$ rpki-client -vvf rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft File: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft (raw, json) Hash identifier: cjKxMkz8n2akMZAdTaSECUW2m7PpBueF9V92QcFzxBA= Subject key identifier: 1F:24:B2:56:0F:DB:44:73:7C:F6:A2:5A:74:33:A5:16:00:27:32:89 Authority key identifier: BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 Certificate issuer: /CN=A917B503/serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft Manifest number: DB Signing time: Fri 05 Sep 2025 05:59:00 +0000 Manifest this update: Fri 05 Sep 2025 05:59:00 +0000 Manifest next update: Fri 12 Sep 2025 05:59:00 +0000 Files and hashes: 1: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl (hash: oO0sbL00btGly1f4QTk9CXAIFs5xWNahUPbA8i13tfE=) 2: FF7048A08BB111EF8981B871C4F9AE02.roa (hash: 9uEwzB8ckH0lupP2vcJh2pZkJ61ZIv0842o4n0sbwyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B503, serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Validity Not Before: Sep 5 05:59:00 2025 GMT Not After : Sep 12 05:59:00 2025 GMT Subject: CN=68ba7c24-018c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ea:45:61:5d:bb:37:9e:a2:e5:df:3c:1e:2a: fd:5e:f3:b7:4a:db:64:56:2f:bc:b2:46:57:0d:eb: 0a:ec:1c:b2:45:94:cd:5f:f2:35:aa:49:ed:58:a2: 26:cd:67:83:40:31:9e:6a:87:a4:86:df:91:d5:b4: 9d:7c:9c:64:ec:99:fa:5b:bb:0a:29:a8:ec:d6:c7: 5c:25:e3:10:f2:59:c3:2e:a3:72:c8:18:66:e1:04: 24:8f:07:a5:7d:24:76:ef:f3:99:b1:88:cd:26:96: 21:82:f0:0b:0b:d9:67:a8:5e:7f:38:11:ee:cc:df: 9a:74:40:30:aa:c0:e9:a2:6e:86:45:84:f7:68:f4: 5f:34:36:00:06:84:93:c6:4c:8a:82:bc:19:99:f2: 65:0e:f8:0b:f9:b0:76:02:50:30:56:62:ac:94:fe: 29:99:14:70:65:19:7d:ef:65:52:c8:9d:27:0a:56: ad:b3:8b:1b:2f:03:65:ce:43:99:cf:db:4c:6e:e3: 53:03:f6:ac:5c:eb:4b:37:7f:00:92:99:85:40:98: 98:ba:32:1e:2f:86:06:91:80:d9:aa:d5:bd:4d:84: 25:d5:32:10:ec:c1:6a:de:f3:dd:05:16:25:f0:bb: 8a:37:f9:d8:d5:ba:fa:e2:a8:65:e1:c6:ee:60:4d: 3f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:24:B2:56:0F:DB:44:73:7C:F6:A2:5A:74:33:A5:16:00:27:32:89 X509v3 Authority Key Identifier: keyid:BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:87:4e:10:ed:1a:44:34:1b:08:e1:80:dc:a3:34:d4:4a:79: 4a:ed:4b:54:d8:78:95:a5:e6:f9:75:14:66:45:7a:20:f4:b3: 5a:5d:21:de:15:da:38:c6:89:19:69:6b:dc:17:ed:0a:b2:d4: db:f7:92:53:62:ee:49:42:20:9e:f8:a6:b0:02:26:23:9e:dd: 46:a9:de:16:22:f7:11:f9:e9:80:12:3a:06:e2:af:2a:ad:9c: c0:13:27:45:6b:fd:79:71:ca:b3:b7:60:ae:0a:ec:6b:a0:03: f4:2e:f2:ff:cd:73:33:84:f0:ef:5b:53:e7:0b:55:52:6c:44: 02:95:64:28:da:46:fa:08:fa:34:eb:c9:26:4b:57:f0:c3:4d: 32:cf:dc:cc:ad:f4:d9:8d:9f:06:bc:63:1a:d1:e0:92:7d:0f: ef:18:08:3f:8d:8a:f4:e3:ab:d7:49:01:db:31:87:bd:e9:14: 00:1e:fe:5b:cd:95:75:67:94:3b:6a:0b:89:b6:3c:15:15:ff: 08:33:c0:e8:f7:61:54:c7:6d:20:bd:70:bd:a6:34:38:17:fb: 3f:5d:4b:f8:e6:95:ed:ae:17:5b:6c:0b:61:99:b9:a1:14:c6: 95:ed:10:20:f8:9b:87:55:52:32:97:5d:80:31:45:b3:4f:e8: 3b:df:ea:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MDMxMTAvBgNVBAUTKEJENjNFMEREQ0I1Q0Q0MUIzNDUwMURGMkU4MUEyQTcy Q0VFMzZFRjIwHhcNMjUwOTA1MDU1OTAwWhcNMjUwOTEyMDU1OTAwWjAYMRYwFAYD VQQDEw02OGJhN2MyNC0wMThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+pFYV27N56i5d88Hir9XvO3SttkVi+8skZXDesK7ByyRZTNX/I1qkntWKIm zWeDQDGeaoekht+R1bSdfJxk7Jn6W7sKKajs1sdcJeMQ8lnDLqNyyBhm4QQkjwel fSR27/OZsYjNJpYhgvALC9lnqF5/OBHuzN+adEAwqsDpom6GRYT3aPRfNDYABoST xkyKgrwZmfJlDvgL+bB2AlAwVmKslP4pmRRwZRl972VSyJ0nClats4sbLwNlzkOZ z9tMbuNTA/asXOtLN38AkpmFQJiYujIeL4YGkYDZqtW9TYQl1TIQ7MFq3vPdBRYl 8LuKN/nY1br64qhl4cbuYE0/0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8kslYP 20RzfPaiWnQzpRYAJzKJMB8GA1UdIwQYMBaAFL1j4N3LXNQbNFAd8ugaKnLO427y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUwMy83Qjg4NUZFNDQz MTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFCczBVQjN5NkJvcWNzN2pi dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZXUGczY3RjMUJzMFVCM3k2Qm9xY3M3amJ2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUwMy83Qjg4NUZFNDQzMTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFC czBVQjN5NkJvcWNzN2pidkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeh04Q7RpENBsI4YDcozTUSnlK7UtU2HiVpeb5dRRmRXog9LNaXSHe Fdo4xokZaWvcF+0KstTb95JTYu5JQiCe+KawAiYjnt1Gqd4WIvcR+emAEjoG4q8q rZzAEydFa/15ccqzt2CuCuxroAP0LvL/zXMzhPDvW1PnC1VSbEQClWQo2kb6CPo0 68kmS1fww00yz9zMrfTZjZ8GvGMa0eCSfQ/vGAg/jYr046vXSQHbMYe96RQAHv5b zZV1Z5Q7aguJtjwVFf8IM8Do92FUx20gvXC9pjQ4F/s/XUv45pXtrhdbbAthmbmh FMaV7RAg+JuHVVIyl12AMUWzT+g73+rp -----END CERTIFICATE-----Generated at Sat Sep 6 16:52:32 2025 by rpki-client