$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft File: Vj8ylI68GzkPMqCqPzYUeFr858I.mft (raw, json) Hash identifier: 2tOZ+aYO00YXoanevnn85eguSBdwIT1AaMN3GWj1tcQ= Subject key identifier: 0B:FB:F3:44:1F:CD:C5:0C:36:40:1E:E9:CD:23:EA:40:8D:15:A0:8A Authority key identifier: 56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 Certificate issuer: /CN=A917AC8C/serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Certificate serial: 02F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft Manifest number: 02E8 Signing time: Sat 19 Jul 2025 01:43:18 +0000 Manifest this update: Sat 19 Jul 2025 01:43:18 +0000 Manifest next update: Sat 26 Jul 2025 01:43:18 +0000 Files and hashes: 1: Vj8ylI68GzkPMqCqPzYUeFr858I.crl (hash: VH4TfM1rcWGRVzIDcjAXDPEw01b0ukGMLuslUHgolLU=) 2: EA5EB99CEBBD11ECB3DAFE39C4F9AE02.roa (hash: 6Otg6zDUC3T6chkRppH8+51GAfFhb4rhNrj+nGsoi3I=) 3: EB756434EBBD11ECB3DAFE39C4F9AE02.roa (hash: dSIhsF2Xt53EsY5Qnrga5XSOK9oGKkuxZKuBhxw3Vak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 752 (0x2f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC8C, serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Validity Not Before: Jul 19 01:43:18 2025 GMT Not After : Jul 26 01:43:18 2025 GMT Subject: CN=687af836-cb2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4c:75:b3:50:2f:13:a9:62:ff:ef:42:8e:ff: 20:64:73:93:6c:c2:ac:3f:2b:4c:4c:da:aa:13:9c: db:3a:63:8f:f3:49:c8:51:93:67:49:fb:1f:f3:e5: 89:80:d7:3c:60:2d:aa:d2:64:b0:16:ef:ab:20:7d: 23:a0:8e:82:17:08:41:2f:75:cd:f0:d9:9d:40:42: 29:1e:2d:3b:2e:70:61:44:f1:0c:16:e6:50:67:23: 04:80:14:68:e9:ec:03:b0:5c:cf:0b:f7:24:70:92: 57:12:48:39:df:28:2d:52:b2:47:06:56:2c:6d:2d: 45:ee:ab:0f:45:81:be:06:a0:0c:27:4c:68:da:60: 04:22:09:6d:9e:5e:d0:5b:9f:65:85:51:d8:68:22: 2b:a0:88:4c:ed:16:94:e5:f1:a1:5d:27:4d:c3:2a: 72:2d:eb:26:8b:a1:21:5a:b5:3b:47:27:f9:99:18: f0:8f:08:57:99:e0:7b:85:6a:7b:d8:c4:cb:ca:32: 45:63:b3:01:ea:48:20:02:50:1a:46:45:33:2c:f2: cd:ff:4b:e0:6e:60:7b:83:ab:a4:63:80:78:7a:17: 85:fc:31:ea:a2:2f:fd:fb:6a:62:81:6e:fb:43:da: 1e:86:a4:f5:c5:1d:2e:d4:ce:55:d8:f8:05:56:64: dc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:FB:F3:44:1F:CD:C5:0C:36:40:1E:E9:CD:23:EA:40:8D:15:A0:8A X509v3 Authority Key Identifier: keyid:56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:92:db:74:ad:5d:7e:3a:0b:3a:15:12:c8:ec:cf:46:22:04: 0d:dc:54:77:c9:75:a3:65:9d:33:74:10:6f:d8:d0:69:ae:1d: ec:65:75:2e:f8:1e:22:cf:ad:3c:2a:4d:53:89:e1:0d:4c:51: ac:f1:72:b7:bc:04:47:88:25:cb:64:fe:9b:79:92:c0:9e:80: d8:9c:67:3d:0d:31:5f:38:97:d4:53:f2:b5:a0:21:e7:28:cc: 67:f7:a1:c4:f8:f2:a3:ca:32:5b:5d:27:b8:0a:3f:1a:ad:65: b6:9a:9a:e4:82:4a:57:02:0c:e8:6c:bc:70:06:f5:bf:6f:74: f2:6e:68:30:fa:c1:32:32:80:4f:85:16:76:55:c8:61:7b:1f: 21:f2:71:43:1e:cb:c1:64:2e:96:56:07:86:ce:49:8d:93:9f: ea:cd:fd:5c:36:9d:19:8a:d4:55:18:cd:67:1e:1a:ee:0e:97: 63:e7:fa:ee:42:cd:c8:9b:e3:a0:66:19:ea:97:f3:a3:74:28: 6d:90:00:2a:24:e7:dd:bc:46:44:85:b4:c8:9f:24:17:09:dd: 49:79:8b:92:a3:36:3e:fb:aa:e5:9e:14:f5:ed:c2:0a:44:e0: 7d:78:a2:ad:0e:9f:99:4e:ca:ba:b2:f3:57:47:4a:05:83:bc: f8:4c:0f:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDOEMxMTAvBgNVBAUTKDU2M0YzMjk0OEVCQzFCMzkwRjMyQTBBQTNGMzYxNDc4 NUFGQ0U3QzIwHhcNMjUwNzE5MDE0MzE4WhcNMjUwNzI2MDE0MzE4WjAYMRYwFAYD VQQDEw02ODdhZjgzNi1jYjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUx1s1AvE6li/+9Cjv8gZHOTbMKsPytMTNqqE5zbOmOP80nIUZNnSfsf8+WJ gNc8YC2q0mSwFu+rIH0joI6CFwhBL3XN8NmdQEIpHi07LnBhRPEMFuZQZyMEgBRo 6ewDsFzPC/ckcJJXEkg53ygtUrJHBlYsbS1F7qsPRYG+BqAMJ0xo2mAEIgltnl7Q W59lhVHYaCIroIhM7RaU5fGhXSdNwypyLesmi6EhWrU7Ryf5mRjwjwhXmeB7hWp7 2MTLyjJFY7MB6kggAlAaRkUzLPLN/0vgbmB7g6ukY4B4eheF/DHqoi/9+2pigW77 Q9oehqT1xR0u1M5V2PgFVmTclQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAv780Qf zcUMNkAe6c0j6kCNFaCKMB8GA1UdIwQYMBaAFFY/MpSOvBs5DzKgqj82FHha/OfC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUM4Qy84OTk2NkRDQUVC QjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6a1BNcUNxUHpZVWVGcjg1 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqOHlsSTY4R3prUE1xQ3FQellVZUZyODU4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUM4Qy84OTk2NkRDQUVCQjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6 a1BNcUNxUHpZVWVGcjg1OEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyktt0rV1+Ogs6FRLI7M9GIgQN3FR3yXWjZZ0zdBBv2NBprh3sZXUu +B4iz608Kk1TieENTFGs8XK3vARHiCXLZP6beZLAnoDYnGc9DTFfOJfUU/K1oCHn KMxn96HE+PKjyjJbXSe4Cj8arWW2mprkgkpXAgzobLxwBvW/b3Tybmgw+sEyMoBP hRZ2Vchhex8h8nFDHsvBZC6WVgeGzkmNk5/qzf1cNp0ZitRVGM1nHhruDpdj5/ru Qs3Im+OgZhnql/OjdChtkAAqJOfdvEZEhbTInyQXCd1JeYuSozY++6rlnhT17cIK ROB9eKKtDp+ZTsq6svNXR0oFg7z4TA85 -----END CERTIFICATE-----Generated at Sun Jul 20 02:01:46 2025 by rpki-client