$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: etNoA6Sq/fi2RBfrWBp6IAGodgqz04Kz8/Yon0M5rGE= Subject key identifier: 3C:1C:C3:F7:62:34:70:4D:D1:7E:69:50:05:3D:AA:A8:83:28:07:57 Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: 01A8 Signing time: Tue 05 Aug 2025 03:45:36 +0000 Manifest this update: Tue 05 Aug 2025 03:45:36 +0000 Manifest next update: Tue 12 Aug 2025 03:45:36 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: BiO1twy7ZRT74FMMaDZ9pDbSsmS4BPKQPogmJJ5aybo=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: NxTIAEmzVEkhnPtaZCQQUJAnARHilUKNCFgj1AKD+gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: Aug 5 03:45:36 2025 GMT Not After : Aug 12 03:45:36 2025 GMT Subject: CN=68917e60-9b4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ef:68:c0:81:3c:a9:fc:28:55:55:20:8d:26: 8e:ca:5e:dd:67:50:74:49:f7:05:7c:ac:4d:1d:1f: 1f:71:3e:34:e0:77:b0:b6:77:f6:50:1a:99:c9:f3: 6e:fa:55:23:6b:aa:8f:0f:a2:e6:45:29:e0:0e:43: 47:28:cf:8f:b7:7b:e9:d8:9b:93:42:89:4d:84:3c: 06:6d:c0:23:16:d3:76:eb:72:8f:82:19:76:a5:2a: a6:df:02:c8:2f:5c:fc:04:35:ee:23:b2:f5:29:7f: b5:9b:44:0e:7f:39:bd:df:f4:11:4d:2e:68:70:23: e5:2b:c3:07:b5:95:99:bc:a7:cb:87:c8:a5:f1:f9: 20:50:f3:f1:2e:95:94:6e:59:c0:3e:73:f6:5d:68: 77:3e:bb:1a:e0:a3:95:cd:56:07:bd:52:45:09:97: 6f:b6:5e:ee:3f:92:02:ef:0b:e1:70:fb:a0:c2:31: 17:28:15:4e:94:08:62:27:a9:fe:8b:52:08:d4:15: 55:ed:ae:00:f5:41:ab:8b:ed:f0:c3:15:70:13:ad: c2:65:75:d6:ce:9a:5c:52:3a:44:d5:24:a4:9d:70: 26:3a:dc:e3:7c:ec:1b:f5:2c:b5:10:33:e5:bd:5d: 79:ca:28:10:9f:0f:06:49:b7:fe:f7:86:d1:03:d3: 6d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:1C:C3:F7:62:34:70:4D:D1:7E:69:50:05:3D:AA:A8:83:28:07:57 X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:17:14:72:97:de:91:2f:3b:e5:92:3e:98:a2:6c:88:d2:eb: 29:84:c4:7e:29:c4:c3:f6:c6:8e:c3:97:2f:c2:df:88:04:3d: 60:b3:21:d0:2f:54:45:09:31:bc:b8:af:0b:80:31:59:8b:59: 68:78:2c:f7:f7:c6:ae:43:e3:43:82:ee:22:1b:66:fc:08:93: 69:2b:da:7a:11:01:1b:32:06:76:33:ab:18:5a:bb:a8:7c:bc: 81:4c:89:85:94:1b:e4:67:15:1c:c5:b7:f9:ff:a8:a9:48:93: fe:cc:ca:93:a7:97:26:77:03:1f:f8:c4:c6:fc:e4:0c:1f:8e: d9:3a:43:d6:c2:fb:40:67:bd:20:92:93:15:c0:3c:22:0e:c9: 96:a3:f3:26:41:e4:0f:3e:7d:10:be:08:02:f4:b2:3d:28:b4: f4:c6:5e:bb:84:09:41:a5:25:37:c8:ba:55:1e:e0:e8:43:4d: 03:73:46:56:58:f4:bd:ee:f2:6a:27:11:27:8f:dd:31:38:39: 0c:9d:c8:ac:e4:a7:88:fd:42:28:64:2a:8b:4a:46:02:e8:6a: 41:ee:bc:9a:7b:f1:77:df:d2:f7:58:b5:6a:d7:81:fa:27:3d: 66:41:82:bb:49:5c:b7:9e:51:0e:3a:74:c2:80:7a:0f:a2:f7: 87:b6:84:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUwODA1MDM0NTM2WhcNMjUwODEyMDM0NTM2WjAYMRYwFAYD VQQDEw02ODkxN2U2MC05YjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqu9owIE8qfwoVVUgjSaOyl7dZ1B0SfcFfKxNHR8fcT404Hewtnf2UBqZyfNu +lUja6qPD6LmRSngDkNHKM+Pt3vp2JuTQolNhDwGbcAjFtN263KPghl2pSqm3wLI L1z8BDXuI7L1KX+1m0QOfzm93/QRTS5ocCPlK8MHtZWZvKfLh8il8fkgUPPxLpWU blnAPnP2XWh3Prsa4KOVzVYHvVJFCZdvtl7uP5IC7wvhcPugwjEXKBVOlAhiJ6n+ i1II1BVV7a4A9UGri+3wwxVwE63CZXXWzppcUjpE1SSknXAmOtzjfOwb9Sy1EDPl vV15yigQnw8GSbf+94bRA9NtYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwcw/di NHBN0X5pUAU9qqiDKAdXMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUFxRyl96RLzvlkj6YomyI0usphMR+KcTD9saOw5cvwt+IBD1gsyHQ L1RFCTG8uK8LgDFZi1loeCz398auQ+NDgu4iG2b8CJNpK9p6EQEbMgZ2M6sYWruo fLyBTImFlBvkZxUcxbf5/6ipSJP+zMqTp5cmdwMf+MTG/OQMH47ZOkPWwvtAZ70g kpMVwDwiDsmWo/MmQeQPPn0QvggC9LI9KLT0xl67hAlBpSU3yLpVHuDoQ00Dc0ZW WPS97vJqJxEnj90xODkMncis5KeI/UIoZCqLSkYC6GpB7ryae/F339L3WLVq14H6 Jz1mQYK7SVy3nlEOOnTCgHoPoveHtoTd -----END CERTIFICATE-----Generated at Wed Aug 6 05:50:31 2025 by rpki-client