$ rpki-client -vvf rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.mft File: VaNt8khLtGWsMwGcBws5J0UkAic.mft (raw, json) Hash identifier: Ss37JY2C7XqT2wblzHCBt84o9HKtVS8KvrhtSTeprK8= Subject key identifier: D7:68:93:21:6F:AC:00:DE:4C:DA:F3:65:AF:69:90:47:DF:11:8C:07 Authority key identifier: 55:A3:6D:F2:48:4B:B4:65:AC:33:01:9C:07:0B:39:27:45:24:02:27 Certificate issuer: /CN=A9134167/serialNumber=55A36DF2484BB465AC33019C070B392745240227 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VaNt8khLtGWsMwGcBws5J0UkAic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.mft Manifest number: D2 Signing time: Thu 21 Aug 2025 05:49:08 +0000 Manifest this update: Thu 21 Aug 2025 05:49:07 +0000 Manifest next update: Thu 28 Aug 2025 05:49:07 +0000 Files and hashes: 1: VaNt8khLtGWsMwGcBws5J0UkAic.crl (hash: SmfFQwUur7YbMLO4egdRadObxsSMsqVl77dZqUsXfbQ=) 2: A1A1946E3E8F11EF90A1D97EC4F9AE02.roa (hash: RjGhvtiZ99qV/uWgf+fYP1U5NceB1zdotuSd44m3FNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.crl rsync://rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VaNt8khLtGWsMwGcBws5J0UkAic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134167, serialNumber=55A36DF2484BB465AC33019C070B392745240227 Validity Not Before: Aug 21 05:49:07 2025 GMT Not After : Aug 28 05:49:07 2025 GMT Subject: CN=68a6b354-f2f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b9:36:0a:50:a1:38:b5:86:5e:56:ac:99:61: ab:53:22:af:4e:13:51:db:12:11:e8:96:95:36:a4: bc:11:1a:03:91:4a:72:7c:ab:b8:3b:f0:55:d6:91: 3c:b5:55:20:09:c9:82:b9:05:48:67:a8:ea:7b:2f: fc:d3:82:c1:47:0a:79:c7:bd:24:ff:d9:4c:85:d4: fe:1d:91:25:f2:20:fb:d2:9c:9b:76:76:0e:01:db: 1f:c4:a2:9a:bb:08:e7:32:f2:5f:63:05:df:49:7f: 73:68:dc:32:2c:40:e9:0f:31:44:84:22:9b:3d:bb: 23:4e:43:0c:4f:5e:04:0b:de:57:25:8c:da:79:62: 25:33:bd:be:4f:83:58:fe:46:fd:4c:e8:5e:a4:38: fe:58:25:d3:0a:c3:66:5c:07:f3:c2:13:cd:31:45: 56:1c:6e:3f:90:f6:71:40:cf:3d:b5:42:f5:a2:3c: bf:7e:38:bf:c6:60:fb:7e:bc:d1:50:14:2e:28:e0: 8f:6b:f9:19:b3:a4:1b:59:9f:85:ec:68:31:7b:d6: 97:53:cc:75:da:45:44:87:02:6f:2b:c2:4f:3b:26: ff:d1:72:d7:f7:52:42:9c:4d:c9:37:dc:27:5c:6d: 80:43:c2:30:fe:be:5f:de:18:b0:9b:24:79:37:3f: 77:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:68:93:21:6F:AC:00:DE:4C:DA:F3:65:AF:69:90:47:DF:11:8C:07 X509v3 Authority Key Identifier: