$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft File: vrCjIjTRl23j3iJaVReALbYTqLY.mft (raw, json) Hash identifier: OVrOmia62nQioekakSAFIrGREU+jFBCzVCfiSDTbnwo= Subject key identifier: C9:77:BD:CD:3E:B7:A5:E7:7D:BD:06:F6:37:91:FB:16:A3:45:CD:BA Authority key identifier: BE:B0:A3:22:34:D1:97:6D:E3:DE:22:5A:55:17:80:2D:B6:13:A8:B6 Certificate issuer: /CN=A91AF17B/serialNumber=BEB0A32234D1976DE3DE225A5517802DB613A8B6 Certificate serial: 05D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft Manifest number: 05CD Signing time: Sun 20 Jul 2025 23:13:43 +0000 Manifest this update: Sun 20 Jul 2025 23:13:43 +0000 Manifest next update: Sun 27 Jul 2025 23:13:43 +0000 Files and hashes: 1: vrCjIjTRl23j3iJaVReALbYTqLY.crl (hash: 9RAlIslD2ovAOk16WRXPaLJ3VM1sWjmzyD/ESElDbzk=) 2: 9C955450C77E11EB9DF68B6AC4F9AE02.roa (hash: 3VhvbAFpyQFgzK9qGDlGhCPjLIqfMEiNUYNuSiAIv58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.crl rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1491 (0x5d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF17B, serialNumber=BEB0A32234D1976DE3DE225A5517802DB613A8B6 Validity Not Before: Jul 20 23:13:43 2025 GMT Not After : Jul 27 23:13:43 2025 GMT Subject: CN=687d7827-76f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:76:8c:e6:8a:35:5e:28:ca:2a:c5:ee:f2:eb: 1c:3a:d4:f4:b6:cc:4e:95:5f:8e:fb:93:10:c8:0b: 45:ee:b1:52:3e:77:00:87:ab:c1:64:29:b8:1b:f2: b4:9e:52:96:32:6d:41:55:40:89:77:dc:74:4b:a3: 51:be:10:57:bc:ae:bc:0c:0d:14:38:3d:75:eb:b9: 35:67:9b:25:ec:fe:42:10:72:78:60:02:8d:68:b9: 77:97:84:fe:59:34:60:33:b7:53:16:32:e2:62:14: 91:3a:6d:d7:a2:9f:b4:28:50:ae:25:fc:f8:3b:a5: dd:ad:bd:d0:dc:9c:00:77:ea:3e:a8:24:04:e9:79: 27:8f:d4:c9:56:3b:3b:d9:88:e4:fa:3f:6f:63:81: ca:29:f9:52:fe:7b:69:be:88:c3:09:b4:d1:9d:81: f2:18:fa:c4:77:30:51:d7:0b:2d:38:06:f5:00:40: 34:f3:2b:2e:ec:40:91:b6:1c:02:96:ac:95:7f:3a: 36:22:c7:ab:d1:5a:d4:5c:85:df:5a:ff:38:63:ce: 5c:ec:c5:eb:7d:ba:c8:92:8c:bc:11:bf:19:63:37: f5:be:61:80:71:67:2d:89:59:94:ad:6e:fa:8a:b3: 4c:e6:83:d0:39:81:78:dd:66:59:eb:ee:f8:0e:17: 14:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:77:BD:CD:3E:B7:A5:E7:7D:BD:06:F6:37:91:FB:16:A3:45:CD:BA X509v3 Authority Key Identifier: keyid:BE:B0:A3:22:34:D1:97:6D:E3:DE:22:5A:55:17:80:2D:B6:13:A8:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:c8:88:4e:91:8a:00:70:d0:6c:6d:a3:e1:da:7c:79:52:22: