$ rpki-client -vvf rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft File: VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft (raw, json) Hash identifier: XVlbE6nQQ3Krq77d+M/JbFNYl6DxdkNyd0TzEjMhDfo= Subject key identifier: 3B:2C:6B:71:2B:56:DC:45:D9:AF:3D:E0:7D:44:E2:DF:9B:4B:A5:63 Authority key identifier: 55:E4:85:18:8C:5C:9D:2E:24:C8:34:5C:97:BC:34:62:72:1C:98:CE Certificate issuer: /CN=A912FBD2/serialNumber=55E485188C5C9D2E24C8345C97BC3462721C98CE Certificate serial: 0428 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VeSFGIxcnS4kyDRcl7w0YnIcmM4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft Manifest number: 0424 Signing time: Sat 19 Jul 2025 00:44:52 +0000 Manifest this update: Sat 19 Jul 2025 00:44:51 +0000 Manifest next update: Sat 26 Jul 2025 00:44:51 +0000 Files and hashes: 1: VeSFGIxcnS4kyDRcl7w0YnIcmM4.crl (hash: tH2uBgOdj4Z95CJNsimA56KfYYFIt5l0+kgZ5tSyB/U=) 2: 8A7E8D5C6F5511ECB5FAA20FC4F9AE02.roa (hash: +VP5NY/+4Z/8NphSit3psl/B3s8Rh2QC3KRRxPvmIp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.crl rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VeSFGIxcnS4kyDRcl7w0YnIcmM4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1064 (0x428) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FBD2, serialNumber=55E485188C5C9D2E24C8345C97BC3462721C98CE Validity Not Before: Jul 19 00:44:51 2025 GMT Not After : Jul 26 00:44:51 2025 GMT Subject: CN=687aea84-4c06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6a:75:7c:42:2e:2c:4a:d9:75:0b:38:7b:da: b9:42:86:2c:6d:be:9a:c7:66:fd:1e:e1:50:a8:bf: 69:8c:d7:b5:df:41:d9:5d:45:35:1f:2b:b2:74:85: 08:04:ea:94:b3:f9:8c:5c:f4:01:9e:79:93:32:1a: 4b:3d:d6:d3:86:5f:66:d6:a3:6e:3e:27:cc:fe:2f: 5f:a4:b7:c6:f2:68:33:1e:54:b6:92:23:41:61:9d: 70:be:e9:06:9f:dd:58:74:17:df:86:b3:2e:63:13: 1b:1f:85:fe:e5:c1:c7:3d:1c:01:02:9f:e6:c2:37: ce:28:ac:0b:1f:f5:a1:3e:5a:96:05:e4:b3:ca:e4: 02:3d:f3:46:f3:eb:59:70:46:9c:9d:de:7b:39:58: c0:ad:5a:b7:8a:0a:54:8a:f2:e4:70:d8:33:27:61: 87:30:bd:e5:ad:28:80:36:54:31:cd:19:17:2a:4a: 69:de:ca:87:6f:53:97:36:67:73:af:35:6f:8d:a0: bf:25:ae:8e:85:ea:09:93:59:7e:4a:b4:00:af:50: ca:41:ae:98:a6:64:a8:cb:aa:3f:3d:25:d6:01:4e: fd:ce:78:ec:d7:32:a7:de:0c:21:e4:02:a4:f4:a8: 67:95:72:13:da:68:6c:68:36:16:a3:fe:84:a5:d2: 0b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2C:6B:71:2B:56:DC:45:D9:AF:3D:E0:7D:44:E2:DF:9B:4B:A5:63 X509v3 Authority Key Identifier: keyid:55:E4:85:18:8C:5C:9D:2E:24:C8:34:5C:97:BC:34:62:72:1C:98:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VeSFGIxcnS4kyDRcl7w0YnIcmM4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FBD2/6D74978C6F5111EC9651DA09C4F9AE02/VeSFGIxcnS4kyDRcl7w0YnIcmM4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:0b:5c:bb:51:dd:74:15:8f:38:75:5a:0d:d4:1b:f5:e5:5f: c2:48:4b:72:4c:b6:10:51:fb:5b:17:28:2a:58:81:8f:c7:e1: 6b:9d:f3:c4:98:a0:62:ae:b1:20:e1:24:f1:b6:33:a7:e9:3c: 25:32:14:e7:39:a5:31:84:4a:81:29:23:0b:d9:d0:94:68:3c: 23:a0:e0:2c:9c:a9:f6:67:fc:58:c2:6b:0f:26:51:3f:ed:1d: 84:17:ca:b8:8a:a7:ce:9a:3a:1c:62:80:45:56:79:f7:ad:e4: 52:96:d8:98:ac:56:57:72:2b:b7:57:09:9e:5b:a0:60:d7:63: ae:69:6d:0e:9b:d9:b6:c7:8b:67:3c:7b:98:61:d3:2e:3f:98: 5f:17:45:04:6f:55:58:9c:61:2d:af:21:f4:88:9d:c1:be:21: 1c:46:29:6f:41:f0:97:08:86:19:33:fc:f7:e4:87:1e:e2:23: f3:61:83:be:2a:82:c4:eb:0d:eb:ea:0c:cf:a5:14:63:91:db: 4b:9f:7e:00:db:0d:1c:14:78:4f:40:c8:3d:d3:e5:6c:25:d9: a7:f6:bf:30:10:72:9e:ba:f3:2b:23:be:db:8f:7f:1d:bd:1e: 76:73:54:06:14:1f:56:22:c3:74:61:0a:2b:da:06:f4:6b:20: 17:0a:91:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCRDIxMTAvBgNVBAUTKDU1RTQ4NTE4OEM1QzlEMkUyNEM4MzQ1Qzk3QkMzNDYy NzIxQzk4Q0UwHhcNMjUwNzE5MDA0NDUxWhcNMjUwNzI2MDA0NDUxWjAYMRYwFAYD VQQDEw02ODdhZWE4NC00YzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12p1fEIuLErZdQs4e9q5QoYsbb6ax2b9HuFQqL9pjNe130HZXUU1HyuydIUI BOqUs/mMXPQBnnmTMhpLPdbThl9m1qNuPifM/i9fpLfG8mgzHlS2kiNBYZ1wvukG n91YdBffhrMuYxMbH4X+5cHHPRwBAp/mwjfOKKwLH/WhPlqWBeSzyuQCPfNG8+tZ cEacnd57OVjArVq3igpUivLkcNgzJ2GHML3lrSiANlQxzRkXKkpp3sqHb1OXNmdz rzVvjaC/Ja6OheoJk1l+SrQAr1DKQa6YpmSoy6o/PSXWAU79znjs1zKn3gwh5AKk 9KhnlXIT2mhsaDYWo/6EpdIL3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDssa3Er VtxF2a894H1E4t+bS6VjMB8GA1UdIwQYMBaAFFXkhRiMXJ0uJMg0XJe8NGJyHJjO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkJEMi82RDc0OTc4QzZG NTExMUVDOTY1MURBMDlDNEY5QUUwMi9WZVNGR0l4Y25TNGt5RFJjbDd3MFluSWNt TTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZlU0ZHSXhjblM0a3lEUmNsN3cwWW5JY21NNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkJEMi82RDc0OTc4QzZGNTExMUVDOTY1MURBMDlDNEY5QUUwMi9WZVNGR0l4Y25T NGt5RFJjbDd3MFluSWNtTTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWC1y7Ud10FY84dVoN1Bv15V/CSEtyTLYQUftbFygqWIGPx+FrnfPE mKBirrEg4STxtjOn6TwlMhTnOaUxhEqBKSML2dCUaDwjoOAsnKn2Z/xYwmsPJlE/ 7R2EF8q4iqfOmjocYoBFVnn3reRSltiYrFZXciu3VwmeW6Bg12OuaW0Om9m2x4tn PHuYYdMuP5hfF0UEb1VYnGEtryH0iJ3BviEcRilvQfCXCIYZM/z35Ice4iPzYYO+ KoLE6w3r6gzPpRRjkdtLn34A2w0cFHhPQMg90+VsJdmn9r8wEHKeuvMrI77bj38d vR52c1QGFB9WIsN0YQor2gb0ayAXCpGf -----END CERTIFICATE-----Generated at Sun Jul 20 08:03:01 2025 by rpki-client