$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: /5nY1g+FFUuyzdMO6ckzG5lqVeniRx2kHiFkGzE71uI= Subject key identifier: 6B:7B:E5:7E:FA:5D:84:C0:FF:CC:42:1F:39:8E:CD:D4:39:28:48:73 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 013B Signing time: Thu 03 Jul 2025 04:33:14 +0000 Manifest this update: Thu 03 Jul 2025 04:33:14 +0000 Manifest next update: Thu 10 Jul 2025 04:33:14 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: TqTmoCg2GAQBA3n8GLM5NR+XdNyssEWplCHuwMmAcZo=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Jul 3 04:33:14 2025 GMT Not After : Jul 10 04:33:14 2025 GMT Subject: CN=6866080a-63db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9d:cf:0e:47:00:bb:9c:a2:d3:b8:ca:aa:02: 47:07:6f:2d:58:1b:29:2f:e1:6c:2b:09:93:55:d7: 55:be:e8:60:d8:bf:3c:52:1c:79:a2:6a:76:76:90: 7e:0f:79:7a:4f:84:30:c6:80:3c:37:9d:e6:20:e1: 08:e7:c9:13:a9:2d:d9:0b:65:69:14:ac:ad:2d:3d: 91:7e:13:d4:db:ef:01:ab:f6:ec:1b:bf:48:d5:4a: 31:0e:c4:ce:00:65:20:c1:e1:08:75:e1:1f:bf:0b: 06:c9:c0:5e:c6:0e:c1:a0:25:cb:14:7e:e5:be:52: 55:59:e1:57:8a:50:30:ed:09:5f:af:de:46:50:a4: 65:2a:ff:f8:22:86:12:17:dd:04:61:d5:0c:7f:99: bb:4d:13:c5:95:1d:d9:20:52:55:7d:8f:64:88:1f: 6d:cd:2b:ea:0f:68:5b:69:2d:05:e5:16:79:24:ce: 31:1d:49:6f:6d:f2:d8:70:b5:b7:1b:de:ee:c1:e7: 75:7f:58:f2:99:e1:27:d0:65:af:33:e8:dc:30:13: 25:de:d8:1f:4f:31:2f:e4:3b:4f:20:68:6a:c3:66: 22:f4:5a:59:b5:77:5e:5c:2a:32:94:42:aa:c3:2c: b3:cf:0d:92:68:3d:fb:aa:dd:0e:7b:b7:6f:ef:36: fb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7B:E5:7E:FA:5D:84:C0:FF:CC:42:1F:39:8E:CD:D4:39:28:48:73 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:eb:5d:ce:98:2f:c9:a3:a7:05:92:01:e8:9b:16:74:a2:12: 58:d2:73:58:2e:8a:3f:3b:e0:97:8c:33:54:ce:39:d9:4c:9e: 6e:b1:e3:9f:25:4d:ad:d3:18:bd:6a:fd:3a:ee:40:d3:67:91: 6d:aa:b7:bd:32:8c:f7:09:b5:f7:bd:bd:81:98:45:5c:a0:a6: e4:13:b0:d5:f1:be:5a:b3:5e:9e:d5:79:19:50:a8:ff:b9:d4: 8f:f8:00:f4:63:1a:64:e8:42:31:1a:69:de:78:46:04:a0:50: 2c:de:4b:ae:11:77:6e:15:e6:6f:9f:54:09:0b:71:92:d0:4a: 7f:28:65:9f:ea:b2:cc:c7:8f:20:71:07:f1:84:f2:77:6c:23: ea:ca:6e:a2:04:be:50:bd:42:58:15:f7:cd:7a:54:95:ef:d9: 18:34:49:85:b6:75:97:b5:ee:31:b9:70:cd:ec:1f:03:7c:d8: 4d:d5:19:e3:75:b2:55:8f:e6:8c:6b:2d:00:2e:c8:c9:72:ef: b0:7a:82:c3:b6:67:e2:f4:4b:e9:70:6d:2a:35:ad:da:ae:b8: 4f:e9:ad:43:e9:17:2b:c0:65:b1:07:b0:bd:5f:fa:62:61:29: aa:81:71:22:81:61:b9:37:66:01:2d:27:39:99:d2:66:08:22: 57:0e:ac:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUwNzAzMDQzMzE0WhcNMjUwNzEwMDQzMzE0WjAYMRYwFAYD VQQDEw02ODY2MDgwYS02M2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZ3PDkcAu5yi07jKqgJHB28tWBspL+FsKwmTVddVvuhg2L88Uhx5omp2dpB+ D3l6T4QwxoA8N53mIOEI58kTqS3ZC2VpFKytLT2RfhPU2+8Bq/bsG79I1UoxDsTO AGUgweEIdeEfvwsGycBexg7BoCXLFH7lvlJVWeFXilAw7Qlfr95GUKRlKv/4IoYS F90EYdUMf5m7TRPFlR3ZIFJVfY9kiB9tzSvqD2hbaS0F5RZ5JM4xHUlvbfLYcLW3 G97uwed1f1jymeEn0GWvM+jcMBMl3tgfTzEv5DtPIGhqw2Yi9FpZtXdeXCoylEKq wyyzzw2SaD37qt0Oe7dv7zb7EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGt75X76 XYTA/8xCHzmOzdQ5KEhzMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK613OmC/Jo6cFkgHomxZ0ohJY0nNYLoo/O+CXjDNUzjnZTJ5useOf JU2t0xi9av067kDTZ5Ftqre9Moz3CbX3vb2BmEVcoKbkE7DV8b5as16e1XkZUKj/ udSP+AD0Yxpk6EIxGmneeEYEoFAs3kuuEXduFeZvn1QJC3GS0Ep/KGWf6rLMx48g cQfxhPJ3bCPqym6iBL5QvUJYFffNelSV79kYNEmFtnWXte4xuXDN7B8DfNhN1Rnj dbJVj+aMay0ALsjJcu+weoLDtmfi9EvpcG0qNa3arrhP6a1D6RcrwGWxB7C9X/pi YSmqgXEigWG5N2YBLSc5mdJmCCJXDqwG -----END CERTIFICATE-----Generated at Fri Jul 4 07:40:02 2025 by rpki-client