$ rpki-client -vvf rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.mft File: vBtEbpc35JZMB6uMttwYBtbr_5s.mft (raw, json) Hash identifier: EoEteBKE3QkMMSuHRl6+/J2798pmYPqDzTBEi47BDCY= Subject key identifier: FE:90:4B:E4:AC:1E:93:69:4E:69:06:60:2E:61:DF:F1:36:8F:4B:1A Authority key identifier: BC:1B:44:6E:97:37:E4:96:4C:07:AB:8C:B6:DC:18:06:D6:EB:FF:9B Certificate issuer: /CN=A91C73A7/serialNumber=BC1B446E9737E4964C07AB8CB6DC1806D6EBFF9B Certificate serial: 06BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBtEbpc35JZMB6uMttwYBtbr_5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.mft Manifest number: 06B5 Signing time: Sun 10 Aug 2025 22:11:09 +0000 Manifest this update: Sun 10 Aug 2025 22:11:08 +0000 Manifest next update: Sun 17 Aug 2025 22:11:08 +0000 Files and hashes: 1: vBtEbpc35JZMB6uMttwYBtbr_5s.crl (hash: kktmWmy/7CqW1JMSIKC7LoXlyp92Q9dmU5D0WYYuUJI=) 2: 6BD6CD146F7F11EBB1A2C853C4F9AE02.roa (hash: I+eEa2BCG1ocgDoHBOIM7GqSJBtmqFy6z+9Rb7P5WKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.crl rsync://rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBtEbpc35JZMB6uMttwYBtbr_5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1722 (0x6ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C73A7, serialNumber=BC1B446E9737E4964C07AB8CB6DC1806D6EBFF9B Validity Not Before: Aug 10 22:11:08 2025 GMT Not After : Aug 17 22:11:08 2025 GMT Subject: CN=689918fc-d78d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f8:ac:0e:9f:78:54:37:36:c3:c1:42:d6:48: 7c:19:b7:28:c9:09:a2:33:d8:0e:40:c5:6c:2f:27: d5:41:f9:3d:dc:c8:91:30:c6:a1:31:2c:6e:85:8e: d3:2d:f7:e4:0f:10:e0:8e:58:cd:c0:c8:3a:fd:94: 62:68:11:35:67:ee:95:97:72:70:f6:50:68:35:ed: 04:94:39:89:73:dc:b9:ae:1f:63:0f:9f:46:90:cc: 4d:ba:7b:16:ab:ec:a3:22:b5:60:12:99:95:d5:f3: 53:da:a3:e0:b3:46:c9:6c:b6:7f:e7:9f:55:f0:46: 81:fc:fe:0d:ba:a3:1b:91:98:dc:61:19:c1:e1:4e: 0e:19:54:a0:f8:09:e1:56:e3:ab:d8:fa:a9:a8:35: f0:48:f8:3d:01:7b:2d:4e:56:3b:cb:c7:ce:29:42: 04:2b:33:20:4a:a5:db:ef:06:28:b4:a7:41:0d:82: 59:4b:b2:e0:4c:7d:53:c7:6a:37:18:cb:99:81:75: 09:32:bb:3e:cd:58:73:94:ef:c4:b2:a8:9d:de:ec: 2c:71:22:23:97:95:3f:e3:5b:91:bf:38:85:0b:c3: b8:b9:f1:17:14:5e:3d:a9:da:f4:b0:cf:08:8d:2a: 21:af:cd:fd:00:8c:51:be:f3:ff:e5:ca:4e:7a:5f: 82:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:90:4B:E4:AC:1E:93:69:4E:69:06:60:2E:61:DF:F1:36:8F:4B:1A X509v3 Authority Key Identifier: