$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft File: VCuU2GJc9xGWT9E3QSldJ616kAQ.mft (raw, json) Hash identifier: wMN/DffXGZFL7d/oyBYQmRmxDH5KVYyLrOeE5JSFcDQ= Subject key identifier: B3:4C:11:D8:D1:C2:44:6E:2F:AA:EB:D6:92:89:98:BA:DE:11:C3:4D Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 01FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft Manifest number: 01E0 Signing time: Tue 01 Jul 2025 03:47:28 +0000 Manifest this update: Tue 01 Jul 2025 03:47:27 +0000 Manifest next update: Tue 08 Jul 2025 03:47:27 +0000 Files and hashes: 1: VCuU2GJc9xGWT9E3QSldJ616kAQ.crl (hash: rFHbJpyZaQglCh2sM775Z+h6VBsArkdXFVkcmTiGcM4=) 2: 3352C1BAECFC11EFA398671BC4F9AE02.roa (hash: Im9wfZuP6zDy1h0Hl9Jq0NXIaM8u/vuOASHLbchH8jE=) 3: 020607A2498711EFBB260663C4F9AE02.roa (hash: T6rwUDI540K7kNvAic9olkLe7ckJW9yi5Gt2J/Ejnw0=) 4: D13FCAEAA62E11EFBC284C42C4F9AE02.roa (hash: K8NnxbaCBJETQFsMtKq3Bzg51wGMgmnozQ6OqtNXVto=) 5: 05F505961AA311F0A475D464C4F9AE02.roa (hash: DJ6ceD+nzuCFrSpyZtlueLHrerXM29TFRnLIJO8v0Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:47:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: Jul 1 03:47:27 2025 GMT Not After : Jul 8 03:47:27 2025 GMT Subject: CN=68635a4f-c907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:da:ba:94:67:a1:28:64:02:f0:c0:4e:f1:f2: 05:69:26:86:a8:0f:b6:da:aa:53:a6:8a:d2:5e:f6: b2:df:88:a1:0d:cd:61:2f:ca:fd:4f:05:60:c1:df: 1a:16:a8:8f:79:fe:25:6c:9a:f2:f8:71:e1:ac:a8: b7:e6:d5:06:09:06:40:97:8c:99:9f:ee:f2:15:dd: df:8d:29:74:14:20:e5:fd:d3:04:4a:78:44:6e:55: 1a:0d:12:2d:c8:80:80:9e:69:d0:9a:75:35:30:ea: aa:7c:a7:b2:d6:96:96:d8:68:ca:28:0a:9c:4b:10: a7:21:93:29:38:fb:7f:ff:42:e2:b9:af:56:3d:d8: 9b:f7:7b:86:08:8a:74:44:e5:fe:7e:ec:3f:2d:59: cf:8b:96:c7:f9:05:15:07:6b:64:ec:29:d5:a7:39: bf:b3:b4:61:fe:e0:4e:19:00:60:5a:e8:73:55:18: ea:84:ad:a8:10:ce:d4:61:7b:82:93:66:89:e7:53: 51:ce:24:63:82:17:a9:1c:4e:9e:0f:a9:cf:83:d9: 73:21:f3:e5:f9:f5:61:44:59:23:60:af:cc:de:2e: f8:d5:2b:93:3d:f0:3d:28:35:86:1a:94:ce:c0:54: 47:f9:0c:ec:0e:db:4e:71:3a:61:37:a0:b5:d8:14: dc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:4C:11:D8:D1:C2:44:6E:2F:AA:EB:D6:92:89:98:BA:DE:11:C3:4D X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:f4:32:97:29:d2:7f:8e:f6:3b:f6:23:c2:af:d6:68:05:e4: 3a:e5:f0:f1:2d:7d:6c:e9:b6:12:61:20:4f:ea:7a:87:ee:11: 13:99:74:9e:16:0e:81:39:31:00:1a:60:bc:7d:a2:94:78:b9: aa:56:ec:8e:ba:3d:90:ff:97:7b:15:15:ae:b6:71:be:d1:d2: ad:de:a1:99:21:68:66:6f:d0:76:39:a4:f2:40:69:22:53:d9: 3e:0c:18:ce:3a:22:91:18:b7:79:06:d4:2f:37:5b:3b:44:8e: d3:7e:9f:c5:19:23:01:d4:ba:b3:82:65:95:45:a9:85:55:b9: 00:d7:9c:53:57:39:24:84:93:7f:28:c2:5b:8b:73:f0:cf:43: 29:1e:c1:3e:e9:8d:bf:40:68:a1:fd:95:19:a3:26:06:db:b8: 56:7e:4c:15:48:3b:a0:f8:6e:c0:76:ae:50:4e:37:14:5d:a4: ec:d7:8b:9b:3e:42:0f:92:e2:f3:63:08:fc:bd:66:56:9f:33: e1:08:a5:1e:8d:c7:5d:ad:a9:07:c0:55:c4:5f:b2:28:cf:68: 54:bc:b4:3f:73:84:e0:7d:22:7d:d5:f2:e0:ac:3b:05:3a:d2: c0:e2:78:fa:58:e1:c9:53:34:2f:7a:2a:9d:b5:93:aa:30:56: 7f:06:11:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUwNzAxMDM0NzI3WhcNMjUwNzA4MDM0NzI3WjAYMRYwFAYD VQQDEw02ODYzNWE0Zi1jOTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9q6lGehKGQC8MBO8fIFaSaGqA+22qpTporSXvay34ihDc1hL8r9TwVgwd8a FqiPef4lbJry+HHhrKi35tUGCQZAl4yZn+7yFd3fjSl0FCDl/dMESnhEblUaDRIt yICAnmnQmnU1MOqqfKey1paW2GjKKAqcSxCnIZMpOPt//0Liua9WPdib93uGCIp0 ROX+fuw/LVnPi5bH+QUVB2tk7CnVpzm/s7Rh/uBOGQBgWuhzVRjqhK2oEM7UYXuC k2aJ51NRziRjghepHE6eD6nPg9lzIfPl+fVhRFkjYK/M3i741SuTPfA9KDWGGpTO wFRH+QzsDttOcTphN6C12BTc3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNMEdjR wkRuL6rr1pKJmLreEcNNMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC8xNjFENEMwQUU0Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4 R1dUOUUzUVNsZEo2MTZrQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI9DKXKdJ/jvY79iPCr9ZoBeQ65fDxLX1s6bYSYSBP6nqH7hETmXSe Fg6BOTEAGmC8faKUeLmqVuyOuj2Q/5d7FRWutnG+0dKt3qGZIWhmb9B2OaTyQGki U9k+DBjOOiKRGLd5BtQvN1s7RI7Tfp/FGSMB1LqzgmWVRamFVbkA15xTVzkkhJN/ KMJbi3Pwz0MpHsE+6Y2/QGih/ZUZoyYG27hWfkwVSDug+G7Adq5QTjcUXaTs14ub PkIPkuLzYwj8vWZWnzPhCKUejcddrakHwFXEX7Ioz2hUvLQ/c4TgfSJ91fLgrDsF OtLA4nj6WOHJUzQveiqdtZOqMFZ/BhFW -----END CERTIFICATE-----Generated at Thu Jul 3 04:31:32 2025 by rpki-client