$ rpki-client -vvf rpki.apnic.net/member_repository/A9190B27/9E2429107CB811EBA20E011CC4F9AE02/_Vx4mxrWjgh0PYbOoMmfx4dr25M.mft File: _Vx4mxrWjgh0PYbOoMmfx4dr25M.mft (raw, json) Hash identifier: nzz0wW0UuBNukAhBFnAHxrJRj7XKjBbjX5ufQtiFrRA= Subject key identifier: E3:84:09:3B:D4:FB:18:5C:87:51:E9:4F:DA:2A:47:E5:BD:64:DF:B2 Authority key identifier: FD:5C:78:9B:1A:D6:8E:08:74:3D:86:CE:A0:C9:9F:C7:87:6B:DB:93 Certificate issuer: /CN=A9190B27/serialNumber=FD5C789B1AD68E08743D86CEA0C99FC7876BDB93 Certificate serial: 0683 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Vx4mxrWjgh0PYbOoMmfx4dr25M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190B27/9E2429107CB811EBA20E011CC4F9AE02/_Vx4mxrWjgh0PYbOoMmfx4dr25M.mft Manifest number: 067E Signing time: Mon 30 Jun 2025 22:37:05 +0000 Manifest this update: Mon 30 Jun 2025 22:37:04 +0000 Manifest next update: Mon 07 Jul 2025 22:37:04 +0000 Files and hashes: 1: _Vx4mxrWjgh0PYbOoMmfx4dr25M.crl (hash: CsDRAv1iYZUNw2xr27g5GokFFcUiEhEdRzR+QVNHKrk=) 2: C014EDF67CB911EBBB4E2D1CC4F9AE02.roa (hash: aQZNfhiseoXahMcYa1mO4OhpMyMyYPdZKpX7ChBPpY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190B27/9E2429107CB811EBA20E011CC4F9AE02/_Vx4mxrWjgh0PYbOoMmfx4dr25M.crl rsync://rpki.apnic.net/member_repository/A9190B27/9E2429107CB811EBA20E011CC4F9AE02/_Vx4mxrWjgh0PYbOoMmfx4dr25M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Vx4mxrWjgh0PYbOoMmfx4dr25M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190B27, serialNumber=FD5C789B1AD68E08743D86CEA0C99FC7876BDB93 Validity Not Before: Jun 30 22:37:04 2025 GMT Not After : Jul 7 22:37:04 2025 GMT Subject: CN=68631191-a6d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:74:f9:fd:1b:1c:c2:a1:44:6a:b3:d5:7d:93: 15:4f:28:94:f1:5e:f0:1b:ba:e4:99:98:2b:0b:f0: cb:03:26:31:fc:da:2b:b3:c0:c3:54:83:0b:4c:cf: 5c:47:b8:41:91:4d:b3:f0:c9:bf:30:89:89:4b:0f: 1d:7c:63:6a:50:76:e7:c7:01:28:8d:db:cb:09:b4: f5:81:2f:de:ed:ab:14:13:e5:bd:40:ef:75:54:04: 11:e1:c4:d8:a8:6b:03:12:19:20:6e:d9:80:82:24: 34:07:57:5a:b5:1c:bc:b5:db:1a:a0:91:e6:da:7a: 89:d3:39:f6:9e:4e:c9:e2:44:b2:c9:47:b0:59:a6: 75:8e:8d:32:29:c1:0e:16:0f:6d:44:04:cd:6b:d1: fb:76:2c:67:58:1e:28:95:6e:0c:15:5d:81:f8:cd: ce:1e:78:50:a8:e6:54:fc:00:ba:bd:42:75:f9:d5: be:3e:05:2d:19:3b:cf:b1:c3:ac:05:19:33:71:97: c5:02:b9:34:89:f4:5b:46:00:b5:eb:de:f3:e2:5a: 71:09:e2:5a:f9:ba:d5:cc:e0:45:78:3a:8e:0d:1b: f2:08:66:45:2e:9e:94:3b:99:3e:e5:1a:73:21:87: a9:e0:c6:35:26:29:5a:59:c9:4a:dc:1c:78:be:d2: 46:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:84:09:3B:D4:FB:18:5C:87:51:E9:4F:DA:2A:47:E5:BD:64:DF:B2 X509v3 Authority Key Identifier: