$ rpki-client -vvf rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft File: Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft (raw, json) Hash identifier: cutmM+rYdkKguZLbKxvwQvO4fYpJ8YazWjpADbBst6Y= Subject key identifier: B3:8F:A3:86:CB:21:53:0E:6D:17:91:4F:8B:83:29:F2:E5:53:A8:30 Authority key identifier: 56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 Certificate issuer: /CN=A91203DC/serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Certificate serial: 2192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft Manifest number: 2187 Signing time: Mon 30 Jun 2025 15:59:12 +0000 Manifest this update: Mon 30 Jun 2025 15:59:12 +0000 Manifest next update: Mon 07 Jul 2025 15:59:12 +0000 Files and hashes: 1: Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl (hash: UJGMSN4XYmyxHE/t+v2jg/qBxfB5s0I58tEkRxVFemg=) 2: 1D9DC82A652311EBA8CF3C4CC4F9AE02.roa (hash: lzXH47zwQqzR7U0IwcpEbq0QXTqtq0eXFrMFUkvM89M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:59:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8594 (0x2192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203DC, serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Validity Not Before: Jun 30 15:59:12 2025 GMT Not After : Jul 7 15:59:12 2025 GMT Subject: CN=6862b450-d6d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:b2:5b:be:2c:fe:0f:e0:07:ce:2d:ab:1b: cf:ab:bf:20:97:3b:12:49:49:ef:db:99:b2:8b:9d: 74:8c:8e:bd:05:d2:a9:56:b9:33:c6:27:70:cf:0a: 02:22:51:a5:45:fd:13:2d:3b:97:ba:2d:e2:bf:e4: e0:a6:9b:c8:65:60:61:93:58:ce:60:1f:64:61:8f: 75:fe:cd:45:32:88:54:e9:bd:3c:3b:48:ef:2a:74: bb:97:4f:a2:8c:9f:73:7a:2b:0e:e8:0e:11:16:87: 2f:e3:2d:71:8b:12:25:6d:89:79:22:4b:55:46:90: 7d:25:c3:f7:f8:b4:9c:a9:a1:35:38:46:05:18:4d: ce:13:45:2c:1d:98:85:05:a5:b0:ec:9f:d7:05:7f: 7b:1c:44:51:9d:47:31:02:a6:18:7d:b5:85:b0:2a: 53:32:dc:de:a0:04:b2:3d:d8:76:f7:4c:5c:f9:c0: b8:8e:08:f8:75:ec:01:c7:8e:8d:42:4b:29:de:89: 43:2f:5d:1e:2c:a3:fc:a9:22:d7:a6:27:1d:d3:51: 82:b5:5a:d6:2a:4e:d9:1b:bb:23:c2:3b:fb:0c:d4: 86:3f:ce:a6:37:a1:bb:a3:74:52:25:88:3b:0c:02: 62:85:eb:50:1d:32:53:ec:b4:a4:f2:20:2f:5c:1f: 3e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8F:A3:86:CB:21:53:0E:6D:17:91:4F:8B:83:29:F2:E5:53:A8:30 X509v3 Authority Key Identifier: keyid:56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:7a:db:1d:66:cd:d8:6e:6d:91:1f:61:54:50:ad:f2:7c:02: 41:22:a2:0a:21:70:7a:76:31:61:84:f1:9a:fa:a9:e0:54:ca: 21:54:42:aa:2c:f2:9e:2c:21:f0:4b:7b:4e:0e:79:03:2d:d4: 03:a8:bd:cd:c0:99:39:e8:d7:b3:f3:80:2d:92:1d:ad:3c:a3: bd:7d:9d:ad:47:67:c0:20:23:18:20:f7:5c:81:7d:62:e6:87: d4:01:d1:86:b8:27:aa:22:7e:7a:4d:4c:4e:84:15:9f:7b:d5: 5d:e6:12:ac:c6:21:73:4d:1b:60:80:88:ad:87:72:07:f7:33: 39:db:e9:88:de:77:30:c3:e0:41:e2:c8:b9:72:a4:fe:b2:f4: e5:24:fa:d6:94:ff:e1:9f:bd:02:01:75:1a:e8:a9:95:ce:05: b0:13:0c:e7:36:90:c0:8e:ac:7e:5c:60:58:97:9c:be:c1:bd: 36:f2:59:a9:f8:cc:fe:72:e5:5a:58:0f:93:62:ba:94:d9:de: 04:ce:4f:0d:ef:5f:a8:cb:71:4a:88:dd:79:4c:cd:1b:87:b7: d3:f5:e5:1d:ac:1f:7e:02:de:7a:c2:40:9c:49:1c:c8:de:a7: 7e:ae:94:3d:bc:d4:d6:b0:6d:b7:1b:0b:6a:e3:14:b3:58:51: b9:15:10:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzREMxMTAvBgNVBAUTKDU2NDZFMDdBMEY2MDI1RjFFMjYwRjFDNDk5NkY5QTY4 MUIyOTIwNzEwHhcNMjUwNjMwMTU1OTEyWhcNMjUwNzA3MTU1OTEyWjAYMRYwFAYD VQQDEw02ODYyYjQ1MC1kNmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwe+yW74s/g/gB84tqxvPq78glzsSSUnv25myi510jI69BdKpVrkzxidwzwoC IlGlRf0TLTuXui3iv+TgppvIZWBhk1jOYB9kYY91/s1FMohU6b08O0jvKnS7l0+i jJ9zeisO6A4RFocv4y1xixIlbYl5IktVRpB9JcP3+LScqaE1OEYFGE3OE0UsHZiF BaWw7J/XBX97HERRnUcxAqYYfbWFsCpTMtzeoASyPdh290xc+cC4jgj4dewBx46N Qksp3olDL10eLKP8qSLXpicd01GCtVrWKk7ZG7sjwjv7DNSGP86mN6G7o3RSJYg7 DAJihetQHTJT7LSk8iAvXB8+jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOPo4bL IVMObReRT4uDKfLlU6gwMB8GA1UdIwQYMBaAFFZG4HoPYCXx4mDxxJlvmmgbKSBx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNEQy9GQUQzRDZGQ0RD NDkxMUU1QTA2MjVGODJDNEY5QUUwMi9Wa2JnZWc5Z0pmSGlZUEhFbVctYWFCc3BJ SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZrYmdlZzlnSmZIaVlQSEVtVy1hYUJzcElIRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDNEQy9GQUQzRDZGQ0RDNDkxMUU1QTA2MjVGODJDNEY5QUUwMi9Wa2JnZWc5Z0pm SGlZUEhFbVctYWFCc3BJSEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEetsdZs3Ybm2RH2FUUK3yfAJBIqIKIXB6djFhhPGa+qngVMohVEKq LPKeLCHwS3tODnkDLdQDqL3NwJk56Nez84Atkh2tPKO9fZ2tR2fAICMYIPdcgX1i 5ofUAdGGuCeqIn56TUxOhBWfe9Vd5hKsxiFzTRtggIith3IH9zM52+mI3ncww+BB 4si5cqT+svTlJPrWlP/hn70CAXUa6KmVzgWwEwznNpDAjqx+XGBYl5y+wb028lmp +Mz+cuVaWA+TYrqU2d4Ezk8N71+oy3FKiN15TM0bh7fT9eUdrB9+At56wkCcSRzI 3qd+rpQ9vNTWsG23Gwtq4xSzWFG5FRAj -----END CERTIFICATE-----Generated at Tue Jul 1 20:55:09 2025 by rpki-client