$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft File: vvMhsD2CRd537IDdAzG_uo0IWdg.mft (raw, json) Hash identifier: /Qakvw/BWhnHc1ckVJfMLsOItuu5L1f6iuHKU7goXaE= Subject key identifier: 29:E3:D4:2C:2A:78:D2:0F:4D:B6:5F:66:D4:A0:60:B4:22:98:DB:FC Authority key identifier: BE:F3:21:B0:3D:82:45:DE:77:EC:80:DD:03:31:BF:BA:8D:08:59:D8 Certificate issuer: /CN=A91EE8AC/serialNumber=BEF321B03D8245DE77EC80DD0331BFBA8D0859D8 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft Manifest number: 02F4 Signing time: Tue 05 Aug 2025 03:01:09 +0000 Manifest this update: Tue 05 Aug 2025 03:01:08 +0000 Manifest next update: Tue 12 Aug 2025 03:01:08 +0000 Files and hashes: 1: vvMhsD2CRd537IDdAzG_uo0IWdg.crl (hash: etvjiuAWiUvDiBCgbnF4/XsvYUlqzqoU3s6VhczyxeE=) 2: 5F3C0F26EAEF11EE8CCDB375C4F9AE02.roa (hash: EkDqCio2js1GCiZ5bOCIRIXUo4hOnfBygQfaHup9LhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=BEF321B03D8245DE77EC80DD0331BFBA8D0859D8 Validity Not Before: Aug 5 03:01:08 2025 GMT Not After : Aug 12 03:01:08 2025 GMT Subject: CN=689173f4-3d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:de:d1:6c:27:39:10:73:54:aa:5c:2f:78:20: 86:a2:9d:0c:91:02:e7:85:a8:ba:b7:1b:c2:d4:1b: d6:8f:fe:f5:99:1e:c1:58:42:40:38:8a:ba:64:4c: ee:c1:ab:9e:30:82:3e:83:30:ce:27:ba:db:00:32: 26:45:ca:67:6e:01:70:8d:30:9a:ed:f2:02:d2:ba: 49:57:c5:25:94:ef:47:b6:9e:60:88:60:bb:de:d3: bc:09:13:3b:07:e6:46:f6:8f:6f:4f:3e:92:54:59: f5:79:32:e7:5f:b6:be:20:ac:a2:1f:1d:b5:45:1d: b3:13:1d:29:48:06:e6:13:bb:66:fb:00:2c:8a:1c: 50:50:87:94:60:fb:5c:d7:c3:01:6b:b2:70:69:45: 57:f1:96:66:89:97:32:20:f6:a4:60:18:f6:ec:42: 58:3f:f7:47:37:85:46:cd:2d:45:b8:53:65:b7:df: 7a:01:4d:48:98:87:07:2e:cc:58:a9:22:b3:29:c1: d0:4f:4a:d1:13:28:c9:e8:d2:27:46:a3:47:57:e3: ee:d5:80:34:df:7a:d7:98:be:07:d7:45:58:8f:52: 4a:98:10:14:24:c6:7e:4b:cb:2d:4a:7b:fb:c0:35: 64:e7:71:a1:0a:09:6c:d6:42:fd:7a:f7:84:51:fa: 45:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E3:D4:2C:2A:78:D2:0F:4D:B6:5F:66:D4:A0:60:B4:22:98:DB:FC X509v3 Authority Key Identifier: keyid:BE:F3:21:B0:3D:82:45:DE:77:EC:80:DD:03:31:BF:BA:8D:08:59:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:5e:29:4a:20:63:87:f7:26:56:e0:0f:b9:c6:f6:83:68:26: 63:f8:55:97:c5:76:e1:d1:81:5c:0b:1d:8f:b9:e6:6d:3a:f8: 39:63:95:45:7b:99:26:8f:53:d4:b8:8f:ea:4e:c7:20:b1:8e: 6e:ee:47:fd:c4:a8:6f:9f:a2:2f:4c:9e:03:8e:36:34:1e:76: f0:9c:8b:58:e3:79:4e:a0:99:3e:02:9c:32:f5:95:a6:af:30: e8:2e:a5:39:cb:97:e4:55:81:77:f9:25:e7:a4:49:35:1e:46: 32:86:ec:6e:3c:5f:53:15:ce:e9:e7:4b:52:ab:13:92:39:87: ba:c5:f1:bb:a7:11:5c:e9:4e:a0:2b:8e:89:8f:d3:af:8c:09: a0:3f:bc:5a:94:f7:d5:14:67:36:6f:d4:68:67:5a:9e:8d:de: ac:af:8b:43:69:cb:8b:8d:75:c8:e0:00:6a:c5:39:46:23:2f: d9:04:80:4f:5c:ba:5d:8f:67:28:c2:bc:b2:4e:35:5d:f5:89: e4:ae:e2:ae:39:96:c5:29:0d:04:ed:ab:d1:e1:f3:e0:f9:7b: 3f:98:5d:4c:16:f8:2d:b5:8f:fc:a6:b0:1d:70:9d:a3:6d:50: d9:3b:4f:c9:e0:6a:5d:8f:9c:91:d9:a7:b6:d6:ad:aa:af:21: 34:4d:69:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKEJFRjMyMUIwM0Q4MjQ1REU3N0VDODBERDAzMzFCRkJB OEQwODU5RDgwHhcNMjUwODA1MDMwMTA4WhcNMjUwODEyMDMwMTA4WjAYMRYwFAYD VQQDEw02ODkxNzNmNC0zZDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0t7RbCc5EHNUqlwveCCGop0MkQLnhai6txvC1BvWj/71mR7BWEJAOIq6ZEzu waueMII+gzDOJ7rbADImRcpnbgFwjTCa7fIC0rpJV8UllO9Htp5giGC73tO8CRM7 B+ZG9o9vTz6SVFn1eTLnX7a+IKyiHx21RR2zEx0pSAbmE7tm+wAsihxQUIeUYPtc 18MBa7JwaUVX8ZZmiZcyIPakYBj27EJYP/dHN4VGzS1FuFNlt996AU1ImIcHLsxY qSKzKcHQT0rREyjJ6NInRqNHV+Pu1YA033rXmL4H10VYj1JKmBAUJMZ+S8stSnv7 wDVk53GhCgls1kL9eveEUfpFfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnj1Cwq eNIPTbZfZtSgYLQimNv8MB8GA1UdIwQYMBaAFL7zIbA9gkXed+yA3QMxv7qNCFnY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi92dk1oc0QyQ1JkNTM3SURkQXpHX3VvMElX ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z2TWhzRDJDUmQ1MzdJRGRBekdfdW8wSVdkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi92dk1oc0QyQ1Jk NTM3SURkQXpHX3VvMElXZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjXilKIGOH9yZW4A+5xvaDaCZj+FWXxXbh0YFcCx2PueZtOvg5Y5VF e5kmj1PUuI/qTscgsY5u7kf9xKhvn6IvTJ4DjjY0HnbwnItY43lOoJk+Apwy9ZWm rzDoLqU5y5fkVYF3+SXnpEk1HkYyhuxuPF9TFc7p50tSqxOSOYe6xfG7pxFc6U6g K46Jj9OvjAmgP7xalPfVFGc2b9RoZ1qejd6sr4tDacuLjXXI4ABqxTlGIy/ZBIBP XLpdj2cowryyTjVd9YnkruKuOZbFKQ0E7avR4fPg+Xs/mF1MFvgttY/8prAdcJ2j bVDZO0/J4Gpdj5yR2ae21q2qryE0TWka -----END CERTIFICATE-----Generated at Wed Aug 6 14:06:24 2025 by rpki-client