$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft File: vmOANw9kBuY_dG-vUrxQHsTQvVI.mft (raw, json) Hash identifier: y9pmP5ebCD+xjcR9180EKcFFb4GTU2LvfWYGM0vFNFo= Subject key identifier: 04:CA:4C:EF:35:37:B2:4E:F9:FA:74:F0:94:CC:65:95:3B:11:7F:46 Authority key identifier: BE:63:80:37:0F:64:06:E6:3F:74:6F:AF:52:BC:50:1E:C4:D0:BD:52 Certificate issuer: /CN=A9171B8D/serialNumber=BE6380370F6406E63F746FAF52BC501EC4D0BD52 Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft Manifest number: 52 Signing time: Sat 23 Aug 2025 07:30:35 +0000 Manifest this update: Sat 23 Aug 2025 07:30:35 +0000 Manifest next update: Sat 30 Aug 2025 07:30:35 +0000 Files and hashes: 1: vmOANw9kBuY_dG-vUrxQHsTQvVI.crl (hash: gp6ensF/R35od24kaD46vcmJyRKbIKr+xGJaFc4ycJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.crl rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:30:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B8D, serialNumber=BE6380370F6406E63F746FAF52BC501EC4D0BD52 Validity Not Before: Aug 23 07:30:35 2025 GMT Not After : Aug 30 07:30:35 2025 GMT Subject: CN=68a96e1b-08ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d8:bd:c6:18:41:73:76:3c:00:a7:a9:e1:fc: b6:65:cf:e6:a4:e2:a8:35:ee:4e:c3:a0:00:ae:cf: cb:48:41:14:29:45:35:f4:53:98:da:f8:d7:3b:1f: 09:d6:30:1e:95:c8:e4:22:1b:28:76:6a:cf:d2:63: fd:46:d5:33:d6:76:0c:74:c5:65:84:d1:bd:83:83: 96:52:fe:ea:ce:8d:4b:2e:97:79:31:90:b0:a5:15: 78:8c:07:6c:be:e2:d0:9f:11:a5:21:96:cb:ce:89: 62:21:bd:ee:e3:14:14:d3:c9:1a:09:4a:1a:5a:50: 33:e5:e9:f7:0c:95:61:0a:7a:39:ea:1f:88:25:64: 26:2e:a3:78:7a:9c:dd:13:9a:b2:6e:15:54:fb:13: a9:4b:3c:8a:73:99:fc:e0:d8:b1:bd:10:4c:b8:2c: 53:77:a7:23:29:bd:72:02:85:6a:12:4b:79:38:1e: 0b:9e:5c:36:ae:6f:ca:14:94:a0:3c:51:58:5f:c5: d4:30:ac:79:62:b6:67:4d:03:f6:b0:5f:a2:a4:1f: 6f:77:ef:36:a3:15:c3:9f:2b:5d:92:df:1b:a2:d2: 11:2b:e4:b6:68:e1:f8:e9:9f:19:e7:ef:d6:a9:bc: f2:cc:ca:e8:ab:3f:7c:8d:cd:6e:d6:29:7c:b3:8e: 8e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:CA:4C:EF:35:37:B2:4E:F9:FA:74:F0:94:CC:65:95:3B:11:7F:46 X509v3 Authority Key Identifier: keyid:BE:63:80:37:0F:64:06:E6:3F:74:6F:AF:52:BC:50:1E:C4:D0:BD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:73:7a:b2:26:32:b7:dc:e7:ac:34:20:26:99:7b:79:82:92: 13:b2:7e:07:07:44:50:7f:26:63:15:3d:a5:ef:77:8c:5e:71: 