$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft File: ipvaaFOfcVjLATcgqZNvJkuaU3s.mft (raw, json) Hash identifier: 7FDeUKGro+kFSwVUpkIn3Yz49UEp4lXHrt5/UhdkhgU= Subject key identifier: 05:4D:83:A7:C8:6E:FF:8A:C2:FE:AE:46:FC:2E:EB:93:BF:46:22:CD Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0D62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft Manifest number: 0D52 Signing time: Fri 22 Aug 2025 18:07:15 +0000 Manifest this update: Fri 22 Aug 2025 18:07:15 +0000 Manifest next update: Fri 29 Aug 2025 18:07:15 +0000 Files and hashes: 1: ipvaaFOfcVjLATcgqZNvJkuaU3s.crl (hash: Z1alDfrkzKRH1y9u4lsTfMPH59smH4CJQYlt08+/0wg=) 2: F23EB988E9A811E9864E3674C4F9AE02.roa (hash: H71fhd8JZc5XXH6DNUerfJbZNQyJaOd/VCkFhoBssG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3426 (0xd62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Aug 22 18:07:15 2025 GMT Not After : Aug 29 18:07:15 2025 GMT Subject: CN=68a8b1d3-2276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:04:7d:2e:ce:7f:dd:7c:cf:44:10:49:cd:1f: 69:78:f5:20:2e:52:e4:0f:68:14:4c:15:7d:39:48: b8:d3:d9:51:b5:36:53:d7:e9:20:1b:b7:b5:5a:82: 9e:6e:72:fd:98:4a:2f:29:1e:76:35:c6:c9:86:f7: d5:80:17:e3:41:57:98:ee:56:04:0e:85:f8:6d:65: 9a:7b:d6:03:9d:af:e5:48:d7:32:48:4c:d9:90:2e: 43:44:5a:07:d1:d9:f5:97:72:63:c0:ea:5a:27:d8: 8c:aa:3f:38:20:3a:5f:a4:32:af:0d:08:06:63:52: 16:69:3b:ba:3d:93:3f:ba:21:4e:53:51:35:c3:45: fb:e3:4f:09:6a:39:16:37:f2:39:52:1c:5a:a7:e5: 4b:0e:48:dd:16:92:b0:c0:8d:44:a5:6b:28:cb:94: 90:f8:a1:be:64:ef:ef:7a:88:ec:55:36:a8:16:f6: d5:bd:19:88:c2:59:37:8e:1f:5f:d5:98:3b:84:3c: 30:13:0a:98:88:ef:37:7f:6e:9c:5f:a0:fe:71:26: 75:58:c5:ae:66:40:20:eb:95:6d:12:ca:ab:c6:da: 69:1a:9d:a9:b2:a0:77:ea:9b:90:ca:1a:2b:e4:44: f6:73:66:be:06:de:dd:99:e7:fb:5a:f8:47:27:ee: 4c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:4D:83:A7:C8:6E:FF:8A:C2:FE:AE:46:FC:2E:EB:93:BF:46:22:CD X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:5d:73:a6:72:b3:d1:df:59:52:5c:0f:be:cf:35:bd:37:88: 9a:27:c5:ab:a7:f0:14:44:95:18:11:c0:bc:8b:0c:55:f5:25: ed:3a:7e:5a:5a:2d:70:13:3e:e9:c9:92:16:48:12:2a:1f:7e: d8:14:6e:13:3f:3d:bc:82:a2:c5:a3:08:90:9d:76:92:e6:93: c1:68:fb:5a:8c:14:b8:d5:99:e7:c8:3a:85:0d:5a:69:7d:e6: 5e:21:08:cd:40:17:2b:ef:85:1d:bc:a8:82:d8:36:5a:0c:02: 14:06:90:6f:93:44:12:d8:e1:94:69:81:22:77:3b:b0:42:00: 3e:33:8d:09:6c:ed:f8:41:19:0e:3b:7c:f5:64:7e:e7:1b:a7: 4a:86:e1:ce:64:12:d1:7b:90:dc:60:a0:13:67:46:c8:3f:77: 57:a2:8d:82:01:78:a6:87:64:fe:aa:3c:34:94:28:e2:bd:1a: ac:52:2b:74:76:0b:ff:0f:5f:9b:bf:06:c2:98:45:38:98:ba: e5:b0:7b:a3:1f:9f:22:f4:f9:ae:60:9c:dd:67:03:8d:6b:d5: e3:e5:34:72:d0:04:74:2f:14:02:93:5c:63:5e:23:7e:1c:07: de:7e:95:a1:c6:56:b2:2e:5f:6c:7b:38:a1:5b:65:4b:de:08: 3f:16:21:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUwODIyMTgwNzE1WhcNMjUwODI5MTgwNzE1WjAYMRYwFAYD VQQDEw02OGE4YjFkMy0yMjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgR9Ls5/3XzPRBBJzR9pePUgLlLkD2gUTBV9OUi409lRtTZT1+kgG7e1WoKe bnL9mEovKR52NcbJhvfVgBfjQVeY7lYEDoX4bWWae9YDna/lSNcySEzZkC5DRFoH 0dn1l3JjwOpaJ9iMqj84IDpfpDKvDQgGY1IWaTu6PZM/uiFOU1E1w0X7408JajkW N/I5Uhxap+VLDkjdFpKwwI1EpWsoy5SQ+KG+ZO/veojsVTaoFvbVvRmIwlk3jh9f 1Zg7hDwwEwqYiO83f26cX6D+cSZ1WMWuZkAg65VtEsqrxtppGp2psqB36puQyhor 5ET2c2a+Bt7dmef7WvhHJ+5MNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVNg6fI bv+Kwv6uRvwu65O/RiLNMB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg1Ny9GMTMwN0I3NERBRDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNW akxBVGNncVpOdkprdWFVM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNXXOmcrPR31lSXA++zzW9N4iaJ8Wrp/AURJUYEcC8iwxV9SXtOn5a Wi1wEz7pyZIWSBIqH37YFG4TPz28gqLFowiQnXaS5pPBaPtajBS41ZnnyDqFDVpp feZeIQjNQBcr74UdvKiC2DZaDAIUBpBvk0QS2OGUaYEidzuwQgA+M40JbO34QRkO O3z1ZH7nG6dKhuHOZBLRe5DcYKATZ0bIP3dXoo2CAXimh2T+qjw0lCjivRqsUit0 dgv/D1+bvwbCmEU4mLrlsHujH58i9PmuYJzdZwONa9Xj5TRy0AR0LxQCk1xjXiN+ HAfefpWhxlayLl9sezihW2VL3gg/FiGe -----END CERTIFICATE-----Generated at Sat Aug 23 13:38:07 2025 by rpki-client