$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft File: VXiaNBbn71Fc4I8Fo28d7YNETAk.mft (raw, json) Hash identifier: efmyZnI6qCAQ2dvX8dUae1DiKsQ6HRZ9fOybJ4BTzV0= Subject key identifier: 33:E6:00:0F:8F:31:7C:8E:89:C3:08:5C:97:2A:44:4B:19:D7:7A:FC Authority key identifier: 55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 Certificate issuer: /CN=A91F43F2/serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft Manifest number: 04 Signing time: Sat 19 Jul 2025 08:29:11 +0000 Manifest this update: Sat 19 Jul 2025 08:29:10 +0000 Manifest next update: Sat 26 Jul 2025 08:29:10 +0000 Files and hashes: 1: VXiaNBbn71Fc4I8Fo28d7YNETAk.crl (hash: skeXcQud/rLdDgh5nR4SGLGKrgzxmB1cs8qeSlwm5Oc=) 2: A19F973C60C011F0A28C7F2CC4F9AE02.roa (hash: z6l4Kf7BBkbhNbxfRp+L0t7tdYphMHusFnOI/s0ajOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:29:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Validity Not Before: Jul 19 08:29:10 2025 GMT Not After : Jul 26 08:29:10 2025 GMT Subject: CN=687b5757-30f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:28:fa:8c:81:49:e9:27:5c:97:d4:ca:e2:46: 8e:5f:d3:da:85:08:47:51:e5:08:7e:2f:25:d5:29: 6f:c6:0b:00:a1:93:29:03:2c:63:d5:9c:09:c9:b4: a4:c3:1e:f7:b6:47:96:1a:59:2a:96:4c:9c:01:a6: cd:24:55:91:e5:83:cb:c0:8f:fe:4e:88:c3:95:9b: 25:1f:c3:69:c1:35:71:2a:37:0a:c1:d5:50:21:dd: 4c:10:5a:75:2d:80:8c:cb:7a:ee:41:e5:cd:8b:a8: 20:a2:43:c1:e2:3d:40:f9:40:af:05:01:2d:a6:84: 31:e2:81:b4:13:f8:db:6c:c7:a1:be:c0:0d:1b:fb: 1d:cf:81:75:87:e9:ca:fa:2d:31:b6:60:bd:12:5f: d2:9f:ba:b5:6e:f4:d6:8d:dd:34:29:2b:fe:10:29: aa:bc:a4:78:6c:5c:39:5b:b2:d9:94:c4:03:26:bd: 44:38:e2:b3:24:45:92:6f:29:b7:75:7b:34:6c:90: 79:e3:56:7c:7b:bd:0c:5b:28:d8:c2:35:e8:fb:bb: 4c:a4:fd:c7:25:f7:b7:5b:aa:c9:3a:be:11:ba:ba: 9a:19:e2:03:c7:0f:6d:a2:72:12:5e:bd:d7:e4:30: 93:47:7f:78:a9:53:9f:23:49:d7:4e:4f:ed:46:68: 19:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E6:00:0F:8F:31:7C:8E:89:C3:08:5C:97:2A:44:4B:19:D7:7A:FC X509v3 Authority Key Identifier: keyid:55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:6c:b1:dd:2f:0a:db:7d:e2:7b:7a:4b:67:b7:3c:c4:71:fa: 08:30:78:62:8b:c0:df:45:23:a2:0d:14:a7:9f:aa:00:18:e2: 32:40:c1:99:ec:84:23:83:78:64:39:e3:a6:21:f6:86:d6:df: 8f:fc:75:6d:3b:28:8b:06:a8:25:7b:e0:de:d2:d1:dd:bb:f9: 1d:29:45:5c:fc:c4:7f:d5:45:87:46:72:28:6d:bb:09:7d:05: cc:5a:46:af:6c:62:46:f1:a5:27:e2:e2:90:fc:52:df:b9:bc: 3a:23:d8:55:d5:98:73:3f:ad:77:26:4e:83:a4:eb:54:af:cb: 6f:a8:89:a8:9e:8d:ab:24:0f:2c:1e:ef:81:00:d7:53:e7:28: 26:6b:d1:f9:a0:9e:d0:61:dc:20:ed:c1:9d:6c:34:f0:6b:d5: 4c:70:f6:85:13:2e:89:c3:09:47:65:e8:05:f1:15:43:84:45: 3b:44:db:44:fa:9e:5a:43:5a:de:ed:a2:fa:36:f0:cc:eb:2b: ef:b2:bc:36:6f:11:e7:d3:49:63:7f:a1:0f:39:79:7c:97:8c: a4:d9:d3:50:98:07:86:88:47:33:f2:06:02:ff:8a:46:8c:fb: 66:1b:fe:7c:84:7a:1b:72:4b:c5:79:4f:99:2e:60:5e:a9:c1: 3a:fd:30:1c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDNGMjExMC8GA1UEBRMoNTU3ODlBMzQxNkU3RUY1MTVDRTA4RjA1QTM2RjFERUQ4 MzQ0NEMwOTAeFw0yNTA3MTkwODI5MTBaFw0yNTA3MjYwODI5MTBaMBgxFjAUBgNV BAMTDTY4N2I1NzU3LTMwZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtKPqMgUnpJ1yX1MriRo5f09qFCEdR5Qh+LyXVKW/GCwChkykDLGPVnAnJtKTD Hve2R5YaWSqWTJwBps0kVZHlg8vAj/5OiMOVmyUfw2nBNXEqNwrB1VAh3UwQWnUt gIzLeu5B5c2LqCCiQ8HiPUD5QK8FAS2mhDHigbQT+Ntsx6G+wA0b+x3PgXWH6cr6 LTG2YL0SX9KfurVu9NaN3TQpK/4QKaq8pHhsXDlbstmUxAMmvUQ44rMkRZJvKbd1 ezRskHnjVnx7vQxbKNjCNej7u0yk/ccl97dbqsk6vhG6upoZ4gPHD22ichJevdfk MJNHf3ipU58jSddOT+1GaBljAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUM+YAD48x fI6JwwhclypESxnXevwwHwYDVR0jBBgwFoAUVXiaNBbn71Fc4I8Fo28d7YNETAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0M0YyLzQxODA1MDk0NjBD MDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFGYzRJOEZvMjhkN1lORVRB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVlhpYU5CYm43MUZjNEk4Rm8yOGQ3WU5FVEFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 M0YyLzQxODA1MDk0NjBDMDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFG YzRJOEZvMjhkN1lORVRBay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADZssd0vCtt94nt6S2e3PMRx+ggweGKLwN9FI6INFKefqgAY4jJAwZns hCODeGQ546Yh9obW34/8dW07KIsGqCV74N7S0d27+R0pRVz8xH/VRYdGcihtuwl9 BcxaRq9sYkbxpSfi4pD8Ut+5vDoj2FXVmHM/rXcmToOk61Svy2+oiaiejaskDywe 74EA11PnKCZr0fmgntBh3CDtwZ1sNPBr1Uxw9oUTLonDCUdl6AXxFUOERTtE20T6 nlpDWt7tovo28MzrK++yvDZvEefTSWN/oQ85eXyXjKTZ01CYB4aIRzPyBgL/ikaM +2Yb/nyEehtyS8V5T5kuYF6pwTr9MBw= -----END CERTIFICATE-----Generated at Sun Jul 20 21:55:13 2025 by rpki-client