$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft File: VCuU2GJc9xGWT9E3QSldJ616kAQ.mft (raw, json) Hash identifier: MIs58hRfwbwftPLq6WhOkHwkxh4vulhl2VhBnQks7aI= Subject key identifier: D4:23:94:E0:8D:D4:C8:D7:76:A4:3F:7D:31:BB:B1:64:BE:2B:4B:EE Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft Manifest number: 01EA Signing time: Mon 21 Jul 2025 03:21:07 +0000 Manifest this update: Mon 21 Jul 2025 03:21:07 +0000 Manifest next update: Mon 28 Jul 2025 03:21:07 +0000 Files and hashes: 1: VCuU2GJc9xGWT9E3QSldJ616kAQ.crl (hash: aSy6nJfBm8bmMIO1tYD29r1udDNVnTfaSpJ2Xu0NsPA=) 2: 3352C1BAECFC11EFA398671BC4F9AE02.roa (hash: Im9wfZuP6zDy1h0Hl9Jq0NXIaM8u/vuOASHLbchH8jE=) 3: 020607A2498711EFBB260663C4F9AE02.roa (hash: T6rwUDI540K7kNvAic9olkLe7ckJW9yi5Gt2J/Ejnw0=) 4: D13FCAEAA62E11EFBC284C42C4F9AE02.roa (hash: K8NnxbaCBJETQFsMtKq3Bzg51wGMgmnozQ6OqtNXVto=) 5: 05F505961AA311F0A475D464C4F9AE02.roa (hash: DJ6ceD+nzuCFrSpyZtlueLHrerXM29TFRnLIJO8v0Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: Jul 21 03:21:07 2025 GMT Not After : Jul 28 03:21:07 2025 GMT Subject: CN=687db223-8759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f1:33:40:5c:20:45:8e:d0:0b:fa:45:d7:3e: af:5a:fa:79:a0:9d:30:36:eb:7e:40:5a:44:9f:b1: 1e:37:83:2f:d8:89:5b:3a:c6:d2:ab:16:9d:51:cf: 95:72:74:d1:20:9a:bf:dc:ee:e4:b1:b8:52:a0:8d: 0e:d2:1c:2f:cd:cf:76:5a:12:83:f0:1f:72:63:e0: ef:f1:ff:43:a3:b1:71:08:10:58:70:68:09:b5:f3: 78:38:9f:3d:a0:39:13:ca:e8:43:e3:5a:b0:ec:fe: f2:1a:62:36:a1:ea:5b:12:77:85:ba:70:8c:64:07: 6e:d0:5c:55:3c:5a:06:9c:6c:82:4a:4e:19:ba:86: ed:83:47:8c:fd:1b:35:10:4b:78:1d:85:0f:21:d6: ba:6e:12:64:7e:55:41:6e:c0:af:45:3b:22:d8:04: 28:52:84:e4:e6:be:93:c5:01:cd:a5:94:28:c8:4d: e2:4d:d8:8d:14:76:f9:6a:a8:c6:c3:df:1e:a9:72: ce:6d:94:a3:ed:7a:1a:aa:e2:de:9b:2d:19:43:12: a2:a6:e4:9f:ef:86:4e:fc:3a:2e:51:55:09:c7:c2: 92:ef:0a:6d:a4:6e:4b:eb:f0:9f:b4:40:f8:c5:96: 89:7f:b6:72:10:29:e5:5b:41:0d:e7:3f:91:6b:fe: 7d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:23:94:E0:8D:D4:C8:D7:76:A4:3F:7D:31:BB:B1:64:BE:2B:4B:EE X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:43:bc:70:fa:92:a1:f4:06:fe:23:4e:11:1a:63:b2:e0:db: f2:34:6c:63:29:be:b7:1a:ea:1e:b1:d0:3e:3a:03:ae:a0:01: d2:81:4f:fd:8b:9d:62:64:13:23:90:a9:9c:3f:dd:32:c3:85: f0:09:2f:a6:64:53:c8:5b:79:7f:94:8a:8c:51:36:7a:c5:36: 9c:d4:c4:9a:1b:95:f9:67:1a:c8:5f:da:88:e4:2e:ae:33:f1: 1a:be:b0:4e:d1:9e:09:3e:c3:da:01:ec:22:de:54:7c:c0:00: 13:f8:40:87:04:9e:37:44:73:34:a5:ad:6d:9c:a8:58:8d:02: f8:67:87:e3:03:01:55:1f:7b:73:d8:8a:f6:3d:3c:d2:67:1c: 58:e5:1d:c0:e9:c2:97:c1:f4:4c:f3:20:e9:a5:5f:3c:6e:3b: 50:d2:82:8f:f9:d8:1d:84:59:5b:99:07:d9:ce:cc:c4:18:73: a1:fa:4d:f5:fd:ec:14:d9:2c:b3:2c:01:11:7e:50:bb:ea:23: 91:ac:99:83:41:1b:97:94:fa:ad:c2:1a:14:87:59:d5:3b:70: b0:d5:dc:02:82:44:6c:8c:b3:51:84:d8:42:f3:02:fa:c7:21: b1:a9:03:74:47:42:f1:30:7e:a7:06:e5:79:42:87:dc:f4:0c: 5a:6b:48:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUwNzIxMDMyMTA3WhcNMjUwNzI4MDMyMTA3WjAYMRYwFAYD VQQDEw02ODdkYjIyMy04NzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvEzQFwgRY7QC/pF1z6vWvp5oJ0wNut+QFpEn7EeN4Mv2IlbOsbSqxadUc+V cnTRIJq/3O7ksbhSoI0O0hwvzc92WhKD8B9yY+Dv8f9Do7FxCBBYcGgJtfN4OJ89 oDkTyuhD41qw7P7yGmI2oepbEneFunCMZAdu0FxVPFoGnGyCSk4Zuobtg0eM/Rs1 EEt4HYUPIda6bhJkflVBbsCvRTsi2AQoUoTk5r6TxQHNpZQoyE3iTdiNFHb5aqjG w98eqXLObZSj7XoaquLemy0ZQxKipuSf74ZO/DouUVUJx8KS7wptpG5L6/CftED4 xZaJf7ZyECnlW0EN5z+Ra/59UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQjlOCN 1MjXdqQ/fTG7sWS+K0vuMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC8xNjFENEMwQUU0Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4 R1dUOUUzUVNsZEo2MTZrQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfQ7xw+pKh9Ab+I04RGmOy4NvyNGxjKb63GuoesdA+OgOuoAHSgU/9 i51iZBMjkKmcP90yw4XwCS+mZFPIW3l/lIqMUTZ6xTac1MSaG5X5ZxrIX9qI5C6u M/EavrBO0Z4JPsPaAewi3lR8wAAT+ECHBJ43RHM0pa1tnKhYjQL4Z4fjAwFVH3tz 2Ir2PTzSZxxY5R3A6cKXwfRM8yDppV88bjtQ0oKP+dgdhFlbmQfZzszEGHOh+k31 /ewU2SyzLAERflC76iORrJmDQRuXlPqtwhoUh1nVO3Cw1dwCgkRsjLNRhNhC8wL6 xyGxqQN0R0LxMH6nBuV5Qofc9Axaa0it -----END CERTIFICATE-----Generated at Mon Jul 21 12:50:03 2025 by rpki-client