$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft File: VU9dfGbsUOhKiru6mWgXfkcp02Y.mft (raw, json) Hash identifier: uA5+9tOE/mrvcZJDnX31boU2wCNWuNHD1XZB+NZLz58= Subject key identifier: 93:8B:39:9C:E5:07:19:F2:1C:64:00:5B:67:42:AF:C6:D0:28:48:44 Authority key identifier: 55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 Certificate issuer: /CN=A91E8BE3/serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft Manifest number: 80 Signing time: Sat 23 Aug 2025 06:56:42 +0000 Manifest this update: Sat 23 Aug 2025 06:56:42 +0000 Manifest next update: Sat 30 Aug 2025 06:56:42 +0000 Files and hashes: 1: VU9dfGbsUOhKiru6mWgXfkcp02Y.crl (hash: xpEfWrJCJR4wHVKluLd2tmcYqmzwyYysjmOScc9L6UE=) 2: 0AC098846EDA11F08D404571C4F9AE02.roa (hash: XUaCHo7ISEfVt8zg4dz4qiHM8RTC6XTgDTg25gi/BRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Validity Not Before: Aug 23 06:56:42 2025 GMT Not After : Aug 30 06:56:42 2025 GMT Subject: CN=68a9662a-3079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5e:89:c1:44:37:78:3e:75:83:a8:17:bc:e2: ed:e9:7b:89:a4:70:01:e4:f2:b5:db:e1:56:bd:15: 58:9e:3e:c2:c5:66:69:b5:10:b0:fa:cd:e5:18:36: cf:07:3c:75:6f:5a:b8:b4:2d:bc:c1:89:cd:7e:00: f6:a5:eb:87:2e:03:4c:3e:20:a0:86:d9:8b:5b:b3: fe:af:b1:98:0b:af:94:d8:a6:39:53:2d:1b:91:e9: 44:69:bf:08:2b:0c:2f:84:76:0c:62:0a:67:32:6f: b9:24:43:ec:60:0d:33:7b:14:c4:43:e7:16:b6:1d: 64:2f:cd:39:73:57:9f:57:c6:59:2b:77:34:17:d9: 2a:9e:63:02:9f:6d:0b:40:65:87:e8:7b:63:cd:ce: 57:12:bb:59:2d:57:90:b6:af:ed:66:3d:86:bb:a3: 4a:99:03:5d:48:41:70:2e:a2:c6:a3:9a:fc:18:22: f1:0a:c4:c8:08:85:87:e4:57:c3:19:4c:85:95:36: 89:59:5e:f7:77:90:b8:72:08:37:17:6d:17:7c:82: fd:35:96:e8:dd:eb:fe:79:81:48:6c:69:b4:21:cb: 2b:b5:13:e0:97:da:d0:e5:32:6a:fc:bb:88:b9:90: da:54:bb:cf:fc:b9:4f:0a:a0:5e:d1:65:1c:b7:0d: 68:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:8B:39:9C:E5:07:19:F2:1C:64:00:5B:67:42:AF:C6:D0:28:48:44 X509v3 Authority Key Identifier: keyid:55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:23:65:aa:28:59:5a:97:5e:d1:14:7b:29:d4:3c:15:01:16: c2:94:35:13:dd:a4:34:e1:bb:19:62:bb:ac:9e:02:fd:0f:c2: ed:ff:be:54:bf:cd:85:61:2d:c1:2a:82:48:65:cb:d9:66:f9: 87:86:24:ff:71:fc:b0:74:e0:46:94:ff:13:a3:a8:5f:b7:68: 5a:ea:ff:3a:eb:11:a2:dc:46:9b:f4:c4:a6:f4:70:c0:f0:67: 1b:75:38:3e:94:9e:6b:93:44:95:e4:d8:6c:95:30:8c:d1:93: fe:fd:94:ff:63:05:75:d1:0c:c3:6e:0a:a4:62:b4:7a:3a:32: 19:86:03:4a:47:6b:ce:ca:9c:72:29:f9:7d:f4:0a:b5:97:5a: ef:a8:66:d0:b4:07:53:6b:74:5b:bb:ac:75:f6:80:22:04:84: 5a:93:04:a6:ea:b8:70:90:41:ee:10:fa:fe:6e:d5:cb:73:4c: a7:66:b5:26:84:ca:7f:7d:e0:e1:bf:5b:40:5d:30:4d:6a:e8: 83:e1:a7:81:7e:21:03:6d:77:0e:02:15:cf:a8:b2:91:24:14: 6c:38:ae:85:75:77:c6:6e:8b:4b:a8:47:7c:df:19:69:63:30: 33:b2:b4:9a:c0:10:16:1d:84:ff:ad:43:51:1f:38:c8:f6:f6: 1a:dc:dd:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCRTMxMTAvBgNVBAUTKDU1NEY1RDdDNjZFQzUwRTg0QThBQkJCQTk5NjgxNzdF NDcyOUQzNjYwHhcNMjUwODIzMDY1NjQyWhcNMjUwODMwMDY1NjQyWjAYMRYwFAYD VQQDEw02OGE5NjYyYS0zMDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuV6JwUQ3eD51g6gXvOLt6XuJpHAB5PK12+FWvRVYnj7CxWZptRCw+s3lGDbP Bzx1b1q4tC28wYnNfgD2peuHLgNMPiCghtmLW7P+r7GYC6+U2KY5Uy0bkelEab8I KwwvhHYMYgpnMm+5JEPsYA0zexTEQ+cWth1kL805c1efV8ZZK3c0F9kqnmMCn20L QGWH6Htjzc5XErtZLVeQtq/tZj2Gu6NKmQNdSEFwLqLGo5r8GCLxCsTICIWH5FfD GUyFlTaJWV73d5C4cgg3F20XfIL9NZbo3ev+eYFIbGm0IcsrtRPgl9rQ5TJq/LuI uZDaVLvP/LlPCqBe0WUctw1oEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOLOZzl BxnyHGQAW2dCr8bQKEhEMB8GA1UdIwQYMBaAFFVPXXxm7FDoSoq7uploF35HKdNm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJFMy9FRUVGN0ZFQUJG OUMxMUVGOURBODgyODJDNEY5QUUwMi9WVTlkZkdic1VPaEtpcnU2bVdnWGZrY3Aw MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZVOWRmR2JzVU9oS2lydTZtV2dYZmtjcDAyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJFMy9FRUVGN0ZFQUJGOUMxMUVGOURBODgyODJDNEY5QUUwMi9WVTlkZkdic1VP aEtpcnU2bVdnWGZrY3AwMlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrI2WqKFlal17RFHsp1DwVARbClDUT3aQ04bsZYrusngL9D8Lt/75U v82FYS3BKoJIZcvZZvmHhiT/cfywdOBGlP8To6hft2ha6v866xGi3Eab9MSm9HDA 8GcbdTg+lJ5rk0SV5NhslTCM0ZP+/ZT/YwV10QzDbgqkYrR6OjIZhgNKR2vOypxy Kfl99Aq1l1rvqGbQtAdTa3Rbu6x19oAiBIRakwSm6rhwkEHuEPr+btXLc0ynZrUm hMp/feDhv1tAXTBNauiD4aeBfiEDbXcOAhXPqLKRJBRsOK6FdXfGbotLqEd83xlp YzAzsrSawBAWHYT/rUNRHzjI9vYa3N3K -----END CERTIFICATE-----Generated at Sun Aug 24 22:09:22 2025 by rpki-client