$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft File: vBRJ7peREatw2N-Y2rpOJrprxls.mft (raw, json) Hash identifier: mLR+CQMBsjKyfsClpzxjESnaQ0PxCwJOj+rwLAYQcFc= Subject key identifier: 89:3B:67:A8:1B:89:C5:C3:C4:C0:C2:A5:6D:41:6B:BB:62:E4:D5:B3 Authority key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B Certificate issuer: /CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Certificate serial: 0738 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft Manifest number: 0731 Signing time: Sat 14 Jun 2025 21:32:01 +0000 Manifest this update: Sat 14 Jun 2025 21:32:01 +0000 Manifest next update: Sat 21 Jun 2025 21:32:01 +0000 Files and hashes: 1: vBRJ7peREatw2N-Y2rpOJrprxls.crl (hash: hizC1zg/p/lYBXpb8mZ/GdKD5eu7Hcz+QaKHBhFQnbw=) 2: 7633392033B411EB98035F74C4F9AE02.roa (hash: 2z51i9dV66CcllhW8qVIGTGYHAdnhuR+CInt6YNJqFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1848 (0x738) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCA34, serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Validity Not Before: Jun 14 21:32:01 2025 GMT Not After : Jun 21 21:32:01 2025 GMT Subject: CN=684dea51-9d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3d:d5:4b:a3:3c:cd:d9:94:3f:b9:04:e4:c5: 9b:69:55:79:c6:c3:2d:ba:bd:e3:55:a4:c9:da:cc: cc:1f:a5:c7:a5:67:c3:35:3f:60:3f:45:77:f9:c4: 6b:08:17:d9:41:77:6f:e6:32:9d:98:26:a3:a3:54: 1d:67:47:94:0e:69:5a:d8:f5:6e:dc:95:a9:f7:6b: 34:6b:fc:3e:1f:47:fe:fe:be:f3:ba:5d:be:4b:90: e3:7b:e7:9b:af:bd:3a:ad:fa:e0:a9:68:d6:d5:68: 6b:bb:ee:e8:77:9c:d4:20:6d:84:22:ca:45:ad:f2: 59:f1:d5:26:18:34:8f:a7:d9:f3:a3:54:0e:ea:0a: e3:70:39:af:76:8d:47:fb:36:e2:36:38:3a:ee:02: ab:11:e5:94:c4:cc:42:fc:f8:7f:e2:a6:c0:9d:f4: e2:4f:45:25:a3:9a:ec:87:54:7f:85:54:4a:58:3b: 7d:eb:48:bc:f3:b2:49:7e:39:a2:28:c7:8f:67:f0: 7b:ba:31:7c:c2:a2:97:91:bd:f8:ca:3c:ba:1e:18: b0:ee:46:50:c0:3b:e5:13:ae:df:8f:18:1a:3f:12: 59:18:bd:51:56:c7:2e:85:af:b6:a6:b7:57:b3:e4: 65:b3:9f:17:24:46:d7:fb:6f:2d:f3:68:d4:9c:78: 34:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:3B:67:A8:1B:89:C5:C3:C4:C0:C2:A5:6D:41:6B:BB:62:E4:D5:B3 X509v3 Authority Key Identifier: keyid:BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:04:9b:95:80:03:31:ec:31:bc:1e:39:6e:58:7e:37:76:f2: 0a:e2:98:21:25:18:68:fe:99:fa:74:1e:7c:4a:34:a5:12:d6: 1c:75:76:02:db:41:d6:80:29:b8:a3:98:23:8b:27:4d:ea:cc: ab:3f:1a:78:ba:a8:af:2c:b8:21:bf:1b:eb:4d:5f:f3:26:ba: 52:b8:48:9c:45:af:de:c2:1f:3c:6b:3e:2a:a1:ed:c3:c5:17: ec:6f:b3:02:70:ab:a0:00:86:83:53:cc:2e:4c:13:48:12:f2: 1f:f7:c0:e5:aa:58:e1:60:b0:b3:3a:dc:bc:38:43:7b:9f:d3: 8b:1a:3e:e4:9e:c1:b0:16:aa:0f:5f:25:ab:cb:fa:bc:97:d0: 30:df:56:ce:b4:ca:e1:da:23:a6:9f:b2:9a:57:7d:4e:06:af: a0:13:6c:aa:36:bf:65:5d:b8:e2:7b:17:ac:4a:70:ca:bc:21: 1a:81:09:8c:f2:fe:42:4c:de:c2:a9:e1:48:c8:8f:d4:37:95: ac:e7:42:02:fe:bc:e4:d7:74:a4:c9:ff:c5:60:7d:28:44:62: 2a:d7:92:9f:eb:c4:3e:b7:3d:76:df:62:42:9c:8d:3c:01:eb: 64:f0:e1:6a:4d:32:7e:60:db:87:ea:fe:62:c8:5f:37:a8:32: c5:9b:ce:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBMzQxMTAvBgNVBAUTKEJDMTQ0OUVFOTc5MTExQUI3MEQ4REY5OERBQkE0RTI2 QkE2QkM2NUIwHhcNMjUwNjE0MjEzMjAxWhcNMjUwNjIxMjEzMjAxWjAYMRYwFAYD VQQDEw02ODRkZWE1MS05ZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtj3VS6M8zdmUP7kE5MWbaVV5xsMtur3jVaTJ2szMH6XHpWfDNT9gP0V3+cRr CBfZQXdv5jKdmCajo1QdZ0eUDmla2PVu3JWp92s0a/w+H0f+/r7zul2+S5Dje+eb r706rfrgqWjW1Whru+7od5zUIG2EIspFrfJZ8dUmGDSPp9nzo1QO6grjcDmvdo1H +zbiNjg67gKrEeWUxMxC/Ph/4qbAnfTiT0Ulo5rsh1R/hVRKWDt960i887JJfjmi KMePZ/B7ujF8wqKXkb34yjy6Hhiw7kZQwDvlE67fjxgaPxJZGL1RVscuha+2prdX s+Rls58XJEbX+28t82jUnHg0BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIk7Z6gb icXDxMDCpW1Ba7ti5NWzMB8GA1UdIwQYMBaAFLwUSe6XkRGrcNjfmNq6Tia6a8Zb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0EzNC82RkFBMzY3ODMz QjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVhdHcyTi1ZMnJwT0pycHJ4 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCUko3cGVSRWF0dzJOLVkycnBPSnJwcnhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0EzNC82RkFBMzY3ODMzQjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVh dHcyTi1ZMnJwT0pycHJ4bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjBJuVgAMx7DG8HjluWH43dvIK4pghJRho/pn6dB58SjSlEtYcdXYC 20HWgCm4o5gjiydN6syrPxp4uqivLLghvxvrTV/zJrpSuEicRa/ewh88az4qoe3D xRfsb7MCcKugAIaDU8wuTBNIEvIf98DlqljhYLCzOty8OEN7n9OLGj7knsGwFqoP XyWry/q8l9Aw31bOtMrh2iOmn7KaV31OBq+gE2yqNr9lXbjiexesSnDKvCEagQmM 8v5CTN7CqeFIyI/UN5Ws50IC/rzk13Skyf/FYH0oRGIq15Kf68Q+tz1232JCnI08 Aetk8OFqTTJ+YNuH6v5iyF83qDLFm87z -----END CERTIFICATE-----Generated at Sun Jun 15 09:33:23 2025 by rpki-client