$ rpki-client -vvf rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft File: VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft (raw, json) Hash identifier: CVcrAlLy2vJBbserJG2R5HezY/0W60h1vlQvDkNddfw= Subject key identifier: 08:BA:99:5C:B8:FA:2F:02:D8:E5:B9:D9:88:A1:D7:8B:7D:81:B6:86 Authority key identifier: 56:BB:6F:31:37:D8:DD:9E:B9:7E:38:3B:C7:F4:61:D9:0F:85:DD:FE Certificate issuer: /CN=A91433B3/serialNumber=56BB6F3137D8DD9EB97E383BC7F461D90F85DDFE Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft Manifest number: 01B5 Signing time: Tue 01 Jul 2025 03:28:53 +0000 Manifest this update: Tue 01 Jul 2025 03:28:52 +0000 Manifest next update: Tue 08 Jul 2025 03:28:52 +0000 Files and hashes: 1: VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl (hash: /6urSVMx66wxuHnNToL3EHCvkJNiGq3GNFxRhWM4rfA=) 2: AB6C302EB5F311EDA0148B2DC4F9AE02.roa (hash: 4FOvuF+lrbDRETyeVF9s3HBZnjQN5y+IfUmzH88TfmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:28:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91433B3, serialNumber=56BB6F3137D8DD9EB97E383BC7F461D90F85DDFE Validity Not Before: Jul 1 03:28:52 2025 GMT Not After : Jul 8 03:28:52 2025 GMT Subject: CN=686355f4-9978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3b:12:a4:29:79:6b:eb:c1:fb:6d:22:10:3a: 9f:9a:06:80:75:ce:10:d1:04:c8:ca:ca:b2:8b:db: 58:a9:96:16:4c:50:4a:df:69:9a:6e:c0:d5:99:6d: 34:4d:ef:17:42:be:13:d6:fa:06:ce:18:ae:77:13: c4:f4:63:f6:d6:c7:f7:9f:2c:1d:3d:54:a9:c4:f5: 1d:45:10:4d:3f:b5:30:a6:30:ed:47:4f:e7:73:ff: 6c:f2:29:83:9a:83:fb:47:e2:54:3a:b6:a5:4e:54: c0:05:12:b7:df:55:0f:3b:1e:f3:b2:8d:ea:70:f9: 8c:25:4e:02:6d:5d:77:72:65:ce:8d:0e:6a:bc:68: ca:dc:d9:d0:49:61:dd:07:55:f1:2c:f9:b1:5f:92: 46:de:71:ca:2b:f3:24:2f:c9:ea:29:35:c2:33:c8: b5:ff:f0:e6:a6:e4:54:0e:bf:d4:28:2c:64:78:f4: 4f:f1:5f:6b:34:a3:a5:bb:86:a9:b3:7d:29:03:59: 45:ef:42:6d:6f:15:89:7b:db:f4:05:ce:ee:1d:74: 95:0c:48:9f:8f:2a:b1:46:26:c6:f1:51:c3:93:9d: 55:50:10:fe:57:7d:45:f2:8d:40:61:2a:14:65:9a: 79:fb:fd:f0:8d:ce:d1:ab:01:1c:27:3f:8b:82:31: 36:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:BA:99:5C:B8:FA:2F:02:D8:E5:B9:D9:88:A1:D7:8B:7D:81:B6:86 X509v3 Authority Key Identifier: keyid:56:BB:6F:31:37:D8:DD:9E:B9:7E:38:3B:C7:F4:61:D9:0F:85:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:cf:41:12:c8:39:85:b4:3f:0a:4a:3c:7e:71:ca:11:3d:0c: