$ rpki-client -vvf rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft File: vkY_wZGbQUKyOCgTgn-3FtbukoM.mft (raw, json) Hash identifier: bgFSv7GlAe4E2/TQH6iVmgcgBeuE7MmdnAkjL5ieRvI= Subject key identifier: 80:CD:C9:E8:D7:7A:99:42:78:63:3C:0B:2D:78:00:E2:DD:47:E9:EE Authority key identifier: BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 Certificate issuer: /CN=A91D40BF/serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Certificate serial: 0783 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft Manifest number: 0774 Signing time: Fri 08 Aug 2025 21:55:49 +0000 Manifest this update: Fri 08 Aug 2025 21:55:49 +0000 Manifest next update: Fri 15 Aug 2025 21:55:49 +0000 Files and hashes: 1: vkY_wZGbQUKyOCgTgn-3FtbukoM.crl (hash: btBztr1eX+2BoIDqlGMyWy4jiVaSD1PmvhsHLhGRWXI=) 2: 28543AA0BABA11EB8A51C234C4F9AE02.roa (hash: tLbuywK1hQsCi3a1AqRQB3esx6wP54LrqFgdAXcaBdM=) 3: ACEBC29CC5B911EBB41FAF2DC4F9AE02.roa (hash: XOt7bB+UgZTY8Thh+DvUt1JxAIDEDKn5j8X2t+ws97c=) 4: 2798B9A6BABA11EB8A51C234C4F9AE02.roa (hash: +zcjX2imATb1GbMG2fycsIcaiWvdU6/+K/wkiamqX6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1923 (0x783) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D40BF, serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Validity Not Before: Aug 8 21:55:49 2025 GMT Not After : Aug 15 21:55:49 2025 GMT Subject: CN=68967265-6f05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:02:f7:c5:88:59:e9:5f:33:d1:9a:b3:c8:39: 27:63:e5:fc:d1:0e:31:02:a6:97:01:62:e3:34:86: d0:b3:1f:04:96:fb:c1:2c:f3:91:d6:f7:18:33:ef: a0:ea:64:81:f9:ac:ec:4f:29:75:ae:9f:6f:27:cc: 47:06:e6:03:2c:ec:41:3a:ae:94:76:a3:a6:cc:cf: 03:1c:a9:7a:ad:88:4b:1c:39:9a:c8:a6:b7:b3:22: 56:78:61:08:db:c9:ce:46:28:c3:ac:8b:28:da:76: 42:ad:bb:a7:30:cc:74:81:b6:34:22:d0:84:a3:bb: b3:2d:a1:7c:0e:00:61:08:1d:ac:fe:ee:d0:1a:aa: 8d:78:be:37:f4:a4:45:e5:c9:c9:01:23:61:48:0c: 98:f8:dd:a5:0d:d3:ac:0e:1c:9b:be:cc:f9:7c:bc: 01:86:cb:c4:b6:82:77:37:9f:a7:69:09:5a:1c:a0: 6c:ba:72:c2:b3:71:b4:cb:ba:f1:70:ea:3f:c8:5a: b6:44:37:4e:25:cd:47:12:32:e5:b4:8a:2e:28:61: ac:54:75:64:7c:b1:7c:09:69:bf:11:9f:b0:8d:9d: 96:a2:b1:f6:ab:dc:1e:70:7a:a9:3c:23:10:3f:c1: 64:1f:47:2e:71:bd:77:ea:18:78:94:4e:ec:79:17: 02:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:CD:C9:E8:D7:7A:99:42:78:63:3C:0B:2D:78:00:E2:DD:47:E9:EE X509v3 Authority Key Identifier: