$ rpki-client -vvf rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft File: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft (raw, json) Hash identifier: E66YSJPwNFrnF2JmhCuNH9j+K8L84FXlCaCp04u23UM= Subject key identifier: 57:77:80:38:AE:1F:3E:75:A9:14:4A:FD:10:83:C9:FF:0A:92:43:36 Authority key identifier: BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 Certificate issuer: /CN=A917B503/serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft Manifest number: D4 Signing time: Sat 23 Aug 2025 05:48:49 +0000 Manifest this update: Sat 23 Aug 2025 05:48:48 +0000 Manifest next update: Sat 30 Aug 2025 05:48:48 +0000 Files and hashes: 1: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl (hash: JJ+0Bdq/Ha/MSH9XxJUs9thpkKqA4aFNasC9nnHFR80=) 2: FF7048A08BB111EF8981B871C4F9AE02.roa (hash: 9uEwzB8ckH0lupP2vcJh2pZkJ61ZIv0842o4n0sbwyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:48:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B503, serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Validity Not Before: Aug 23 05:48:48 2025 GMT Not After : Aug 30 05:48:48 2025 GMT Subject: CN=68a95641-0670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:79:5c:c2:84:3e:62:c1:c0:9c:e9:ec:0b:96: d0:ee:02:88:f0:a1:9a:17:f0:f1:de:c4:9f:ed:51: 00:37:b8:a1:21:78:e5:d9:04:1f:fa:e4:3b:74:15: bc:a7:f5:06:76:c2:ab:b8:b8:1b:da:9e:6f:42:32: 35:2a:39:dd:83:31:6f:28:a5:bf:7c:b9:9a:dd:0b: 61:e2:fd:e4:96:f6:51:c1:04:a9:0d:08:03:8b:b5: 04:23:a8:ba:2d:64:8c:89:dd:46:b7:30:2c:2a:97: 87:70:e7:db:9a:4b:1d:3b:4b:97:12:d7:39:8c:a5: 48:cc:84:61:4c:73:41:cb:f4:1e:60:29:f7:af:ec: 60:6d:01:03:b0:e3:6c:2f:0b:de:4a:ee:f3:a4:a3: 45:c0:7a:54:e7:a4:29:b8:c6:e9:2c:f9:56:8c:66: bb:63:3b:ae:d2:25:e6:82:0a:02:8e:1c:33:81:80: 03:4b:a5:33:e7:1b:6c:b7:94:58:b6:1c:61:61:58: b6:f7:b1:78:5f:b5:7d:0d:81:7e:98:33:82:fb:3b: a2:8d:26:47:09:d2:53:40:17:a9:26:7c:dd:39:6b: 27:44:33:c3:81:be:f3:73:4d:7d:c0:59:87:21:b6: 73:87:63:11:31:67:11:31:f5:16:5c:00:db:6a:59: 6c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:77:80:38:AE:1F:3E:75:A9:14:4A:FD:10:83:C9:FF:0A:92:43:36 X509v3 Authority Key Identifier: keyid:BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:f4:03:59:d7:38:a9:26:4b:29:ee:f9:18:c6:0f:c2:ad:b2: 3a:e2:76:48:3a:63:42:30:1e:70:4e:8e:89:5b:e0:ff:83:92: 2d:20:43:04:5f:45:1d:93:d6:73:b1:d0:c2:af:8c:6f:8b:dd: 55:b6:12:c2:89:45:07:d1:0e:cd:02:f6:c5:c4:5e:46:d7:d9: 9c:a4:62:8e:cf:ec:6f:fc:6e:39:28:6f:de:d2:9a:03:de:9f: 65:ff:99:26:af:2a:a6:73:49:b3:fc:30:69:25:16:b5:bb:07: 7a:ae:b7:c7:a3:90:16:ba:45:76:cc:1e:6d:a9:de:1f:f9:56: f2:56:7d:e6:6f:d0:ce:00:a2:b5:e6:86:41:21:eb:4b:e1:f4: 0d:5e:86:b4:78:1d:cc:93:73:0e:2f:b8:0d:2c:38:06:3f:6d: f7:4f:07:07:47:98:67:4c:11:84:d1:ce:64:77:2b:c1:0d:53: 18:22:39:30:9c:41:46:a4:79:b0:45:8e:f3:f1:dd:ef:b8:fb: b2:94:78:fb:a0:ae:82:3c:81:32:3b:e7:8f:2e:a3:09:2e:8b: 85:42:da:44:13:77:84:12:cc:f5:9e:c0:dc:26:30:bd:2f:58: 4a:de:31:92:3e:7f:78:9e:98:13:5f:a2:64:30:33:3e:29:1b: d9:a0:33:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MDMxMTAvBgNVBAUTKEJENjNFMEREQ0I1Q0Q0MUIzNDUwMURGMkU4MUEyQTcy Q0VFMzZFRjIwHhcNMjUwODIzMDU0ODQ4WhcNMjUwODMwMDU0ODQ4WjAYMRYwFAYD VQQDEw02OGE5NTY0MS0wNjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHlcwoQ+YsHAnOnsC5bQ7gKI8KGaF/Dx3sSf7VEAN7ihIXjl2QQf+uQ7dBW8 p/UGdsKruLgb2p5vQjI1KjndgzFvKKW/fLma3Qth4v3klvZRwQSpDQgDi7UEI6i6 LWSMid1GtzAsKpeHcOfbmksdO0uXEtc5jKVIzIRhTHNBy/QeYCn3r+xgbQEDsONs LwveSu7zpKNFwHpU56QpuMbpLPlWjGa7Yzuu0iXmggoCjhwzgYADS6Uz5xtst5RY thxhYVi297F4X7V9DYF+mDOC+zuijSZHCdJTQBepJnzdOWsnRDPDgb7zc019wFmH IbZzh2MRMWcRMfUWXADballsEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFd3gDiu Hz51qRRK/RCDyf8KkkM2MB8GA1UdIwQYMBaAFL1j4N3LXNQbNFAd8ugaKnLO427y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUwMy83Qjg4NUZFNDQz MTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFCczBVQjN5NkJvcWNzN2pi dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZXUGczY3RjMUJzMFVCM3k2Qm9xY3M3amJ2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUwMy83Qjg4NUZFNDQzMTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFC czBVQjN5NkJvcWNzN2pidkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy9ANZ1zipJksp7vkYxg/CrbI64nZIOmNCMB5wTo6JW+D/g5ItIEME X0Udk9ZzsdDCr4xvi91VthLCiUUH0Q7NAvbFxF5G19mcpGKOz+xv/G45KG/e0poD 3p9l/5kmryqmc0mz/DBpJRa1uwd6rrfHo5AWukV2zB5tqd4f+VbyVn3mb9DOAKK1 5oZBIetL4fQNXoa0eB3Mk3MOL7gNLDgGP233TwcHR5hnTBGE0c5kdyvBDVMYIjkw nEFGpHmwRY7z8d3vuPuylHj7oK6CPIEyO+ePLqMJLouFQtpEE3eEEsz1nsDcJjC9 L1hK3jGSPn94npgTX6JkMDM+KRvZoDM8 -----END CERTIFICATE-----Generated at Sat Aug 23 20:30:42 2025 by rpki-client