$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft File: VlIPoddulfCBm23dSWe0VQRphp0.mft (raw, json) Hash identifier: 7UYVQ64znhR+6Af8t3bSHnHVDPzalQbRw9wZPd2WTBk= Subject key identifier: C9:DE:C7:2C:78:CA:82:50:2B:C2:7F:E4:2A:1E:0B:E9:2C:B9:3C:B6 Authority key identifier: 56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D Certificate issuer: /CN=A91A91CB/serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft Manifest number: 62 Signing time: Sat 23 Aug 2025 07:17:12 +0000 Manifest this update: Sat 23 Aug 2025 07:17:11 +0000 Manifest next update: Sat 30 Aug 2025 07:17:11 +0000 Files and hashes: 1: VlIPoddulfCBm23dSWe0VQRphp0.crl (hash: Owxwu4F4UUpi5ZV8SoojF77S3+tkDkOg5xsq1Uuz5Qo=) 2: EE8CD88EEA5A11EF922B276DC4F9AE02.roa (hash: NgoL1gjr88ZdEn/6hgZXntqKOlCBVmw0eMD59yFjWlQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Validity Not Before: Aug 23 07:17:11 2025 GMT Not After : Aug 30 07:17:11 2025 GMT Subject: CN=68a96af7-78e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:58:db:97:85:4e:b2:8f:86:0d:95:a7:6e:57: ef:dc:34:80:3c:af:62:2e:89:18:ed:db:20:12:49: e3:41:b3:11:21:ed:8b:04:8f:d8:2c:3d:30:bc:dc: 2c:17:62:07:90:5f:37:91:bb:74:bc:de:e6:45:65: ba:b2:3a:0d:a0:4d:66:9d:13:e9:c7:96:0f:6c:5b: 05:3c:d9:35:26:42:cd:c1:f7:88:04:9e:47:18:39: 9b:1d:aa:8c:08:22:1d:f5:cd:03:8f:6c:a9:48:f1: 8f:89:77:89:44:6e:eb:52:89:d2:9f:be:6e:0c:7a: 5c:91:02:1f:4d:e5:6c:9e:1d:24:c7:3e:d5:83:55: 07:99:0a:c1:05:44:ca:7c:d7:80:a8:01:88:98:fb: ae:a0:ae:4f:e8:23:fe:71:a1:b0:92:00:7c:0d:82: af:e7:b0:dd:d9:15:14:d8:10:c1:fd:58:b2:eb:ce: ee:b3:7b:88:2e:6b:44:4d:08:94:06:a2:55:66:5c: 96:98:5c:e3:3e:93:8f:17:5a:35:20:62:b3:28:99: 65:2d:f5:ef:e2:81:b3:87:3f:f1:d2:33:0e:23:2b: d1:07:38:f2:0b:7f:e5:7a:9b:7b:a3:1b:a3:2f:64: 02:f3:13:a6:77:8c:ba:83:d0:e8:14:0a:c6:e9:9b: a0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DE:C7:2C:78:CA:82:50:2B:C2:7F:E4:2A:1E:0B:E9:2C:B9:3C:B6 X509v3 Authority Key Identifier: keyid:56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:01:6a:70:5f:42:0d:ab:7b:ca:2b:72:a7:fd:25:3d:9d:09: 4e:e8:61:10:d9:15:52:89:39:0e:76:d9:45:84:3f:98:fd:48: 6a:78:73:bf:92:e5:d1:f6:21:45:8e:64:1d:e8:81:e2:6d:54: 24:b2:71:c9:c2:3a:b9:12:ca:53:43:b7:f8:f1:99:1a:6f:af: 2e:e3:00:6f:c1:7f:ed:c8:c9:b8:d0:f4:1a:f0:04:68:66:79: b8:a4:59:3e:41:27:c0:19:00:9c:34:45:42:2c:9f:ec:4d:56: 74:e4:4c:69:c8:86:68:ef:96:62:fd:3d:14:ed:af:f9:5e:84: 66:81:8d:9d:40:4d:e1:33:5b:6e:86:31:88:c9:39:af:42:90: 95:60:df:4c:52:8a:ab:78:09:5e:a3:cb:a6:27:6f:bf:4f:69: d2:3c:60:4e:81:d4:af:f3:eb:35:7e:9d:0e:e7:37:e3:ad:98: 5a:1e:e0:0f:4d:5a:8a:7a:53:4c:2f:b2:3b:b2:3e:9c:85:b1: 2e:d8:a0:cf:48:7f:8c:36:09:88:f5:34:94:dc:cf:01:cb:76: bd:9a:d2:e1:bd:d5:36:33:a4:86:23:bc:20:aa:7c:c0:27:19: c7:fc:50:d6:7f:bc:27:9e:87:2b:f7:76:37:31:10:d8:cf:c3: 05:86:42:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoNTY1MjBGQTFENzZFOTVGMDgxOUI2RERENDk2N0I0NTUw NDY5ODY5RDAeFw0yNTA4MjMwNzE3MTFaFw0yNTA4MzAwNzE3MTFaMBgxFjAUBgNV BAMTDTY4YTk2YWY3LTc4ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLWNuXhU6yj4YNladuV+/cNIA8r2IuiRjt2yASSeNBsxEh7YsEj9gsPTC83CwX YgeQXzeRu3S83uZFZbqyOg2gTWadE+nHlg9sWwU82TUmQs3B94gEnkcYOZsdqowI Ih31zQOPbKlI8Y+Jd4lEbutSidKfvm4MelyRAh9N5WyeHSTHPtWDVQeZCsEFRMp8 14CoAYiY+66grk/oI/5xobCSAHwNgq/nsN3ZFRTYEMH9WLLrzu6ze4gua0RNCJQG olVmXJaYXOM+k48XWjUgYrMomWUt9e/igbOHP/HSMw4jK9EHOPILf+V6m3ujG6Mv ZALzE6Z3jLqD0OgUCsbpm6CNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyd7HLHjK glArwn/kKh4L6Sy5PLYwHwYDVR0jBBgwFoAUVlIPoddulfCBm23dSWe0VQRphp0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzVCNkZBMzYwRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL1ZsSVBvZGR1bGZDQm0yM2RTV2UwVlFScGhw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVmxJUG9kZHVsZkNCbTIzZFNXZTBWUVJwaHAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MUNCLzVCNkZBMzYwRUE1QTExRUZCODRBRTQ2OEM0RjlBRTAyL1ZsSVBvZGR1bGZD Qm0yM2RTV2UwVlFScGhwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGoBanBfQg2re8orcqf9JT2dCU7oYRDZFVKJOQ522UWEP5j9SGp4c7+S 5dH2IUWOZB3ogeJtVCSyccnCOrkSylNDt/jxmRpvry7jAG/Bf+3IybjQ9BrwBGhm ebikWT5BJ8AZAJw0RUIsn+xNVnTkTGnIhmjvlmL9PRTtr/lehGaBjZ1ATeEzW26G MYjJOa9CkJVg30xSiqt4CV6jy6Ynb79PadI8YE6B1K/z6zV+nQ7nN+OtmFoe4A9N Wop6U0wvsjuyPpyFsS7YoM9If4w2CYj1NJTczwHLdr2a0uG91TYzpIYjvCCqfMAn Gcf8UNZ/vCeehyv3djcxENjPwwWGQr0= -----END CERTIFICATE-----Generated at Sat Aug 23 16:23:51 2025 by rpki-client