$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.mft File: vRa1ZDKuX0MCXE2hE0U39wTrQJY.mft (raw, json) Hash identifier: tScJvkvKmmsK9Fw9frJjP1YilCNLvFfjU92ZL+H3U2Q= Subject key identifier: A4:A2:B6:FF:90:5F:30:36:97:27:6A:8B:0C:5B:CA:43:56:99:A8:91 Authority key identifier: BD:16:B5:64:32:AE:5F:43:02:5C:4D:A1:13:45:37:F7:04:EB:40:96 Certificate issuer: /CN=A91FEB89/serialNumber=BD16B56432AE5F43025C4DA1134537F704EB4096 Certificate serial: 0260 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRa1ZDKuX0MCXE2hE0U39wTrQJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.mft Manifest number: 0259 Signing time: Mon 21 Jul 2025 02:06:45 +0000 Manifest this update: Mon 21 Jul 2025 02:06:45 +0000 Manifest next update: Mon 28 Jul 2025 02:06:44 +0000 Files and hashes: 1: vRa1ZDKuX0MCXE2hE0U39wTrQJY.crl (hash: SGWrHZ85XHf3yRTPrhRnME6lJFlgN6QSC7hcRXPgDk8=) 2: 5706BF6024F111ED84831E21C4F9AE02.roa (hash: KwT8765tV1xGz2sf7ujcAdTQLGt8VA1bqI5xYKuBmVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.crl rsync://rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRa1ZDKuX0MCXE2hE0U39wTrQJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEB89, serialNumber=BD16B56432AE5F43025C4DA1134537F704EB4096 Validity Not Before: Jul 21 02:06:45 2025 GMT Not After : Jul 28 02:06:44 2025 GMT Subject: CN=687da0b5-74a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:93:39:9c:88:26:1b:b2:61:65:08:9a:03:17: 81:32:7c:52:ce:87:9f:e0:e8:d1:de:ee:e4:59:58: b5:60:7e:94:ea:ba:2a:03:0d:9e:7b:37:2d:74:9d: a7:f1:fd:8b:41:29:0b:6a:a9:b8:0d:44:51:8c:e2: 74:3f:ad:1d:47:a9:e0:76:db:ea:f8:c1:be:e1:d5: 02:25:d1:87:9c:5c:37:2e:b4:11:a6:e8:30:f7:64: b7:c1:ee:e9:7e:db:e9:60:ae:a0:95:49:5f:d0:f2: fe:ee:00:09:be:42:aa:c2:68:61:55:86:f3:a2:1e: c6:92:cc:5c:60:ee:0c:1b:93:32:4f:f2:e0:92:50: 65:c6:5b:7e:ae:62:c1:db:3d:01:c6:ff:45:c3:d3: 1a:7c:6c:11:d3:02:6c:25:0f:5f:e5:7c:9b:25:70: 07:fa:f7:9b:38:1d:87:3f:b0:5a:a3:20:d8:ce:36: 09:42:a0:2b:8c:23:f8:0d:19:da:56:7e:69:f6:87: 30:a1:87:f7:3d:bd:03:01:d5:f9:e5:36:f8:2a:b1: b6:1c:b8:22:28:fc:4c:e6:9b:9f:a0:8f:47:8c:38: 10:d1:dd:d9:38:25:a9:65:ce:14:11:b8:61:f0:2f: 03:82:93:d4:c4:b1:db:51:cf:56:1f:6d:b7:52:59: 2f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:A2:B6:FF:90:5F:30:36:97:27:6A:8B:0C:5B:CA:43:56:99:A8:91 X509v3 Authority Key Identifier: