$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: khrCarTBMygcQOsVT/Ca/UyAgdieGIZEqoFIsNxTvs4= Subject key identifier: 6A:12:50:9C:A8:32:BE:17:FD:E6:81:22:10:1E:01:05:4D:2F:C3:1D Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: 015F Signing time: Mon 11 Aug 2025 04:09:14 +0000 Manifest this update: Mon 11 Aug 2025 04:09:13 +0000 Manifest next update: Mon 18 Aug 2025 04:09:13 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: t3sKHz8lGknEaZPq1/higPYqK38+tyMmUYYF9YE14Z4=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: DaoJhbsGXkUC42pkhjpzJhDA/mxo+1TSGX1zlEEQkMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: Aug 11 04:09:13 2025 GMT Not After : Aug 18 04:09:13 2025 GMT Subject: CN=68996cea-53d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c3:f8:93:d4:04:f9:88:d5:d0:9e:25:3f:6a: d1:61:91:88:e1:d2:2e:b3:24:22:64:c5:57:b4:19: 19:74:55:98:39:23:d9:e4:06:3d:7e:a0:01:dd:b7: e1:66:1f:20:35:e5:af:6f:7d:02:87:b5:b7:43:0f: ed:5a:49:16:a5:1a:75:82:90:5a:8f:cc:25:7a:f4: 50:bc:b3:78:56:6d:50:e0:64:61:5c:d5:10:98:52: 30:e9:e7:24:06:34:8a:38:9c:70:57:90:cc:a5:2f: cc:82:86:6b:bc:cc:77:c8:67:6f:c0:d9:39:7f:f9: 5e:07:b8:d4:8f:65:7b:cf:93:2c:00:2d:ff:c8:07: db:9b:14:c0:bd:70:bb:c7:f6:48:76:9a:e8:6b:89: c8:9d:6b:d9:8b:c3:36:fb:2c:6a:7a:ea:c6:7f:f8: b2:bc:29:9d:09:ee:8c:33:02:8c:e9:98:91:10:e1: d4:9e:8b:14:ec:34:d5:a4:34:fb:ad:ba:35:43:96: f1:23:cb:b2:cf:72:d4:c1:ed:a3:7e:d6:dd:5e:5e: fc:07:cd:c5:d8:1b:71:d3:63:29:c5:69:2c:7d:71: f9:3b:1d:21:ec:ed:27:48:58:61:6b:5e:86:fe:de: 57:93:09:c1:66:1e:fc:e9:53:a5:bc:87:b3:e1:fc: a0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:12:50:9C:A8:32:BE:17:FD:E6:81:22:10:1E:01:05:4D:2F:C3:1D X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:8e:7d:30:34:06:cb:23:90:f8:cc:52:d3:d5:a8:5c:4a:fb: 9d:3f:35:ad:07:5c:d4:6d:46:63:e4:c3:8e:e4:c6:84:e1:5d: 3e:27:a4:08:df:99:ed:81:be:04:5f:02:83:6c:49:52:4b:13: 92:63:14:a6:cf:47:6a:d5:98:d0:25:53:ab:17:60:52:12:b7: 01:ce:4c:d8:44:f5:32:b9:28:70:76:d6:df:8b:60:3f:ce:31: b8:e8:0f:5e:bb:e7:c6:d8:f5:d0:66:2e:01:91:f3:cf:97:e8: 4d:7c:fb:5f:e6:14:f2:d0:e8:75:dd:bc:b4:de:47:96:a2:97: cf:7b:18:c8:c2:c4:44:9a:1e:19:e8:93:6b:91:c8:65:ff:be: e3:19:be:15:93:92:60:97:04:b5:ff:1e:cb:e8:81:cf:a3:5b: 6c:db:f8:2e:86:b6:60:4b:a9:07:1b:ad:dc:4e:2e:cd:16:5f: 23:92:b0:86:12:33:91:16:bb:ba:31:e8:58:3e:e6:86:fd:05: 63:53:fb:f6:fb:fc:06:a6:e5:39:68:ba:bb:e0:bf:38:04:15: 01:c6:c7:bf:0c:03:3a:e5:f9:e9:02:3a:d4:92:41:59:de:bd: 88:64:8b:3d:bf:3f:a3:84:ec:ab:e6:88:2d:26:51:da:e5:f2: 00:83:21:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjUwODExMDQwOTEzWhcNMjUwODE4MDQwOTEzWjAYMRYwFAYD VQQDEw02ODk5NmNlYS01M2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsP4k9QE+YjV0J4lP2rRYZGI4dIusyQiZMVXtBkZdFWYOSPZ5AY9fqAB3bfh Zh8gNeWvb30Ch7W3Qw/tWkkWpRp1gpBaj8wlevRQvLN4Vm1Q4GRhXNUQmFIw6eck BjSKOJxwV5DMpS/MgoZrvMx3yGdvwNk5f/leB7jUj2V7z5MsAC3/yAfbmxTAvXC7 x/ZIdproa4nInWvZi8M2+yxqeurGf/iyvCmdCe6MMwKM6ZiREOHUnosU7DTVpDT7 rbo1Q5bxI8uyz3LUwe2jftbdXl78B83F2Btx02MpxWksfXH5Ox0h7O0nSFhha16G /t5XkwnBZh786VOlvIez4fygmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGoSUJyo Mr4X/eaBIhAeAQVNL8MdMB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR MUpkdmJpbGhFN3J5S296MTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8jn0wNAbLI5D4zFLT1ahcSvudPzWtB1zUbUZj5MOO5MaE4V0+J6QI 35ntgb4EXwKDbElSSxOSYxSmz0dq1ZjQJVOrF2BSErcBzkzYRPUyuShwdtbfi2A/ zjG46A9eu+fG2PXQZi4BkfPPl+hNfPtf5hTy0Oh13by03keWopfPexjIwsREmh4Z 6JNrkchl/77jGb4Vk5JglwS1/x7L6IHPo1ts2/guhrZgS6kHG63cTi7NFl8jkrCG EjORFru6MehYPuaG/QVjU/v2+/wGpuU5aLq74L84BBUBxse/DAM65fnpAjrUkkFZ 3r2IZIs9vz+jhOyr5ogtJlHa5fIAgyFz -----END CERTIFICATE-----Generated at Mon Aug 11 10:09:20 2025 by rpki-client