$ rpki-client -vvf rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft File: Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft (raw, json) Hash identifier: lFTJzd3jrxGE/6CapdxA+xAKVfBgoaZ60Xl3Krj9tI0= Subject key identifier: 17:60:75:99:4E:FF:5E:97:DF:30:A4:6F:E4:41:6B:80:82:CF:BF:58 Authority key identifier: 56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA Certificate issuer: /CN=A914F22A/serialNumber=56AF1CD0B4E07D000C64AB016C33F786A0DD90FA Certificate serial: 1390 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft Manifest number: 1388 Signing time: Sun 20 Jul 2025 16:59:59 +0000 Manifest this update: Sun 20 Jul 2025 16:59:58 +0000 Manifest next update: Sun 27 Jul 2025 16:59:58 +0000 Files and hashes: 1: Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl (hash: SAdm8TJFn4O3w8FotqnMgljrBr2Xpx1CXD0I1K3PFds=) 2: 8B2E3BA270BD11ED970C535FC4F9AE02.roa (hash: 5VH2eBCf4hkjUtJHqHQPv/5yN4SkQaCzRWcunhO07pE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5008 (0x1390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F22A, serialNumber=56AF1CD0B4E07D000C64AB016C33F786A0DD90FA Validity Not Before: Jul 20 16:59:58 2025 GMT Not After : Jul 27 16:59:58 2025 GMT Subject: CN=687d208f-2397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2f:47:5d:c3:6c:08:15:f4:8f:cd:c3:ff:e5: 1f:37:ae:3a:71:f4:af:d3:05:01:1e:07:38:9e:2b: ce:9e:04:b8:81:2c:6a:91:79:df:ed:65:e1:f5:f7: cf:ef:e6:f6:e6:25:9c:e4:45:45:99:6a:e3:8b:51: 2f:2e:93:16:f5:69:fe:58:ad:e5:ea:dd:78:66:06: ca:ab:7b:ac:f4:38:3f:a4:2c:42:6e:67:1c:bd:b0: 56:fc:6a:93:2b:68:88:67:b8:d3:d6:bf:05:e8:1d: 7f:96:98:02:5e:10:47:6e:fa:7d:c8:b3:9f:4b:90: 18:54:5f:51:6c:8d:57:7d:a5:88:d5:05:fe:3c:a4: 0e:20:54:17:a0:a7:e8:1a:e1:89:5f:fa:ea:7f:61: 19:2f:f2:71:79:86:b1:61:1b:57:70:d3:eb:1b:03: 8b:f0:cf:36:31:2e:73:01:c3:e9:3d:d7:c4:2f:b9: 7c:79:74:4e:36:fe:ab:8b:85:f7:0b:c8:48:95:ba: 37:5e:35:6b:e8:f8:a1:df:82:a3:a6:da:47:9e:d2: 9d:c7:6c:d7:b7:d5:2a:41:51:7e:b6:74:af:19:c6: 8e:33:57:00:ad:58:d0:d9:86:da:9e:fa:d7:00:94: c5:a5:f2:30:a4:2f:96:4e:59:e1:2c:6f:37:13:ba: 18:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:60:75:99:4E:FF:5E:97:DF:30:A4:6F:E4:41:6B:80:82:CF:BF:58 X509v3 Authority Key Identifier: keyid:56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:8a:3b:ba:1d:86:02:cd:54:ab:2b:9c:24:f4:e3:ec:74:a6: