$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft File: vsKCSG834xbxe1ILRVKHvDB_ieg.mft (raw, json) Hash identifier: vu9cffRJ1+QnBsvf7e+kVZ461xu/zd/Hkc0/4TS9CG4= Subject key identifier: 5F:05:EF:43:E0:69:00:14:78:1E:22:58:0F:7B:7E:05:5F:37:2F:1C Authority key identifier: BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 Certificate issuer: /CN=A918A469/serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft Manifest number: EC Signing time: Sat 19 Jul 2025 05:32:09 +0000 Manifest this update: Sat 19 Jul 2025 05:32:09 +0000 Manifest next update: Sat 26 Jul 2025 05:32:09 +0000 Files and hashes: 1: vsKCSG834xbxe1ILRVKHvDB_ieg.crl (hash: dmap/rJCjUK/cVa/gz5hzypVGyMZ52VbV2sKCA5tYpU=) 2: 71403B04F7E511EEBC67981CC4F9AE02.roa (hash: gx9z09oQ5hTA8YH4iSWgc7528eikGurKJ+1nJAQYPAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Validity Not Before: Jul 19 05:32:09 2025 GMT Not After : Jul 26 05:32:09 2025 GMT Subject: CN=687b2dd9-3542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:83:b7:65:3d:5b:d9:ab:54:4c:a0:46:15:c8: e8:a7:8b:92:96:f6:d0:79:e5:a7:77:de:49:3b:51: 91:2f:ff:b1:35:f2:31:11:cf:fa:69:37:ed:19:13: 0e:62:e4:9a:86:ce:7c:39:10:ff:fc:c4:1b:aa:e3: 71:07:cd:29:48:31:dc:ab:b4:62:7e:60:83:ed:7d: 3e:b7:1b:41:46:40:be:24:f0:40:f2:52:4a:f9:fd: ef:9e:69:b7:fc:9f:a6:79:52:5d:e4:f1:29:20:b5: c3:8b:1e:ce:47:75:9f:8e:42:09:52:80:cb:ed:4b: 34:23:83:78:83:95:a2:f0:fc:a6:56:9d:55:f6:93: 3f:9e:16:78:48:72:4a:7f:69:9c:c5:fb:3e:af:9a: 94:28:8a:57:7a:0f:1e:27:3d:88:9d:cc:b0:95:d2: 07:0c:22:c2:da:4c:17:1b:a1:ae:6c:a7:4a:53:50: 66:95:ab:89:5b:c9:85:cb:4c:a8:98:9e:9f:25:d1: d2:97:01:4e:d5:39:39:f8:1f:1d:85:7f:a1:a8:46: b2:3a:47:a0:8e:64:9b:22:ec:b9:a9:a2:1b:2b:5e: 71:c1:b7:d6:06:4d:97:45:3d:4f:f4:23:9d:18:16: 9a:a4:7c:39:14:c6:02:13:68:69:a1:f0:37:c3:73: b6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:05:EF:43:E0:69:00:14:78:1E:22:58:0F:7B:7E:05:5F:37:2F:1C X509v3 Authority Key Identifier: keyid:BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:92:c7:b9:0d:8d:b5:c2:4d:3e:04:c5:39:c1:09:f8:01:5f: b2:08:98:e0:ef:d7:79:ab:5c:17:fd:7d:dc:d7:16:bb:00:b0: 8a:04:9e:c3:47:2d:9c:c2:ab:39:d7:b8:5e:21:9b:e8:e4:6d: 4c:3c:f7:1e:06:a5:0d:aa:6d:26:4e:18:33:08:5d:fc:e4:8a: 23:88:b3:e3:23:2b:79:43:82:5a:b3:58:f7:95:d1:18:75:26: 21:43:97:f7:14:77:42:e5:01:1f:a9:51:78:01:96:df:87:3a: 73:3b:ac:25:d9:b4:40:68:e4:00:9a:78:ea:54:c8:a9:a8:59: 5a:aa:51:cc:04:ce:1e:ba:64:ee:e0:d1:6f:65:85:fc:9f:99: 02:68:30:b2:0b:0b:77:ea:32:ef:a2:8e:66:ec:7c:f9:16:3e: e0:5d:5a:57:28:d9:e7:4f:51:dc:cc:99:d4:a3:59:1d:f0:08: cb:e2:3b:51:21:26:21:bd:ca:25:c2:80:28:4f:b0:25:cc:c7: 48:c6:8d:14:72:4d:9c:3f:e1:60:fa:d8:c2:3e:c9:02:4f:c4: 09:ef:5a:a6:51:b5:0a:28:d7:60:d0:0f:d8:ad:e8:3b:40:82: 04:7e:eb:ee:10:16:75:2d:0d:43:83:e7:19:10:66:2e:17:2c: 44:bc:62:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKEJFQzI4MjQ4NkYzN0UzMTZGMTdCNTIwQjQ1NTI4N0JD MzA3Rjg5RTgwHhcNMjUwNzE5MDUzMjA5WhcNMjUwNzI2MDUzMjA5WjAYMRYwFAYD VQQDEw02ODdiMmRkOS0zNTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IO3ZT1b2atUTKBGFcjop4uSlvbQeeWnd95JO1GRL/+xNfIxEc/6aTftGRMO YuSahs58ORD//MQbquNxB80pSDHcq7RifmCD7X0+txtBRkC+JPBA8lJK+f3vnmm3 /J+meVJd5PEpILXDix7OR3WfjkIJUoDL7Us0I4N4g5Wi8PymVp1V9pM/nhZ4SHJK f2mcxfs+r5qUKIpXeg8eJz2IncywldIHDCLC2kwXG6GubKdKU1BmlauJW8mFy0yo mJ6fJdHSlwFO1Tk5+B8dhX+hqEayOkegjmSbIuy5qaIbK15xwbfWBk2XRT1P9COd GBaapHw5FMYCE2hpofA3w3O2vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8F70Pg aQAUeB4iWA97fgVfNy8cMB8GA1UdIwQYMBaAFL7CgkhvN+MW8XtSC0VSh7wwf4no MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GNTg0MzhGRUY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4YnhlMUlMUlZLSHZEQl9p ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZzS0NTRzgzNHhieGUxSUxSVktIdkRCX2llZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GNTg0MzhGRUY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4 YnhlMUlMUlZLSHZEQl9pZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAikse5DY21wk0+BMU5wQn4AV+yCJjg79d5q1wX/X3c1xa7ALCKBJ7D Ry2cwqs517heIZvo5G1MPPceBqUNqm0mThgzCF385IojiLPjIyt5Q4Jas1j3ldEY dSYhQ5f3FHdC5QEfqVF4AZbfhzpzO6wl2bRAaOQAmnjqVMipqFlaqlHMBM4eumTu 4NFvZYX8n5kCaDCyCwt36jLvoo5m7Hz5Fj7gXVpXKNnnT1HczJnUo1kd8AjL4jtR ISYhvcolwoAoT7AlzMdIxo0Uck2cP+Fg+tjCPskCT8QJ71qmUbUKKNdg0A/Yreg7 QIIEfuvuEBZ1LQ1Dg+cZEGYuFyxEvGKC -----END CERTIFICATE-----Generated at Sun Jul 20 07:31:20 2025 by rpki-client