$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft File: VU9dfGbsUOhKiru6mWgXfkcp02Y.mft (raw, json) Hash identifier: KQJa3nkxRZJ9MeN7nnTkdvSRkeBLtF5sTe/+UXHlxMY= Subject key identifier: 64:48:5C:D7:08:48:34:09:01:DC:AE:C6:0D:60:FD:03:73:4F:63:55 Authority key identifier: 55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 Certificate issuer: /CN=A91E8BE3/serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft Manifest number: 79 Signing time: Sat 09 Aug 2025 07:16:12 +0000 Manifest this update: Sat 09 Aug 2025 07:16:11 +0000 Manifest next update: Sat 16 Aug 2025 07:16:11 +0000 Files and hashes: 1: VU9dfGbsUOhKiru6mWgXfkcp02Y.crl (hash: Ci4bDXVELy7ylHKvOGtOV0eFwnX2/hKYfwkrg5iijkI=) 2: 0AC098846EDA11F08D404571C4F9AE02.roa (hash: XUaCHo7ISEfVt8zg4dz4qiHM8RTC6XTgDTg25gi/BRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Validity Not Before: Aug 9 07:16:11 2025 GMT Not After : Aug 16 07:16:11 2025 GMT Subject: CN=6896f5bb-e602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:10:88:5e:ba:15:9f:31:e8:9b:42:5b:4a:21: 54:d2:01:d4:12:53:f3:a6:dc:88:61:7c:19:6c:b0: eb:75:24:84:ba:6f:46:04:c5:34:86:bd:67:8d:16: 24:18:57:bf:77:73:56:7a:7a:b9:99:72:63:7a:16: 96:5c:e2:4b:15:e2:77:7b:86:cc:5a:e2:5b:da:d5: 0e:a6:5a:f6:b2:93:b4:46:e3:5d:e4:04:ca:2b:05: d4:07:c2:ad:c9:8c:4b:f4:eb:ef:f3:bc:e1:43:f6: 95:b0:b8:53:6b:7a:10:77:7d:bc:17:60:21:96:ec: 72:6e:89:51:03:ef:e3:85:9e:d8:f9:a8:d9:5f:d3: ff:76:01:7f:16:f6:2c:4d:e1:48:04:b6:2c:1a:7e: 44:c5:6f:f9:68:94:0a:d5:ed:72:28:87:fc:5c:41: f1:2a:1b:80:b9:b3:b7:29:23:65:39:4a:da:e2:e7: 0c:0c:d0:96:a3:52:0e:35:a1:94:90:c7:25:40:3d: 3d:d1:01:e0:a6:25:9c:c9:43:17:90:0f:87:eb:b4: a8:3d:36:25:a0:2a:9e:de:f6:ac:a1:e5:02:d6:03: d1:c8:4f:44:aa:29:c2:58:f9:75:51:2f:92:af:76: 5f:8d:fa:4b:c2:b6:8e:af:4b:4b:70:19:40:42:07: 2a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:48:5C:D7:08:48:34:09:01:DC:AE:C6:0D:60:FD:03:73:4F:63:55 X509v3 Authority Key Identifier: keyid:55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:b6:6e:24:16:5f:fc:47:4d:02:f4:85:39:61:cb:ca:e7:e1: fd:3e:ba:84:9e:e4:01:d4:b3:5e:42:a0:fb:4e:8a:14:22:13: 8b:15:8d:28:83:13:f3:5c:4c:6d:99:63:50:a3:14:66:0d:70: 19:1b:10:27:94:d7:79:d7:9b:1c:f8:f9:de:60:f5:9a:9c:67: 05:3e:db:1c:6c:3b:35:e9:be:f3:a6:fc:a0:e2:55:84:86:5d: db:74:73:7d:47:40:b7:33:b0:ca:f2:93:8d:d0:ab:a0:95:f6: 60:96:e3:dd:eb:af:39:c0:d8:f6:9f:14:dc:4e:4a:72:e9:e7: 85:6b:67:9c:1d:eb:54:90:fe:ff:48:3b:fa:e1:8d:9f:df:63: 9f:42:f8:48:97:ef:63:c2:62:37:da:36:99:70:77:e0:08:6e: 0c:98:8d:1b:02:5b:cc:8d:0a:63:8d:98:18:82:a7:63:6a:f8: f4:e4:1a:91:d3:74:a6:82:e3:02:8b:45:f4:a3:06:bb:b5:26: 6f:ae:0c:28:c2:13:88:a1:dd:5c:2e:d0:d1:b9:65:5c:53:35: f2:43:87:02:6a:f8:29:ff:58:f8:3a:5f:3a:3a:d8:11:71:a6: 08:6b:2c:f7:0d:fd:15:70:f8:ee:d2:94:5e:c8:39:70:f2:c4: 73:f7:44:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEJFMzExMC8GA1UEBRMoNTU0RjVEN0M2NkVDNTBFODRBOEFCQkJBOTk2ODE3N0U0 NzI5RDM2NjAeFw0yNTA4MDkwNzE2MTFaFw0yNTA4MTYwNzE2MTFaMBgxFjAUBgNV BAMTDTY4OTZmNWJiLWU2MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyEIheuhWfMeibQltKIVTSAdQSU/Om3IhhfBlssOt1JIS6b0YExTSGvWeNFiQY V793c1Z6ermZcmN6FpZc4ksV4nd7hsxa4lva1Q6mWvayk7RG413kBMorBdQHwq3J jEv06+/zvOFD9pWwuFNrehB3fbwXYCGW7HJuiVED7+OFntj5qNlf0/92AX8W9ixN 4UgEtiwafkTFb/lolArV7XIoh/xcQfEqG4C5s7cpI2U5Stri5wwM0JajUg41oZSQ xyVAPT3RAeCmJZzJQxeQD4frtKg9NiWgKp7e9qyh5QLWA9HIT0SqKcJY+XVRL5Kv dl+N+kvCto6vS0twGUBCByqTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZEhc1whI NAkB3K7GDWD9A3NPY1UwHwYDVR0jBBgwFoAUVU9dfGbsUOhKiru6mWgXfkcp02Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QkUzL0VFRUY3RkVBQkY5 QzExRUY5REE4ODI4MkM0RjlBRTAyL1ZVOWRmR2JzVU9oS2lydTZtV2dYZmtjcDAy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVlU5ZGZHYnNVT2hLaXJ1Nm1XZ1hma2NwMDJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 QkUzL0VFRUY3RkVBQkY5QzExRUY5REE4ODI4MkM0RjlBRTAyL1ZVOWRmR2JzVU9o S2lydTZtV2dYZmtjcDAyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACm2biQWX/xHTQL0hTlhy8rn4f0+uoSe5AHUs15CoPtOihQiE4sVjSiD E/NcTG2ZY1CjFGYNcBkbECeU13nXmxz4+d5g9ZqcZwU+2xxsOzXpvvOm/KDiVYSG Xdt0c31HQLczsMryk43Qq6CV9mCW493rrznA2PafFNxOSnLp54VrZ5wd61SQ/v9I O/rhjZ/fY59C+EiX72PCYjfaNplwd+AIbgyYjRsCW8yNCmONmBiCp2Nq+PTkGpHT dKaC4wKLRfSjBru1Jm+uDCjCE4ih3Vwu0NG5ZVxTNfJDhwJq+Cn/WPg6Xzo62BFx pghrLPcN/RVw+O7SlF7IOXDyxHP3RCQ= -----END CERTIFICATE-----Generated at Sat Aug 9 23:12:55 2025 by rpki-client