d1:08:05:f5:a1:df:51:2f:3b:f6:f5:98:13:f3:c0:5e:9f:b6: a6:0d:79:6e:91:0d:7f:4a:51:61:df:e2:ea:d0:56:1b:66:8f: c5:f2:99:82:1f:f5:19:f8:cd:6c:3e:79:b6:54:d7:67:f6:72: 13:14:38:93:58:fb:3f:d6:f6:c4:03:e2:17:6f:b2:7d:ec:70: 11:ca:e4:20:df:0f:28:66:76:d8:66:30:33:94:8c:5c:eb:d6: 74:09:fd:cb:c5:5b:02:e9:e7:22:a4:11:bc:4c:9a:92:09:b6: 36:3e:94:02:c5:2d:14:64:1d:27:9e:d4:d1:08:c2:f8:b9:f5: bb:a7:5b:09:06:91:4f:b4:47:ac:2e:2e:76:02:84:6c:1e:b2: b8:94:6b:87:82:87:42:49:14:fe:30:29:59:0f:39:fc:c2:bb: 2b:7e:60:26:04:04:a1:91:43:c6:4f:03:0c:b8:38:74:4c:bf: fe:ef:ed:c8:75:e6:39:42:e0:3a:5e:74:bd:bb:f0:ab:99:f8: bf:bc:86:db:ec:ca:93:de:4b:d3:df:eb:3b:02:b5:23:a6:3d: df:81:5a:02:8c:0c:d2:06:21:53:b8:b4:0f:a2:42:cb:74:f5: 82:8b:b6:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyMkExMTAvBgNVBAUTKDU2QUYxQ0QwQjRFMDdEMDAwQzY0QUIwMTZDMzNGNzg2 QTBERDkwRkEwHhcNMjUwNzIwMTY1OTU4WhcNMjUwNzI3MTY1OTU4WjAYMRYwFAYD VQQDEw02ODdkMjA4Zi0yMzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApC9HXcNsCBX0j83D/+UfN646cfSv0wUBHgc4nivOngS4gSxqkXnf7WXh9ffP 7+b25iWc5EVFmWrji1EvLpMW9Wn+WK3l6t14ZgbKq3us9Dg/pCxCbmccvbBW/GqT K2iIZ7jT1r8F6B1/lpgCXhBHbvp9yLOfS5AYVF9RbI1XfaWI1QX+PKQOIFQXoKfo GuGJX/rqf2EZL/JxeYaxYRtXcNPrGwOL8M82MS5zAcPpPdfEL7l8eXRONv6ri4X3 C8hIlbo3XjVr6Pih34KjptpHntKdx2zXt9UqQVF+tnSvGcaOM1cArVjQ2YbanvrX AJTFpfIwpC+WTlnhLG83E7oYgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdgdZlO /16X3zCkb+RBa4CCz79YMB8GA1UdIwQYMBaAFFavHNC04H0ADGSrAWwz94ag3ZD6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjIyQS83RUVDMUU0QzlD RDAxMUU4QjE2MTJCN0RDNEY5QUUwMi9WcThjMExUZ2ZRQU1aS3NCYkRQM2hxRGRr UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZxOGMwTFRnZlFBTVpLc0JiRFAzaHFEZGtQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjIyQS83RUVDMUU0QzlDRDAxMUU4QjE2MTJCN0RDNEY5QUUwMi9WcThjMExUZ2ZR QU1aS3NCYkRQM2hxRGRrUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/iju6HYYCzVSrK5wk9OPsdKbRCAX1od9RLzv29ZgT88Ben7amDXlu kQ1/SlFh3+Lq0FYbZo/F8pmCH/UZ+M1sPnm2VNdn9nITFDiTWPs/1vbEA+IXb7J9 7HARyuQg3w8oZnbYZjAzlIxc69Z0Cf3LxVsC6ecipBG8TJqSCbY2PpQCxS0UZB0n ntTRCML4ufW7p1sJBpFPtEesLi52AoRsHrK4lGuHgodCSRT+MClZDzn8wrsrfmAm BAShkUPGTwMMuDh0TL/+7+3IdeY5QuA6XnS9u/Crmfi/vIbb7MqT3kvT3+s7ArUj pj3fgVoCjAzSBiFTuLQPokLLdPWCi7aP -----END CERTIFICATE-----Generated at Mon Jul 21 06:50:15 2025 by rpki-client