keyid:FD:5C:78:9B:1A:D6:8E:08:74:3D:86:CE:A0:C9:9F:C7:87:6B:DB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190B27/9E2429107CB811EBA20E011CC4F9AE02/_Vx4mxrWjgh0PYbOoMmfx4dr25M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Vx4mxrWjgh0PYbOoMmfx4dr25M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190B27/9E2429107CB811EBA20E011CC4F9AE02/_Vx4mxrWjgh0PYbOoMmfx4dr25M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:2c:57:da:b9:e8:bd:cb:ce:1a:ea:63:6b:c9:7a:71:d3:fd: d8:d0:8a:35:08:0b:64:cd:6c:88:56:1a:0f:0a:20:1d:b1:8e: 26:7e:f5:5a:15:3a:f6:09:1f:9c:42:77:14:c4:6a:a6:3c:95: af:ff:88:bc:a8:58:bf:9f:a7:39:21:62:d6:c3:5a:34:3a:2a: 7b:c9:3c:90:a7:a5:9f:88:d8:03:94:b1:8f:58:41:d7:68:8e: 3f:30:df:bc:ff:f6:67:17:50:34:7a:43:8b:13:e8:db:e7:aa: 4b:4a:86:ce:26:b9:73:bb:16:b7:9e:f6:7c:bb:57:19:7b:1e: bf:38:d6:57:ee:2f:48:d9:32:6a:1f:ef:35:07:e8:22:f5:8b: 5b:ef:4a:38:a1:38:79:62:45:89:b8:d9:a0:e2:28:eb:ef:12: b7:9c:fe:9e:94:81:34:7a:a2:2d:b7:90:64:35:f8:c6:aa:10: 87:94:d3:72:ff:00:77:ff:61:fb:03:4e:6a:e9:ef:fe:bf:e1: 1a:3f:75:3b:4c:c8:03:43:55:f2:6b:b4:62:e7:bd:0c:0c:8b: bb:0e:1a:74:75:10:b8:60:51:74:cb:94:5c:23:52:16:50:ab: ae:dc:93:8f:32:c8:e1:7e:09:08:1b:ac:dd:dc:0d:04:ca:b9: 42:77:7b:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBCMjcxMTAvBgNVBAUTKEZENUM3ODlCMUFENjhFMDg3NDNEODZDRUEwQzk5RkM3 ODc2QkRCOTMwHhcNMjUwNjMwMjIzNzA0WhcNMjUwNzA3MjIzNzA0WjAYMRYwFAYD VQQDEw02ODYzMTE5MS1hNmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nT5/RscwqFEarPVfZMVTyiU8V7wG7rkmZgrC/DLAyYx/Nors8DDVIMLTM9c R7hBkU2z8Mm/MImJSw8dfGNqUHbnxwEojdvLCbT1gS/e7asUE+W9QO91VAQR4cTY qGsDEhkgbtmAgiQ0B1datRy8tdsaoJHm2nqJ0zn2nk7J4kSyyUewWaZ1jo0yKcEO Fg9tRATNa9H7dixnWB4olW4MFV2B+M3OHnhQqOZU/AC6vUJ1+dW+PgUtGTvPscOs BRkzcZfFArk0ifRbRgC1697z4lpxCeJa+brVzOBFeDqODRvyCGZFLp6UO5k+5Rpz IYep4MY1JilaWclK3Bx4vtJGmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOECTvU +xhch1HpT9oqR+W9ZN+yMB8GA1UdIwQYMBaAFP1ceJsa1o4IdD2GzqDJn8eHa9uT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEIyNy85RTI0MjkxMDdD QjgxMUVCQTIwRTAxMUNDNEY5QUUwMi9fVng0bXhyV2pnaDBQWWJPb01tZng0ZHIy NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19WeDRteHJXamdoMFBZYk9vTW1meDRkcjI1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MEIyNy85RTI0MjkxMDdDQjgxMUVCQTIwRTAxMUNDNEY5QUUwMi9fVng0bXhyV2pn aDBQWWJPb01tZng0ZHIyNU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtLFfauei9y84a6mNryXpx0/3Y0Io1CAtkzWyIVhoPCiAdsY4mfvVa FTr2CR+cQncUxGqmPJWv/4i8qFi/n6c5IWLWw1o0Oip7yTyQp6WfiNgDlLGPWEHX aI4/MN+8//ZnF1A0ekOLE+jb56pLSobOJrlzuxa3nvZ8u1cZex6/ONZX7i9I2TJq H+81B+gi9Ytb70o4oTh5YkWJuNmg4ijr7xK3nP6elIE0eqItt5BkNfjGqhCHlNNy /wB3/2H7A05q6e/+v+EaP3U7TMgDQ1Xya7Ri570MDIu7Dhp0dRC4YFF0y5RcI1IW UKuu3JOPMsjhfgkIG6zd3A0EyrlCd3uM -----END CERTIFICATE-----Generated at Wed Jul 2 23:31:29 2025 by rpki-client