$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft File: RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft (raw, json) Hash identifier: 9tC3mqTfqAn32WDVyhJSFOgAqrpyvCuieJUhbUtSH3Q= Subject key identifier: BA:CB:55:E1:A2:6F:3F:FB:5C:A2:D9:02:98:18:A4:4C:AB:03:29:F5 Authority key identifier: 44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D Certificate issuer: /CN=A91FF1CC/serialNumber=446FAF923BEBAF96357287FE250991C75491454D Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft Manifest number: 60 Signing time: Mon 11 Aug 2025 07:25:35 +0000 Manifest this update: Mon 11 Aug 2025 07:25:35 +0000 Manifest next update: Mon 18 Aug 2025 07:25:35 +0000 Files and hashes: 1: RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl (hash: RsulqHT+c/oNRdlwehTQ/UbKnUXjxhtWkXxlWGM4m5o=) 2: 1ED36EFC590C11F0913BCB35C4F9AE02.roa (hash: WTYmLvNpyq/A5Kbra5mtKRBFCjY1e4fS3rGmshvrNGY=) 3: B7E221E4024311F0BD990F64C4F9AE02.roa (hash: d1zImNClufU6mQa0qsoJOx/6gPAzww6pSPXhwifVLOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF1CC, serialNumber=446FAF923BEBAF96357287FE250991C75491454D Validity Not Before: Aug 11 07:25:35 2025 GMT Not After : Aug 18 07:25:35 2025 GMT Subject: CN=68999aef-e293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8b:87:b0:5c:72:59:8a:a8:77:9b:de:0f:24: 22:08:16:0d:08:83:5f:16:9e:b1:f7:8e:fe:b3:d0: 1e:5a:34:20:db:99:e0:3b:4b:35:47:5b:8f:2f:e1: cb:03:0c:2b:15:e6:18:06:89:d4:bf:97:39:92:9c: fb:5b:63:f5:4f:7a:ca:5a:49:cc:45:36:95:eb:e7: e6:87:6b:d3:7f:53:2f:8e:d9:e5:dc:eb:69:54:8a: 96:3f:9d:34:d4:7e:c1:4c:94:74:f2:61:31:25:44: a9:30:72:9e:1f:79:42:e5:ae:ba:9b:f5:09:39:34: a5:90:7b:ee:5f:c2:5e:83:27:6a:22:9a:31:28:dc: 10:41:1e:52:8a:d7:15:66:c4:98:2f:c5:b3:38:20: 40:f4:74:a8:46:e6:16:c9:6b:6f:c5:3e:2e:e9:2d: 78:0e:1b:d6:be:e5:72:60:02:46:02:cb:3e:55:2b: 7b:34:d1:21:f9:95:5c:9e:97:47:24:be:2b:21:fb: 87:44:6a:52:5f:89:11:91:83:4b:28:1e:ca:b1:d9: 8e:b2:3b:0e:6d:6d:f8:a6:8b:41:28:c7:a9:d4:12: 41:6c:84:95:ad:42:d4:de:6c:27:32:b2:2f:21:0f: ef:87:ed:82:7b:ae:03:95:24:9a:ff:10:d5:da:00: 00:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:CB:55:E1:A2:6F:3F:FB:5C:A2:D9:02:98:18:A4:4C:AB:03:29:F5 X509v3 Authority Key Identifier: keyid:44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:8b:14:91:1e:ba:28:d3:80:7b:96:b0:81:38:e7:2f:e4:00: