnW jICOOROmS4PWTI5H8PsM5RsQvWTqvY5SlCC7poyC0PxH7Ru1AxbierFI6sDRf4aA tq368Tb1mFDyqmit1iUr/9lO3wCLeQFfX+DAp25eseujX+XMaoFbtMIgs8+bykIv I8u7/Gute3HoSl3iXyQAMJcYfWzgwrGp -----END CERTIFICATE-----Generated at Sun Aug 10 16:10:51 2025 by rpki-client