8d:57:27:a3:70:9b:ab:74:04:aa:3a:0d:99:eb:30:a3:27:be: d5:dd:1d:f0:a4:4a:c5:9c:ed:39:d4:1d:79:03:00:be:46:43: 67:5a:96:6d:12:b3:3f:49:1c:0b:28:11:12:35:b2:8f:a0:c1: de:eb:06:12:1b:ed:9d:7e:9d:f6:d2:6f:6a:85:42:f1:79:ce: 4d:7f:6c:18:6f:74:2f:1d:7d:ca:7d:e6:8e:f8:1c:14:f3:71: 87:b9:67:af:c1:7e:ff:77:13:81:a7:89:ef:e0:31:59:09:58: a4:ce:47:fd:36:9e:de:69:61:62:90:ad:c9:0e:fb:d0:b2:c6: dc:d8:ab:bb:c3:86:31:00:cf:74:26:8b:86:b9:34:2f:c9:a4: cb:3f:0b:99:1a:40:bb:61:a5:9b:ee:74:2e:27:23:79:a4:22: a6:6e:d9:73:5d:30:e2:7b:cc:b5:85:3b:fb:c6:3d:d9:ef:e3: 98:35:65:95:4b:1f:5c:8b:b8:ff:a9:b0:9f:1a:58:19:49:76: 10:0d:d3:4d:72:e7:00:79:82:d6:e1:db:54:b5:a8:cd:ed:7f: 41:19:15:2c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MUI4RDExMC8GA1UEBRMoQkU2MzgwMzcwRjY0MDZFNjNGNzQ2RkFGNTJCQzUwMUVD NEQwQkQ1MjAeFw0yNTA4MjMwNzMwMzVaFw0yNTA4MzAwNzMwMzVaMBgxFjAUBgNV BAMTDTY4YTk2ZTFiLTA4ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI2L3GGEFzdjwAp6nh/LZlz+ak4qg17k7DoACuz8tIQRQpRTX0U5ja+Nc7HwnW MB6VyOQiGyh2as/SY/1G1TPWdgx0xWWE0b2Dg5ZS/urOjUsul3kxkLClFXiMB2y+ 4tCfEaUhlsvOiWIhve7jFBTTyRoJShpaUDPl6fcMlWEKejnqH4glZCYuo3h6nN0T mrJuFVT7E6lLPIpzmfzg2LG9EEy4LFN3pyMpvXIChWoSS3k4HgueXDaub8oUlKA8 UVhfxdQwrHlitmdNA/awX6KkH2937zajFcOfK12S3xui0hEr5LZo4fjpnxnn79ap vPLMyuirP3yNzW7WKXyzjo7tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBMpM7zU3 sk75+nTwlMxllTsRf0YwHwYDVR0jBBgwFoAUvmOANw9kBuY/dG+vUrxQHsTQvVIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxQjhELzFDRjlBODdBMDNE MTExRjBCMjM0QkMxNUM0RjlBRTAyL3ZtT0FOdzlrQnVZX2RHLXZVcnhRSHNUUXZW SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdm1PQU53OWtCdVlfZEctdlVyeFFIc1RRdlZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx QjhELzFDRjlBODdBMDNEMTExRjBCMjM0QkMxNUM0RjlBRTAyL3ZtT0FOdzlrQnVZ X2RHLXZVcnhRSHNUUXZWSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK9zerImMrfc56w0ICaZe3mCkhOyfgcHRFB/JmMVPaXvd4xecY1XJ6Nw m6t0BKo6DZnrMKMnvtXdHfCkSsWc7TnUHXkDAL5GQ2dalm0Ssz9JHAsoERI1so+g wd7rBhIb7Z1+nfbSb2qFQvF5zk1/bBhvdC8dfcp95o74HBTzcYe5Z6/Bfv93E4Gn ie/gMVkJWKTOR/02nt5pYWKQrckO+9CyxtzYq7vDhjEAz3Qmi4a5NC/JpMs/C5ka QLthpZvudC4nI3mkIqZu2XNdMOJ7zLWFO/vGPdnv45g1ZZVLH1yLuP+psJ8aWBlJ dhAN001y5wB5gtbh21S1qM3tf0EZFSw= -----END CERTIFICATE-----Generated at Sun Aug 24 06:45:59 2025 by rpki-client