$ rpki-client -vvf rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft File: VB3RXhVOUI-wD9skXE528q09iB0.mft (raw, json) Hash identifier: uTp+Gmxpge3EbDu4pKyQmiZyvpNR60/BaaPRKWeUgmg= Subject key identifier: 3D:4A:C5:5C:EC:DB:01:8B:EC:3C:7A:AC:35:14:F1:E2:AA:87:59:BD Authority key identifier: 54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D Certificate issuer: /CN=A911CE4A/serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft Manifest number: 12 Signing time: Sat 23 Aug 2025 08:17:21 +0000 Manifest this update: Sat 23 Aug 2025 08:17:20 +0000 Manifest next update: Sat 30 Aug 2025 08:17:20 +0000 Files and hashes: 1: VB3RXhVOUI-wD9skXE528q09iB0.crl (hash: HheXwqptO+ZL+VuuLtSmo5e3jaEyfJVqzOfqQ9IXtVQ=) 2: BA2C0A9E673A11F0B876713DC4F9AE02.roa (hash: qV69gg2P4bFihZzX2d7CSbRtDBRP/ma/ao4YNWgRlJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CE4A, serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D Validity Not Before: Aug 23 08:17:20 2025 GMT Not After : Aug 30 08:17:20 2025 GMT Subject: CN=68a97911-01d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9a:c0:bc:f7:66:e8:72:28:f0:c1:e3:7d:4d: 13:1f:63:db:12:df:39:f5:78:08:38:38:5e:33:1d: 8e:78:23:1f:e2:18:8e:bc:4c:cb:ef:77:2d:9b:2e: 37:5a:ef:03:fb:dd:9c:95:e2:3f:76:fb:1f:ee:e9: 0e:d6:ed:d4:f2:32:78:15:62:59:c8:8b:42:32:85: 57:d5:c8:a8:9d:b7:4a:f6:b8:66:86:15:c8:e1:50: 91:2e:60:8e:b4:07:fd:f5:ae:5a:9a:8f:66:f9:e4: 4f:d8:3f:42:e7:e1:d6:fb:79:a8:98:e8:1e:96:dd: f3:62:0d:f8:4f:e7:59:6c:a3:9e:84:66:7e:7a:97: fe:2a:92:f6:7c:65:52:89:be:50:01:a5:63:86:48: 2f:52:7b:f1:82:37:81:04:75:1f:f0:e8:e4:43:56: 81:fe:e2:e0:e0:96:2e:87:db:df:20:db:92:f7:31: 29:0c:1f:c2:74:50:72:93:e7:f8:21:cb:00:77:14: cd:37:07:39:bc:12:61:0e:20:84:56:ef:c2:62:9e: 7a:8b:5b:96:2f:73:71:91:d8:e3:af:ed:48:c0:8c: 3f:c7:c0:f8:aa:19:f2:3a:f0:6e:dc:6b:b9:75:b0: 0f:48:71:1e:c9:81:04:56:d7:dd:dd:c2:f6:87:20: 13:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:4A:C5:5C:EC:DB:01:8B:EC:3C:7A:AC:35:14:F1:E2:AA:87:59:BD X509v3 Authority Key Identifier: keyid:54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:05:06:82:96:29:01:dd:95:94:ea:f7:bb:7b:a9:70:0c:a1: ea:76:4e:2c:54:38:f0:fe:76:83:f8:8e:43:b7:de:b0:07:59: 33:82:18:3f:42:a5:86:d8:63:13:10:10:08:59:3d:70:bb:b9: 58:fd:db:77:61:92:59:2b:0b:2b:bd:1e:58:34:2f:e8:16:ed: 03:c3:7e:60:21:88:79:f2:6f:63:10:d9:6b:cd:ff:9e:a0:f1: ab:f1:0b:32:ec:ee:ac:77:a1:c3:51:4c:81:b9:29:4b:61:f2: 50:19:34:eb:4c:c6:38:9b:b0:87:d2:c9:41:f4:23:ca:33:51: ca:7b:a6:b0:3f:9e:77:42:48:b5:2f:4f:39:75:21:86:e0:67: 2e:34:70:b4:3e:fe:93:fb:8a:cf:af:e6:1b:1e:69:8d:a4:9a: 95:89:b8:4b:62:b4:93:57:26:ae:9d:f2:72:8d:53:f1:d9:22: 6a:1e:1f:66:56:e9:3a:ce:b0:5b:85:d6:b1:29:b6:00:4e:d1: 02:59:10:4c:1b:02:74:3e:8d:5c:17:9e:d9:f1:0f:24:73:07: 46:d3:80:85:15:d0:e1:02:5a:c0:ac:83:ac:30:fe:61:e4:b8: d1:c9:6c:b8:db:eb:55:a2:ca:ea:b8:b6:93:1a:5c:2b:81:20: c4:5a:51:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0U0QTExMC8GA1UEBRMoNTQxREQxNUUxNTRFNTA4RkIwMEZEQjI0NUM0RTc2RjJB RDNEODgxRDAeFw0yNTA4MjMwODE3MjBaFw0yNTA4MzAwODE3MjBaMBgxFjAUBgNV BAMTDTY4YTk3OTExLTAxZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNmsC892bocijwweN9TRMfY9sS3zn1eAg4OF4zHY54Ix/iGI68TMvvdy2bLjda 7wP73ZyV4j92+x/u6Q7W7dTyMngVYlnIi0IyhVfVyKidt0r2uGaGFcjhUJEuYI60 B/31rlqaj2b55E/YP0Ln4db7eaiY6B6W3fNiDfhP51lso56EZn56l/4qkvZ8ZVKJ vlABpWOGSC9Se/GCN4EEdR/w6ORDVoH+4uDgli6H298g25L3MSkMH8J0UHKT5/gh ywB3FM03Bzm8EmEOIIRW78JinnqLW5Yvc3GR2OOv7UjAjD/HwPiqGfI68G7ca7l1 sA9IcR7JgQRW193dwvaHIBNZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPUrFXOzb AYvsPHqsNRTx4qqHWb0wHwYDVR0jBBgwFoAUVB3RXhVOUI+wD9skXE528q09iB0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDRTRBL0UxRUExOUY2Njcz ODExRjBBRDU2NkQ3RkM0RjlBRTAyL1ZCM1JYaFZPVUktd0Q5c2tYRTUyOHEwOWlC MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVkIzUlhoVk9VSS13RDlza1hFNTI4cTA5aUIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD RTRBL0UxRUExOUY2NjczODExRjBBRDU2NkQ3RkM0RjlBRTAyL1ZCM1JYaFZPVUkt d0Q5c2tYRTUyOHEwOWlCMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADIFBoKWKQHdlZTq97t7qXAMoep2TixUOPD+doP4jkO33rAHWTOCGD9C pYbYYxMQEAhZPXC7uVj923dhklkrCyu9Hlg0L+gW7QPDfmAhiHnyb2MQ2WvN/56g 8avxCzLs7qx3ocNRTIG5KUth8lAZNOtMxjibsIfSyUH0I8ozUcp7prA/nndCSLUv Tzl1IYbgZy40cLQ+/pP7is+v5hseaY2kmpWJuEtitJNXJq6d8nKNU/HZImoeH2ZW 6TrOsFuF1rEptgBO0QJZEEwbAnQ+jVwXntnxDyRzB0bTgIUV0OECWsCsg6ww/mHk uNHJbLjb61Wiyuq4tpMaXCuBIMRaUc4= -----END CERTIFICATE-----Generated at Sat Aug 23 16:03:10 2025 by rpki-client