keyid:BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:b8:a7:5b:1c:91:97:ae:34:ac:8e:71:a0:f5:96:16:3b:05: 54:69:2e:b8:cf:18:91:e6:cd:0f:04:25:a3:ed:25:58:34:ed: 8b:ec:8b:d5:0f:93:31:53:d3:9a:b4:f7:3d:1c:7b:07:29:c6: 66:49:6d:08:bb:5a:64:8d:c8:7f:11:eb:0f:8a:97:4c:fb:ee: d8:7c:af:ff:61:f0:26:74:c6:20:ed:60:d6:14:00:0a:dd:75: 2a:fe:c9:1c:1d:dc:84:32:b8:3d:b3:76:ea:e9:4f:3b:9f:3b: 89:db:3e:b0:58:b6:46:d1:b7:2f:0d:3d:97:aa:ae:ee:de:c6: 60:a1:e8:6f:98:b3:60:10:40:da:90:34:7c:d2:20:a6:7f:40: e5:b6:10:55:24:e8:ae:5a:58:84:99:10:a8:45:b0:57:f3:93: 7d:d9:23:84:73:ec:fd:df:c7:09:d1:4a:1b:0a:a9:13:ef:06: fb:fd:bf:54:0e:b2:dc:7f:06:cd:c8:a0:9d:d9:98:9f:a0:62: 6f:e7:6e:d6:8c:cf:25:c1:84:81:bd:47:f6:cc:1e:00:b1:78: a4:88:f8:2d:7d:9a:ae:bf:cf:f8:5b:7d:99:0b:8d:f6:3e:74: 6e:dd:a2:39:dd:7e:f7:23:4f:bf:b0:5d:f5:7c:d3:fe:0b:13: 21:ff:56:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQwQkYxMTAvBgNVBAUTKEJFNDYzRkMxOTE5QjQxNDJCMjM4MjgxMzgyN0ZCNzE2 RDZFRTkyODMwHhcNMjUwODA4MjE1NTQ5WhcNMjUwODE1MjE1NTQ5WjAYMRYwFAYD VQQDEw02ODk2NzI2NS02ZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQL3xYhZ6V8z0ZqzyDknY+X80Q4xAqaXAWLjNIbQsx8ElvvBLPOR1vcYM++g 6mSB+azsTyl1rp9vJ8xHBuYDLOxBOq6UdqOmzM8DHKl6rYhLHDmayKa3syJWeGEI 28nORijDrIso2nZCrbunMMx0gbY0ItCEo7uzLaF8DgBhCB2s/u7QGqqNeL439KRF 5cnJASNhSAyY+N2lDdOsDhybvsz5fLwBhsvEtoJ3N5+naQlaHKBsunLCs3G0y7rx cOo/yFq2RDdOJc1HEjLltIouKGGsVHVkfLF8CWm/EZ+wjZ2WorH2q9wecHqpPCMQ P8FkH0cucb136hh4lE7seRcCgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDNyejX eplCeGM8Cy14AOLdR+nuMB8GA1UdIwQYMBaAFL5GP8GRm0FCsjgoE4J/txbW7pKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDBCRi8yN0I3QTI4NDI0 QzAxMUVCQjYyQjQzODdDNEY5QUUwMi92a1lfd1pHYlFVS3lPQ2dUZ24tM0Z0YnVr b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZrWV93WkdiUVVLeU9DZ1Rnbi0zRnRidWtvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDBCRi8yN0I3QTI4NDI0QzAxMUVCQjYyQjQzODdDNEY5QUUwMi92a1lfd1pHYlFV S3lPQ2dUZ24tM0Z0YnVrb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+uKdbHJGXrjSsjnGg9ZYWOwVUaS64zxiR5s0PBCWj7SVYNO2L7IvV D5MxU9OatPc9HHsHKcZmSW0Iu1pkjch/EesPipdM++7YfK//YfAmdMYg7WDWFAAK 3XUq/skcHdyEMrg9s3bq6U87nzuJ2z6wWLZG0bcvDT2Xqq7u3sZgoehvmLNgEEDa kDR80iCmf0DlthBVJOiuWliEmRCoRbBX85N92SOEc+z938cJ0UobCqkT7wb7/b9U DrLcfwbNyKCd2ZifoGJv527WjM8lwYSBvUf2zB4AsXikiPgtfZquv8/4W32ZC432 PnRu3aI53X73I0+/sF31fNP+CxMh/1aJ -----END CERTIFICATE-----Generated at Sun Aug 10 18:47:12 2025 by rpki-client