keyid:55:A3:6D:F2:48:4B:B4:65:AC:33:01:9C:07:0B:39:27:45:24:02:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VaNt8khLtGWsMwGcBws5J0UkAic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134167/B42267F43E8E11EF97A8557DC4F9AE02/VaNt8khLtGWsMwGcBws5J0UkAic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:7a:89:8e:d5:29:96:d9:13:47:e3:b4:55:47:e6:3c:a7:5d: 1e:e9:79:c0:2c:20:9d:5f:f7:df:ca:70:8c:24:35:26:23:27: d6:f4:e9:c4:ba:4b:6e:0b:0e:06:15:f5:b1:f7:af:6a:03:7f: 1e:f9:ce:0f:04:25:b4:0b:c7:01:4a:4f:7a:e4:47:59:8b:24: 44:da:96:0d:32:ae:10:88:32:7c:c3:b7:90:41:9b:bb:e3:68: 57:87:23:ae:9f:ef:be:8d:8d:e3:4d:83:7c:12:6d:7e:dc:2c: d5:2b:da:9f:71:5f:7f:ba:42:c1:fb:e7:ce:31:20:9c:0b:50: de:a8:a7:81:87:8c:33:3c:f7:af:5b:08:85:8e:5d:a7:b2:32: b4:4f:e8:c0:69:9a:b4:7e:e8:99:c0:55:37:98:1a:73:b7:e8: 2a:f8:52:11:a8:76:95:65:56:50:4a:e6:b7:ef:be:13:27:63: cc:23:40:11:2c:5f:f4:33:89:93:3e:ef:00:65:51:77:fb:5f: e9:42:94:b9:dd:f5:0b:e0:7c:ab:06:ff:73:ed:5b:db:f6:02: fa:2b:07:4f:8e:38:e0:a3:5e:f0:71:ea:18:6d:e2:a2:fc:e1: bb:41:e5:9b:58:12:b8:2b:90:70:20:39:4c:4c:39:24:9e:c4: 32:a9:f6:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNjcxMTAvBgNVBAUTKDU1QTM2REYyNDg0QkI0NjVBQzMzMDE5QzA3MEIzOTI3 NDUyNDAyMjcwHhcNMjUwODIxMDU0OTA3WhcNMjUwODI4MDU0OTA3WjAYMRYwFAYD VQQDEw02OGE2YjM1NC1mMmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7k2ClChOLWGXlasmWGrUyKvThNR2xIR6JaVNqS8ERoDkUpyfKu4O/BV1pE8 tVUgCcmCuQVIZ6jqey/804LBRwp5x70k/9lMhdT+HZEl8iD70pybdnYOAdsfxKKa uwjnMvJfYwXfSX9zaNwyLEDpDzFEhCKbPbsjTkMMT14EC95XJYzaeWIlM72+T4NY /kb9TOhepDj+WCXTCsNmXAfzwhPNMUVWHG4/kPZxQM89tUL1ojy/fji/xmD7frzR UBQuKOCPa/kZs6QbWZ+F7Ggxe9aXU8x12kVEhwJvK8JPOyb/0XLX91JCnE3JN9wn XG2AQ8Iw/r5f3hiwmyR5Nz93cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdokyFv rADeTNrzZa9pkEffEYwHMB8GA1UdIwQYMBaAFFWjbfJIS7RlrDMBnAcLOSdFJAIn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE2Ny9CNDIyNjdGNDNF OEUxMUVGOTdBODU1N0RDNEY5QUUwMi9WYU50OGtoTHRHV3NNd0djQndzNUowVWtB aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZhTnQ4a2hMdEdXc013R2NCd3M1SjBVa0FpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDE2Ny9CNDIyNjdGNDNFOEUxMUVGOTdBODU1N0RDNEY5QUUwMi9WYU50OGtoTHRH V3NNd0djQndzNUowVWtBaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5eomO1SmW2RNH47RVR+Y8p10e6XnALCCdX/ffynCMJDUmIyfW9OnE uktuCw4GFfWx969qA38e+c4PBCW0C8cBSk965EdZiyRE2pYNMq4QiDJ8w7eQQZu7 42hXhyOun+++jY3jTYN8Em1+3CzVK9qfcV9/ukLB++fOMSCcC1DeqKeBh4wzPPev WwiFjl2nsjK0T+jAaZq0fuiZwFU3mBpzt+gq+FIRqHaVZVZQSua3774TJ2PMI0AR LF/0M4mTPu8AZVF3+1/pQpS53fUL4HyrBv9z7Vvb9gL6KwdPjjjgo17wceoYbeKi /OG7QeWbWBK4K5BwIDlMTDkknsQyqfbE -----END CERTIFICATE-----Generated at Sat Aug 23 07:10:10 2025 by rpki-client