$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft File: vHDzdLcox7cRwkpoJ_dHekKyKk0.mft (raw, json) Hash identifier: OavRC5k1jlO5VTw7RZlCrseg/eru+tgElTZRnxY1Q+Q= Subject key identifier: BB:C8:F6:ED:41:B4:FE:BA:68:10:81:6B:F8:C2:29:FA:59:79:06:50 Authority key identifier: BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D Certificate issuer: /CN=A9142A75/serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft Manifest number: 5C Signing time: Sat 23 Aug 2025 07:21:58 +0000 Manifest this update: Sat 23 Aug 2025 07:21:57 +0000 Manifest next update: Sat 30 Aug 2025 07:21:57 +0000 Files and hashes: 1: vHDzdLcox7cRwkpoJ_dHekKyKk0.crl (hash: ISPddQs6Z3maKDaqvLFzQqn4h4PbSCOCnwiPRpuZMAU=) 2: 3B69BCFAF53A11EF907A433EC4F9AE02.roa (hash: g53LMcn3iRdJAKtGtiImyfZixGirZg93i3IYIo94JAU=) 3: 6BD4BB16F83111EFBA64911FC4F9AE02.roa (hash: XvWuI1YoEga2y2ypcrjG1/r0tc+yszPXr1W996sUaXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A75, serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Validity Not Before: Aug 23 07:21:57 2025 GMT Not After : Aug 30 07:21:57 2025 GMT Subject: CN=68a96c15-0d48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:bc:f1:48:b4:27:31:57:02:5f:2f:d4:8e:9f: 70:9d:f6:fa:aa:f1:20:0a:3c:00:30:0b:8e:45:b4: 26:3a:4a:e9:86:5f:19:c6:16:4b:26:bb:cb:af:5e: 72:fd:6f:11:ad:3e:50:06:20:74:b3:b2:e6:3d:c9: 41:77:3e:e7:60:9c:34:d3:ac:d9:58:e5:47:c6:7a: 37:99:10:3e:11:52:70:89:0f:6b:45:aa:a9:36:24: 63:6e:b3:ce:0a:6f:69:57:26:5e:98:3e:48:e6:af: ba:b6:f7:04:ad:59:89:ce:aa:b8:a5:92:c4:31:e6: 8e:9a:58:04:d3:89:09:04:93:0d:20:46:c3:ef:b4: a3:00:a4:b1:6e:57:61:a0:f8:32:a6:9f:c3:6b:8c: 5f:e9:a9:04:f3:e6:7e:eb:9c:00:32:27:ba:4d:9e: 64:fd:7a:35:96:6a:2b:03:05:86:65:ff:58:3f:11: 17:02:9d:3e:80:f4:53:10:22:5e:1f:17:b7:ea:d3: 56:db:4b:de:4f:64:82:39:19:3a:9a:78:aa:a1:75: b6:29:c4:2a:2d:f2:1e:d7:f1:cb:3c:d5:bf:8a:a2: 32:79:00:20:26:cf:6a:6f:da:d5:ac:f0:3b:fa:f4: 67:2d:30:12:71:5a:c7:46:b5:07:08:8b:63:c5:69: 02:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C8:F6:ED:41:B4:FE:BA:68:10:81:6B:F8:C2:29:FA:59:79:06:50 X509v3 Authority Key Identifier: keyid:BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:9a:4a:82:1c:4b:b2:4a:eb:ee:6d:a0:cc:72:19:fb:c2:38: ad:55:fd:17:c0:ee:79:a1:02:92:7a:b6:75:0f:17:e1:b4:d8: 9f:9d:f7:23:e7:1e:b7:a9:97:89:d2:f6:e8:6b:6b:20:12:06: 0d:87:70:d6:10:bf:b9:d8:00:ea:4f:1b:62:2f:80:93:28:fb: 1d:7c:be:58:67:98:d5:41:ff:82:f3:84:f2:86:88:5b:45:90: be:1b:08:4c:eb:ae:65:a8:03:65:82:33:af:71:55:df:7a:85: 0a:76:92:ae:c6:a6:af:15:8b:8d:84:8f:8f:5a:be:4b:d1:95: 5f:73:04:b7:00:90:0b:ca:fd:8c:b7:c1:29:dc:72:74:e7:af: 3b:fc:0d:68:c7:19:fb:be:bc:f9:6b:06:9f:c2:13:41:52:73: 5f:81:d9:0a:b6:02:7f:f3:0b:e5:fe:01:62:63:b4:bc:df:e4: 3f:8f:58:89:4e:28:04:39:cb:69:32:9b:ee:2c:f9:28:1f:c0: 38:91:c5:74:16:c4:53:68:8a:70:76:30:9c:73:e8:a0:6b:2d: 52:24:da:18:5e:12:9c:b7:e0:2a:6e:76:a5:36:fc:0c:81:56: 45:97:01:e4:6d:2e:dc:a5:80:9a:fb:3a:ae:b1:e3:4b:e7:ea: 11:37:86:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkE3NTExMC8GA1UEBRMoQkM3MEYzNzRCNzI4QzdCNzExQzI0QTY4MjdGNzQ3N0E0 MkIyMkE0RDAeFw0yNTA4MjMwNzIxNTdaFw0yNTA4MzAwNzIxNTdaMBgxFjAUBgNV BAMTDTY4YTk2YzE1LTBkNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCevPFItCcxVwJfL9SOn3Cd9vqq8SAKPAAwC45FtCY6SumGXxnGFksmu8uvXnL9 bxGtPlAGIHSzsuY9yUF3PudgnDTTrNlY5UfGejeZED4RUnCJD2tFqqk2JGNus84K b2lXJl6YPkjmr7q29wStWYnOqrilksQx5o6aWATTiQkEkw0gRsPvtKMApLFuV2Gg +DKmn8NrjF/pqQTz5n7rnAAyJ7pNnmT9ejWWaisDBYZl/1g/ERcCnT6A9FMQIl4f F7fq01bbS95PZII5GTqaeKqhdbYpxCot8h7X8cs81b+KojJ5ACAmz2pv2tWs8Dv6 9GctMBJxWsdGtQcIi2PFaQIDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUu8j27UG0 /rpoEIFr+MIp+ll5BlAwHwYDVR0jBBgwFoAUvHDzdLcox7cRwkpoJ/dHekKyKk0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyQTc1L0VGNUNENkRBRjUz OTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdjUndrcG9KX2RIZWtLeUtr MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdkhEemRMY294N2NSd2twb0pfZEhla0t5S2swLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy QTc1L0VGNUNENkRBRjUzOTExRUZCMDlGQzgzREM0RjlBRTAyL3ZIRHpkTGNveDdj UndrcG9KX2RIZWtLeUtrMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJqaSoIcS7JK6+5toMxyGfvCOK1V/RfA7nmhApJ6tnUPF+G02J+d9yPn Hrepl4nS9uhrayASBg2HcNYQv7nYAOpPG2IvgJMo+x18vlhnmNVB/4LzhPKGiFtF kL4bCEzrrmWoA2WCM69xVd96hQp2kq7Gpq8Vi42Ej49avkvRlV9zBLcAkAvK/Yy3 wSnccnTnrzv8DWjHGfu+vPlrBp/CE0FSc1+B2Qq2An/zC+X+AWJjtLzf5D+PWIlO KAQ5y2kym+4s+SgfwDiRxXQWxFNoinB2MJxz6KBrLVIk2hheEpy34CpudqU2/AyB VkWXAeRtLtylgJr7Oq6x40vn6hE3hrg= -----END CERTIFICATE-----Generated at Sun Aug 24 00:10:01 2025 by rpki-client