b5:ed:47:f0:fa:69:eb:d8:49:53:2b:a2:cd:6a:a7:f0:88:0e: b6:1a:62:0e:f3:9c:f7:19:33:af:db:f0:af:5d:df:d8:a7:d5: 4c:6a:f0:ce:be:87:53:ea:df:a7:4d:76:a5:a8:fa:88:33:03: fe:39:62:95:4a:ee:72:10:a1:e0:01:84:95:db:b0:72:84:1b: 90:bd:e4:2c:5c:0b:73:02:2c:18:98:da:a6:93:a5:ed:2f:da: 80:f6:79:94:e7:0d:ec:a3:5a:22:5b:99:37:c0:b7:00:ac:b5: 8d:64:36:ed:cf:ff:25:a3:79:a2:f9:e4:2b:52:dc:c4:0e:e9: 82:0f:dd:24:d7:54:ed:9e:48:63:40:74:9b:95:3e:36:2e:f3: 14:e7:35:32:38:bd:1d:1b:70:1b:d5:1c:fb:cf:ff:3d:2c:66: cc:04:2a:d1:0d:c3:0a:f8:86:45:d5:d1:5b:5d:31:a7:29:16: 6f:ab:a7:c0:fc:a6:ac:b7:6c:32:6a:e8:cf:30:15:e2:6f:c6: c2:ce:de:d7:d4:a0:cd:f1:88:f7:eb:51:02:47:61:51:c6:39: 5d:39:1b:0d:14:15:4c:c1:cf:fd:dc:0c:36:d4:99:73:44:a1: 49:35:f2:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzQjMxMTAvBgNVBAUTKDU2QkI2RjMxMzdEOEREOUVCOTdFMzgzQkM3RjQ2MUQ5 MEY4NURERkUwHhcNMjUwNzAxMDMyODUyWhcNMjUwNzA4MDMyODUyWjAYMRYwFAYD VQQDEw02ODYzNTVmNC05OTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzsSpCl5a+vB+20iEDqfmgaAdc4Q0QTIysqyi9tYqZYWTFBK32mabsDVmW00 Te8XQr4T1voGzhiudxPE9GP21sf3nywdPVSpxPUdRRBNP7UwpjDtR0/nc/9s8imD moP7R+JUOralTlTABRK331UPOx7zso3qcPmMJU4CbV13cmXOjQ5qvGjK3NnQSWHd B1XxLPmxX5JG3nHKK/MkL8nqKTXCM8i1//DmpuRUDr/UKCxkePRP8V9rNKOlu4ap s30pA1lF70JtbxWJe9v0Bc7uHXSVDEifjyqxRibG8VHDk51VUBD+V31F8o1AYSoU ZZp5+/3wjc7RqwEcJz+LgjE2CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAi6mVy4 +i8C2OW52Yih14t9gbaGMB8GA1UdIwQYMBaAFFa7bzE32N2euX44O8f0YdkPhd3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzNCMy9CREZFMThDQ0I1 RjAxMUVEQTdEMEVGN0NDNEY5QUUwMi9WcnR2TVRmWTNaNjVmamc3eF9SaDJRLUYz ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZydHZNVGZZM1o2NWZqZzd4X1JoMlEtRjNmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzNCMy9CREZFMThDQ0I1RjAxMUVEQTdEMEVGN0NDNEY5QUUwMi9WcnR2TVRmWTNa NjVmamc3eF9SaDJRLUYzZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3z0ESyDmFtD8KSjx+ccoRPQy17Ufw+mnr2ElTK6LNaqfwiA62GmIO 85z3GTOv2/CvXd/Yp9VMavDOvodT6t+nTXalqPqIMwP+OWKVSu5yEKHgAYSV27By hBuQveQsXAtzAiwYmNqmk6XtL9qA9nmU5w3so1oiW5k3wLcArLWNZDbtz/8lo3mi +eQrUtzEDumCD90k11TtnkhjQHSblT42LvMU5zUyOL0dG3Ab1Rz7z/89LGbMBCrR DcMK+IZF1dFbXTGnKRZvq6fA/Kast2wyaujPMBXib8bCzt7X1KDN8Yj361ECR2FR xjldORsNFBVMwc/93Aw21JlzRKFJNfKL -----END CERTIFICATE-----Generated at Wed Jul 2 05:14:49 2025 by rpki-client