$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: 0yViJkE+TO7jQUGW+e7z8wmnm4AXPX5/roUEPGblxlQ= Subject key identifier: 99:5B:88:4E:10:1F:DE:04:FC:55:F7:28:7F:5B:C4:CF:39:62:4F:1A Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: 0100 Signing time: Sat 23 Aug 2025 05:19:49 +0000 Manifest this update: Sat 23 Aug 2025 05:19:49 +0000 Manifest next update: Sat 30 Aug 2025 05:19:49 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: n3H6JYdCnylinepc+0QfYYDDFXT1tBrtKIJI+y+J2hE=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:19:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: Aug 23 05:19:49 2025 GMT Not After : Aug 30 05:19:49 2025 GMT Subject: CN=68a94f75-22a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:03:c6:a6:81:ae:94:5d:0c:a4:0f:ee:e0:48: 06:1b:25:16:08:be:f5:4f:3a:18:8f:16:ef:20:a9: a2:9c:41:4d:f8:58:cd:28:d4:fc:f9:bc:d6:47:6e: 1d:d3:dd:e9:06:3f:f4:93:b2:f2:33:31:d9:54:6f: 39:45:7a:14:bf:e0:37:b1:00:6a:e4:31:2a:10:c0: 3a:19:c9:37:27:9a:c5:19:40:54:91:5e:d7:61:72: b8:3e:51:fd:7e:1b:33:9f:da:9c:4a:ab:be:69:ba: 73:68:b9:2f:3d:1a:30:a1:cc:97:f2:23:76:20:6f: 43:26:1e:41:68:87:3d:7e:50:8e:67:5b:46:66:c2: 66:bf:fe:a0:50:4d:a0:42:55:66:4b:8e:c0:8a:41: f4:76:ba:69:cf:ea:3b:a8:02:e0:95:b1:ca:1f:34: 44:59:29:7c:2f:89:bd:c8:02:7f:0d:9e:46:7d:54: 22:de:49:ff:0a:3a:08:d8:d2:08:78:e6:74:0b:6d: d0:b8:5e:d2:4b:a7:85:63:1c:d8:fd:e2:b0:f6:85: f6:da:2d:3e:fd:01:c8:53:42:7e:45:f8:92:13:c7: f4:e4:4b:12:4b:c6:84:f0:9f:26:c5:c3:61:c4:f0: fc:e7:e8:5f:c7:ea:2f:b3:4e:04:b8:36:be:9a:57: 88:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:5B:88:4E:10:1F:DE:04:FC:55:F7:28:7F:5B:C4:CF:39:62:4F:1A X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:e2:57:67:2e:d2:5a:6e:1f:bf:86:f4:37:ce:9f:7d:ae:a1: f8:0e:fb:59:f8:54:48:0b:61:c6:cf:d1:59:41:82:1f:6d:be: 32:cc:5d:35:c8:c1:b5:fb:1f:b5:cd:f5:bc:57:b3:5e:a0:0a: 39:14:78:85:d5:10:01:14:ec:01:92:9e:12:36:eb:5a:1d:e5: 15:91:f0:00:8c:30:7f:9b:8c:41:96:b1:4c:10:a8:ea:19:01: 74:03:c8:be:3f:d5:60:1a:70:96:f9:4d:22:11:24:ed:54:da: 4c:1e:cd:a1:76:7b:d6:19:cf:20:7a:ce:da:0c:25:4e:69:c6: 96:ae:64:a1:ec:90:4e:3d:45:40:e4:95:28:a6:a3:dd:85:2a: da:1f:f8:82:c0:d7:6a:97:c7:3c:1e:81:ac:09:43:f8:77:82: a2:8a:c5:65:16:88:60:e5:25:39:a0:ff:40:d5:b9:e6:94:4f: 7d:95:5c:20:d8:9b:e1:bd:a1:3d:e5:fe:d1:d2:33:4a:f1:20: 60:e4:e3:4e:00:01:45:14:9e:6c:4c:a6:75:fd:82:0e:fd:0f: c4:eb:77:85:c0:36:50:94:9c:16:e3:ab:e8:08:9d:08:57:76: 13:40:8b:83:a0:f2:9d:08:3d:5b:87:b1:76:0a:27:1e:f1:02: 7e:b1:d9:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUwODIzMDUxOTQ5WhcNMjUwODMwMDUxOTQ5WjAYMRYwFAYD VQQDEw02OGE5NGY3NS0yMmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wPGpoGulF0MpA/u4EgGGyUWCL71TzoYjxbvIKminEFN+FjNKNT8+bzWR24d 093pBj/0k7LyMzHZVG85RXoUv+A3sQBq5DEqEMA6Gck3J5rFGUBUkV7XYXK4PlH9 fhszn9qcSqu+abpzaLkvPRowocyX8iN2IG9DJh5BaIc9flCOZ1tGZsJmv/6gUE2g QlVmS47AikH0drppz+o7qALglbHKHzREWSl8L4m9yAJ/DZ5GfVQi3kn/CjoI2NII eOZ0C23QuF7SS6eFYxzY/eKw9oX22i0+/QHIU0J+RfiSE8f05EsSS8aE8J8mxcNh xPD85+hfx+ovs04EuDa+mleItwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJlbiE4Q H94E/FX3KH9bxM85Yk8aMB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB74ldnLtJabh+/hvQ3zp99rqH4DvtZ+FRIC2HGz9FZQYIfbb4yzF01 yMG1+x+1zfW8V7NeoAo5FHiF1RABFOwBkp4SNutaHeUVkfAAjDB/m4xBlrFMEKjq GQF0A8i+P9VgGnCW+U0iESTtVNpMHs2hdnvWGc8ges7aDCVOacaWrmSh7JBOPUVA 5JUopqPdhSraH/iCwNdql8c8HoGsCUP4d4KiisVlFohg5SU5oP9A1bnmlE99lVwg 2JvhvaE95f7R0jNK8SBg5ONOAAFFFJ5sTKZ1/YIO/Q/E63eFwDZQlJwW46voCJ0I V3YTQIuDoPKdCD1bh7F2Cice8QJ+sdkU -----END CERTIFICATE-----Generated at Sat Aug 23 16:24:33 2025 by rpki-client