$ rpki-client -vvf rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft File: vTfx1AdHvmxfXGujMH32Vgq2gaM.mft (raw, json) Hash identifier: fTKLtDl0k1auHUPlEhG3iTQoRcBEu5wnA+xwKC/FbLw= Subject key identifier: 60:76:62:06:37:44:B2:3D:74:55:F5:EC:DB:BD:46:BB:E8:25:E0:F1 Authority key identifier: BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 Certificate issuer: /CN=A91817E6/serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft Manifest number: 0A8E Signing time: Sun 20 Jul 2025 20:31:57 +0000 Manifest this update: Sun 20 Jul 2025 20:31:57 +0000 Manifest next update: Sun 27 Jul 2025 20:31:57 +0000 Files and hashes: 1: vTfx1AdHvmxfXGujMH32Vgq2gaM.crl (hash: cKzHkQUZduOvnj20pb/ddd4oiwAkaTOHrPjiQjwnqWw=) 2: 28C454FCB41211EF8D2EC946C4F9AE02.roa (hash: C0N61U0YEOhXRTQRllW2NuUOi6qXdqTI0gAe9H3eVh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 20:31:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91817E6, serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Validity Not Before: Jul 20 20:31:57 2025 GMT Not After : Jul 27 20:31:57 2025 GMT Subject: CN=687d523d-99d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5a:18:fa:ef:18:f3:93:32:69:be:32:78:ab: 0d:ea:14:8f:c9:1f:5f:a1:40:b1:ac:ac:02:01:a3: bd:ec:60:de:a0:c2:06:9b:13:78:69:20:e9:ff:c3: fa:af:f4:53:c7:b6:93:f9:21:e5:64:45:84:b3:1a: f3:59:46:d1:cc:20:34:fb:11:b4:d7:a0:e5:4e:b1: f9:f2:07:e1:51:a7:ac:c9:eb:a2:c4:05:59:43:ce: 4e:8c:c0:85:ee:d0:39:4b:42:06:d9:eb:3d:c0:ff: 5f:05:53:fe:63:f1:88:cd:b3:06:ba:83:9f:4a:3e: 30:3d:70:ea:af:5e:8f:58:1d:36:62:08:2e:84:e6: 2e:db:0f:f8:f8:a1:5c:2f:7e:e2:be:a3:33:4c:d9: 77:a8:71:f9:1b:6f:90:79:e1:b5:5e:f7:3a:23:f2: 45:19:55:49:58:7c:91:40:0f:9b:81:98:23:35:a9: 9e:47:fc:6a:a2:9a:2d:59:43:3d:07:1f:13:57:62: ed:3b:b0:35:2e:be:45:00:46:4a:44:ed:d2:b1:24: 54:a2:0e:31:4f:db:5c:48:4a:61:cf:d0:54:50:3e: 5c:d6:9d:2f:db:e3:f5:bf:c3:06:2f:ff:84:e1:57: 6e:cc:e6:87:c7:6e:30:c4:79:0e:a5:70:18:0c:b6: ed:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:76:62:06:37:44:B2:3D:74:55:F5:EC:DB:BD:46:BB:E8:25:E0:F1 X509v3 Authority Key Identifier: keyid:BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:65:1f:49:63:50:58:30:25:c4:15:08:6a:e8:40:cc:25:8e: 87:dc:dc:87:87:bc:8f:9c:d5:74:b9:90:b8:1e:a9:9c:46:b8: 49:8c:66:29:bd:04:72:9f:bc:53:99:c3:42:63:e5:91:84:03: 22:f4:dc:bf:12:8e:92:24:b0:e2:da:49:c8:64:41:79:f3:37: 9c:31:a4:eb:ea:97:9c:f0:36:fd:a3:5f:19:82:e1:c9:12:c7: 9c:dc:74:dd:85:0d:7e:5b:e2:39:3b:f2:db:30:9e:ef:da:66: c5:ce:54:65:03:38:de:f7:7f:ae:c0:f6:fc:4f:4b:96:71:a7: 6e:20:94:31:f1:cb:c9:13:8d:d1:94:60:f1:52:84:3e:24:e9: 8d:9a:59:36:e2:14:00:3f:6d:aa:4b:aa:81:8b:78:1d:4e:a2: 2e:70:60:71:88:f9:d5:05:f5:a4:cf:62:ef:7b:13:e0:fc:49: eb:e9:1d:77:2f:7e:f3:32:fa:9c:e0:67:de:0c:13:1e:4d:e2: 65:21:eb:1b:d7:ca:ec:93:67:3b:ff:95:a0:85:79:ab:5c:10: 3c:59:e4:5d:95:1d:2a:0c:13:83:bf:a4:44:e6:d1:91:fe:2c: 74:15:0e:d2:d5:9e:85:01:19:ac:94:7d:ac:f0:97:c1:8a:cc: 0e:60:4f:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTdFNjExMC8GA1UEBRMoQkQzN0YxRDQwNzQ3QkU2QzVGNUM2QkEzMzA3REY2NTYw QUI2ODFBMzAeFw0yNTA3MjAyMDMxNTdaFw0yNTA3MjcyMDMxNTdaMBgxFjAUBgNV BAMTDTY4N2Q1MjNkLTk5ZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDWhj67xjzkzJpvjJ4qw3qFI/JH1+hQLGsrAIBo73sYN6gwgabE3hpIOn/w/qv 9FPHtpP5IeVkRYSzGvNZRtHMIDT7EbTXoOVOsfnyB+FRp6zJ66LEBVlDzk6MwIXu 0DlLQgbZ6z3A/18FU/5j8YjNswa6g59KPjA9cOqvXo9YHTZiCC6E5i7bD/j4oVwv fuK+ozNM2Xeocfkbb5B54bVe9zoj8kUZVUlYfJFAD5uBmCM1qZ5H/Gqimi1ZQz0H HxNXYu07sDUuvkUARkpE7dKxJFSiDjFP21xISmHP0FRQPlzWnS/b4/W/wwYv/4Th V27M5ofHbjDEeQ6lcBgMtu2FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYHZiBjdE sj10VfXs271Gu+gl4PEwHwYDVR0jBBgwFoAUvTfx1AdHvmxfXGujMH32Vgq2gaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxN0U2LzU1NzQwRTcwQjNC MzExRUFCMTk4Q0UwREM0RjlBRTAyL3ZUZngxQWRIdm14ZlhHdWpNSDMyVmdxMmdh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdlRmeDFBZEh2bXhmWEd1ak1IMzJWZ3EyZ2FNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgx N0U2LzU1NzQwRTcwQjNCMzExRUFCMTk4Q0UwREM0RjlBRTAyL3ZUZngxQWRIdm14 ZlhHdWpNSDMyVmdxMmdhTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFZlH0ljUFgwJcQVCGroQMwljofc3IeHvI+c1XS5kLgeqZxGuEmMZim9 BHKfvFOZw0Jj5ZGEAyL03L8SjpIksOLaSchkQXnzN5wxpOvql5zwNv2jXxmC4ckS x5zcdN2FDX5b4jk78tswnu/aZsXOVGUDON73f67A9vxPS5Zxp24glDHxy8kTjdGU YPFShD4k6Y2aWTbiFAA/bapLqoGLeB1Ooi5wYHGI+dUF9aTPYu97E+D8SevpHXcv fvMy+pzgZ94MEx5N4mUh6xvXyuyTZzv/laCFeatcEDxZ5F2VHSoME4O/pETm0ZH+ LHQVDtLVnoUBGayUfazwl8GKzA5gT8M= -----END CERTIFICATE-----Generated at Mon Jul 21 12:51:54 2025 by rpki-client