$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: lVjdsJKEjP7a2xjQRpfL1MYYFwnF6bBCQ9GKjhtf6qQ= Subject key identifier: 61:50:46:96:35:40:C2:32:1C:C7:34:A3:65:7D:F7:4A:43:50:48:7B Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0C6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0C5F Signing time: Mon 08 Sep 2025 18:32:51 +0000 Manifest this update: Mon 08 Sep 2025 18:32:50 +0000 Manifest next update: Mon 15 Sep 2025 18:32:50 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: wcJchOEIwB1HayqhO8Zupu3GMMy5fPjoWH4zULBoq8Y=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: CC9X+3CcYjfvDOG+Jd491zfowlADhabzoyJw/gqJGUg=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: erICH0cme0SAzh4DFMOpR5Ja+e0q51Z/KWddXql4mQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 18:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3181 (0xc6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Sep 8 18:32:50 2025 GMT Not After : Sep 15 18:32:50 2025 GMT Subject: CN=68bf2153-70ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b8:75:bb:d5:cb:0b:9e:49:9b:60:60:86:21: ae:53:6a:4a:bf:b0:21:5d:e9:46:38:eb:6d:b5:2c: 09:a2:bd:ea:4d:21:2c:39:fa:46:c8:80:ce:79:41: 97:48:cb:fd:72:c4:fc:60:ad:b7:45:ed:5e:4e:a7: d5:74:cc:3d:80:7b:3f:8b:87:99:ac:6f:03:52:69: c2:66:d2:e4:af:43:91:bb:93:37:ad:60:e0:3c:85: fc:e8:ac:c9:43:82:d9:af:cb:e9:b9:65:1a:80:0b: c1:43:ab:6d:d7:eb:f8:8c:8a:10:75:dd:3c:96:59: e2:17:f1:4c:fd:ee:78:06:57:fe:16:97:30:9a:ae: 09:12:8f:ff:bc:2e:3d:a5:f7:bc:4b:64:a9:78:0b: a8:da:64:28:51:2a:09:7f:fc:26:1f:92:67:40:91: f1:86:1a:9a:3d:09:d0:88:de:e4:30:87:82:c0:92: c2:45:5e:84:91:6e:90:d9:a0:7a:e4:db:db:b9:40: 07:97:47:17:50:b1:40:ad:fc:93:8f:ee:bc:c8:68: 3a:53:0a:26:57:38:89:ee:f4:7f:b1:40:a8:8b:e6: 73:47:43:17:cc:eb:a8:19:0f:37:85:71:c2:0b:ce: e5:1c:4d:2c:bd:87:65:cd:05:36:8a:54:e9:b3:18: 12:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:50:46:96:35:40:C2:32:1C:C7:34:A3:65:7D:F7:4A:43:50:48:7B X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:d9:e3:9e:46:39:44:bc:fa:1e:04:c1:d8:c2:6a:ee:86:44: a8:20:e8:46:bb:df:3f:54:7b:51:d6:a7:f4:d2:06:72:81:ac: 7a:e3:e1:13:92:ef:cd:b2:1f:d4:9f:a9:83:06:dc:a8:5c:a2: 68:78:d6:a4:dd:32:c0:3a:8c:a0:c0:96:10:5f:33:56:67:6d: 8d:c2:fd:25:0a:25:0c:c4:ca:d8:6a:97:62:e0:bb:aa:0a:06: da:fa:e5:b4:a8:fd:22:8b:5e:5b:ab:1d:ce:df:c6:82:94:83: 2c:3f:82:9e:c7:63:c9:c2:e9:cc:34:ad:39:6c:bc:e3:aa:52: 5e:28:29:75:18:db:b7:58:10:4c:05:27:82:e7:95:35:58:20: 51:93:e6:e8:86:55:82:99:80:61:e8:7a:48:31:30:60:81:87: 76:94:90:cf:99:bf:54:86:86:c2:1b:e0:ae:89:b3:30:1c:be: c3:26:e1:8c:7a:2e:cd:1f:88:f0:e2:c7:ea:67:f2:1f:8d:2d: 4d:23:9a:97:2a:af:3f:40:c3:df:9f:1f:77:73:ac:82:62:13: 01:79:d5:4e:f7:c2:0d:a5:98:18:5d:30:fc:fc:f9:58:27:e2: ef:cd:82:49:8d:6e:44:b4:91:0e:d5:4e:71:82:13:49:55:e5: a8:15:40:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUwOTA4MTgzMjUwWhcNMjUwOTE1MTgzMjUwWjAYMRYwFAYD VQQDEw02OGJmMjE1My03MGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrh1u9XLC55Jm2BghiGuU2pKv7AhXelGOOtttSwJor3qTSEsOfpGyIDOeUGX SMv9csT8YK23Re1eTqfVdMw9gHs/i4eZrG8DUmnCZtLkr0ORu5M3rWDgPIX86KzJ Q4LZr8vpuWUagAvBQ6tt1+v4jIoQdd08llniF/FM/e54Blf+Fpcwmq4JEo//vC49 pfe8S2SpeAuo2mQoUSoJf/wmH5JnQJHxhhqaPQnQiN7kMIeCwJLCRV6EkW6Q2aB6 5NvbuUAHl0cXULFArfyTj+68yGg6UwomVziJ7vR/sUCoi+ZzR0MXzOuoGQ83hXHC C87lHE0svYdlzQU2ilTpsxgS1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFQRpY1 QMIyHMc0o2V990pDUEh7MB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp2eOeRjlEvPoeBMHYwmruhkSoIOhGu98/VHtR1qf00gZygax64+ET ku/Nsh/Un6mDBtyoXKJoeNak3TLAOoygwJYQXzNWZ22Nwv0lCiUMxMrYapdi4Luq Cgba+uW0qP0ii15bqx3O38aClIMsP4Kex2PJwunMNK05bLzjqlJeKCl1GNu3WBBM BSeC55U1WCBRk+bohlWCmYBh6HpIMTBggYd2lJDPmb9UhobCG+CuibMwHL7DJuGM ei7NH4jw4sfqZ/IfjS1NI5qXKq8/QMPfnx93c6yCYhMBedVO98INpZgYXTD8/PlY J+LvzYJJjW5EtJEO1U5xghNJVeWoFUB/ -----END CERTIFICATE-----Generated at Wed Sep 10 10:08:04 2025 by rpki-client