$ rpki-client -vvf rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft File: VRTBgTfeq40U8RHJD39rfjDQH2Q.mft (raw, json) Hash identifier: 2IrWU5ljL+/LnJv4VuMugZUaCxvMAsoiGa9cNHbJBRw= Subject key identifier: 64:19:55:8D:21:B1:A9:8C:67:80:70:81:31:B4:A9:EC:3B:4A:37:98 Authority key identifier: 55:14:C1:81:37:DE:AB:8D:14:F1:11:C9:0F:7F:6B:7E:30:D0:1F:64 Certificate issuer: /CN=A916D1DA/serialNumber=5514C18137DEAB8D14F111C90F7F6B7E30D01F64 Certificate serial: 349F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft Manifest number: 349F Signing time: Sun 20 Jul 2025 15:02:21 +0000 Manifest this update: Sun 20 Jul 2025 15:02:20 +0000 Manifest next update: Sun 27 Jul 2025 15:02:20 +0000 Files and hashes: 1: VRTBgTfeq40U8RHJD39rfjDQH2Q.crl (hash: iiVHUagnwuav3g3ujmZTzy5e+gyyoWfsG7LCHj58PeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.crl rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13471 (0x349f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D1DA, serialNumber=5514C18137DEAB8D14F111C90F7F6B7E30D01F64 Validity Not Before: Jul 20 15:02:20 2025 GMT Not After : Jul 27 15:02:20 2025 GMT Subject: CN=687d04fc-f558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f8:0c:33:ff:fe:25:36:68:bd:f7:0c:53:ee: dc:5a:a8:2e:3e:ad:54:3f:12:49:12:7c:cb:3b:8d: 00:45:de:21:a2:c6:62:e1:dd:ba:7c:de:43:a1:96: dd:7c:54:ba:cf:64:b9:c7:8d:3f:2a:1a:f6:cb:18: 07:19:d3:b5:b5:6d:48:02:60:84:f9:a6:b3:37:f5: 30:36:ae:ae:24:66:4a:fa:ab:a8:04:bf:83:4a:19: 50:1f:fb:8c:eb:0d:48:49:0e:b5:a9:f7:68:9e:12: 7b:d2:39:2a:b4:a2:f8:c7:b6:f0:34:f1:dc:07:df: f6:32:7c:d1:43:90:1c:05:4b:7d:dd:91:a5:bb:48: d0:3f:b6:67:21:ec:58:88:9f:86:ad:02:c0:dc:6d: d0:19:4b:3d:f7:a9:cb:00:c9:82:bd:8d:8e:1f:2e: 39:ee:ec:a4:00:78:32:5b:be:d6:e9:c9:1a:aa:54: 8c:d0:d9:d6:74:2b:c4:45:7a:9b:27:39:38:d8:63: 3a:9b:27:4c:ca:eb:db:5a:32:e6:9f:ee:b6:ae:e6: e2:f6:81:1a:2d:75:7d:d5:18:2a:9b:f5:f6:d8:6a: fc:0d:db:34:93:10:4a:01:96:41:b6:ab:19:a2:e6: 2d:d3:ed:bc:19:b4:db:0d:30:8d:33:12:2b:8a:b1: f3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:19:55:8D:21:B1:A9:8C:67:80:70:81:31:B4:A9:EC:3B:4A:37:98 X509v3 Authority Key Identifier: keyid:55:14:C1:81:37:DE:AB:8D:14:F1:11:C9:0F:7F:6B:7E:30:D0:1F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:5a:7d:7c:9f:d6:43:56:28:8e:8b:3d:f0:cd:9a:d8:eb:b8: 