$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft File: VCuU2GJc9xGWT9E3QSldJ616kAQ.mft (raw, json) Hash identifier: q3v+Ok/w8wkVPerNaQtFkDtfYWoIP5YkvJLFu2gfgog= Subject key identifier: CD:F3:A1:2A:BB:9C:F3:D3:A6:26:0D:94:B0:DA:02:DD:DA:E8:A5:FA Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft Manifest number: 01FB Signing time: Sat 23 Aug 2025 03:13:05 +0000 Manifest this update: Sat 23 Aug 2025 03:13:05 +0000 Manifest next update: Sat 30 Aug 2025 03:13:05 +0000 Files and hashes: 1: VCuU2GJc9xGWT9E3QSldJ616kAQ.crl (hash: BL2ohWpDbza7iNG3J3KjK9J8DVN6BraNUMsuTZ+k3i8=) 2: 3352C1BAECFC11EFA398671BC4F9AE02.roa (hash: Im9wfZuP6zDy1h0Hl9Jq0NXIaM8u/vuOASHLbchH8jE=) 3: 020607A2498711EFBB260663C4F9AE02.roa (hash: T6rwUDI540K7kNvAic9olkLe7ckJW9yi5Gt2J/Ejnw0=) 4: D13FCAEAA62E11EFBC284C42C4F9AE02.roa (hash: K8NnxbaCBJETQFsMtKq3Bzg51wGMgmnozQ6OqtNXVto=) 5: 05F505961AA311F0A475D464C4F9AE02.roa (hash: DJ6ceD+nzuCFrSpyZtlueLHrerXM29TFRnLIJO8v0Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:13:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: Aug 23 03:13:05 2025 GMT Not After : Aug 30 03:13:05 2025 GMT Subject: CN=68a931c1-d81a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2c:40:2a:b3:f3:bb:b9:54:77:76:c0:c7:34: 2e:fd:ef:e9:66:91:52:ef:3f:c6:f4:eb:55:f3:c4: 5d:a1:0f:6b:9f:5e:4a:27:b3:ac:99:96:6f:82:68: ca:76:10:81:13:7b:64:37:62:f4:44:cd:88:02:09: ea:b9:f3:97:eb:73:26:d8:92:56:c2:49:18:f5:db: 07:fd:e6:86:1e:d1:e8:85:18:a9:d5:c9:50:53:80: f5:60:32:6e:e7:6a:66:f7:46:7c:13:c7:ef:c8:ed: c2:92:ba:2b:c3:71:86:16:fe:8d:53:61:7f:2f:38: 54:68:f9:0d:5e:36:23:1d:d5:3d:92:21:f1:86:f2: bb:d4:df:7e:9e:28:0c:97:28:65:8f:55:11:1e:d5: 0b:18:e4:66:69:a4:d8:5c:89:58:36:55:3a:6d:a0: 66:e5:4d:53:fd:12:05:d8:2f:c9:d4:0d:d5:6f:f5: 52:de:f8:ab:1b:01:44:09:e5:c9:78:11:dc:94:10: e2:5d:87:6d:96:6c:4d:41:ef:09:b8:7e:97:66:a5: 11:5b:5f:29:ae:03:be:24:17:b5:a8:5e:79:a0:14: bc:06:b9:3d:3f:08:b6:ad:5d:77:37:d0:6b:c0:d7: d4:f8:ab:37:ae:43:60:e1:a4:a8:99:75:10:f1:3e: e9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F3:A1:2A:BB:9C:F3:D3:A6:26:0D:94:B0:DA:02:DD:DA:E8:A5:FA X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:30:f4:bd:9c:9f:55:24:85:c8:77:b9:1a:fe:a9:08:27:dd: a9:1c:d2:8d:16:11:e7:dd:3f:12:ee:96:f6:5e:2c:73:b8:cc: f5:81:a9:21:47:25:67:4e:04:17:8c:06:65:81:08:ea:ce:48: eb:36:10:15:31:52:63:71:c3:3c:c2:70:f5:a8:ea:97:20:60: 49:fd:fe:d7:6d:34:18:5e:98:b6:4b:f1:0a:c9:f0:7e:db:b4: 0d:eb:23:eb:25:41:f3:8d:ce:4b:05:2b:e4:cd:e5:7c:49:db: 00:e5:16:b7:7d:2e:40:73:ef:a7:23:75:e2:ea:c7:2f:82:98: 33:5b:bd:2a:15:23:1c:30:ff:9b:8a:67:9e:a9:07:7e:0f:92: b2:ed:e9:57:92:60:1d:e2:8d:ed:72:5c:ed:d1:6a:6b:4a:42: b3:b0:6f:c1:04:c5:e2:12:75:c1:8e:61:5d:28:3f:20:cc:51: 3c:a0:fa:b0:59:b2:5b:84:29:06:92:0a:d8:e9:f9:65:6b:2a: 05:7a:41:14:1b:50:b1:75:89:04:c8:32:bb:14:47:9e:4a:26: b3:e7:1b:89:a7:22:68:ad:16:14:33:86:59:df:f4:8c:ee:83: 25:74:51:42:e6:ef:95:fa:d4:13:a5:ea:cf:90:08:0d:08:95: 30:d9:b5:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUwODIzMDMxMzA1WhcNMjUwODMwMDMxMzA1WjAYMRYwFAYD VQQDEw02OGE5MzFjMS1kODFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoixAKrPzu7lUd3bAxzQu/e/pZpFS7z/G9OtV88RdoQ9rn15KJ7OsmZZvgmjK dhCBE3tkN2L0RM2IAgnqufOX63Mm2JJWwkkY9dsH/eaGHtHohRip1clQU4D1YDJu 52pm90Z8E8fvyO3Ckrorw3GGFv6NU2F/LzhUaPkNXjYjHdU9kiHxhvK71N9+nigM lyhlj1URHtULGORmaaTYXIlYNlU6baBm5U1T/RIF2C/J1A3Vb/VS3virGwFECeXJ eBHclBDiXYdtlmxNQe8JuH6XZqURW18prgO+JBe1qF55oBS8Brk9Pwi2rV13N9Br wNfU+Ks3rkNg4aSomXUQ8T7p/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3zoSq7 nPPTpiYNlLDaAt3a6KX6MB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC8xNjFENEMwQUU0Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4 R1dUOUUzUVNsZEo2MTZrQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqMPS9nJ9VJIXId7ka/qkIJ92pHNKNFhHn3T8S7pb2XixzuMz1gakh RyVnTgQXjAZlgQjqzkjrNhAVMVJjccM8wnD1qOqXIGBJ/f7XbTQYXpi2S/EKyfB+ 27QN6yPrJUHzjc5LBSvkzeV8SdsA5Ra3fS5Ac++nI3Xi6scvgpgzW70qFSMcMP+b imeeqQd+D5Ky7elXkmAd4o3tclzt0WprSkKzsG/BBMXiEnXBjmFdKD8gzFE8oPqw WbJbhCkGkgrY6fllayoFekEUG1CxdYkEyDK7FEeeSiaz5xuJpyJorRYUM4ZZ3/SM 7oMldFFC5u+V+tQTperPkAgNCJUw2bVA -----END CERTIFICATE-----Generated at Sun Aug 24 00:14:41 2025 by rpki-client