keyid:BD:16:B5:64:32:AE:5F:43:02:5C:4D:A1:13:45:37:F7:04:EB:40:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRa1ZDKuX0MCXE2hE0U39wTrQJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEB89/96D3BA5C24ED11EDB8676118C4F9AE02/vRa1ZDKuX0MCXE2hE0U39wTrQJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:f8:8c:95:35:df:dc:77:60:be:04:5b:94:c7:e0:f9:0f:4f: 94:01:cc:6b:92:8e:e1:48:01:88:a9:03:9a:b9:87:ae:f5:15: b6:e7:e3:06:57:1d:77:75:73:f5:33:e3:bd:4c:a1:b5:c6:1f: 57:bc:8f:51:a8:6b:3c:69:70:79:99:39:98:ef:03:b6:7c:58: 11:8e:9b:f6:d9:bc:e9:82:a5:42:bb:3c:fd:55:e6:d4:5e:b0: 2c:34:02:55:f5:f6:bc:d4:fb:52:57:00:a2:61:f6:66:99:5f: 01:38:4e:ca:7b:e0:ef:9c:2b:a8:96:5d:5a:9f:8a:2f:5c:6b: c0:bb:fb:1d:e0:f7:e2:d6:03:46:56:e9:21:c8:3d:75:d0:0d: d4:22:c4:8f:65:f5:a3:cd:a5:4c:df:22:25:90:a5:8e:4a:96: 5d:11:48:7f:15:6f:7c:2a:c0:56:a2:48:4a:73:aa:e6:f5:c3: 7e:3c:e8:4f:1c:3e:63:7d:f4:c7:bb:46:92:3a:13:70:45:a0: 19:e4:c4:94:b5:35:97:03:4e:3b:d9:4f:e4:2d:9a:87:14:27: 98:e3:79:84:8a:d8:13:b3:26:db:aa:6a:89:27:9d:8c:12:1c: ec:87:28:db:87:3f:6d:ed:bd:c7:52:83:70:3b:64:78:6f:41: 38:e0:8a:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVCODkxMTAvBgNVBAUTKEJEMTZCNTY0MzJBRTVGNDMwMjVDNERBMTEzNDUzN0Y3 MDRFQjQwOTYwHhcNMjUwNzIxMDIwNjQ1WhcNMjUwNzI4MDIwNjQ0WjAYMRYwFAYD VQQDEw02ODdkYTBiNS03NGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5M5nIgmG7JhZQiaAxeBMnxSzoef4OjR3u7kWVi1YH6U6roqAw2eezctdJ2n 8f2LQSkLaqm4DURRjOJ0P60dR6ngdtvq+MG+4dUCJdGHnFw3LrQRpugw92S3we7p ftvpYK6glUlf0PL+7gAJvkKqwmhhVYbzoh7GksxcYO4MG5MyT/LgklBlxlt+rmLB 2z0Bxv9Fw9MafGwR0wJsJQ9f5XybJXAH+vebOB2HP7BaoyDYzjYJQqArjCP4DRna Vn5p9ocwoYf3Pb0DAdX55Tb4KrG2HLgiKPxM5pufoI9HjDgQ0d3ZOCWpZc4UEbhh 8C8DgpPUxLHbUc9WH223UlkvVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSitv+Q XzA2lydqiwxbykNWmaiRMB8GA1UdIwQYMBaAFL0WtWQyrl9DAlxNoRNFN/cE60CW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUI4OS85NkQzQkE1QzI0 RUQxMUVEQjg2NzYxMThDNEY5QUUwMi92UmExWkRLdVgwTUNYRTJoRTBVMzl3VHJR SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZSYTFaREt1WDBNQ1hFMmhFMFUzOXdUclFKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUI4OS85NkQzQkE1QzI0RUQxMUVEQjg2NzYxMThDNEY5QUUwMi92UmExWkRLdVgw TUNYRTJoRTBVMzl3VHJRSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDS+IyVNd/cd2C+BFuUx+D5D0+UAcxrko7hSAGIqQOauYeu9RW25+MG Vx13dXP1M+O9TKG1xh9XvI9RqGs8aXB5mTmY7wO2fFgRjpv22bzpgqVCuzz9VebU XrAsNAJV9fa81PtSVwCiYfZmmV8BOE7Ke+DvnCuoll1an4ovXGvAu/sd4Pfi1gNG VukhyD110A3UIsSPZfWjzaVM3yIlkKWOSpZdEUh/FW98KsBWokhKc6rm9cN+POhP HD5jffTHu0aSOhNwRaAZ5MSUtTWXA0472U/kLZqHFCeY43mEitgTsybbqmqJJ52M Ehzshyjbhz9t7b3HUoNwO2R4b0E44IrA -----END CERTIFICATE-----Generated at Mon Jul 21 07:12:02 2025 by rpki-client