$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft File: VlIPoddulfCBm23dSWe0VQRphp0.mft (raw, json) Hash identifier: FcEJ2JOKFCwWdoGfozRJGXtLat4J88o/U7SGlHACJ7U= Subject key identifier: 4C:E6:85:AB:AB:57:DC:AB:B5:DB:EB:6B:F5:4B:2E:F0:2E:93:94:B8 Authority key identifier: 56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D Certificate issuer: /CN=A91A91CB/serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft Manifest number: 48 Signing time: Thu 03 Jul 2025 07:36:20 +0000 Manifest this update: Thu 03 Jul 2025 07:36:19 +0000 Manifest next update: Thu 10 Jul 2025 07:36:19 +0000 Files and hashes: 1: VlIPoddulfCBm23dSWe0VQRphp0.crl (hash: 53oC4carYfwqO3lqbZDe7ZSqr/PYM6qZtLV0vb8wwuk=) 2: EE8CD88EEA5A11EF922B276DC4F9AE02.roa (hash: NgoL1gjr88ZdEn/6hgZXntqKOlCBVmw0eMD59yFjWlQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Validity Not Before: Jul 3 07:36:19 2025 GMT Not After : Jul 10 07:36:19 2025 GMT Subject: CN=686632f4-f34f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:de:df:5a:ec:c8:15:a0:7f:5a:52:13:1b:31: 60:10:29:99:3a:83:07:06:97:32:08:ad:73:4b:54: f1:c7:c9:d9:47:be:b5:5b:f7:ce:e9:30:b7:c0:76: 6e:5b:d7:53:25:84:89:db:c8:63:09:4f:47:ce:43: da:a8:7d:8f:a1:ef:95:c1:2a:cd:af:81:34:62:be: 48:fe:f9:79:38:86:9f:7d:d7:62:dc:13:ab:f9:ad: 74:a4:0f:27:06:8f:b1:01:e8:5e:69:9f:63:c6:c6: 40:86:bb:f2:27:de:88:81:2e:6f:8f:ef:7a:0d:bf: 54:51:44:f4:7b:16:9d:9a:43:48:d5:59:4c:2e:fa: b4:2a:6b:84:83:3d:33:89:c4:e4:9b:5a:3a:79:16: ba:41:00:de:b9:9d:72:07:33:27:41:af:d7:4b:63: 3a:4b:13:fc:05:63:87:17:eb:13:9a:a1:e8:b4:2a: 86:a6:e7:d3:89:9d:dd:4b:3a:20:42:4a:12:21:be: 82:97:c6:b1:e9:3e:f5:26:22:cc:35:41:da:6b:d6: 68:8f:c2:9f:ad:5d:9e:54:ab:c4:26:b4:a2:3e:51: 60:bb:3e:46:45:10:da:81:53:55:d6:98:b1:58:a0: 5b:28:be:5b:fd:20:4c:ad:db:23:eb:91:f2:c6:14: 63:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E6:85:AB:AB:57:DC:AB:B5:DB:EB:6B:F5:4B:2E:F0:2E:93:94:B8 X509v3 Authority Key Identifier: keyid:56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:62:fc:7b:0d:e4:82:27:ed:40:51:ae:1e:e0:dd:60:0e:f4: f1:f0:b3:15:bd:60:2d:58:06:0d:b4:f3:e9:dc:11:d0:b2:76: 3c:3a:3b:e0:db:01:a7:c3:00:c5:2a:24:47:24:15:a3:1a:5b: ca:4e:dd:1c:6d:6b:4f:f3:f8:48:9f:5a:e4:d2:a3:bc:3b:44: 05:48:5d:d1:6d:06:d9:7b:b1:c7:2f:5a:35:b3:df:f0:75:43: 7e:61:bc:13:93:bf:a1:be:fe:4a:0b:76:ff:20:df:b2:cc:bb: 9a:8c:6b:ac:6b:e4:f9:87:f4:50:3b:32:65:8c:16:e9:ed:cb: d6:07:e7:1b:9b:e3:df:2e:0e:fc:40:ba:ad:f4:61:58:64:11: 70:d6:29:d8:22:f3:af:c9:0c:bc:63:16:98:bc:08:b8:3d:08: 10:07:d4:46:04:10:40:74:b6:05:8a:ba:e4:6d:ce:91:39:26: 83:ee:b5:1f:51:53:b1:67:08:c6:e0:07:df:9e:6a:9a:32:98: d4:d6:55:e7:b3:77:73:05:6a:60:67:43:b7:b0:38:a1:3c:5e: a5:c0:ff:b2:e6:50:69:c7:e5:b0:40:b5:88:10:e5:6b:55:2d: 40:c8:2b:c1:07:65:00:b5:cd:96:67:24:a7:eb:9d:7b:15:ed: 3f:d0:d3:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoNTY1MjBGQTFENzZFOTVGMDgxOUI2RERENDk2N0I0NTUw NDY5ODY5RDAeFw0yNTA3MDMwNzM2MTlaFw0yNTA3MTAwNzM2MTlaMBgxFjAUBgNV BAMTDTY4NjYzMmY0LWYzNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC23t9a7MgVoH9aUhMbMWAQKZk6gwcGlzIIrXNLVPHHydlHvrVb987pMLfAdm5b 11MlhInbyGMJT0fOQ9qofY+h75XBKs2vgTRivkj++Xk4hp9912LcE6v5rXSkDycG j7EB6F5pn2PGxkCGu/In3oiBLm+P73oNv1RRRPR7Fp2aQ0jVWUwu+rQqa4SDPTOJ xOSbWjp5FrpBAN65nXIHMydBr9dLYzpLE/wFY4cX6xOaoei0Koam59OJnd1LOiBC ShIhvoKXxrHpPvUmIsw1Qdpr1miPwp+tXZ5Uq8QmtKI+UWC7PkZFENqBU1XWmLFY oFsovlv9IEyt2yPrkfLGFGNDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTOaFq6tX 3Ku12+tr9Usu8C6TlLgwHwYDVR0jBBgwFoAUVlIPoddulfCBm23dSWe0VQRphp0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzVCNkZBMzYwRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL1ZsSVBvZGR1bGZDQm0yM2RTV2UwVlFScGhw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVmxJUG9kZHVsZkNCbTIzZFNXZTBWUVJwaHAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MUNCLzVCNkZBMzYwRUE1QTExRUZCODRBRTQ2OEM0RjlBRTAyL1ZsSVBvZGR1bGZD Qm0yM2RTV2UwVlFScGhwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADxi/HsN5IIn7UBRrh7g3WAO9PHwsxW9YC1YBg208+ncEdCydjw6O+Db AafDAMUqJEckFaMaW8pO3Rxta0/z+EifWuTSo7w7RAVIXdFtBtl7sccvWjWz3/B1 Q35hvBOTv6G+/koLdv8g37LMu5qMa6xr5PmH9FA7MmWMFunty9YH5xub498uDvxA uq30YVhkEXDWKdgi86/JDLxjFpi8CLg9CBAH1EYEEEB0tgWKuuRtzpE5JoPutR9R U7FnCMbgB9+eapoymNTWVeezd3MFamBnQ7ewOKE8XqXA/7LmUGnH5bBAtYgQ5WtV LUDIK8EHZQC1zZZnJKfrnXsV7T/Q09o= -----END CERTIFICATE-----Generated at Thu Jul 3 13:15:09 2025 by rpki-client