$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft File: ipvaaFOfcVjLATcgqZNvJkuaU3s.mft (raw, json) Hash identifier: VyEfzzJX0+5EkoFmof6chXJiLToTVFhrTvFGJC/Rr9U= Subject key identifier: 6C:BA:44:9E:C6:A8:4E:BB:20:3B:50:8D:87:D8:58:D4:77:B4:39:F0 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0D46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft Manifest number: 0D36 Signing time: Sat 28 Jun 2025 17:48:52 +0000 Manifest this update: Sat 28 Jun 2025 17:48:51 +0000 Manifest next update: Sat 05 Jul 2025 17:48:51 +0000 Files and hashes: 1: ipvaaFOfcVjLATcgqZNvJkuaU3s.crl (hash: UEQZLcvNs/LlYYIZ/K6ZAdbAkdMgEdG5Au2yy+ZVLW0=) 2: F23EB988E9A811E9864E3674C4F9AE02.roa (hash: H71fhd8JZc5XXH6DNUerfJbZNQyJaOd/VCkFhoBssG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 17:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3398 (0xd46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Jun 28 17:48:51 2025 GMT Not After : Jul 5 17:48:51 2025 GMT Subject: CN=68602b03-84a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:56:f8:bf:f9:57:25:78:3e:67:d6:69:da:1a: 4c:64:af:6f:f5:ed:a4:b3:a8:d9:46:18:7d:83:fb: 8a:49:7f:97:4d:43:1f:81:b7:fd:a3:62:c2:ce:23: a1:c7:6b:b1:29:e5:d1:bb:39:26:a1:6e:33:17:ec: a7:16:57:a2:14:85:77:84:53:09:6d:e9:2a:0b:f3: 5d:53:88:81:b9:da:76:73:48:de:05:97:72:a0:ee: a5:af:da:4e:6b:8a:19:3e:42:c2:37:5c:98:55:9e: 10:67:8b:ca:cb:4d:3d:77:c4:e5:47:e8:10:a8:b7: 22:5e:af:6b:b0:13:14:ad:7c:9e:24:03:22:c1:c7: c6:9f:8e:5c:57:0a:c5:5b:15:6a:83:b2:b3:ff:2e: 03:6d:bc:8d:41:58:ec:1d:cd:06:60:e2:17:e1:52: 0c:dd:5b:6f:2d:19:d8:e2:da:5d:04:09:66:dc:ad: 29:72:2e:59:96:a9:3f:0a:6b:e1:f3:68:b9:8e:60: a8:37:90:15:4f:25:96:02:cc:77:45:62:e6:20:62: 05:37:08:47:dd:7f:97:2d:a5:5e:22:7b:af:29:45: ee:80:28:02:0f:81:ee:82:a3:32:ef:5c:28:e7:0e: ea:30:e6:a7:96:d4:b4:32:08:9d:61:92:6a:ee:5d: 80:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BA:44:9E:C6:A8:4E:BB:20:3B:50:8D:87:D8:58:D4:77:B4:39:F0 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:61:e9:2b:50:51:1d:f8:ab:cf:11:a2:ff:a4:c8:16:9e:3c: 50:3a:2c:de:ed:63:d7:10:65:e3:f5:66:cf:c0:43:7a:4c:0e: 56:ae:ec:b2:36:68:8c:fe:d3:d9:c5:7b:d5:88:65:47:fc:96: bb:72:d3:a2:f5:7e:a4:65:11:0b:13:96:88:df:6e:ed:39:0a: a8:23:fb:be:03:04:ec:1a:8f:87:cf:84:84:52:ae:70:f0:f2: 36:b9:cc:8b:8a:a2:46:70:07:49:16:f3:22:7b:3e:ef:a8:8a: 05:3c:6d:13:8e:f3:0a:26:fa:66:38:f2:8d:aa:76:92:0e:0d: 36:23:1a:66:92:36:6c:5a:4f:2f:0e:77:66:77:b7:16:ee:5c: 91:43:b3:8e:e8:38:3c:bc:5b:04:03:cf:28:7d:0d:8d:da:19: d6:a8:5a:fa:9d:88:f2:78:97:d4:2a:eb:a4:c4:fe:7f:0e:1d: 13:a7:aa:17:84:06:e0:e3:b2:3e:a5:53:bb:d9:9f:3b:94:8b: 12:aa:ed:d8:88:61:4a:e8:2c:18:0a:85:06:5e:6f:6c:a9:bc: 37:bb:24:8c:ac:de:e4:b7:62:aa:20:a3:12:d9:08:9c:17:83: c8:07:61:24:d9:19:ff:f9:3d:5b:26:19:97:9d:fc:05:5f:21: bf:f9:67:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUwNjI4MTc0ODUxWhcNMjUwNzA1MTc0ODUxWjAYMRYwFAYD VQQDEw02ODYwMmIwMy04NGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1b4v/lXJXg+Z9Zp2hpMZK9v9e2ks6jZRhh9g/uKSX+XTUMfgbf9o2LCziOh x2uxKeXRuzkmoW4zF+ynFleiFIV3hFMJbekqC/NdU4iBudp2c0jeBZdyoO6lr9pO a4oZPkLCN1yYVZ4QZ4vKy009d8TlR+gQqLciXq9rsBMUrXyeJAMiwcfGn45cVwrF WxVqg7Kz/y4DbbyNQVjsHc0GYOIX4VIM3VtvLRnY4tpdBAlm3K0pci5Zlqk/Cmvh 82i5jmCoN5AVTyWWAsx3RWLmIGIFNwhH3X+XLaVeInuvKUXugCgCD4HugqMy71wo 5w7qMOanltS0MgidYZJq7l2AKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGy6RJ7G qE67IDtQjYfYWNR3tDnwMB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg1Ny9GMTMwN0I3NERBRDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNW akxBVGNncVpOdkprdWFVM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6YekrUFEd+KvPEaL/pMgWnjxQOize7WPXEGXj9WbPwEN6TA5Wruyy NmiM/tPZxXvViGVH/Ja7ctOi9X6kZRELE5aI327tOQqoI/u+AwTsGo+Hz4SEUq5w 8PI2ucyLiqJGcAdJFvMiez7vqIoFPG0TjvMKJvpmOPKNqnaSDg02IxpmkjZsWk8v Dndmd7cW7lyRQ7OO6Dg8vFsEA88ofQ2N2hnWqFr6nYjyeJfUKuukxP5/Dh0Tp6oX hAbg47I+pVO72Z87lIsSqu3YiGFK6CwYCoUGXm9sqbw3uySMrN7kt2KqIKMS2Qic F4PIB2Ek2Rn/+T1bJhmXnfwFXyG/+We7 -----END CERTIFICATE-----Generated at Sun Jun 29 14:07:00 2025 by rpki-client