$ rpki-client -vvf rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft File: vTfx1AdHvmxfXGujMH32Vgq2gaM.mft (raw, json) Hash identifier: vQF/YZn/c3STvsLOh8JZ8/eJh+5owVG2D7lFAwQnoGA= Subject key identifier: A1:1E:06:98:5E:36:57:46:85:51:84:FA:AB:F9:8A:1F:5D:CF:6F:92 Authority key identifier: BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 Certificate issuer: /CN=A91817E6/serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft Manifest number: 0AEC Signing time: Tue 16 Sep 2025 20:33:54 +0000 Manifest this update: Tue 16 Sep 2025 20:33:53 +0000 Manifest next update: Tue 23 Sep 2025 20:33:53 +0000 Files and hashes: 1: vTfx1AdHvmxfXGujMH32Vgq2gaM.crl (hash: 54DJXW0gNOVqoQ+cwk2/UwVWI7W0f/NcXtwvYKDahVM=) 2: 28C454FCB41211EF8D2EC946C4F9AE02.roa (hash: A1jEmvYmaWLQVLC3lKrKCjgOEWn5/laaNWB/FSQRMc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 20:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91817E6, serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Validity Not Before: Sep 16 20:33:53 2025 GMT Not After : Sep 23 20:33:53 2025 GMT Subject: CN=68c9c9b2-315c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4a:95:8a:9e:3d:dd:ca:61:f3:32:08:9d:87: ec:b0:43:49:54:80:dc:b2:08:82:9c:30:4b:47:2b: 99:38:25:8b:49:a5:58:44:d2:b3:ec:fb:1a:1e:99: 37:6e:25:4d:fe:81:7a:f2:48:94:6d:86:e2:1b:9f: 0e:6b:23:2a:52:b8:2e:53:29:93:c7:af:8b:ac:e4: 7b:cb:3d:22:6d:23:e0:18:fc:1b:f8:4c:b1:26:6e: 22:1e:4c:f4:d8:4b:03:4d:3d:d0:9a:71:4e:f2:67: 16:47:8a:e6:21:a8:bf:8a:43:97:31:76:8d:26:81: 87:26:c6:1b:c7:34:48:9f:c4:67:2f:bb:4a:d8:12: 67:0e:61:01:64:08:4d:2f:e2:a8:c4:a4:1d:05:68: 91:11:ad:8f:eb:65:5d:96:48:c1:10:b1:ef:f4:e4: af:8a:be:14:45:d7:e0:49:3f:8a:03:05:17:80:15: c4:28:55:e0:94:3a:a0:64:ff:b1:98:b2:2a:37:06: c8:d1:00:00:0b:d1:d1:9b:35:da:af:db:63:9e:c8: ac:25:84:01:2a:7f:5e:53:02:64:63:42:c9:9c:4f: 00:ed:7b:8a:07:1f:fc:b7:11:8c:dd:28:1c:23:ce: f1:c1:1a:ac:84:3c:b2:87:8d:19:69:f3:b4:10:6f: ef:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1E:06:98:5E:36:57:46:85:51:84:FA:AB:F9:8A:1F:5D:CF:6F:92 X509v3 Authority Key Identifier: keyid:BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:5c:93:65:8b:94:5f:70:18:87:85:2a:02:a8:16:3d:90:dc: 59:e6:45:6f:b6:96:a7:cc:35:0d:6a:f9:da:c4:4b:41:28:c2: 6c:33:04:1e:ca:7f:b1:dd:af:3c:10:42:6d:a8:4d:44:57:67: 88:7d:b9:28:f8:fb:a3:55:af:b2:14:61:28:2f:bc:ec:62:ef: 1e:d8:b7:d1:9c:97:e8:21:ab:63:58:16:8f:48:ab:e4:29:fe: 07:d7:de:9b:46:ef:11:9f:fa:6b:df:b0:75:39:1c:5f:8f:37: cb:38:0e:f5:cc:7f:7a:61:ba:5c:9c:76:49:dd:83:1d:69:b1: 69:20:02:21:74:a6:c7:c8:dc:f8:63:50:37:cc:76:06:82:ed: ab:3f:df:2f:83:17:0d:da:da:ca:7a:a1:07:b6:34:62:dd:16: f4:91:ad:84:a6:cc:f1:36:22:0c:91:46:6d:85:01:cf:77:a5: 4a:b6:71:68:89:31:8a:b1:e3:35:d9:e3:a7:93:55:a4:a1:30: 44:ed:60:3e:09:48:e1:2d:75:d1:29:a4:fa:6c:ca:70:ff:a8: fc:2c:fd:cd:b9:a5:b9:02:09:e6:05:7d:f1:83:74:38:52:14: ea:1f:8f:f4:fa:be:84:47:72:e5:a2:e1:ac:af:ca:94:ee:ab: 27:9b:4a:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE3RTYxMTAvBgNVBAUTKEJEMzdGMUQ0MDc0N0JFNkM1RjVDNkJBMzMwN0RGNjU2 MEFCNjgxQTMwHhcNMjUwOTE2MjAzMzUzWhcNMjUwOTIzMjAzMzUzWjAYMRYwFAYD VQQDEw02OGM5YzliMi0zMTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EqVip493cph8zIInYfssENJVIDcsgiCnDBLRyuZOCWLSaVYRNKz7PsaHpk3 biVN/oF68kiUbYbiG58OayMqUrguUymTx6+LrOR7yz0ibSPgGPwb+EyxJm4iHkz0 2EsDTT3QmnFO8mcWR4rmIai/ikOXMXaNJoGHJsYbxzRIn8RnL7tK2BJnDmEBZAhN L+KoxKQdBWiREa2P62VdlkjBELHv9OSvir4URdfgST+KAwUXgBXEKFXglDqgZP+x mLIqNwbI0QAAC9HRmzXar9tjnsisJYQBKn9eUwJkY0LJnE8A7XuKBx/8txGM3Sgc I87xwRqshDyyh40ZafO0EG/vHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEeBphe NldGhVGE+qv5ih9dz2+SMB8GA1UdIwQYMBaAFL038dQHR75sX1xrozB99lYKtoGj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTdFNi81NTc0MEU3MEIz QjMxMUVBQjE5OENFMERDNEY5QUUwMi92VGZ4MUFkSHZteGZYR3VqTUgzMlZncTJn YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZUZngxQWRIdm14ZlhHdWpNSDMyVmdxMmdhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTdFNi81NTc0MEU3MEIzQjMxMUVBQjE5OENFMERDNEY5QUUwMi92VGZ4MUFkSHZt eGZYR3VqTUgzMlZncTJnYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvXJNli5RfcBiHhSoCqBY9kNxZ5kVvtpanzDUNavnaxEtBKMJsMwQe yn+x3a88EEJtqE1EV2eIfbko+PujVa+yFGEoL7zsYu8e2LfRnJfoIatjWBaPSKvk Kf4H196bRu8Rn/pr37B1ORxfjzfLOA71zH96YbpcnHZJ3YMdabFpIAIhdKbHyNz4 Y1A3zHYGgu2rP98vgxcN2trKeqEHtjRi3Rb0ka2EpszxNiIMkUZthQHPd6VKtnFo iTGKseM12eOnk1WkoTBE7WA+CUjhLXXRKaT6bMpw/6j8LP3NuaW5AgnmBX3xg3Q4 UhTqH4/0+r6ER3LlouGsr8qU7qsnm0oa -----END CERTIFICATE-----Generated at Thu Sep 18 20:34:47 2025 by rpki-client