$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft File: VVmDGtzt7KX6kvxOtdLt5i43qM0.mft (raw, json) Hash identifier: 9c7lKtod5whqQs79W4Jdjt8WOtca/oymki7dR5Dmh5w= Subject key identifier: 15:B0:B5:00:6A:A0:81:21:3E:FD:B4:AC:7C:CD:5E:FB:A6:82:82:6E Authority key identifier: 55:59:83:1A:DC:ED:EC:A5:FA:92:FC:4E:B5:D2:ED:E6:2E:37:A8:CD Certificate issuer: /CN=A91AB2EB/serialNumber=5559831ADCEDECA5FA92FC4EB5D2EDE62E37A8CD Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft Manifest number: 0127 Signing time: Sat 23 Aug 2025 04:50:47 +0000 Manifest this update: Sat 23 Aug 2025 04:50:46 +0000 Manifest next update: Sat 30 Aug 2025 04:50:46 +0000 Files and hashes: 1: VVmDGtzt7KX6kvxOtdLt5i43qM0.crl (hash: Go8nONczGxud13SiTobyrxfGYE4ugd7u8VHHmVu+QwE=) 2: B96DD308BF4311EE844DDD58C4F9AE02.roa (hash: Qyo+y73YZI83wemHD69A6cWahcYB7AOwFIX0fbO5DQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.crl rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:50:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB2EB, serialNumber=5559831ADCEDECA5FA92FC4EB5D2EDE62E37A8CD Validity Not Before: Aug 23 04:50:46 2025 GMT Not After : Aug 30 04:50:46 2025 GMT Subject: CN=68a948a7-3318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8d:11:25:f8:70:c4:0e:92:65:03:a8:fc:db: 4e:91:87:87:8a:79:63:ef:8b:fb:e0:22:4f:1c:69: 98:7c:10:49:33:95:78:35:23:56:a3:b5:c2:9f:45: 66:06:87:3b:87:18:a6:21:17:61:7a:8c:1a:33:c6: 5e:97:63:f5:b8:f4:55:90:9f:a0:1b:cc:25:69:a1: ca:5e:66:8d:db:b1:35:19:43:22:76:a9:ee:9e:07: d7:1e:c6:25:da:09:cd:d4:a7:0e:91:b2:e4:68:13: 93:5d:a3:d1:b5:09:83:7d:51:9e:77:07:03:65:84: ac:4f:2e:b5:11:27:5e:90:43:77:11:2c:b9:0d:3c: 33:96:cc:ee:4c:bf:be:e0:5c:3c:3b:a9:c9:ae:4c: f6:dd:f5:1f:87:5b:f7:9d:7a:9a:e0:f9:1a:12:cc: e9:7f:34:34:91:73:59:80:e3:ac:9e:99:ef:50:8c: 4d:ec:92:53:be:e9:b5:b1:fb:d2:cc:c4:dc:ff:15: a5:30:34:b5:44:5d:fa:2d:de:10:3a:10:e2:d3:f0: 44:3f:85:5c:0a:e4:b1:3f:d8:a0:22:73:5a:4a:e1: 99:23:f2:d1:ff:dd:48:f8:c2:17:a1:1c:f3:58:8a: ee:e8:cf:5b:b0:d0:78:41:ae:b7:3f:7b:19:d6:13: 5b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:B0:B5:00:6A:A0:81:21:3E:FD:B4:AC:7C:CD:5E:FB:A6:82:82:6E X509v3 Authority Key Identifier: keyid:55:59:83:1A:DC:ED:EC:A5:FA:92:FC:4E:B5:D2:ED:E6:2E:37:A8:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:cb:70:9d:ef:78:3b:db:de:8e:76:02:d3:37:12:8a:96:ce: 