$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.mft File: N-24AKVpn6hX9211S38vQXXuqF0.mft (raw, json) Hash identifier: zQHGmGucb+aJaRMHmEgh7b2zcOppM/2bMGoCjAU3LjA= Subject key identifier: 51:7E:42:5F:55:10:4F:5D:8E:FE:79:28:46:DB:9B:DE:B2:94:E3:DC Authority key identifier: 37:ED:B8:00:A5:69:9F:A8:57:F7:6D:75:4B:7F:2F:41:75:EE:A8:5D Certificate issuer: /CN=A91E6F07/serialNumber=37EDB800A5699FA857F76D754B7F2F4175EEA85D Certificate serial: 086B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-24AKVpn6hX9211S38vQXXuqF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.mft Manifest number: 14BB Signing time: Sun 20 Jul 2025 18:26:14 +0000 Manifest this update: Sun 20 Jul 2025 18:26:13 +0000 Manifest next update: Sun 27 Jul 2025 18:26:13 +0000 Files and hashes: 1: N-24AKVpn6hX9211S38vQXXuqF0.crl (hash: rs9JhdZb2CthomAtA+WMQHe5r//etdvaac/uvzr45IY=) 2: 6E570966CD1B11EA9613AA1DC4F9AE02.roa (hash: ohLcJGiw9Qpz+3q7Qq1rXsYI1VYW0bgcQ/ITvPJhtyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.crl rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-24AKVpn6hX9211S38vQXXuqF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:26:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2155 (0x86b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6F07, serialNumber=37EDB800A5699FA857F76D754B7F2F4175EEA85D Validity Not Before: Jul 20 18:26:13 2025 GMT Not After : Jul 27 18:26:13 2025 GMT Subject: CN=687d34c5-106b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b8:fe:1e:3c:95:ca:93:1b:e3:8b:52:e6:0a: 74:2b:56:9a:1a:92:90:16:ea:4d:3e:8d:1a:ab:c0: b6:9f:dc:17:85:81:a7:65:2a:34:4e:46:35:78:77: 32:0a:be:1d:a4:4f:a8:5a:fd:72:81:30:4d:ad:38: ed:a3:3e:40:48:1c:33:e6:16:6c:9c:8a:80:28:1a: c6:b6:a7:d5:16:c8:14:56:50:23:e8:5a:a9:02:06: 22:df:68:99:bc:1b:1e:4b:f0:8d:e7:fd:02:41:fe: 5c:6d:55:c4:61:cb:49:2a:c8:2f:69:b3:47:ba:bb: 07:7b:1f:2f:02:6d:3e:59:3c:29:6a:b3:62:4f:00: ce:45:9c:c2:52:44:f5:0d:3f:20:99:14:6f:e9:07: 34:ed:bd:08:5d:fc:d5:73:92:88:3a:fc:bb:56:11: 03:10:88:45:7d:e0:e5:51:0d:8f:3e:a3:6e:4f:46: c2:80:4d:4d:53:7d:f5:1e:08:31:70:6a:72:57:1a: 1c:5e:12:37:9c:37:22:d7:48:3f:29:8b:cd:3d:ee: 38:33:3f:00:96:32:31:5b:a4:27:16:b2:bf:fd:f3: 97:e1:03:41:98:b8:5b:3d:5e:83:08:0d:39:26:fe: a0:d7:47:19:b7:0d:f9:b4:5c:54:bb:9f:ed:52:24: 37:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:7E:42:5F:55:10:4F:5D:8E:FE:79:28:46:DB:9B:DE:B2:94:E3:DC X509v3 Authority Key Identifier: keyid:37:ED:B8:00:A5:69:9F:A8:57:F7:6D:75:4B:7F:2F:41:75:EE:A8:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N-24AKVpn6hX9211S38vQXXuqF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/N-24AKVpn6hX9211S38vQXXuqF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:73:5a:3f:be:1a:6c:d3:de:9a:7e:d6:df:75:b2:7f:d9:20: 1d:9e:6a:98:09:7f:72:e7:3d:1c:1f:d2:fa:36:13:23:19:ce: a5:02:d5:39:64:60:cc:75:31:43:b5:a0:d8:f9:57:cb:ef:72: 57:74:28:e9:e5:27:fd:b1:71:be:3c:7e:fb:56:1d:35:49:5e: 03:03:11:8b:0a:48:01:1f:dd:57:47:f2:90:86:4e:ae:18:85: d7:98:c3:d4:0b:78:ac:e9:97:9d:5a:a9:c6:ba:94:82:f7:e1: bb:d6:5e:1e:90:e3:c2:83:5b:4d:63:6b:b7:b9:9b:42:65:6c: f8:40:a6:29:a4:2a:9f:66:cf:7f:74:b3:0e:c5:c1:17:48:32: b9:94:a7:d1:38:81:e6:71:73:95:38:fc:79:4a:0e:54:e4:89: 83:f8:03:b4:d1:3a:cb:d3:e8:f1:2c:f4:b0:99:03:16:d5:bb: 18:20:57:3d:e3:4a:c0:57:83:58:74:b5:37:3e:af:9e:9e:58: c9:08:36:49:a8:fd:44:04:fd:8c:c8:30:75:e2:ec:3b:7e:e6: 83:3d:12:bd:27:e6:40:44:92:5f:30:02:02:e0:93:55:57:6f: 67:94:46:ab:c9:6a:8e:66:1a:d7:7b:e0:56:4a:dc:5f:21:47: 64:23:46:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZGMDcxMTAvBgNVBAUTKDM3RURCODAwQTU2OTlGQTg1N0Y3NkQ3NTRCN0YyRjQx NzVFRUE4NUQwHhcNMjUwNzIwMTgyNjEzWhcNMjUwNzI3MTgyNjEzWjAYMRYwFAYD VQQDEw02ODdkMzRjNS0xMDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Lj+HjyVypMb44tS5gp0K1aaGpKQFupNPo0aq8C2n9wXhYGnZSo0TkY1eHcy Cr4dpE+oWv1ygTBNrTjtoz5ASBwz5hZsnIqAKBrGtqfVFsgUVlAj6FqpAgYi32iZ vBseS/CN5/0CQf5cbVXEYctJKsgvabNHursHex8vAm0+WTwparNiTwDORZzCUkT1 DT8gmRRv6Qc07b0IXfzVc5KIOvy7VhEDEIhFfeDlUQ2PPqNuT0bCgE1NU331Hggx cGpyVxocXhI3nDci10g/KYvNPe44Mz8AljIxW6QnFrK//fOX4QNBmLhbPV6DCA05 Jv6g10cZtw35tFxUu5/tUiQ3QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFF+Ql9V EE9djv55KEbbm96ylOPcMB8GA1UdIwQYMBaAFDftuAClaZ+oV/dtdUt/L0F17qhd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkYwNy9DMTNEODFEODA1 MjkxMUVBODJENzQzMzdDNEY5QUUwMi9OLTI0QUtWcG42aFg5MjExUzM4dlFYWHVx RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04tMjRBS1ZwbjZoWDkyMTFTMzh2UVhYdXFGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkYwNy9DMTNEODFEODA1MjkxMUVBODJENzQzMzdDNEY5QUUwMi9OLTI0QUtWcG42 aFg5MjExUzM4dlFYWHVxRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/c1o/vhps096aftbfdbJ/2SAdnmqYCX9y5z0cH9L6NhMjGc6lAtU5 ZGDMdTFDtaDY+VfL73JXdCjp5Sf9sXG+PH77Vh01SV4DAxGLCkgBH91XR/KQhk6u GIXXmMPUC3is6ZedWqnGupSC9+G71l4ekOPCg1tNY2u3uZtCZWz4QKYppCqfZs9/ dLMOxcEXSDK5lKfROIHmcXOVOPx5Sg5U5ImD+AO00TrL0+jxLPSwmQMW1bsYIFc9 40rAV4NYdLU3Pq+enljJCDZJqP1EBP2MyDB14uw7fuaDPRK9J+ZARJJfMAIC4JNV V29nlEaryWqOZhrXe+BWStxfIUdkI0ay -----END CERTIFICATE-----Generated at Mon Jul 21 06:41:59 2025 by rpki-client