$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft File: vsKCSG834xbxe1ILRVKHvDB_ieg.mft (raw, json) Hash identifier: QnAeyWulB1lXPQrr1sqxF855slqsOEKvFXROSfoOruE= Subject key identifier: 98:18:2B:79:FC:BD:B5:1C:26:FB:98:C2:4C:5B:34:72:E1:8D:1C:FC Authority key identifier: BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 Certificate issuer: /CN=A918A469/serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft Manifest number: FE Signing time: Sat 23 Aug 2025 05:16:01 +0000 Manifest this update: Sat 23 Aug 2025 05:16:00 +0000 Manifest next update: Sat 30 Aug 2025 05:16:00 +0000 Files and hashes: 1: vsKCSG834xbxe1ILRVKHvDB_ieg.crl (hash: IuaKbRhVWv+egXiwszqa3JNgz6iBfAOVihSbonloqPE=) 2: 71403B04F7E511EEBC67981CC4F9AE02.roa (hash: gx9z09oQ5hTA8YH4iSWgc7528eikGurKJ+1nJAQYPAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:16:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Validity Not Before: Aug 23 05:16:00 2025 GMT Not After : Aug 30 05:16:00 2025 GMT Subject: CN=68a94e91-37af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4b:d8:51:80:b3:10:39:c2:eb:ef:1b:98:c3: 05:80:8a:6a:c4:5e:91:2c:27:00:6e:77:7f:50:6c: 9b:68:ed:0f:54:60:f1:a9:c8:22:65:e7:35:27:ef: ff:f4:24:69:bc:6a:77:df:6f:b6:cd:72:ed:84:87: b5:36:65:5f:b8:82:07:38:20:e6:f6:54:45:9d:af: 5d:91:22:2e:5c:a5:a8:1d:60:15:a0:89:a1:a9:bb: f5:f3:a8:55:de:2b:b4:5f:fc:be:24:d3:67:a1:aa: b9:85:fe:ad:ad:24:7b:01:fc:e7:c3:0e:83:3e:b8: 3b:4e:f8:e8:8e:6b:d9:d2:ee:3c:fa:92:83:1f:89: 10:e9:26:d6:63:25:72:6a:06:e0:67:2f:1d:7a:48: f1:62:73:1e:1d:50:21:fc:c8:99:01:45:98:b9:4f: 6a:17:1e:05:55:b0:fb:d7:c8:35:18:56:9e:fc:83: 3b:dc:b9:f6:4b:f6:c9:4f:75:e5:95:ae:9f:27:d7: cb:da:35:b4:23:fb:4d:8d:b9:18:01:97:4b:f7:69: 7f:dd:3b:da:59:96:13:41:4e:7b:02:96:07:8e:66: f7:89:cc:f6:47:e5:46:2f:c8:71:d0:9a:ac:79:21: 16:76:f0:5f:ae:6d:91:3c:64:92:a2:66:b8:2d:06: 3d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:18:2B:79:FC:BD:B5:1C:26:FB:98:C2:4C:5B:34:72:E1:8D:1C:FC X509v3 Authority Key Identifier: keyid:BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:5f:9f:15:c1:22:65:4e:b3:d4:98:b1:4e:d2:91:96:82:61: c9:4e:10:a0:32:e9:59:9b:13:4d:ef:4c:62:bb:5d:53:03:1d: 47:f8:a7:35:f4:74:f4:fb:e6:35:f4:09:52:ba:22:96:66:2f: 8f:70:76:d6:a5:33:2f:c2:f4:75:43:53:bd:69:a2:98:9f:04: a9:f8:93:65:f7:58:2a:7a:78:28:7b:d8:6d:a6:6b:33:a8:fa: 93:98:79:30:fe:fb:93:80:f7:cf:26:ff:61:92:14:b8:d2:00: e9:00:40:0a:08:f5:6e:44:ec:bd:78:1e:67:b0:40:8c:4d:bc: 6c:42:ff:3a:46:16:d9:c7:56:a5:0f:e4:36:2e:1c:96:3d:c5: e5:9f:6c:6d:f1:40:f9:31:97:67:89:c0:2e:c7:f5:c5:69:0a: d1:d3:fb:db:2b:6f:c2:dc:03:0a:c5:7f:90:6d:3a:8a:72:2b: da:f6:77:c2:b5:5c:3d:17:6e:cd:98:20:40:43:85:96:86:5e: d3:a5:9f:bc:92:62:27:7b:56:cc:25:20:ea:16:ca:b3:66:72: 9e:54:cc:3e:73:3b:04:d0:c9:01:e8:71:66:d6:d3:ee:06:b6: 1f:ca:a9:18:0d:a4:b9:78:90:30:de:1e:54:e0:dc:45:42:43: b5:10:46:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKEJFQzI4MjQ4NkYzN0UzMTZGMTdCNTIwQjQ1NTI4N0JD MzA3Rjg5RTgwHhcNMjUwODIzMDUxNjAwWhcNMjUwODMwMDUxNjAwWjAYMRYwFAYD VQQDEw02OGE5NGU5MS0zN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4UvYUYCzEDnC6+8bmMMFgIpqxF6RLCcAbnd/UGybaO0PVGDxqcgiZec1J+// 9CRpvGp332+2zXLthIe1NmVfuIIHOCDm9lRFna9dkSIuXKWoHWAVoImhqbv186hV 3iu0X/y+JNNnoaq5hf6trSR7Afznww6DPrg7TvjojmvZ0u48+pKDH4kQ6SbWYyVy agbgZy8dekjxYnMeHVAh/MiZAUWYuU9qFx4FVbD718g1GFae/IM73Ln2S/bJT3Xl la6fJ9fL2jW0I/tNjbkYAZdL92l/3TvaWZYTQU57ApYHjmb3icz2R+VGL8hx0Jqs eSEWdvBfrm2RPGSSoma4LQY9IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgYK3n8 vbUcJvuYwkxbNHLhjRz8MB8GA1UdIwQYMBaAFL7CgkhvN+MW8XtSC0VSh7wwf4no MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GNTg0MzhGRUY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4YnhlMUlMUlZLSHZEQl9p ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZzS0NTRzgzNHhieGUxSUxSVktIdkRCX2llZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GNTg0MzhGRUY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4 YnhlMUlMUlZLSHZEQl9pZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxX58VwSJlTrPUmLFO0pGWgmHJThCgMulZmxNN70xiu11TAx1H+Kc1 9HT0++Y19AlSuiKWZi+PcHbWpTMvwvR1Q1O9aaKYnwSp+JNl91gqengoe9htpmsz qPqTmHkw/vuTgPfPJv9hkhS40gDpAEAKCPVuROy9eB5nsECMTbxsQv86RhbZx1al D+Q2LhyWPcXln2xt8UD5MZdnicAux/XFaQrR0/vbK2/C3AMKxX+QbTqKciva9nfC tVw9F27NmCBAQ4WWhl7TpZ+8kmIne1bMJSDqFsqzZnKeVMw+czsE0MkB6HFm1tPu BrYfyqkYDaS5eJAw3h5U4NxFQkO1EEbe -----END CERTIFICATE-----Generated at Sat Aug 23 15:57:10 2025 by rpki-client