$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft File: vIYhQTCXFsDk3Dff_zPlqwxVStA.mft (raw, json) Hash identifier: /w50Gc4ajxdWkeEEeauIlYq1BD1tO0ogNsCZB984qh4= Subject key identifier: 4E:9D:94:AB:EC:0C:80:16:69:BC:F1:25:3A:DE:26:02:7D:ED:22:53 Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft Manifest number: 020A Signing time: Sat 19 Jul 2025 02:26:37 +0000 Manifest this update: Sat 19 Jul 2025 02:26:37 +0000 Manifest next update: Sat 26 Jul 2025 02:26:37 +0000 Files and hashes: 1: vIYhQTCXFsDk3Dff_zPlqwxVStA.crl (hash: 8hC8qtBWlmV0H1ZqKgRGYDTE/cmSiN2VPKp67nmwS3w=) 2: 3DE0E9065F0811EDB42DC97FC4F9AE02.roa (hash: MoE7MEPCOyGB/9EMlTXV0tN9ZG/UinteAkee65hBGJ0=) 3: 3F2E65045F0811EDB42DC97FC4F9AE02.roa (hash: IgAv5ZJEhwoH7uEYAUCxosir/fX/9UUdUT7CtlM0EKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA27, serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Validity Not Before: Jul 19 02:26:37 2025 GMT Not After : Jul 26 02:26:37 2025 GMT Subject: CN=687b025d-be1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f1:ba:20:24:60:04:df:b5:9e:60:86:9e:c1: b2:34:c3:2c:b6:50:4e:91:4f:89:97:a6:0d:56:fe: bc:86:08:da:a0:cf:c6:44:28:6f:d6:73:19:98:56: bb:36:ce:3e:ab:70:9b:e2:fb:1a:4b:ca:72:8d:ab: bf:7d:3d:3a:42:23:be:f2:9e:7d:20:14:d0:10:b8: 1d:dc:ef:d6:8d:4d:88:8f:28:11:2c:d6:17:9f:f5: 3f:aa:21:df:4f:e3:51:36:cc:a4:f6:09:d1:30:d9: 88:43:6d:22:9f:7c:96:b2:40:1a:24:27:ef:f0:d1: fa:5e:d2:bc:51:e1:2f:1e:b8:3b:22:28:89:24:ce: d1:c4:0d:04:ac:5a:c9:a5:83:29:a3:64:52:d6:31: 0f:a1:93:e6:04:af:83:34:2a:cc:a4:5e:03:3d:59: 38:ac:90:14:62:40:f3:01:04:99:a6:2c:24:fb:dd: ba:41:0f:16:2d:8e:5b:f1:44:5e:55:59:c8:2b:dd: 84:13:c0:8d:2f:83:00:7c:73:06:c1:28:0e:2e:1e: 34:76:14:b5:4f:63:61:c5:80:7c:34:44:b9:40:1e: 1d:3f:93:d4:02:c0:bb:7a:b2:f9:a5:dd:68:26:09: c1:8b:27:b3:d6:15:a6:94:1f:05:1d:2b:4b:31:9c: 16:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:9D:94:AB:EC:0C:80:16:69:BC:F1:25:3A:DE:26:02:7D:ED:22:53 X509v3 Authority Key Identifier: keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:46:ad:9e:49:9a:29:ae:64:2a:d6:ca:97:9b:2e:ff:16:4b: 28:2b:bf:87:e9:5b:31:c6:d2:86:98:6e:e3:de:6e:10:16:0d: fb:90:de:77:0a:58:88:9e:95:23:63:fd:7b:45:62:6e:72:52: 6f:dc:77:ed:ef:c0:c3:ea:c9:07:44:ec:87:df:68:86:bd:4e: 30:34:89:bd:68:55:dc:ba:cf:b5:35:c7:1c:9a:bd:47:8b:30: 46:57:da:7f:4a:37:0d:74:da:b9:07:3a:e0:22:79:c7:ea:21: 9c:6b:ec:03:b2:18:03:dd:a7:ee:c4:30:f8:d3:31:7f:a2:08: c5:a8:f5:78:a0:67:7c:28:30:16:ff:43:03:5f:4c:9e:a0:16: cb:24:e4:e8:92:3c:31:45:dd:2b:67:1c:5a:56:4d:78:5d:ee: 46:d9:01:c9:e3:ec:3a:a7:00:69:4c:5b:fc:6a:c5:dc:fc:95: d4:15:1f:f2:b4:f7:9c:97:a8:17:71:78:b4:19:50:b1:33:5c: 92:aa:50:e6:65:7a:b3:c2:e5:c6:d0:f0:0f:de:31:3b:00:c0: 69:eb:d8:b1:54:7f:fe:45:d1:1c:c8:cc:56:8a:82:1a:5b:fb: 4b:a0:17:41:13:0f:43:32:4e:82:cf:f0:29:19:a7:88:54:aa: 6e:00:b3:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC MEM1NTRBRDAwHhcNMjUwNzE5MDIyNjM3WhcNMjUwNzI2MDIyNjM3WjAYMRYwFAYD VQQDEw02ODdiMDI1ZC1iZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fG6ICRgBN+1nmCGnsGyNMMstlBOkU+Jl6YNVv68hgjaoM/GRChv1nMZmFa7 Ns4+q3Cb4vsaS8pyjau/fT06QiO+8p59IBTQELgd3O/WjU2IjygRLNYXn/U/qiHf T+NRNsyk9gnRMNmIQ20in3yWskAaJCfv8NH6XtK8UeEvHrg7IiiJJM7RxA0ErFrJ pYMpo2RS1jEPoZPmBK+DNCrMpF4DPVk4rJAUYkDzAQSZpiwk+926QQ8WLY5b8URe VVnIK92EE8CNL4MAfHMGwSgOLh40dhS1T2NhxYB8NES5QB4dP5PUAsC7erL5pd1o JgnBiyez1hWmlB8FHStLMZwWiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6dlKvs DIAWabzxJTreJgJ97SJTMB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0 NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUEyNy82QThCRDA4QzQ0NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZz RGszRGZmX3pQbHF3eFZTdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1Rq2eSZoprmQq1sqXmy7/FksoK7+H6VsxxtKGmG7j3m4QFg37kN53 CliInpUjY/17RWJuclJv3Hft78DD6skHROyH32iGvU4wNIm9aFXcus+1Ncccmr1H izBGV9p/SjcNdNq5BzrgInnH6iGca+wDshgD3afuxDD40zF/ogjFqPV4oGd8KDAW /0MDX0yeoBbLJOTokjwxRd0rZxxaVk14Xe5G2QHJ4+w6pwBpTFv8asXc/JXUFR/y tPecl6gXcXi0GVCxM1ySqlDmZXqzwuXG0PAP3jE7AMBp69ixVH/+RdEcyMxWioIa W/tLoBdBEw9DMk6Cz/ApGaeIVKpuALOV -----END CERTIFICATE-----Generated at Sun Jul 20 10:34:27 2025 by rpki-client