$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: omCKk0+I43Y3RZo15zwSekUo8jPs5GDXoM8DuPzM8No= Subject key identifier: B2:EF:CF:D8:62:95:4D:3B:73:68:E9:AE:70:EA:59:26:CB:DD:34:E0 Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: 0143 Signing time: Tue 17 Jun 2025 03:23:10 +0000 Manifest this update: Tue 17 Jun 2025 03:23:10 +0000 Manifest next update: Tue 24 Jun 2025 03:23:10 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: nxuu/fZ8Z3hKLmXy81cRddct08qG3iU0s0veGOW94p4=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: DaoJhbsGXkUC42pkhjpzJhDA/mxo+1TSGX1zlEEQkMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:23:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: Jun 17 03:23:10 2025 GMT Not After : Jun 24 03:23:10 2025 GMT Subject: CN=6850df9e-b78b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:03:95:67:a7:53:87:02:7f:39:02:c3:10:3c: 0f:79:f9:f4:43:f8:2e:3a:87:7e:ef:5d:c4:dc:ef: fc:77:0d:48:a5:1c:6a:04:09:a5:56:6f:94:48:71: b4:3e:3e:7c:ae:61:4a:93:a2:9a:94:b9:5e:14:14: 1f:01:52:64:97:4c:a5:f0:d9:b1:6d:fa:f7:37:ad: 70:a3:6d:94:42:48:cf:a2:24:ce:06:41:70:9a:6e: 45:2e:b3:0b:62:30:a9:d0:14:e8:01:9d:e1:4b:55: b9:ae:7a:f0:d4:b2:db:24:59:b4:84:96:1a:75:53: 87:61:92:a4:4a:a1:a2:13:ba:fd:21:69:e4:4a:54: a9:be:69:36:4b:16:56:17:5a:1c:43:ea:f8:5f:2b: 07:6c:f7:38:15:45:6b:dc:18:d4:5a:fa:e7:6f:00: 13:54:94:eb:9e:72:c9:34:c6:ce:a8:24:1b:70:df: cf:4f:45:de:04:fe:b6:22:e3:3a:c5:f3:9d:b9:99: a5:ef:6d:03:7a:47:e0:7c:77:d5:86:34:66:a6:72: 92:0d:93:03:95:d8:a0:ed:61:ac:cd:24:27:07:02: 53:6a:e3:f0:ca:5a:28:8d:6e:23:97:d1:8f:69:6e: 6a:93:52:24:b5:da:23:bf:69:09:74:92:bd:6b:1a: d0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:EF:CF:D8:62:95:4D:3B:73:68:E9:AE:70:EA:59:26:CB:DD:34:E0 X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c4:20:ec:bc:0a:86:30:fb:8f:12:7a:28:a5:cd:83:b9:d0: ca:21:66:f5:ac:17:18:4c:bb:0a:f3:b7:a4:d0:54:05:06:bc: ae:83:d1:76:e6:25:8d:dd:00:21:f9:9a:0d:a5:2e:0a:ac:be: 37:e3:cc:22:9c:b0:a1:c7:0d:1a:34:55:ea:62:59:a4:76:d2: cb:36:49:37:82:a8:ec:48:1d:aa:30:f6:0e:5d:e2:9f:e7:6a: b3:97:d0:fd:8c:37:e9:92:0d:63:ec:2e:7c:c8:25:6f:64:41: 29:59:3c:d0:9e:90:b3:90:0e:ec:eb:32:0a:8d:3b:6a:18:7e: 69:88:df:0d:a7:54:e3:78:06:9b:f8:a5:70:c0:8c:20:7f:2c: 64:73:7c:e1:c9:1f:60:45:90:6c:00:a4:2c:b0:4b:88:14:a9: 7a:b4:22:63:c0:93:90:1d:4c:bb:b6:21:e1:2b:98:67:43:53: 5a:12:9a:8b:53:b5:fc:ef:a6:29:51:43:e9:a8:f0:66:e4:d2: a5:63:94:f5:a9:03:12:89:73:65:92:7b:2b:f1:53:02:02:39: 97:9a:0c:0a:90:0b:bd:69:a6:cc:fa:c2:1b:4a:d8:6b:3d:21: 4b:fc:8a:4d:67:14:62:22:5b:16:b8:44:b0:bb:5a:e6:92:28: f4:f6:36:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjUwNjE3MDMyMzEwWhcNMjUwNjI0MDMyMzEwWjAYMRYwFAYD VQQDEw02ODUwZGY5ZS1iNzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AOVZ6dThwJ/OQLDEDwPefn0Q/guOod+713E3O/8dw1IpRxqBAmlVm+USHG0 Pj58rmFKk6KalLleFBQfAVJkl0yl8Nmxbfr3N61wo22UQkjPoiTOBkFwmm5FLrML YjCp0BToAZ3hS1W5rnrw1LLbJFm0hJYadVOHYZKkSqGiE7r9IWnkSlSpvmk2SxZW F1ocQ+r4XysHbPc4FUVr3BjUWvrnbwATVJTrnnLJNMbOqCQbcN/PT0XeBP62IuM6 xfOduZml720DekfgfHfVhjRmpnKSDZMDldig7WGszSQnBwJTauPwyloojW4jl9GP aW5qk1Iktdojv2kJdJK9axrQeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLvz9hi lU07c2jprnDqWSbL3TTgMB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR MUpkdmJpbGhFN3J5S296MTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaxCDsvAqGMPuPEnoopc2DudDKIWb1rBcYTLsK87ek0FQFBryug9F2 5iWN3QAh+ZoNpS4KrL4348winLChxw0aNFXqYlmkdtLLNkk3gqjsSB2qMPYOXeKf 52qzl9D9jDfpkg1j7C58yCVvZEEpWTzQnpCzkA7s6zIKjTtqGH5piN8Np1TjeAab +KVwwIwgfyxkc3zhyR9gRZBsAKQssEuIFKl6tCJjwJOQHUy7tiHhK5hnQ1NaEpqL U7X876YpUUPpqPBm5NKlY5T1qQMSiXNlknsr8VMCAjmXmgwKkAu9aabM+sIbSthr PSFL/IpNZxRiIlsWuESwu1rmkij09jZP -----END CERTIFICATE-----Generated at Wed Jun 18 11:53:27 2025 by rpki-client