$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft File: vELDvIdcBnayn9eryfgbSpH9iok.mft (raw, json) Hash identifier: qqCSRcbLiZnqAoVicaGB5qVlejxyIuooVLvrc+Oy5qo= Subject key identifier: 4E:15:AF:DE:F0:4B:4C:04:DF:5D:EE:B6:CA:D0:39:4F:9E:2E:69:06 Authority key identifier: BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 Certificate issuer: /CN=A91B7D14/serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft Manifest number: 95 Signing time: Tue 01 Jul 2025 07:07:36 +0000 Manifest this update: Tue 01 Jul 2025 07:07:35 +0000 Manifest next update: Tue 08 Jul 2025 07:07:35 +0000 Files and hashes: 1: vELDvIdcBnayn9eryfgbSpH9iok.crl (hash: 4qKzgRdLmTyqNQ2fx1zkqzaaoqDC+MrJCYpSPbR2mW4=) 2: AAA33A7A74B011EF85E1C348C4F9AE02.roa (hash: P0ja5yGMmuugrOF5BJ+3udMpfSg7jsGxtmTDuFAzbtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D14, serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Validity Not Before: Jul 1 07:07:35 2025 GMT Not After : Jul 8 07:07:35 2025 GMT Subject: CN=68638938-780b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:75:da:90:a3:6b:69:12:30:5e:9b:ff:14:61: 8b:dc:31:d3:3b:8e:94:dd:c2:8b:6f:bd:72:5e:b5: 37:51:d2:ad:c6:9a:bf:fa:39:36:38:70:61:35:7c: 1a:85:14:48:fc:aa:b6:2b:7a:43:df:4e:ff:ec:ab: 8c:18:6c:93:47:9f:e8:90:99:f7:5a:d8:ad:0f:03: 13:a1:b8:05:46:aa:93:72:97:9e:a1:47:49:af:b9: bd:06:36:88:35:b5:27:78:6a:69:be:28:03:b9:04: b6:03:ab:1a:44:92:18:85:4c:cd:6a:85:8a:65:e6: 63:8c:88:d7:c2:8e:f2:c2:27:46:a4:ea:6b:80:bd: ce:19:3b:f7:43:ed:de:6f:49:66:fe:2c:42:c8:30: c1:7f:38:99:fb:12:b7:df:7f:92:50:94:15:01:88: e8:e9:fa:c6:7d:67:20:7b:df:06:ad:e9:7b:48:ea: c0:d5:35:89:a4:9c:f0:76:fe:ad:1e:e3:62:e6:11: f5:13:12:9e:8c:89:00:b2:07:57:c6:ce:79:00:b7: aa:69:93:63:53:14:46:1d:7d:ff:e2:56:63:a4:4f: f4:5f:6c:97:01:31:a4:85:05:ea:ed:df:af:a3:a9: e6:6d:15:96:6e:ac:87:80:c5:15:37:5f:f5:bf:06: 50:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:15:AF:DE:F0:4B:4C:04:DF:5D:EE:B6:CA:D0:39:4F:9E:2E:69:06 X509v3 Authority Key Identifier: keyid:BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:8e:cb:43:35:ef:f5:ff:91:be:8d:58:35:1c:56:a7:c6:33: 4c:cd:7d:1f:ca:b6:12:50:bc:2c:5f:3c:f6:00:ac:a9:06:2c: 0b:3d:b0:40:0e:f5:5d:40:50:6a:35:c5:b6:94:d5:4a:76:53: 28:49:8d:3e:eb:a8:32:49:d3:e7:e0:70:fa:5f:11:2d:a8:be: d2:a9:bc:85:ea:1d:d6:24:2b:3e:0d:f2:9f:79:a9:a2:5d:27: 2b:c6:33:c7:f3:ae:5e:2d:7c:2c:78:b9:9e:c9:f0:6f:27:1e: a3:f2:f7:3c:5e:6f:9e:82:06:45:64:01:53:ed:58:a4:48:20: eb:36:22:f6:df:5b:a6:a4:7e:ba:76:ab:2f:60:f8:48:72:e4: 87:ed:e2:6f:e0:c3:4e:9a:f8:2b:2c:69:5b:5f:87:4e:01:86: f2:7f:b6:6e:63:79:07:20:d7:8e:d7:ae:5d:d2:ed:31:19:3f: 6c:f3:f6:4b:70:02:0c:e9:b8:07:98:34:1a:1f:04:80:2a:05: 5f:ef:0c:37:4f:01:27:0e:de:54:70:97:8d:3d:08:df:c8:53: a3:71:9f:7b:bf:09:7b:34:c1:e2:0b:a2:c8:cb:b5:5a:42:20: 01:f8:9b:53:1d:f4:d7:f5:b2:5b:4b:cd:f8:ac:d2:59:6b:05: fb:2e:23:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEMTQxMTAvBgNVBAUTKEJDNDJDM0JDODc1QzA2NzZCMjlGRDdBQkM5RjgxQjRB OTFGRDhBODkwHhcNMjUwNzAxMDcwNzM1WhcNMjUwNzA4MDcwNzM1WjAYMRYwFAYD VQQDEw02ODYzODkzOC03ODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHXakKNraRIwXpv/FGGL3DHTO46U3cKLb71yXrU3UdKtxpq/+jk2OHBhNXwa hRRI/Kq2K3pD307/7KuMGGyTR5/okJn3WtitDwMTobgFRqqTcpeeoUdJr7m9BjaI NbUneGppvigDuQS2A6saRJIYhUzNaoWKZeZjjIjXwo7ywidGpOprgL3OGTv3Q+3e b0lm/ixCyDDBfziZ+xK333+SUJQVAYjo6frGfWcge98Grel7SOrA1TWJpJzwdv6t HuNi5hH1ExKejIkAsgdXxs55ALeqaZNjUxRGHX3/4lZjpE/0X2yXATGkhQXq7d+v o6nmbRWWbqyHgMUVN1/1vwZQ8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4Vr97w S0wE313utsrQOU+eLmkGMB8GA1UdIwQYMBaAFLxCw7yHXAZ2sp/Xq8n4G0qR/YqJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QxNC9DREIzQjlBQTc0 QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0JuYXluOWVyeWZnYlNwSDlp b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZFTER2SWRjQm5heW45ZXJ5ZmdiU3BIOWlvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0QxNC9DREIzQjlBQTc0QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0Ju YXluOWVyeWZnYlNwSDlpb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVjstDNe/1/5G+jVg1HFanxjNMzX0fyrYSULwsXzz2AKypBiwLPbBA DvVdQFBqNcW2lNVKdlMoSY0+66gySdPn4HD6XxEtqL7SqbyF6h3WJCs+DfKfeami XScrxjPH865eLXwseLmeyfBvJx6j8vc8Xm+eggZFZAFT7VikSCDrNiL231umpH66 dqsvYPhIcuSH7eJv4MNOmvgrLGlbX4dOAYbyf7ZuY3kHINeO165d0u0xGT9s8/ZL cAIM6bgHmDQaHwSAKgVf7ww3TwEnDt5UcJeNPQjfyFOjcZ97vwl7NMHiC6LIy7Va QiAB+JtTHfTX9bJbS834rNJZawX7LiMc -----END CERTIFICATE-----Generated at Thu Jul 3 03:51:55 2025 by rpki-client