$ rpki-client -vvf rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft File: VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft (raw, json) Hash identifier: OHVOK6xGgNHmqfDXjt93eawEqmqjNNgc6Fw/olH1H3U= Subject key identifier: F5:45:A7:07:85:16:E2:6F:C6:FA:55:35:23:A2:C0:35:F6:9A:13:C0 Authority key identifier: 56:BB:6F:31:37:D8:DD:9E:B9:7E:38:3B:C7:F4:61:D9:0F:85:DD:FE Certificate issuer: /CN=A91433B3/serialNumber=56BB6F3137D8DD9EB97E383BC7F461D90F85DDFE Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft Manifest number: 01D0 Signing time: Sat 23 Aug 2025 02:54:27 +0000 Manifest this update: Sat 23 Aug 2025 02:54:26 +0000 Manifest next update: Sat 30 Aug 2025 02:54:26 +0000 Files and hashes: 1: VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl (hash: 3MxMb5Ec67JlItGJgbBe3AWMD1Dk0ui9ZAuAfn/rL1o=) 2: AB6C302EB5F311EDA0148B2DC4F9AE02.roa (hash: 4FOvuF+lrbDRETyeVF9s3HBZnjQN5y+IfUmzH88TfmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91433B3, serialNumber=56BB6F3137D8DD9EB97E383BC7F461D90F85DDFE Validity Not Before: Aug 23 02:54:26 2025 GMT Not After : Aug 30 02:54:26 2025 GMT Subject: CN=68a92d62-26e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a2:f5:67:50:42:7b:84:4a:40:5b:27:81:3b: 32:9d:dc:73:5d:58:41:34:28:da:b6:36:c3:c8:a3: ed:66:b6:fb:49:63:4c:df:31:9b:2f:e6:55:5e:c2: ac:05:a3:3f:5c:b5:84:0e:ca:41:40:d3:42:5e:89: 07:21:8e:bf:59:ee:0b:c3:ba:43:00:c8:9c:ff:b4: cf:7b:b6:a9:32:13:74:6d:54:cb:3c:76:ae:c3:fb: f8:44:6e:bf:1e:cf:14:25:e7:7d:b6:30:bb:49:c4: 92:a8:ac:e6:7f:78:58:d5:93:a4:16:b5:b8:1c:ae: 34:0a:7b:0d:e1:35:18:b2:e7:59:09:d6:87:f2:8c: ea:df:8a:53:a6:c8:e2:be:1f:f2:36:7c:a4:2e:73: 7e:85:2a:f4:44:f0:4a:3c:79:de:49:16:9e:4f:3f: e9:be:56:73:df:00:f9:41:d5:38:fd:47:7d:56:f9: 1a:f7:e7:72:fe:ac:13:fb:a4:8d:b4:24:34:c2:8b: 3e:45:fe:6b:fd:7f:6f:a8:95:40:ad:fa:6a:a4:e7: 88:3b:ba:9e:a2:8f:f0:d9:c3:00:14:76:96:7f:b8: 6c:56:9f:c6:80:ec:b1:c5:02:4b:2f:27:6b:3d:7d: 19:48:c9:f6:97:1d:2d:33:53:14:05:39:25:3a:bb: 2c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:45:A7:07:85:16:E2:6F:C6:FA:55:35:23:A2:C0:35:F6:9A:13:C0 X509v3 Authority Key Identifier: keyid:56:BB:6F:31:37:D8:DD:9E:B9:7E:38:3B:C7:F4:61:D9:0F:85:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:28:ab:68:ee:1a:c7:ce:40:ae:90:25:a4:b1:cf:57:f7:3a: e1:a9:d4:85:77:46:97:db:07:58:8e:40:75:e9:b5:42:64:9f: c5:32:de:b5:25:91:88:60:45:ec:ea:f5:1b:aa:63:3a:a5:3a: 1c:49:0e:50:b4:77:15:17:df:86:e6:03:7c:4c:14:e9:27:4c: 3f:6a:04:94:2c:41:b7:ac:5b:21:65:5a:ed:0a:f0:fe:25:d0: dc:86:5e:4d:23:e2:8d:ce:50:88:60:4b:9c:a7:de:de:5a:78: ca:b2:55:7a:cb:5d:fe:a8:4a:c7:d9:8d:65:43:89:7a:7b:1d: d5:86:e6:f6:d4:c5:fb:3f:5f:62:1e:df:9d:af:ac:41:66:d7: dc:20:72:c9:b6:2a:0c:b2:58:30:18:b0:ac:f1:93:07:b9:37: ba:7c:70:4e:e8:d2:db:35:92:d6:fb:fa:c7:77:58:99:81:bb: 96:db:6d:b2:31:7b:34:e3:92:85:9d:f5:b9:ff:f7:f0:38:05: 6d:a1:c9:81:4b:ae:62:0f:93:62:ae:3d:50:38:c8:a6:9e:21: 24:7c:07:e6:f1:7a:54:c7:dc:76:26:c0:25:31:09:7e:17:49: 40:2d:0d:a2:3a:03:87:05:ce:64:2f:5c:27:45:f6:10:ed:e2: bd:b6:8a:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzQjMxMTAvBgNVBAUTKDU2QkI2RjMxMzdEOEREOUVCOTdFMzgzQkM3RjQ2MUQ5 MEY4NURERkUwHhcNMjUwODIzMDI1NDI2WhcNMjUwODMwMDI1NDI2WjAYMRYwFAYD VQQDEw02OGE5MmQ2Mi0yNmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6L1Z1BCe4RKQFsngTsyndxzXVhBNCjatjbDyKPtZrb7SWNM3zGbL+ZVXsKs BaM/XLWEDspBQNNCXokHIY6/We4Lw7pDAMic/7TPe7apMhN0bVTLPHauw/v4RG6/ Hs8UJed9tjC7ScSSqKzmf3hY1ZOkFrW4HK40CnsN4TUYsudZCdaH8ozq34pTpsji vh/yNnykLnN+hSr0RPBKPHneSRaeTz/pvlZz3wD5QdU4/Ud9Vvka9+dy/qwT+6SN tCQ0wos+Rf5r/X9vqJVArfpqpOeIO7qeoo/w2cMAFHaWf7hsVp/GgOyxxQJLLydr PX0ZSMn2lx0tM1MUBTklOrssqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVFpweF FuJvxvpVNSOiwDX2mhPAMB8GA1UdIwQYMBaAFFa7bzE32N2euX44O8f0YdkPhd3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzNCMy9CREZFMThDQ0I1 RjAxMUVEQTdEMEVGN0NDNEY5QUUwMi9WcnR2TVRmWTNaNjVmamc3eF9SaDJRLUYz ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZydHZNVGZZM1o2NWZqZzd4X1JoMlEtRjNmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzNCMy9CREZFMThDQ0I1RjAxMUVEQTdEMEVGN0NDNEY5QUUwMi9WcnR2TVRmWTNa NjVmamc3eF9SaDJRLUYzZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/KKto7hrHzkCukCWksc9X9zrhqdSFd0aX2wdYjkB16bVCZJ/FMt61 JZGIYEXs6vUbqmM6pTocSQ5QtHcVF9+G5gN8TBTpJ0w/agSULEG3rFshZVrtCvD+ JdDchl5NI+KNzlCIYEucp97eWnjKslV6y13+qErH2Y1lQ4l6ex3Vhub21MX7P19i Ht+dr6xBZtfcIHLJtioMslgwGLCs8ZMHuTe6fHBO6NLbNZLW+/rHd1iZgbuW222y MXs045KFnfW5//fwOAVtocmBS65iD5Nirj1QOMimniEkfAfm8XpUx9x2JsAlMQl+ F0lALQ2iOgOHBc5kL1wnRfYQ7eK9torP -----END CERTIFICATE-----Generated at Sat Aug 23 14:30:47 2025 by rpki-client