$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft File: vELDvIdcBnayn9eryfgbSpH9iok.mft (raw, json) Hash identifier: z2xxBF/NdYqo1nGCzfbUSYvuOjE4S9w+WGb/qzNYvRg= Subject key identifier: 5C:B1:D5:F0:F4:C7:69:93:DB:C6:56:CD:23:94:25:C2:34:24:4C:2D Authority key identifier: BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 Certificate issuer: /CN=A91B7D14/serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft Manifest number: B0 Signing time: Sat 23 Aug 2025 06:17:54 +0000 Manifest this update: Sat 23 Aug 2025 06:17:53 +0000 Manifest next update: Sat 30 Aug 2025 06:17:53 +0000 Files and hashes: 1: vELDvIdcBnayn9eryfgbSpH9iok.crl (hash: 5PhA4PhQm5CBSLryjZlzcWI5axs/Z/KE878+dbIgp2E=) 2: AAA33A7A74B011EF85E1C348C4F9AE02.roa (hash: P0ja5yGMmuugrOF5BJ+3udMpfSg7jsGxtmTDuFAzbtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D14, serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Validity Not Before: Aug 23 06:17:53 2025 GMT Not After : Aug 30 06:17:53 2025 GMT Subject: CN=68a95d12-ed7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:20:53:1e:dc:79:7a:38:ae:65:8b:22:c7:9c: 45:e8:25:fa:64:83:52:fe:36:f5:a8:64:07:22:19: c8:ea:38:44:72:0c:c3:57:3c:a9:78:ee:6f:25:78: b2:67:c6:57:44:be:d1:0a:99:48:c6:50:53:e5:bc: 88:e1:71:b4:e2:e7:13:de:eb:dd:0e:14:49:fe:53: 68:6f:0f:23:3b:7c:0a:a9:2c:d6:67:86:91:b8:fc: 07:28:8a:fc:0c:24:99:3e:d8:2e:ff:eb:bd:f1:32: 49:d8:fc:ee:51:89:04:97:4f:31:d1:00:c1:ac:b9: a3:66:cb:8c:54:27:1a:93:c7:a4:e8:91:17:0d:27: 9e:ba:b0:7c:03:28:ec:87:85:e9:77:8f:c5:9e:31: d2:72:75:42:6a:07:d1:a5:d1:98:00:15:93:38:41: e2:4e:2d:4d:58:42:30:ff:61:8b:dd:72:b8:83:0d: e1:32:54:0d:6c:3c:a5:77:7a:24:e4:53:c4:ac:fb: 67:4a:ba:ba:22:b0:7e:ec:53:cd:13:cd:7f:4f:bf: b3:8c:11:90:31:ba:9d:7c:ba:61:13:78:f6:f3:8a: f0:a3:ed:f4:cb:1a:e2:bb:55:a9:00:f6:a2:e5:35: e2:79:82:52:49:11:d4:71:4c:3b:2d:11:f9:d5:a5: fc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B1:D5:F0:F4:C7:69:93:DB:C6:56:CD:23:94:25:C2:34:24:4C:2D X509v3 Authority Key Identifier: keyid:BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:05:aa:66:c6:52:f8:41:b7:4d:84:2b:e0:f4:d7:0a:c1:cb: 63:93:06:20:c6:20:3e:1a:fb:94:88:eb:c5:9a:b6:d3:01:20: 58:5d:4f:3b:41:73:3b:e8:fb:c9:9c:8e:cc:44:6b:51:87:9a: c2:55:ad:11:5f:aa:46:08:ff:97:7c:0a:69:69:fc:90:07:34: 8c:ad:33:10:b2:4e:f2:e3:6f:0a:8e:36:81:6f:71:9e:4a:70: ba:99:ac:27:7f:21:9b:2e:cf:23:42:8b:66:3a:0b:ad:10:11: a0:9a:3a:07:b7:ee:d5:8b:27:5d:16:a2:06:26:10:99:8e:1a: 32:11:73:e8:b0:c7:88:2e:c4:6a:3f:de:f8:a7:61:ae:5f:39: e1:f8:0f:88:08:8d:a7:45:28:69:a0:69:e2:a2:ca:c6:85:dd: 30:78:5f:f6:59:14:a4:b4:01:27:7c:ed:46:16:ef:08:96:af: fd:3d:b0:86:88:41:04:21:f6:38:35:bf:32:8b:db:a9:5d:ac: db:99:5b:81:da:20:52:89:29:f7:8f:e3:14:74:f6:3a:1d:dd: 10:23:42:f0:75:31:ae:7e:01:bb:95:2f:de:97:90:cb:24:6a: bb:28:63:11:ad:fd:bf:77:a9:09:a2:e8:68:f2:f3:5e:1b:2b: 77:a0:0e:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEMTQxMTAvBgNVBAUTKEJDNDJDM0JDODc1QzA2NzZCMjlGRDdBQkM5RjgxQjRB OTFGRDhBODkwHhcNMjUwODIzMDYxNzUzWhcNMjUwODMwMDYxNzUzWjAYMRYwFAYD VQQDEw02OGE5NWQxMi1lZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCBTHtx5ejiuZYsix5xF6CX6ZINS/jb1qGQHIhnI6jhEcgzDVzypeO5vJXiy Z8ZXRL7RCplIxlBT5byI4XG04ucT3uvdDhRJ/lNobw8jO3wKqSzWZ4aRuPwHKIr8 DCSZPtgu/+u98TJJ2PzuUYkEl08x0QDBrLmjZsuMVCcak8ek6JEXDSeeurB8Ayjs h4Xpd4/FnjHScnVCagfRpdGYABWTOEHiTi1NWEIw/2GL3XK4gw3hMlQNbDyld3ok 5FPErPtnSrq6IrB+7FPNE81/T7+zjBGQMbqdfLphE3j284rwo+30yxriu1WpAPai 5TXieYJSSRHUcUw7LRH51aX8fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyx1fD0 x2mT28ZWzSOUJcI0JEwtMB8GA1UdIwQYMBaAFLxCw7yHXAZ2sp/Xq8n4G0qR/YqJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QxNC9DREIzQjlBQTc0 QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0JuYXluOWVyeWZnYlNwSDlp b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZFTER2SWRjQm5heW45ZXJ5ZmdiU3BIOWlvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0QxNC9DREIzQjlBQTc0QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0Ju YXluOWVyeWZnYlNwSDlpb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4BapmxlL4QbdNhCvg9NcKwctjkwYgxiA+GvuUiOvFmrbTASBYXU87 QXM76PvJnI7MRGtRh5rCVa0RX6pGCP+XfAppafyQBzSMrTMQsk7y428KjjaBb3Ge SnC6mawnfyGbLs8jQotmOgutEBGgmjoHt+7ViyddFqIGJhCZjhoyEXPosMeILsRq P974p2GuXznh+A+ICI2nRShpoGniosrGhd0weF/2WRSktAEnfO1GFu8Ilq/9PbCG iEEEIfY4Nb8yi9upXazbmVuB2iBSiSn3j+MUdPY6Hd0QI0LwdTGufgG7lS/el5DL JGq7KGMRrf2/d6kJouho8vNeGyt3oA7B -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:45 2025 by rpki-client