3c:e8:03:12:07:c7:2a:fa:8c:4d:9b:00:fe:98:b9:7e:a3:be: 57:4c:ef:1c:4d:da:44:47:fd:7f:5c:8b:c7:6e:c4:07:f9:76: 8e:82:ed:b4:aa:7d:4d:9b:28:a8:c0:f5:f4:03:0b:94:1c:19: a3:fc:b4:25:a4:54:88:1a:89:d2:fa:9b:28:05:53:96:bc:43: 7a:fc:ca:66:4a:6a:86:21:69:ae:10:10:6f:71:db:57:16:dd: 12:b3:db:fa:cf:0e:47:37:65:70:18:32:6f:61:78:30:cc:e2: 85:d7:2d:72:c9:c3:c0:4b:44:7d:b2:8e:8d:18:dd:06:a9:24: 97:86:27:48:4f:d9:2c:f6:90:2e:e0:dc:10:d3:ab:46:35:5d: 16:98:b2:10:cb:c7:5d:39:e2:15:26:25:e5:bf:31:04:59:eb: b8:9e:a6:77:b9:bb:48:cb:66:f3:e9:29:88:94:5a:24:21:b3: f0:fc:cc:bf:ef:4b:64:e1:02:58:1a:cc:1b:15:7e:4d:56:60: 68:cb:d1:c8:3a:1d:7f:2f:73:93:75:30:52:f5:42:e9:8d:dc: 28:38:fe:b0:d4:55:f3:78:36:c7:e9:06:bd:7f:e2:11:25:a8: 92:67:e5:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyRUIxMTAvBgNVBAUTKDU1NTk4MzFBRENFREVDQTVGQTkyRkM0RUI1RDJFREU2 MkUzN0E4Q0QwHhcNMjUwODIzMDQ1MDQ2WhcNMjUwODMwMDQ1MDQ2WjAYMRYwFAYD VQQDEw02OGE5NDhhNy0zMzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAso0RJfhwxA6SZQOo/NtOkYeHinlj74v74CJPHGmYfBBJM5V4NSNWo7XCn0Vm Boc7hximIRdheowaM8Zel2P1uPRVkJ+gG8wlaaHKXmaN27E1GUMidqnungfXHsYl 2gnN1KcOkbLkaBOTXaPRtQmDfVGedwcDZYSsTy61ESdekEN3ESy5DTwzlszuTL++ 4Fw8O6nJrkz23fUfh1v3nXqa4PkaEszpfzQ0kXNZgOOsnpnvUIxN7JJTvum1sfvS zMTc/xWlMDS1RF36Ld4QOhDi0/BEP4VcCuSxP9igInNaSuGZI/LR/91I+MIXoRzz WIru6M9bsNB4Qa63P3sZ1hNbCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWwtQBq oIEhPv20rHzNXvumgoJuMB8GA1UdIwQYMBaAFFVZgxrc7eyl+pL8TrXS7eYuN6jN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjJFQi80MzBCNUE3OEJG NDMxMUVFOEZEMzA3NThDNEY5QUUwMi9WVm1ER3R6dDdLWDZrdnhPdGRMdDVpNDNx TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZWbURHdHp0N0tYNmt2eE90ZEx0NWk0M3FNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjJFQi80MzBCNUE3OEJGNDMxMUVFOEZEMzA3NThDNEY5QUUwMi9WVm1ER3R6dDdL WDZrdnhPdGRMdDVpNDNxTTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhy3Cd73g7296OdgLTNxKKls486AMSB8cq+oxNmwD+mLl+o75XTO8c TdpER/1/XIvHbsQH+XaOgu20qn1NmyiowPX0AwuUHBmj/LQlpFSIGonS+psoBVOW vEN6/MpmSmqGIWmuEBBvcdtXFt0Ss9v6zw5HN2VwGDJvYXgwzOKF1y1yycPAS0R9 so6NGN0GqSSXhidIT9ks9pAu4NwQ06tGNV0WmLIQy8ddOeIVJiXlvzEEWeu4nqZ3 ubtIy2bz6SmIlFokIbPw/My/70tk4QJYGswbFX5NVmBoy9HIOh1/L3OTdTBS9ULp jdwoOP6w1FXzeDbH6Qa9f+IRJaiSZ+UQ -----END CERTIFICATE-----Generated at Sat Aug 23 14:23:54 2025 by rpki-client