3b:33:60:4a:56:58:9d:13:8d:3c:45:87:ff:83:62:18:18:eb: bf:a1:77:82:d0:f0:70:4a:fd:42:ae:37:c2:0c:a2:08:30:27: c8:4d:91:d6:ec:64:d7:20:e2:e1:f1:6c:90:c0:c9:46:3c:b6: 5a:a9:79:e9:cc:ca:10:3d:08:69:b2:d3:bd:02:d1:e7:f0:96: 38:68:13:96:76:ba:cd:97:0a:cb:3d:a6:e7:b7:ae:c7:5f:b8: ca:8c:1c:02:ef:e3:97:dc:60:7a:26:10:b1:8c:bf:a0:98:af: 65:31:5f:56:6e:f5:1b:31:5d:e1:8c:37:02:ca:da:39:53:87: 4b:7b:26:6b:37:76:02:76:28:9f:a4:a8:10:d6:4c:d7:f5:22: 9e:25:4b:d3:1c:d5:13:69:8c:25:44:f8:a2:c1:27:0e:09:0b: d5:c6:7c:52:be:f0:62:6a:b2:9c:a3:0f:f3:fa:a5:22:ea:2d: 14:1d:1c:ae:26:45:a2:68:df:ac:de:51:a2:f5:35:06:55:39: 8b:24:98:2e:a2:72:d7:5a:63:68:c0:9d:e2:af:49:81:33:c5: 8d:af:61:af:2d:07:52:6b:ce:88:92:d1:34:80:8a:d1:f1:7d: 87:47:90:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQxREExMTAvBgNVBAUTKDU1MTRDMTgxMzdERUFCOEQxNEYxMTFDOTBGN0Y2QjdF MzBEMDFGNjQwHhcNMjUwNzIwMTUwMjIwWhcNMjUwNzI3MTUwMjIwWjAYMRYwFAYD VQQDEw02ODdkMDRmYy1mNTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPgMM//+JTZovfcMU+7cWqguPq1UPxJJEnzLO40ARd4hosZi4d26fN5DoZbd fFS6z2S5x40/Khr2yxgHGdO1tW1IAmCE+aazN/UwNq6uJGZK+quoBL+DShlQH/uM 6w1ISQ61qfdonhJ70jkqtKL4x7bwNPHcB9/2MnzRQ5AcBUt93ZGlu0jQP7ZnIexY iJ+GrQLA3G3QGUs996nLAMmCvY2OHy457uykAHgyW77W6ckaqlSM0NnWdCvERXqb Jzk42GM6mydMyuvbWjLmn+62rubi9oEaLXV91Rgqm/X22Gr8Dds0kxBKAZZBtqsZ ouYt0+28GbTbDTCNMxIrirHzhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQZVY0h samMZ4BwgTG0qew7SjeYMB8GA1UdIwQYMBaAFFUUwYE33quNFPERyQ9/a34w0B9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDFEQS8wMDhDRTUyQTFE OUUxMUUyOTY0Qjk1OEQwOEIwMkNEMi9WUlRCZ1RmZXE0MFU4UkhKRDM5cmZqRFFI MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZSVEJnVGZlcTQwVThSSEpEMzlyZmpEUUgyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDFEQS8wMDhDRTUyQTFEOUUxMUUyOTY0Qjk1OEQwOEIwMkNEMi9WUlRCZ1RmZXE0 MFU4UkhKRDM5cmZqRFFIMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALWn18n9ZDViiOiz3wzZrY67g7M2BKVlidE408RYf/g2IYGOu/oXeC 0PBwSv1CrjfCDKIIMCfITZHW7GTXIOLh8WyQwMlGPLZaqXnpzMoQPQhpstO9AtHn 8JY4aBOWdrrNlwrLPabnt67HX7jKjBwC7+OX3GB6JhCxjL+gmK9lMV9WbvUbMV3h jDcCyto5U4dLeyZrN3YCdiifpKgQ1kzX9SKeJUvTHNUTaYwlRPiiwScOCQvVxnxS vvBiarKcow/z+qUi6i0UHRyuJkWiaN+s3lGi9TUGVTmLJJguonLXWmNowJ3ir0mB M8WNr2GvLQdSa86IktE0gIrR8X2HR5CZ -----END CERTIFICATE-----Generated at Mon Jul 21 05:47:03 2025 by rpki-client