$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft File: ipvaaFOfcVjLATcgqZNvJkuaU3s.mft (raw, json) Hash identifier: zEITLlF5Jx6XNk9eoHrG5b1jh0delC7kb+lqLMwfw8Y= Subject key identifier: 5B:6A:C5:48:05:8B:DC:8E:52:28:C2:54:0D:E4:96:CD:88:70:B4:36 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0D61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft Manifest number: 0D51 Signing time: Wed 20 Aug 2025 18:05:21 +0000 Manifest this update: Wed 20 Aug 2025 18:05:21 +0000 Manifest next update: Wed 27 Aug 2025 18:05:21 +0000 Files and hashes: 1: ipvaaFOfcVjLATcgqZNvJkuaU3s.crl (hash: 9tWOGykRKhnN9rn2PI4CWSErMjOwP/qLoDtMDDh/WqU=) 2: F23EB988E9A811E9864E3674C4F9AE02.roa (hash: H71fhd8JZc5XXH6DNUerfJbZNQyJaOd/VCkFhoBssG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 18:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3425 (0xd61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Aug 20 18:05:21 2025 GMT Not After : Aug 27 18:05:21 2025 GMT Subject: CN=68a60e61-a68b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c5:22:7e:e4:65:10:ee:68:e1:aa:4b:ab:0d: 4e:ed:d1:7f:4c:2b:89:00:93:e4:6e:0f:90:4d:af: 15:c5:14:3a:4f:24:cb:87:66:a9:db:bd:78:4d:d5: 1a:31:09:92:74:e6:36:c9:73:55:24:c5:43:44:59: 20:3c:de:54:c5:37:f4:35:ac:70:bf:79:ce:28:97: 46:60:2f:c2:22:d6:95:a7:f9:6a:c9:6b:0f:a5:53: 80:0d:b0:d3:d1:15:da:37:34:63:85:db:6b:cb:f9: c9:ad:ca:3c:c1:b6:00:6d:3c:9d:ae:b5:ee:6c:3b: 02:d6:a5:0c:32:1b:18:7d:3f:e9:d3:1a:1a:3a:74: c4:a3:86:25:2b:89:fb:f7:09:c0:a5:a2:b4:aa:98: d9:71:7b:a7:c6:f2:6c:69:b1:62:39:93:26:51:24: 70:07:f9:67:32:e3:62:24:a3:7c:23:f7:7b:e8:35: 42:8e:1c:b0:ba:94:c2:04:21:b3:c5:7b:12:07:a3: e1:1d:34:10:e5:3a:9e:d5:f8:00:cf:95:16:74:44: ce:d5:ca:9e:53:65:ee:bf:f7:79:41:00:a0:fe:f2: b3:48:8e:0a:48:83:36:ea:a2:05:94:f3:e0:4a:c5: 1d:6a:ca:32:3c:1f:33:8e:17:0e:ea:27:89:e7:79: c8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:6A:C5:48:05:8B:DC:8E:52:28:C2:54:0D:E4:96:CD:88:70:B4:36 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:a0:c2:ff:8c:ca:a7:04:78:a1:85:a7:3f:df:f0:d8:2f:05: 2b:da:f7:8f:38:89:f2:18:f6:de:88:74:20:f2:f0:79:93:a8: e9:b2:26:bb:c2:64:ad:d1:09:d2:21:2b:87:21:2a:75:2c:07: ce:8e:00:a5:7f:68:33:55:58:dd:25:9e:a0:a8:fd:e9:d4:c1: 65:47:45:43:2c:d1:94:99:f7:e6:fe:d1:46:bc:1b:14:0f:3d: 2c:c9:f9:96:29:91:94:a3:3f:f6:66:40:c3:a1:a2:19:15:b7: a3:01:1f:93:1f:72:23:9a:8e:a5:31:69:4f:e3:cf:12:fb:c3: 9b:b2:91:90:13:fb:d9:64:53:66:9b:3f:49:2c:00:95:76:00: cf:28:d7:1a:5e:00:91:6f:4e:a3:9e:5d:5f:38:3b:bc:c5:6e: df:b4:af:0e:d1:13:87:9c:6c:b8:ad:6c:1c:99:2e:f2:cd:32: fb:45:e0:c8:e1:07:b3:50:75:e9:bd:28:87:ac:5c:85:f1:6c: ff:c6:13:30:8f:ba:a2:5c:8a:06:5e:9d:22:ca:8b:5f:06:d7: 47:43:8e:0f:aa:4b:0d:30:a1:12:fe:a6:36:ad:25:b5:ec:5f: 1f:17:41:98:5a:77:95:18:bc:67:ca:4c:94:36:5e:69:83:f6: 66:af:2b:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUwODIwMTgwNTIxWhcNMjUwODI3MTgwNTIxWjAYMRYwFAYD VQQDEw02OGE2MGU2MS1hNjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18UifuRlEO5o4apLqw1O7dF/TCuJAJPkbg+QTa8VxRQ6TyTLh2ap2714TdUa MQmSdOY2yXNVJMVDRFkgPN5UxTf0Naxwv3nOKJdGYC/CItaVp/lqyWsPpVOADbDT 0RXaNzRjhdtry/nJrco8wbYAbTydrrXubDsC1qUMMhsYfT/p0xoaOnTEo4YlK4n7 9wnApaK0qpjZcXunxvJsabFiOZMmUSRwB/lnMuNiJKN8I/d76DVCjhywupTCBCGz xXsSB6PhHTQQ5Tqe1fgAz5UWdETO1cqeU2Xuv/d5QQCg/vKzSI4KSIM26qIFlPPg SsUdasoyPB8zjhcO6ieJ53nIQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtqxUgF i9yOUijCVA3kls2IcLQ2MB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg1Ny9GMTMwN0I3NERBRDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNW akxBVGNncVpOdkprdWFVM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9oML/jMqnBHihhac/3/DYLwUr2vePOInyGPbeiHQg8vB5k6jpsia7 wmSt0QnSISuHISp1LAfOjgClf2gzVVjdJZ6gqP3p1MFlR0VDLNGUmffm/tFGvBsU Dz0syfmWKZGUoz/2ZkDDoaIZFbejAR+TH3Ijmo6lMWlP488S+8ObspGQE/vZZFNm mz9JLACVdgDPKNcaXgCRb06jnl1fODu8xW7ftK8O0ROHnGy4rWwcmS7yzTL7ReDI 4QezUHXpvSiHrFyF8Wz/xhMwj7qiXIoGXp0iyotfBtdHQ44PqksNMKES/qY2rSW1 7F8fF0GYWneVGLxnykyUNl5pg/Zmryv7 -----END CERTIFICATE-----Generated at Fri Aug 22 16:25:11 2025 by rpki-client