$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft File: VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft (raw, json) Hash identifier: W8h4ed8Erc4fWUQlVHRTB0kTmpPevcesHs5IMKCvJ78= Subject key identifier: 0D:B0:BB:5C:0B:33:47:23:4F:FA:3F:4A:EE:A3:8E:2E:8F:D1:27:6A Authority key identifier: 56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A Certificate issuer: /CN=A91D6F2B/serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft Manifest number: 038B Signing time: Fri 19 Sep 2025 01:12:56 +0000 Manifest this update: Fri 19 Sep 2025 01:12:55 +0000 Manifest next update: Fri 26 Sep 2025 01:12:55 +0000 Files and hashes: 1: VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl (hash: Q8C58Uv4X1KWzBShCFnSCwyOwfEVWLH2qIymbUDhm5w=) 2: 2A22D2FCB6CB11ECA43EEE87C4F9AE02.roa (hash: KlAC54soZmN85lgdd13wHGCcsR/XbE59aQyhJMVb4zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 01:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6F2B, serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A Validity Not Before: Sep 19 01:12:55 2025 GMT Not After : Sep 26 01:12:55 2025 GMT Subject: CN=68ccae17-ee76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f1:cb:f6:38:22:01:16:3f:c2:41:d8:67:a8: 13:7d:0d:54:66:f6:6b:f0:8a:99:1e:2b:9b:5c:7c: 12:6e:20:a5:c7:41:20:ee:3d:29:9d:b5:bb:65:a8: 5c:10:88:b1:fd:00:f5:e1:2e:78:3d:b6:03:31:48: a2:9e:90:37:10:bb:29:41:2b:f4:1c:6e:a1:b6:33: 46:c3:8d:23:a1:b9:72:da:ad:7f:8f:77:83:e4:82: 73:57:7f:32:2e:64:50:55:11:78:aa:28:40:c2:bf: a1:0d:74:87:8d:75:94:68:43:68:28:a9:76:3d:00: 18:13:57:8d:29:7b:93:49:1a:7c:46:75:8e:77:13: 66:77:59:97:c0:1a:88:65:01:8b:c6:3e:26:76:ec: 0c:d8:f6:5a:26:de:5a:17:d1:4c:64:4b:42:6e:13: 6f:36:4e:31:b6:cb:e3:c8:21:61:38:fb:22:d1:31: 9b:ac:ac:bd:5d:f5:0b:6b:59:d8:a5:70:49:b9:47: 9c:60:8b:da:26:45:70:78:e4:09:74:ab:e8:52:79: 4d:ad:d4:f1:90:02:69:f8:fc:be:d5:35:1f:d2:be: 91:90:eb:83:71:06:1a:a2:c1:c2:01:7b:6d:43:bb: 12:e4:8c:59:5d:31:f2:91:4a:9c:63:21:66:03:f4: 3b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B0:BB:5C:0B:33:47:23:4F:FA:3F:4A:EE:A3:8E:2E:8F:D1:27:6A X509v3 Authority Key Identifier: keyid:56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:fd:73:a1:d0:d0:9a:8b:4c:31:39:a5:6b:83:70:ef:9c:6b: 63:27:dd:1d:88:d8:38:3d:fc:e9:68:5e:a0:b2:40:f3:7c:0d: ad:12:fe:26:18:39:02:5c:e7:0e:cb:24:d5:63:e1:e3:37:ee: 8b:2f:7a:fe:0b:6c:79:b2:4a:83:7e:b2:69:fa:51:08:dd:ee: 2e:6e:71:27:b4:1b:cf:ef:16:e0:81:a9:6f:ca:25:c8:13:95: fd:d4:6f:a2:a3:d7:d5:25:b4:b5:40:5a:ab:db:31:23:3d:7a: 3b:1d:2b:66:77:97:ff:a8:2e:b8:65:18:72:ab:b3:3a:97:d9: 66:bd:1d:04:a7:c6:6f:7a:b4:8c:16:9b:65:eb:31:4d:ca:81: 12:b6:90:39:87:9d:69:21:ac:cd:09:d7:5d:6f:4b:4d:97:9f: 7e:b1:1b:64:a9:b4:9d:a5:17:9b:d9:f2:68:11:29:79:0a:33: 3a:cb:d8:e6:6a:5d:91:ac:7f:a1:b0:43:92:4c:12:55:1b:5b: 88:c0:75:25:d0:c6:ea:52:ea:bc:3b:f2:91:d1:24:bc:5b:e8: 12:27:c8:63:71:b8:3e:89:17:6f:af:7b:19:66:58:e0:e1:2a: a0:5a:35:fc:ad:c8:80:3f:d6:bf:e8:1a:a3:18:12:39:1d:45: df:53:a0:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZGMkIxMTAvBgNVBAUTKDU2MzhDQjFFMjZEMTE5OURBQkU4QjhDN0VEMjJCMDND NENFOEM4MEEwHhcNMjUwOTE5MDExMjU1WhcNMjUwOTI2MDExMjU1WjAYMRYwFAYD VQQDEw02OGNjYWUxNy1lZTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/HL9jgiARY/wkHYZ6gTfQ1UZvZr8IqZHiubXHwSbiClx0Eg7j0pnbW7Zahc EIix/QD14S54PbYDMUiinpA3ELspQSv0HG6htjNGw40jobly2q1/j3eD5IJzV38y LmRQVRF4qihAwr+hDXSHjXWUaENoKKl2PQAYE1eNKXuTSRp8RnWOdxNmd1mXwBqI ZQGLxj4mduwM2PZaJt5aF9FMZEtCbhNvNk4xtsvjyCFhOPsi0TGbrKy9XfULa1nY pXBJuUecYIvaJkVweOQJdKvoUnlNrdTxkAJp+Py+1TUf0r6RkOuDcQYaosHCAXtt Q7sS5IxZXTHykUqcYyFmA/Q77wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2wu1wL M0cjT/o/Su6jji6P0SdqMB8GA1UdIwQYMBaAFFY4yx4m0Rmdq+i4x+0isDxM6MgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkYyQi8zMzg2Njc2NkI2 QzkxMUVDODlCREM2ODdDNEY5QUUwMi9WampMSGliUkdaMnI2TGpIN1NLd1BFem95 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqakxIaWJSR1oycjZMakg3U0t3UEV6b3lBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkYyQi8zMzg2Njc2NkI2QzkxMUVDODlCREM2ODdDNEY5QUUwMi9WampMSGliUkda MnI2TGpIN1NLd1BFem95QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn/XOh0NCai0wxOaVrg3DvnGtjJ90diNg4PfzpaF6gskDzfA2tEv4m GDkCXOcOyyTVY+HjN+6LL3r+C2x5skqDfrJp+lEI3e4ubnEntBvP7xbggalvyiXI E5X91G+io9fVJbS1QFqr2zEjPXo7HStmd5f/qC64ZRhyq7M6l9lmvR0Ep8ZverSM Fptl6zFNyoEStpA5h51pIazNCdddb0tNl59+sRtkqbSdpReb2fJoESl5CjM6y9jm al2RrH+hsEOSTBJVG1uIwHUl0MbqUuq8O/KR0SS8W+gSJ8hjcbg+iRdvr3sZZljg 4SqgWjX8rciAP9a/6BqjGBI5HUXfU6De -----END CERTIFICATE-----Generated at Fri Sep 19 08:31:59 2025 by rpki-client