$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft File: Vj8ylI68GzkPMqCqPzYUeFr858I.mft (raw, json) Hash identifier: k5FBOlGZPYoZ5c3G3v71yzjU6iEZ1waRCKcuZNNnm4E= Subject key identifier: C4:BE:12:11:90:63:AD:17:7F:89:FB:7A:D4:45:23:82:2D:CA:BE:7E Authority key identifier: 56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 Certificate issuer: /CN=A917AC8C/serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Certificate serial: 030B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft Manifest number: 0303 Signing time: Tue 09 Sep 2025 01:18:21 +0000 Manifest this update: Tue 09 Sep 2025 01:18:20 +0000 Manifest next update: Tue 16 Sep 2025 01:18:20 +0000 Files and hashes: 1: Vj8ylI68GzkPMqCqPzYUeFr858I.crl (hash: rDcoqya0UuhiFrZ53OxC/IjMOGJXH98hv7NX8V4tARY=) 2: EA5EB99CEBBD11ECB3DAFE39C4F9AE02.roa (hash: 6Otg6zDUC3T6chkRppH8+51GAfFhb4rhNrj+nGsoi3I=) 3: EB756434EBBD11ECB3DAFE39C4F9AE02.roa (hash: dSIhsF2Xt53EsY5Qnrga5XSOK9oGKkuxZKuBhxw3Vak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 779 (0x30b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC8C, serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Validity Not Before: Sep 9 01:18:20 2025 GMT Not After : Sep 16 01:18:20 2025 GMT Subject: CN=68bf805d-ba19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ac:d4:91:6b:d9:f8:81:9a:41:48:5b:93:52: 4a:d0:ca:57:e8:35:b0:2a:56:cf:58:9d:db:47:4f: e6:44:ba:f9:79:9c:b4:14:ca:36:c9:28:54:89:7b: 47:4c:e7:3e:25:10:61:b6:87:57:10:dc:ec:ea:99: 26:cb:0c:54:f5:fa:e1:2a:cc:dd:5b:d9:41:e5:3f: e6:78:8e:71:ac:45:b2:a9:cf:6c:37:fd:9a:5d:de: 77:17:fb:d3:ce:39:8e:be:e9:ea:f9:a4:bc:48:89: 2e:39:9c:74:15:02:75:f2:9f:ca:dc:68:b1:f2:1e: 01:d1:d7:f9:53:a0:5f:6f:49:f7:72:dc:21:be:b0: fa:4a:f9:7c:f9:56:7d:d1:0a:2c:5e:c5:40:cf:f1: 34:f8:4b:12:5e:25:b4:28:83:40:13:74:14:1c:4c: 02:7a:84:e7:9f:6e:a6:7b:e2:03:eb:86:7f:18:ed: cd:b6:10:b6:c3:68:df:31:3d:51:e5:57:86:65:f3: e1:54:7c:e2:83:d7:4c:58:62:14:71:60:2b:9b:79: eb:17:91:4b:ce:21:fc:07:5a:72:0e:5e:89:ae:91: 7c:a1:b8:15:1b:44:78:19:dd:77:c2:13:bb:bb:61: dd:d7:4a:a6:44:b9:96:02:45:69:84:e1:f4:d1:95: 82:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:BE:12:11:90:63:AD:17:7F:89:FB:7A:D4:45:23:82:2D:CA:BE:7E X509v3 Authority Key Identifier: keyid:56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:54:c1:68:f6:c9:1b:dd:fc:74:c7:33:8c:d1:5c:3f:bf:7c: 12:76:b4:69:0a:ed:12:a9:8c:b5:60:7c:df:b0:ad:6e:43:d3: 12:cd:64:b9:62:71:a8:6e:2b:c1:64:a5:50:24:8c:e0:fd:1f: f8:5f:0a:0d:76:0d:55:d2:f9:da:d4:56:69:96:13:5d:07:81: 13:2d:23:15:85:71:35:9a:09:43:c2:46:d8:7b:82:6f:f4:c1: d9:52:9e:9b:57:7f:e0:4c:e4:af:0e:32:3c:20:74:18:87:11: 4a:63:c6:26:8b:33:39:28:c2:66:b3:12:53:5f:a9:8a:a8:5f: 73:f2:c6:32:81:db:a5:6d:1f:ea:57:c4:f0:cc:80:da:c0:81: 29:62:e3:17:ad:8b:72:0c:67:ca:53:76:81:16:e1:67:c0:cd: 99:ec:e3:ca:f6:30:ca:7c:7e:c2:76:66:08:15:bc:f7:a2:ac: 07:9c:c3:61:84:4e:91:ab:f9:4b:78:6d:0e:da:6b:57:ff:b5: 74:29:cf:b4:be:f9:bc:5e:98:82:c4:d7:5f:73:d1:b6:8a:7b: 50:fb:cf:16:75:eb:f6:7d:b6:9b:a7:67:1f:9c:9f:44:06:d2: c4:5c:22:08:07:35:b5:ba:b3:fb:1a:39:a0:03:c5:6f:55:2e: 99:ab:ee:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDOEMxMTAvBgNVBAUTKDU2M0YzMjk0OEVCQzFCMzkwRjMyQTBBQTNGMzYxNDc4 NUFGQ0U3QzIwHhcNMjUwOTA5MDExODIwWhcNMjUwOTE2MDExODIwWjAYMRYwFAYD VQQDEw02OGJmODA1ZC1iYTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6zUkWvZ+IGaQUhbk1JK0MpX6DWwKlbPWJ3bR0/mRLr5eZy0FMo2yShUiXtH TOc+JRBhtodXENzs6pkmywxU9frhKszdW9lB5T/meI5xrEWyqc9sN/2aXd53F/vT zjmOvunq+aS8SIkuOZx0FQJ18p/K3Gix8h4B0df5U6Bfb0n3ctwhvrD6Svl8+VZ9 0QosXsVAz/E0+EsSXiW0KINAE3QUHEwCeoTnn26me+ID64Z/GO3NthC2w2jfMT1R 5VeGZfPhVHzig9dMWGIUcWArm3nrF5FLziH8B1pyDl6JrpF8obgVG0R4Gd13whO7 u2Hd10qmRLmWAkVphOH00ZWC4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMS+EhGQ Y60Xf4n7etRFI4Ityr5+MB8GA1UdIwQYMBaAFFY/MpSOvBs5DzKgqj82FHha/OfC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUM4Qy84OTk2NkRDQUVC QjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6a1BNcUNxUHpZVWVGcjg1 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqOHlsSTY4R3prUE1xQ3FQellVZUZyODU4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUM4Qy84OTk2NkRDQUVCQjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6 a1BNcUNxUHpZVWVGcjg1OEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYVMFo9skb3fx0xzOM0Vw/v3wSdrRpCu0SqYy1YHzfsK1uQ9MSzWS5 YnGobivBZKVQJIzg/R/4XwoNdg1V0vna1FZplhNdB4ETLSMVhXE1mglDwkbYe4Jv 9MHZUp6bV3/gTOSvDjI8IHQYhxFKY8YmizM5KMJmsxJTX6mKqF9z8sYygdulbR/q V8TwzIDawIEpYuMXrYtyDGfKU3aBFuFnwM2Z7OPK9jDKfH7CdmYIFbz3oqwHnMNh hE6Rq/lLeG0O2mtX/7V0Kc+0vvm8XpiCxNdfc9G2intQ+88Wdev2fbabp2cfnJ9E BtLEXCIIBzW1urP7GjmgA8VvVS6Zq+4o -----END CERTIFICATE-----Generated at Tue Sep 9 17:26:41 2025 by rpki-client