$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft File: vBRJ7peREatw2N-Y2rpOJrprxls.mft (raw, json) Hash identifier: KxGJNmb7h7w85Vo+gYSj/Fu5l5+2A5DFQG/Ieoq3sXI= Subject key identifier: 84:05:EB:72:C5:7C:54:38:C1:AA:13:92:78:4A:4D:32:05:3B:55:20 Authority key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B Certificate issuer: /CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Certificate serial: 0754 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft Manifest number: 074D Signing time: Fri 08 Aug 2025 22:05:28 +0000 Manifest this update: Fri 08 Aug 2025 22:05:27 +0000 Manifest next update: Fri 15 Aug 2025 22:05:27 +0000 Files and hashes: 1: vBRJ7peREatw2N-Y2rpOJrprxls.crl (hash: zoUMoE/naYxJmRw4mN6yN2T57+2DScGmM9Qm2coIEBk=) 2: 7633392033B411EB98035F74C4F9AE02.roa (hash: 2z51i9dV66CcllhW8qVIGTGYHAdnhuR+CInt6YNJqFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1876 (0x754) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCA34, serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Validity Not Before: Aug 8 22:05:27 2025 GMT Not After : Aug 15 22:05:27 2025 GMT Subject: CN=689674a7-5a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:eb:0c:f1:df:32:e3:3d:a1:7e:8b:71:cd:19: 89:dd:9b:d2:73:23:d8:25:e5:fc:70:e5:82:f0:b8: af:28:93:55:67:f8:fd:3e:52:da:02:75:a4:6a:ff: 64:93:2f:7a:38:04:9e:48:d1:88:f5:87:24:1d:b8: fe:1f:00:52:64:28:ac:a0:e1:3f:80:ef:3a:58:e1: b8:37:9b:29:8a:70:49:d8:46:d5:25:04:d7:7f:2e: c3:01:6d:30:e2:58:f0:7b:20:73:82:6c:9f:74:bc: 49:22:3a:8b:8a:28:34:92:66:53:9e:6c:c7:b7:25: 15:5c:5c:67:48:5c:a4:01:eb:0a:f4:64:53:49:35: 46:9c:e4:9a:b5:71:7b:2f:5c:39:fd:63:0f:87:17: ca:7f:d3:f2:e9:a9:35:c6:93:64:44:72:ea:bf:dd: 9f:e7:18:51:55:39:72:d7:fd:6f:f3:2a:1b:1c:33: b0:db:c3:a1:f5:03:c9:82:61:86:66:24:59:3a:22: f2:c4:62:3a:5a:c2:87:d8:0c:65:67:f5:b5:44:29: 9d:67:0a:ca:6f:4d:d9:45:63:12:b3:93:be:56:88: 9a:f4:8e:69:f5:e7:37:f0:4e:55:cf:3f:53:4d:65: 76:30:b1:97:8d:84:a6:15:d5:06:8f:82:10:5b:e2: 4d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:05:EB:72:C5:7C:54:38:C1:AA:13:92:78:4A:4D:32:05:3B:55:20 X509v3 Authority Key Identifier: keyid:BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:de:d9:79:8a:cd:ad:1e:93:d4:28:45:c7:96:fd:81:c2:12: ae:21:e9:bb:93:76:b9:14:3a:dc:99:e7:ee:24:92:88:7d:6e: d7:c6:b1:d9:a6:ef:3c:23:ca:2d:21:cb:04:cc:0c:b2:04:1b: 69:3c:4c:50:90:93:3e:ba:cf:6d:de:db:2b:4e:8e:5c:3b:da: d8:61:1c:14:fe:ed:ee:7c:8b:12:e1:7e:e0:25:6a:15:1f:b5: 29:18:d1:2b:25:6d:24:91:fe:01:96:d5:76:36:30:68:d5:a2: ee:83:51:a6:64:47:ff:f8:b2:13:8e:24:ba:5e:12:d5:11:ac: 49:c1:75:49:37:af:f6:57:fb:aa:b7:9e:98:7f:41:69:41:d9: b4:47:e3:03:6c:c9:d3:a4:51:54:78:f7:92:67:8a:a5:2f:4f: 10:c6:18:34:51:68:68:7e:38:9c:2a:74:ad:88:03:f9:f6:53: 18:db:e4:7f:c5:3c:6e:f8:33:9a:09:1a:08:e1:bd:5e:42:21: 9e:03:ec:b0:e1:a2:21:0d:e1:0a:3b:73:46:94:4d:64:a5:a4: cd:f5:17:b6:2c:d4:89:fb:9e:f0:e4:f1:43:e7:9e:ee:b4:f4: 99:4f:96:20:e1:f4:40:f2:76:82:27:cd:f5:60:1e:a6:14:55: 12:21:9a:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBMzQxMTAvBgNVBAUTKEJDMTQ0OUVFOTc5MTExQUI3MEQ4REY5OERBQkE0RTI2 QkE2QkM2NUIwHhcNMjUwODA4MjIwNTI3WhcNMjUwODE1MjIwNTI3WjAYMRYwFAYD VQQDEw02ODk2NzRhNy01YTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4esM8d8y4z2hfotxzRmJ3ZvScyPYJeX8cOWC8LivKJNVZ/j9PlLaAnWkav9k ky96OASeSNGI9YckHbj+HwBSZCisoOE/gO86WOG4N5spinBJ2EbVJQTXfy7DAW0w 4ljweyBzgmyfdLxJIjqLiig0kmZTnmzHtyUVXFxnSFykAesK9GRTSTVGnOSatXF7 L1w5/WMPhxfKf9Py6ak1xpNkRHLqv92f5xhRVTly1/1v8yobHDOw28Oh9QPJgmGG ZiRZOiLyxGI6WsKH2AxlZ/W1RCmdZwrKb03ZRWMSs5O+Voia9I5p9ec38E5Vzz9T TWV2MLGXjYSmFdUGj4IQW+JNFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQF63LF fFQ4waoTknhKTTIFO1UgMB8GA1UdIwQYMBaAFLwUSe6XkRGrcNjfmNq6Tia6a8Zb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0EzNC82RkFBMzY3ODMz QjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVhdHcyTi1ZMnJwT0pycHJ4 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCUko3cGVSRWF0dzJOLVkycnBPSnJwcnhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0EzNC82RkFBMzY3ODMzQjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVh dHcyTi1ZMnJwT0pycHJ4bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo3tl5is2tHpPUKEXHlv2BwhKuIem7k3a5FDrcmefuJJKIfW7XxrHZ pu88I8otIcsEzAyyBBtpPExQkJM+us9t3tsrTo5cO9rYYRwU/u3ufIsS4X7gJWoV H7UpGNErJW0kkf4BltV2NjBo1aLug1GmZEf/+LITjiS6XhLVEaxJwXVJN6/2V/uq t56Yf0FpQdm0R+MDbMnTpFFUePeSZ4qlL08Qxhg0UWhofjicKnStiAP59lMY2+R/ xTxu+DOaCRoI4b1eQiGeA+yw4aIhDeEKO3NGlE1kpaTN9Re2LNSJ+57w5PFD557u tPSZT5Yg4fRA8naCJ831YB6mFFUSIZqA -----END CERTIFICATE-----Generated at Sun Aug 10 04:15:08 2025 by rpki-client