$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: t5r+tpgPLPCyEKEWOs0r9K+hRBuZPFMnTnayKQFM/ww= Subject key identifier: 4B:39:F0:44:DF:EB:8A:62:3A:39:5E:6D:6B:AD:5F:97:95:79:85:A2 Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: 015A Signing time: Fri 01 Aug 2025 05:22:34 +0000 Manifest this update: Fri 01 Aug 2025 05:22:33 +0000 Manifest next update: Fri 08 Aug 2025 05:22:33 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: 4mkzva7V9YHYB7ANdqePEhY9/W+8sI6jheV4/DGYJCI=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: DaoJhbsGXkUC42pkhjpzJhDA/mxo+1TSGX1zlEEQkMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 05:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: Aug 1 05:22:33 2025 GMT Not After : Aug 8 05:22:33 2025 GMT Subject: CN=688c4f1a-b37e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ba:ca:d2:55:3a:f3:ea:c9:f3:d1:ff:ad:21: a7:89:68:61:20:d7:ac:f5:f3:09:6b:0c:a8:60:04: 06:d9:a4:07:12:89:6d:27:bb:8f:ab:0c:7f:30:92: 03:4b:92:a1:2e:51:e1:a2:ae:9e:f0:3b:97:a1:cd: 95:e7:be:3c:17:bd:3c:05:3f:f6:45:fd:fa:cf:0a: 1d:d7:a4:e6:93:ee:73:39:e8:9b:92:07:b5:0a:72: b3:c8:0a:bf:78:da:7d:46:7e:ac:63:1c:72:fb:51: cd:ce:22:b3:27:29:55:d6:07:bd:da:07:f1:ab:eb: 82:bc:20:59:ba:5c:cf:09:ad:a1:4a:77:16:5c:78: 08:5d:cd:59:4b:9a:6d:36:80:ba:44:a6:0e:bf:85: e7:47:f1:39:5b:c6:84:09:84:da:b0:39:a6:28:0d: 1f:ac:6d:e8:ee:55:b9:02:74:39:4c:8c:af:c8:95: e8:fd:f5:bc:68:14:b4:9f:65:a7:e3:ac:b8:95:a7: 98:db:46:d6:d7:cf:9c:59:49:88:0a:41:9f:66:ff: 8b:76:60:47:11:e9:0d:75:bc:ce:cf:c4:be:2b:9f: 72:7d:26:9e:92:11:93:dd:16:24:a3:1e:15:71:6b: f5:d5:91:cf:6c:82:3c:70:e7:df:4c:16:a4:2f:0d: 17:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:39:F0:44:DF:EB:8A:62:3A:39:5E:6D:6B:AD:5F:97:95:79:85:A2 X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:10:10:53:4c:fe:c3:76:02:4f:0b:69:ae:81:75:7c:89:2a: 94:4e:a3:84:e2:37:da:c5:1a:ad:10:48:16:de:9a:66:93:4c: bb:7a:ee:cb:23:bc:92:3e:29:0a:d3:f1:4e:01:db:65:0f:18: b6:c6:89:b1:97:60:8e:49:65:69:57:9e:cd:07:1c:40:f9:8a: 1b:10:df:36:fe:4c:8b:dc:00:2a:cd:1c:5d:30:b2:ad:c5:09: 82:53:a7:86:08:b0:84:03:61:ed:fd:67:60:a8:61:08:19:8f: 43:94:20:8d:b8:1e:d5:a4:6b:79:f2:87:d0:c2:48:d1:e1:6b: 3a:66:34:9c:2e:3e:03:3d:7a:2c:65:99:a5:d0:45:a2:8f:01: fc:e8:15:05:5c:a3:29:44:ee:b8:b4:a9:26:5d:35:4e:bb:45: 7e:21:86:be:02:bf:7b:bc:f1:b4:01:86:d3:1e:15:d0:cd:de: 69:e9:6b:83:be:c9:d6:35:66:a8:ca:b4:34:34:73:18:5f:38: 2f:6b:46:96:78:7b:8e:d3:39:c0:65:dc:56:3b:f6:dc:f1:98: 78:dd:11:d2:04:8f:3b:6e:10:28:f0:35:8d:c2:33:ba:b0:3d: dd:fc:51:8f:ec:d7:74:b4:66:e2:9e:4d:9e:a0:0f:c5:28:5e: b1:e6:73:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjUwODAxMDUyMjMzWhcNMjUwODA4MDUyMjMzWjAYMRYwFAYD VQQDEw02ODhjNGYxYS1iMzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubrK0lU68+rJ89H/rSGniWhhINes9fMJawyoYAQG2aQHEoltJ7uPqwx/MJID S5KhLlHhoq6e8DuXoc2V5748F708BT/2Rf36zwod16Tmk+5zOeibkge1CnKzyAq/ eNp9Rn6sYxxy+1HNziKzJylV1ge92gfxq+uCvCBZulzPCa2hSncWXHgIXc1ZS5pt NoC6RKYOv4XnR/E5W8aECYTasDmmKA0frG3o7lW5AnQ5TIyvyJXo/fW8aBS0n2Wn 46y4laeY20bW18+cWUmICkGfZv+LdmBHEekNdbzOz8S+K59yfSaekhGT3RYkox4V cWv11ZHPbII8cOffTBakLw0X2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEs58ETf 64piOjlebWutX5eVeYWiMB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR MUpkdmJpbGhFN3J5S296MTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxEBBTTP7DdgJPC2mugXV8iSqUTqOE4jfaxRqtEEgW3ppmk0y7eu7L I7ySPikK0/FOAdtlDxi2xomxl2COSWVpV57NBxxA+YobEN82/kyL3AAqzRxdMLKt xQmCU6eGCLCEA2Ht/WdgqGEIGY9DlCCNuB7VpGt58ofQwkjR4Ws6ZjScLj4DPXos ZZml0EWijwH86BUFXKMpRO64tKkmXTVOu0V+IYa+Ar97vPG0AYbTHhXQzd5p6WuD vsnWNWaoyrQ0NHMYXzgva0aWeHuO0znAZdxWO/bc8Zh43RHSBI87bhAo8DWNwjO6 sD3d/FGP7Nd0tGbink2eoA/FKF6x5nNe -----END CERTIFICATE-----Generated at Sat Aug 2 05:36:54 2025 by rpki-client