keyid:BC:1B:44:6E:97:37:E4:96:4C:07:AB:8C:B6:DC:18:06:D6:EB:FF:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBtEbpc35JZMB6uMttwYBtbr_5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C73A7/2D2CB3406F7E11EB9E135253C4F9AE02/vBtEbpc35JZMB6uMttwYBtbr_5s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:34:5a:48:da:fc:a2:90:44:bd:1a:49:e5:be:62:6b:b0:ee: 70:05:42:7d:a4:d0:8e:b4:9a:a7:06:6b:43:0f:34:a3:53:a7: 2f:22:a4:14:f1:68:7f:84:e2:95:e5:86:6c:57:81:5d:58:ee: 6c:65:ba:a8:41:1a:80:cf:31:a4:a0:a0:de:a9:13:f3:a8:73: 48:7d:a3:b2:d1:df:bb:07:f3:10:8e:92:e9:cf:b9:82:68:41: a4:5b:86:2a:a0:6a:95:c5:9c:46:90:a9:23:b9:f9:50:44:e2: ae:1f:2c:1d:dc:fc:46:1b:8a:3b:35:f2:5b:a8:79:e5:97:6e: e1:9f:1f:37:0b:73:49:a3:70:e8:ae:71:cd:ba:c8:11:a1:bb: 9f:8c:af:99:33:d6:67:7a:ae:e5:85:70:f9:6a:ba:af:41:57: 0f:ca:a3:3a:2c:34:8f:bf:97:d9:bd:25:77:49:e5:ed:82:e2: 4f:39:c7:7c:2f:d9:af:d7:2a:c4:22:c1:4a:92:91:30:e4:34: 11:5d:c1:39:09:73:5e:69:9b:41:14:03:b3:b7:a2:67:e0:aa: a8:89:4d:df:77:e1:56:d5:91:1a:e3:81:07:cf:0d:16:55:29: 3b:4d:80:a4:50:83:c8:69:bc:cc:0e:ec:0c:07:c5:b8:ac:ee: 09:ab:94:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzczQTcxMTAvBgNVBAUTKEJDMUI0NDZFOTczN0U0OTY0QzA3QUI4Q0I2REMxODA2 RDZFQkZGOUIwHhcNMjUwODEwMjIxMTA4WhcNMjUwODE3MjIxMTA4WjAYMRYwFAYD VQQDEw02ODk5MThmYy1kNzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PisDp94VDc2w8FC1kh8GbcoyQmiM9gOQMVsLyfVQfk93MiRMMahMSxuhY7T LffkDxDgjljNwMg6/ZRiaBE1Z+6Vl3Jw9lBoNe0ElDmJc9y5rh9jD59GkMxNunsW q+yjIrVgEpmV1fNT2qPgs0bJbLZ/559V8EaB/P4NuqMbkZjcYRnB4U4OGVSg+Anh VuOr2PqpqDXwSPg9AXstTlY7y8fOKUIEKzMgSqXb7wYotKdBDYJZS7LgTH1Tx2o3 GMuZgXUJMrs+zVhzlO/Esqid3uwscSIjl5U/41uRvziFC8O4ufEXFF49qdr0sM8I jSohr839AIxRvvP/5cpOel+C2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6QS+Ss HpNpTmkGYC5h3/E2j0saMB8GA1UdIwQYMBaAFLwbRG6XN+SWTAerjLbcGAbW6/+b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzNBNy8yRDJDQjM0MDZG N0UxMUVCOUUxMzUyNTNDNEY5QUUwMi92QnRFYnBjMzVKWk1CNnVNdHR3WUJ0YnJf NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCdEVicGMzNUpaTUI2dU10dHdZQnRicl81cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzNBNy8yRDJDQjM0MDZGN0UxMUVCOUUxMzUyNTNDNEY5QUUwMi92QnRFYnBjMzVK Wk1CNnVNdHR3WUJ0YnJfNXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAANFpI2vyikES9GknlvmJrsO5wBUJ9pNCOtJqnBmtDDzSjU6cvIqQU 8Wh/hOKV5YZsV4FdWO5sZbqoQRqAzzGkoKDeqRPzqHNIfaOy0d+7B/MQjpLpz7mC aEGkW4YqoGqVxZxGkKkjuflQROKuHywd3PxGG4o7NfJbqHnll27hnx83C3NJo3Do rnHNusgRobufjK+ZM9Zneq7lhXD5arqvQVcPyqM6LDSPv5fZvSV3SeXtguJPOcd8 L9mv1yrEIsFKkpEw5DQRXcE5CXNeaZtBFAOzt6Jn4KqoiU3fd+FW1ZEa44EHzw0W VSk7TYCkUIPIabzMDuwMB8W4rO4Jq5QO -----END CERTIFICATE-----Generated at Mon Aug 11 05:58:23 2025 by rpki-client