$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: WbCWaq8jgIWWBG2cs3KvUYvJEcf+ODBSYRXj6YDOtvM= Subject key identifier: 6A:9A:51:0A:C2:52:2D:8A:75:42:37:6A:C0:D4:30:3A:99:04:D4:2E Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: 019F Signing time: Sat 19 Jul 2025 03:36:21 +0000 Manifest this update: Sat 19 Jul 2025 03:36:20 +0000 Manifest next update: Sat 26 Jul 2025 03:36:20 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: 9oLSR7iJqIaBakRHLAYi6BlFVowx86NJ+AshZqnXj3k=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: NxTIAEmzVEkhnPtaZCQQUJAnARHilUKNCFgj1AKD+gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: Jul 19 03:36:20 2025 GMT Not After : Jul 26 03:36:20 2025 GMT Subject: CN=687b12b4-8bea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ec:13:53:ad:9f:26:b4:5f:41:0d:95:02:2d: 9a:99:b1:3f:df:37:4c:1f:c0:8b:eb:b9:b5:ef:68: a1:0c:6d:e1:37:aa:88:20:2d:4b:e2:59:7a:25:1b: 0d:92:35:8a:13:a0:81:39:ab:47:24:da:da:08:1e: df:e6:61:6b:b3:9e:a5:2c:e7:cd:76:fe:ba:e7:0b: ad:7d:ba:9e:83:21:2f:ae:0c:a8:4a:c3:54:3b:fe: fd:6a:48:96:0f:f0:48:78:4b:4c:c7:ba:c3:3f:4d: 30:7f:8f:d0:9a:6a:7c:f3:98:50:5f:ed:5b:7a:5b: 34:01:e8:99:ab:3c:50:33:d5:e9:0c:d0:2e:66:fa: 4c:8e:88:4c:01:5f:49:6c:f8:fd:8f:79:15:28:0d: 99:0c:9d:44:41:4c:a7:3b:15:5e:b9:ca:dc:9f:cb: af:e1:29:ba:07:66:2e:0d:3e:2a:fc:8e:dc:0c:1b: e2:d2:1d:00:cb:cb:05:a0:33:f0:1b:16:43:c7:d6: 49:89:d9:49:03:c2:2c:68:d6:da:e8:d7:cf:7e:77: 27:53:4b:84:7e:55:d9:e8:8e:3a:e3:c4:e3:1b:1a: 59:56:77:d6:ec:47:1a:b4:79:4c:3f:7d:5b:93:11: 57:67:82:70:fe:44:b4:49:4d:4f:c7:81:12:8c:9d: dc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:9A:51:0A:C2:52:2D:8A:75:42:37:6A:C0:D4:30:3A:99:04:D4:2E X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:83:6f:95:8c:3c:3f:32:05:7f:4d:2a:5b:ad:2c:0f:a2:e9: bf:4c:0c:7b:28:a2:46:e8:08:45:7d:88:5c:0e:6c:56:31:61: cc:66:2b:41:5d:1e:2f:e9:d2:12:9c:3f:0e:9e:37:e2:c7:2b: 25:db:41:a1:33:94:6a:fd:48:74:19:5c:7d:a6:2b:ed:ed:ae: dd:fc:71:de:a3:19:c5:97:81:c0:6a:40:80:6c:96:b9:b2:61: fa:ad:41:9c:da:6d:d6:01:42:48:40:64:a6:db:42:2e:89:e6: d7:0b:fc:99:c1:82:1b:fd:e3:77:5e:9f:ad:45:30:8c:46:af: 28:46:5d:73:52:3b:c1:60:d5:c9:25:ac:83:f1:02:17:68:82: 48:6e:56:d4:a0:e8:18:cd:c9:f9:09:9e:aa:d1:f4:b2:9b:7d: 10:3e:34:ab:8a:1c:2c:e1:41:be:0c:de:8b:6c:47:bd:b9:dc: 65:25:07:6d:14:0e:2f:b8:97:27:ff:e9:31:00:bb:84:19:40: 5f:a3:40:fa:9b:b7:49:d3:d1:c1:8c:14:06:c6:5d:c0:5b:fa: 0c:b5:7c:d0:66:ba:7d:7a:d9:a1:1a:a0:5b:f3:78:ae:9c:94: 9a:20:3a:29:cb:d5:0e:e0:fb:d0:e6:31:f4:58:a2:f3:40:75: a5:72:a1:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUwNzE5MDMzNjIwWhcNMjUwNzI2MDMzNjIwWjAYMRYwFAYD VQQDEw02ODdiMTJiNC04YmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4uwTU62fJrRfQQ2VAi2ambE/3zdMH8CL67m172ihDG3hN6qIIC1L4ll6JRsN kjWKE6CBOatHJNraCB7f5mFrs56lLOfNdv665wutfbqegyEvrgyoSsNUO/79akiW D/BIeEtMx7rDP00wf4/Qmmp885hQX+1bels0AeiZqzxQM9XpDNAuZvpMjohMAV9J bPj9j3kVKA2ZDJ1EQUynOxVeucrcn8uv4Sm6B2YuDT4q/I7cDBvi0h0Ay8sFoDPw GxZDx9ZJidlJA8IsaNba6NfPfncnU0uEflXZ6I4648TjGxpZVnfW7EcatHlMP31b kxFXZ4Jw/kS0SU1Px4ESjJ3cYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqaUQrC Ui2KdUI3asDUMDqZBNQuMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmg2+VjDw/MgV/TSpbrSwPoum/TAx7KKJG6AhFfYhcDmxWMWHMZitB XR4v6dISnD8Onjfixysl20GhM5Rq/Uh0GVx9pivt7a7d/HHeoxnFl4HAakCAbJa5 smH6rUGc2m3WAUJIQGSm20IuiebXC/yZwYIb/eN3Xp+tRTCMRq8oRl1zUjvBYNXJ JayD8QIXaIJIblbUoOgYzcn5CZ6q0fSym30QPjSrihws4UG+DN6LbEe9udxlJQdt FA4vuJcn/+kxALuEGUBfo0D6m7dJ09HBjBQGxl3AW/oMtXzQZrp9etmhGqBb83iu nJSaIDopy9UO4PvQ5jH0WKLzQHWlcqGA -----END CERTIFICATE-----Generated at Sun Jul 20 07:29:15 2025 by rpki-client