bc:7c:ec:ed:0e:03:16:e2:f7:d1:0a:3d:de:2e:f2:98:04:08: f0:d7:26:4d:ee:25:0e:df:b0:6f:7b:a1:69:af:05:77:ac:ac: 30:0b:c8:2e:ec:a6:87:a8:2a:33:f3:24:d1:ed:0d:ea:42:2d: 14:e3:20:48:18:df:e7:5f:81:ff:4b:3e:31:08:1c:ba:09:9a: 52:81:6a:0b:f4:30:b1:cc:92:b3:d3:cd:63:f9:ea:d0:ac:e4: ef:9a:0b:e8:f8:ac:91:a3:96:be:81:8a:ec:c0:b2:3d:e9:d2: 19:89:04:b5:db:26:98:02:59:fe:2d:f1:26:99:cb:5a:20:d8: a0:c3:c5:8a:b4:7c:af:f5:d4:35:c7:1e:ae:d8:04:2e:00:81: 30:5b:b9:19:ee:4d:a5:c1:aa:82:43:4f:20:ff:74:65:b9:e8: ee:fa:58:91:fb:43:41:24:1c:ae:ea:05:39:05:2d:25:fb:c1: f6:31:46:6e:3d:1f:ed:f7:a8:fc:52:f6:3c:4b:91:96:f7:6d: 96:a6:14:0c:38:5b:1e:df:9c:80:21:6e:54:80:8b:6d:59:b5: b6:14:81:f7:78:5f:5d:ae:a3:26:78:c8:af:51:7b:93:5e:aa: 63:b5:ad:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjFDQzExMC8GA1UEBRMoNDQ2RkFGOTIzQkVCQUY5NjM1NzI4N0ZFMjUwOTkxQzc1 NDkxNDU0RDAeFw0yNTA4MTEwNzI1MzVaFw0yNTA4MTgwNzI1MzVaMBgxFjAUBgNV BAMTDTY4OTk5YWVmLWUyOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChi4ewXHJZiqh3m94PJCIIFg0Ig18WnrH3jv6z0B5aNCDbmeA7SzVHW48v4csD DCsV5hgGidS/lzmSnPtbY/VPespaScxFNpXr5+aHa9N/Uy+O2eXc62lUipY/nTTU fsFMlHTyYTElRKkwcp4feULlrrqb9Qk5NKWQe+5fwl6DJ2oimjEo3BBBHlKK1xVm xJgvxbM4IED0dKhG5hbJa2/FPi7pLXgOG9a+5XJgAkYCyz5VK3s00SH5lVyel0ck vish+4dEalJfiRGRg0soHsqx2Y6yOw5tbfimi0Eox6nUEkFshJWtQtTebCcysi8h D++H7YJ7rgOVJJr/ENXaAAB5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUustV4aJv P/tcotkCmBikTKsDKfUwHwYDVR0jBBgwFoAURG+vkjvrr5Y1cof+JQmRx1SRRU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGMUNDLzNBRkMzM0UyRUY2 MzExRUZCRjY0QUI2QUM0RjlBRTAyL1JHLXZranZycjVZMWNvZi1KUW1SeDFTUlJV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUkctdmtqdnJyNVkxY29mLUpRbVJ4MVNSUlUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG MUNDLzNBRkMzM0UyRUY2MzExRUZCRjY0QUI2QUM0RjlBRTAyL1JHLXZranZycjVZ MWNvZi1KUW1SeDFTUlJVMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHKLFJEeuijTgHuWsIE45y/kALx87O0OAxbi99EKPd4u8pgECPDXJk3u JQ7fsG97oWmvBXesrDALyC7spoeoKjPzJNHtDepCLRTjIEgY3+dfgf9LPjEIHLoJ mlKBagv0MLHMkrPTzWP56tCs5O+aC+j4rJGjlr6BiuzAsj3p0hmJBLXbJpgCWf4t 8SaZy1og2KDDxYq0fK/11DXHHq7YBC4AgTBbuRnuTaXBqoJDTyD/dGW56O76WJH7 Q0EkHK7qBTkFLSX7wfYxRm49H+33qPxS9jxLkZb3bZamFAw4Wx7fnIAhblSAi21Z tbYUgfd4X12uoyZ4yK9Re5NeqmO1rY0= -----END CERTIFICATE-----Generated at Tue Aug 12 22:53:58 2025 by rpki-client