$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft File: vsKCSG834xbxe1ILRVKHvDB_ieg.mft (raw, json) Hash identifier: BbDvWoI86tN8AwPwCtLWGi0cuEnLNW+TsL8GUfx1sPg= Subject key identifier: D3:91:EE:4C:72:7C:5F:52:F3:9A:64:5F:84:79:4F:21:48:27:08:D1 Authority key identifier: BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 Certificate issuer: /CN=A918A469/serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft Manifest number: E4 Signing time: Thu 03 Jul 2025 05:35:56 +0000 Manifest this update: Thu 03 Jul 2025 05:35:55 +0000 Manifest next update: Thu 10 Jul 2025 05:35:55 +0000 Files and hashes: 1: vsKCSG834xbxe1ILRVKHvDB_ieg.crl (hash: qo8xTXYAvkYxW6ywGW9eR1dosIBjktWaIOCOzJhBfik=) 2: 71403B04F7E511EEBC67981CC4F9AE02.roa (hash: gx9z09oQ5hTA8YH4iSWgc7528eikGurKJ+1nJAQYPAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Validity Not Before: Jul 3 05:35:55 2025 GMT Not After : Jul 10 05:35:55 2025 GMT Subject: CN=686616bb-542a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:aa:4d:d9:28:2b:2a:bc:2f:a9:18:c9:a2:f5: 3f:02:65:a4:19:c6:97:ab:ab:1b:eb:6a:b9:03:bc: 1c:19:18:45:61:d8:34:2e:b5:c0:e8:7c:40:9f:ef: 6e:87:c2:ca:63:be:80:bb:55:33:e8:c9:c9:67:93: c7:f9:3d:83:ae:f6:cc:b5:69:f8:87:54:4b:39:56: 49:63:80:6e:ae:d8:b0:80:e7:b4:d5:c1:e5:bc:13: a8:19:6a:a5:a0:28:0b:78:11:e7:37:50:53:b8:ac: c5:47:96:cc:9e:f5:66:d0:7b:0a:c9:93:12:da:68: 24:fa:e3:a0:06:ec:d6:ee:c2:40:b5:67:1a:6c:1e: 3e:81:28:b5:67:d1:8f:d6:74:7e:e9:73:1b:b9:18: 84:fd:4f:51:63:6b:89:8d:a1:6a:be:4d:35:fc:81: 9e:71:2a:f7:4b:55:e6:92:36:92:02:c4:de:54:cd: f1:3b:66:fb:3a:f2:b2:0b:88:b7:9d:5d:8f:b2:37: ec:0c:97:b6:eb:8b:29:8d:0a:c6:81:b5:2c:81:d1: e1:01:eb:0e:d0:3a:87:08:af:9d:2e:44:51:77:68: 3f:b4:af:b2:e1:82:62:ea:d2:b2:4d:8a:d5:be:50: 83:21:3d:e8:12:a0:bf:0f:9c:01:cb:da:10:88:40: 35:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:91:EE:4C:72:7C:5F:52:F3:9A:64:5F:84:79:4F:21:48:27:08:D1 X509v3 Authority Key Identifier: keyid:BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:4f:b1:26:3d:6a:01:e4:ee:4d:84:af:62:a4:6f:85:af:05: dd:90:f4:33:7d:92:05:1d:02:43:90:f7:63:0d:2b:b2:75:5e: 66:54:ad:22:aa:42:7d:b6:68:e5:5a:cd:0f:69:80:d4:e3:33: 15:b6:4a:80:39:ca:68:4e:09:55:7f:db:ac:ce:be:85:b0:07: ab:45:71:c2:c9:eb:04:bb:5c:f1:b9:8d:71:e9:21:ce:33:21: 3b:a6:f0:83:98:53:87:37:a2:84:bb:cd:f7:0a:a9:cd:a4:ec: ba:c7:98:c5:f1:26:6c:89:1b:36:b0:3f:10:de:f9:c8:b3:2c: 42:f0:c2:42:1a:80:b6:b3:ca:04:b2:00:f1:a7:50:e5:b5:98: 3f:d6:68:1f:93:a8:5f:52:ba:0c:c2:af:12:5d:f7:0a:8e:a7: dd:df:4f:44:00:ee:b4:24:19:20:ef:8c:2a:59:bd:98:a2:89: 17:36:a9:46:49:64:08:94:9e:6d:61:38:bf:3c:15:20:4d:4e: dc:ac:27:3b:42:e2:5d:77:00:e5:c2:c9:63:44:e0:0c:2a:48: b7:f7:b6:a5:b7:93:94:05:bb:77:c3:9c:de:8d:9a:c6:ee:97: 9d:86:68:fb:c9:d7:89:5b:57:78:39:81:07:8d:34:ee:d1:f4: a4:3b:92:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKEJFQzI4MjQ4NkYzN0UzMTZGMTdCNTIwQjQ1NTI4N0JD MzA3Rjg5RTgwHhcNMjUwNzAzMDUzNTU1WhcNMjUwNzEwMDUzNTU1WjAYMRYwFAYD VQQDEw02ODY2MTZiYi01NDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6pN2SgrKrwvqRjJovU/AmWkGcaXq6sb62q5A7wcGRhFYdg0LrXA6HxAn+9u h8LKY76Au1Uz6MnJZ5PH+T2DrvbMtWn4h1RLOVZJY4BurtiwgOe01cHlvBOoGWql oCgLeBHnN1BTuKzFR5bMnvVm0HsKyZMS2mgk+uOgBuzW7sJAtWcabB4+gSi1Z9GP 1nR+6XMbuRiE/U9RY2uJjaFqvk01/IGecSr3S1XmkjaSAsTeVM3xO2b7OvKyC4i3 nV2PsjfsDJe264spjQrGgbUsgdHhAesO0DqHCK+dLkRRd2g/tK+y4YJi6tKyTYrV vlCDIT3oEqC/D5wBy9oQiEA1NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOR7kxy fF9S85pkX4R5TyFIJwjRMB8GA1UdIwQYMBaAFL7CgkhvN+MW8XtSC0VSh7wwf4no MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GNTg0MzhGRUY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4YnhlMUlMUlZLSHZEQl9p ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZzS0NTRzgzNHhieGUxSUxSVktIdkRCX2llZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GNTg0MzhGRUY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4 YnhlMUlMUlZLSHZEQl9pZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClT7EmPWoB5O5NhK9ipG+FrwXdkPQzfZIFHQJDkPdjDSuydV5mVK0i qkJ9tmjlWs0PaYDU4zMVtkqAOcpoTglVf9uszr6FsAerRXHCyesEu1zxuY1x6SHO MyE7pvCDmFOHN6KEu833CqnNpOy6x5jF8SZsiRs2sD8Q3vnIsyxC8MJCGoC2s8oE sgDxp1DltZg/1mgfk6hfUroMwq8SXfcKjqfd309EAO60JBkg74wqWb2YookXNqlG SWQIlJ5tYTi/PBUgTU7crCc7QuJddwDlwsljROAMKki397alt5OUBbt3w5zejZrG 7pedhmj7ydeJW1d4OYEHjTTu0fSkO5IN -----END CERTIFICATE-----Generated at Thu Jul 3 22:59:09 2025 by rpki-client