$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: yJV64uWQkcf+lHXIZxrLqBXSp3aqP8A9nM/SPJx8fAI= Subject key identifier: 29:FE:85:AF:B4:B7:38:1C:5B:76:5C:4B:3E:EB:A9:D9:F9:BA:EB:89 Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: E4 Signing time: Sun 29 Jun 2025 04:34:00 +0000 Manifest this update: Sun 29 Jun 2025 04:33:59 +0000 Manifest next update: Sun 06 Jul 2025 04:33:59 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: uJMUtdlOXdS66uCnr2Ezf32KosM7jcpweZ0PDfGEtzY=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 04:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: Jun 29 04:33:59 2025 GMT Not After : Jul 6 04:33:59 2025 GMT Subject: CN=6860c238-303b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f8:00:0e:c3:c4:9e:cd:84:73:c1:bb:fc:fa: ba:ae:d9:c8:ef:5b:a2:46:0e:4d:4e:6b:06:01:83: ac:4d:a1:0d:a6:e4:ab:12:83:0f:17:f0:dd:9b:29: a2:5d:78:07:a4:24:8a:54:c4:48:bb:d6:5f:99:0f: 72:e5:88:73:dd:53:24:86:bc:d6:f7:c1:d1:a2:99: fd:72:ea:dc:1f:d1:ec:ab:e0:c3:ab:ca:64:11:39: 0d:85:cb:38:18:e6:c9:e6:91:50:a4:3e:c4:95:7c: 02:04:62:4b:3e:b8:4a:bf:31:01:b7:c4:be:84:6b: 09:a1:91:e3:f2:7a:ae:3b:94:a7:58:c5:c0:30:b2: f4:c5:a5:46:56:67:b5:fb:7a:db:bb:ef:07:db:33: 4a:5b:22:b9:ba:a1:e9:8e:38:e7:df:63:2a:85:24: d2:6b:44:45:45:f6:64:e1:52:c5:e5:8e:82:24:1b: 24:31:b8:6f:80:22:74:81:3c:34:a0:33:38:40:ec: 45:f5:ca:78:41:39:43:f7:f3:b5:6b:95:4f:8c:33: f7:88:78:88:3a:c0:b1:47:c2:ca:c9:c7:af:d5:c0: df:e1:50:8f:8f:6f:ab:f4:e7:9a:7c:9e:95:03:b2: 30:d3:b4:a7:f6:f3:c1:3d:e1:91:2c:00:f2:c4:f8: b2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:FE:85:AF:B4:B7:38:1C:5B:76:5C:4B:3E:EB:A9:D9:F9:BA:EB:89 X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:74:89:c7:2d:22:fe:c4:18:6b:53:66:09:bf:2b:03:75:d0: 48:14:b0:d0:f2:1b:91:ef:75:bf:f2:3f:31:d2:d5:de:85:f0: 02:77:8a:8b:58:b9:62:68:c3:6d:92:27:e2:fe:81:24:1d:1d: 7c:fb:83:2e:24:e4:67:37:ee:c4:79:91:cf:47:18:42:86:21: 61:50:63:72:34:1f:ae:a7:ca:d6:cf:a3:5a:5b:35:39:e8:aa: ad:70:82:61:a1:2b:d3:c1:b3:7e:0b:cb:94:3d:1a:5a:64:00: cc:d7:00:81:ab:96:b5:f7:02:f5:52:31:ee:03:0b:d8:24:02: e5:0b:61:12:dd:7e:0a:23:51:74:6a:9f:98:68:5a:b3:ef:12: 35:6a:82:0b:68:60:74:e6:a6:40:57:50:e0:94:13:c6:75:8b: 88:7e:7f:75:47:e6:85:52:52:a1:34:c8:76:95:a6:b6:00:d2: 2e:72:8d:65:52:2f:ee:db:78:95:9b:02:bd:3a:f9:38:51:04: 2a:cc:fd:4b:f7:3d:22:39:93:5a:06:15:cb:5d:8c:88:35:db: ea:2b:9a:9d:72:08:68:78:96:0c:58:ae:b3:c3:44:d3:56:68: d3:b6:c2:8c:c8:03:bd:a0:68:b4:21:9a:29:dd:3a:2c:d8:3f: 68:61:4e:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUwNjI5MDQzMzU5WhcNMjUwNzA2MDQzMzU5WjAYMRYwFAYD VQQDEw02ODYwYzIzOC0zMDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufgADsPEns2Ec8G7/Pq6rtnI71uiRg5NTmsGAYOsTaENpuSrEoMPF/Ddmymi XXgHpCSKVMRIu9ZfmQ9y5Yhz3VMkhrzW98HRopn9curcH9Hsq+DDq8pkETkNhcs4 GObJ5pFQpD7ElXwCBGJLPrhKvzEBt8S+hGsJoZHj8nquO5SnWMXAMLL0xaVGVme1 +3rbu+8H2zNKWyK5uqHpjjjn32MqhSTSa0RFRfZk4VLF5Y6CJBskMbhvgCJ0gTw0 oDM4QOxF9cp4QTlD9/O1a5VPjDP3iHiIOsCxR8LKycev1cDf4VCPj2+r9OeafJ6V A7Iw07Sn9vPBPeGRLADyxPiyEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCn+ha+0 tzgcW3ZcSz7rqdn5uuuJMB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGdInHLSL+xBhrU2YJvysDddBIFLDQ8huR73W/8j8x0tXehfACd4qL WLliaMNtkifi/oEkHR18+4MuJORnN+7EeZHPRxhChiFhUGNyNB+up8rWz6NaWzU5 6KqtcIJhoSvTwbN+C8uUPRpaZADM1wCBq5a19wL1UjHuAwvYJALlC2ES3X4KI1F0 ap+YaFqz7xI1aoILaGB05qZAV1DglBPGdYuIfn91R+aFUlKhNMh2laa2ANIuco1l Ui/u23iVmwK9Ovk4UQQqzP1L9z0iOZNaBhXLXYyINdvqK5qdcghoeJYMWK6zw0TT VmjTtsKMyAO9oGi0IZop3Tos2D9oYU6g -----END CERTIFICATE-----Generated at Mon Jun 30 21:05:36 2025 by rpki-client