af:8b:16:d4:55:ea:ae:38:ae:7a:30:68:6e:4e:bf:fe:b2:09: 04:d1:8b:c5:b1:31:c9:66:8f:40:a4:73:09:15:24:96:15:55: 8b:aa:e4:bb:07:4d:70:e7:50:4b:6d:2b:13:62:e9:3e:fb:6f: 7f:7e:99:99:12:30:cb:9c:74:d7:ef:29:5e:4f:d6:5f:4f:fe: fc:12:42:f1:54:08:b0:e1:67:42:5b:00:08:6e:d6:89:44:3d: 49:7a:c3:77:69:43:c5:e2:52:0a:8b:91:57:80:96:f0:c2:3d: 99:18:ee:7d:15:b4:54:b1:eb:8e:0b:f2:aa:f0:18:72:bb:08: ba:b0:5b:1d:99:d2:2c:f0:46:73:3f:16:0e:d7:7e:a8:be:15: c9:8b:8f:9e:51:0a:0b:6c:10:65:c8:df:24:d2:05:f6:fb:10: 1c:86:78:04:4c:c3:8b:58:85:93:dc:2d:58:9d:50:77:7d:57: a3:93:31:8e:25:e1:b0:a1:c6:e7:2b:ba:56:f6:f2:ee:c1:28: ac:c8:2d:7a:32:72:36:f8:5e:3d:71:6f:2e:f1:44:5f:86:2b: fa:5f:dd:8d:0c:c6:24:84:ca:e6:4c:1c:ef:ec:a5:81:c7:4c: 78:11:7b:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxN0IxMTAvBgNVBAUTKEJFQjBBMzIyMzREMTk3NkRFM0RFMjI1QTU1MTc4MDJE QjYxM0E4QjYwHhcNMjUwNzIwMjMxMzQzWhcNMjUwNzI3MjMxMzQzWjAYMRYwFAYD VQQDEw02ODdkNzgyNy03NmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXaM5oo1XijKKsXu8uscOtT0tsxOlV+O+5MQyAtF7rFSPncAh6vBZCm4G/K0 nlKWMm1BVUCJd9x0S6NRvhBXvK68DA0UOD1167k1Z5sl7P5CEHJ4YAKNaLl3l4T+ WTRgM7dTFjLiYhSROm3Xop+0KFCuJfz4O6Xdrb3Q3JwAd+o+qCQE6Xknj9TJVjs7 2Yjk+j9vY4HKKflS/ntpvojDCbTRnYHyGPrEdzBR1wstOAb1AEA08ysu7ECRthwC lqyVfzo2Iser0VrUXIXfWv84Y85c7MXrfbrIkoy8Eb8ZYzf1vmGAcWctiVmUrW76 irNM5oPQOYF43WZZ6+74DhcUZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMl3vc0+ t6Xnfb0G9jeR+xajRc26MB8GA1UdIwQYMBaAFL6woyI00Zdt494iWlUXgC22E6i2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE3Qi9FQjAyNzdGQ0M3 N0ExMUVCQkI4MEI4NzhDNEY5QUUwMi92ckNqSWpUUmwyM2ozaUphVlJlQUxiWVRx TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZyQ2pJalRSbDIzajNpSmFWUmVBTGJZVHFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE3Qi9FQjAyNzdGQ0M3N0ExMUVCQkI4MEI4NzhDNEY5QUUwMi92ckNqSWpUUmwy M2ozaUphVlJlQUxiWVRxTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApyIhOkYoAcNBsbaPh2nx5UiKvixbUVequOK56MGhuTr/+sgkE0YvF sTHJZo9ApHMJFSSWFVWLquS7B01w51BLbSsTYuk++29/fpmZEjDLnHTX7yleT9Zf T/78EkLxVAiw4WdCWwAIbtaJRD1JesN3aUPF4lIKi5FXgJbwwj2ZGO59FbRUseuO C/Kq8Bhyuwi6sFsdmdIs8EZzPxYO136ovhXJi4+eUQoLbBBlyN8k0gX2+xAchngE TMOLWIWT3C1YnVB3fVejkzGOJeGwocbnK7pW9vLuwSisyC16MnI2+F49cW8u8URf hiv6X92NDMYkhMrmTBzv7KWBx0x4EXsM -----END CERTIFICATE-----Generated at Mon Jul 21 06:44:08 2025 by rpki-client