$ rpki-client -vvf rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft File: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft (raw, json) Hash identifier: LGpzm4QeXOr2TU1FWZqur3VYQZA8J7naBjI5aBCL6ws= Subject key identifier: 7F:FA:07:56:75:93:81:9C:D3:53:DF:2F:AC:45:55:6E:3E:98:24:81 Authority key identifier: BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 Certificate issuer: /CN=A917B503/serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft Manifest number: BA Signing time: Thu 03 Jul 2025 06:08:58 +0000 Manifest this update: Thu 03 Jul 2025 06:08:57 +0000 Manifest next update: Thu 10 Jul 2025 06:08:57 +0000 Files and hashes: 1: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl (hash: webv1ZqrvDaJjhN1lEpDx0qWUlgwzVqsCUsznuBjRCI=) 2: FF7048A08BB111EF8981B871C4F9AE02.roa (hash: 9uEwzB8ckH0lupP2vcJh2pZkJ61ZIv0842o4n0sbwyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B503, serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Validity Not Before: Jul 3 06:08:57 2025 GMT Not After : Jul 10 06:08:57 2025 GMT Subject: CN=68661e79-ac3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:01:60:8c:03:da:c4:be:0b:93:94:71:b7:a3: 1a:7a:f9:45:22:66:31:65:0e:92:b6:66:a0:7c:64: 6d:40:97:5b:48:f7:32:11:4a:f0:8f:55:e3:90:00: 8d:f4:89:a3:92:f2:bb:9c:23:47:57:87:b7:6d:ac: 41:bb:ca:25:97:d4:d1:02:cf:df:40:24:63:96:ee: 72:2a:03:15:73:62:fc:06:26:81:bd:85:c4:ff:be: 0f:de:5c:34:24:4f:24:ed:e6:86:58:09:9c:d3:8f: da:9c:e4:44:3e:fa:e9:5e:67:e2:9b:71:8a:b7:c3: 62:97:83:98:16:a8:a9:6c:05:df:58:14:cf:d6:2c: 26:ce:ea:86:e3:dc:08:b2:84:ce:a8:58:3e:c3:ab: ea:bf:7d:96:0f:1e:62:bb:43:88:4b:e7:2d:2c:8f: db:a0:5f:b3:05:1f:97:27:e8:ab:dd:15:03:d5:5d: fd:50:8f:95:6d:e2:13:bd:0e:3a:97:0c:83:55:c7: 13:1e:36:28:36:2b:dd:64:9d:d2:8b:01:b5:58:1e: 07:97:7d:8f:1c:ec:ba:ee:68:13:d7:4f:79:40:9a: e4:db:80:53:dc:11:7c:d7:9f:e2:e7:b4:b5:32:c3: 6b:cb:cd:41:57:41:86:82:11:b8:5a:23:ca:90:d5: aa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:FA:07:56:75:93:81:9C:D3:53:DF:2F:AC:45:55:6E:3E:98:24:81 X509v3 Authority Key Identifier: keyid:BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:17:20:62:c9:9c:b0:ab:5a:2a:02:a2:dd:ba:e0:b0:c3:31: fc:23:5a:df:55:c9:85:ea:bc:cd:15:28:17:b1:8f:22:f3:cd: 7e:ae:fc:12:0d:f8:d4:8d:3a:f9:4f:c6:d6:e9:d9:b1:4d:bf: bc:21:f7:58:97:d0:bb:78:34:ea:69:ca:45:42:2c:1b:0e:56: 62:3a:7b:54:54:5b:70:0e:f9:d7:38:bd:61:f0:55:1d:9a:f8: 40:c7:b7:88:34:25:fc:e5:fb:cf:93:f8:ba:b3:57:a7:f5:c5: 3a:98:3e:0d:10:7c:8a:5d:5e:e0:a0:1e:21:86:c2:01:dc:73: 14:25:b0:cb:7a:89:82:bb:8b:7c:0d:26:88:07:2e:48:13:bd: 66:cf:75:bf:75:99:71:bf:91:99:03:88:22:f4:3b:f9:2f:2d: 05:3c:53:99:d4:aa:14:b8:8e:e4:b5:48:c0:d8:9f:79:20:66: 16:54:de:31:b4:1e:32:1d:82:ef:8c:b7:35:70:c1:0f:de:0c: 35:bb:ab:d5:82:9d:b6:0b:d6:ab:5f:5c:89:cc:ad:2c:67:72: 13:8d:4d:73:98:9c:b2:b9:05:ca:ae:78:e5:22:6a:82:b8:2e: e7:84:47:03:b9:a9:01:e3:e6:c7:b1:4e:9b:8a:30:a7:22:26: 95:88:d2:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MDMxMTAvBgNVBAUTKEJENjNFMEREQ0I1Q0Q0MUIzNDUwMURGMkU4MUEyQTcy Q0VFMzZFRjIwHhcNMjUwNzAzMDYwODU3WhcNMjUwNzEwMDYwODU3WjAYMRYwFAYD VQQDEw02ODY2MWU3OS1hYzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4QFgjAPaxL4Lk5Rxt6MaevlFImYxZQ6StmagfGRtQJdbSPcyEUrwj1XjkACN 9ImjkvK7nCNHV4e3baxBu8oll9TRAs/fQCRjlu5yKgMVc2L8BiaBvYXE/74P3lw0 JE8k7eaGWAmc04/anOREPvrpXmfim3GKt8Nil4OYFqipbAXfWBTP1iwmzuqG49wI soTOqFg+w6vqv32WDx5iu0OIS+ctLI/boF+zBR+XJ+ir3RUD1V39UI+VbeITvQ46 lwyDVccTHjYoNivdZJ3SiwG1WB4Hl32PHOy67mgT1095QJrk24BT3BF815/i57S1 MsNry81BV0GGghG4WiPKkNWqjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/6B1Z1 k4Gc01PfL6xFVW4+mCSBMB8GA1UdIwQYMBaAFL1j4N3LXNQbNFAd8ugaKnLO427y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUwMy83Qjg4NUZFNDQz MTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFCczBVQjN5NkJvcWNzN2pi dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZXUGczY3RjMUJzMFVCM3k2Qm9xY3M3amJ2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUwMy83Qjg4NUZFNDQzMTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFC czBVQjN5NkJvcWNzN2pidkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByFyBiyZywq1oqAqLduuCwwzH8I1rfVcmF6rzNFSgXsY8i881+rvwS DfjUjTr5T8bW6dmxTb+8IfdYl9C7eDTqacpFQiwbDlZiOntUVFtwDvnXOL1h8FUd mvhAx7eINCX85fvPk/i6s1en9cU6mD4NEHyKXV7goB4hhsIB3HMUJbDLeomCu4t8 DSaIBy5IE71mz3W/dZlxv5GZA4gi9Dv5Ly0FPFOZ1KoUuI7ktUjA2J95IGYWVN4x tB4yHYLvjLc1cMEP3gw1u6vVgp22C9arX1yJzK0sZ3ITjU1zmJyyuQXKrnjlImqC uC7nhEcDuakB4+bHsU6bijCnIiaViNIT -----END CERTIFICATE-----Generated at Fri Jul 4 04:03:26 2025 by rpki-client