$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: b16IEmaiW6tRcwLX/gJVTv+yGNhOSiLPm9lb7TM1TY4= Subject key identifier: E6:06:EF:43:52:AD:F8:80:F4:D8:CE:91:C3:D5:32:FD:17:8E:28:25 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0C49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0C3B Signing time: Mon 30 Jun 2025 18:44:36 +0000 Manifest this update: Mon 30 Jun 2025 18:44:35 +0000 Manifest next update: Mon 07 Jul 2025 18:44:35 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: I1TG+VWVle8nlJdz0IuM8soerAyUIWtx83ybrLk88XY=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: CC9X+3CcYjfvDOG+Jd491zfowlADhabzoyJw/gqJGUg=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: erICH0cme0SAzh4DFMOpR5Ja+e0q51Z/KWddXql4mQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3145 (0xc49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Jun 30 18:44:35 2025 GMT Not After : Jul 7 18:44:35 2025 GMT Subject: CN=6862db14-04e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:24:17:65:7c:f1:7b:31:39:b5:f7:e5:72:06: 65:01:8a:f4:1e:0b:01:d3:41:30:f6:6b:d4:d5:f5: e7:68:ab:72:d8:ca:35:71:4c:af:32:bb:77:e6:5b: 82:bc:f4:5d:a3:fc:f8:e1:f5:0c:61:0d:a4:3f:3f: c0:4e:4f:6b:43:81:c1:7d:56:18:a8:8a:e0:73:4a: f3:81:dd:7c:30:50:20:24:88:8f:41:8b:d1:ca:da: f8:1d:69:d4:4c:f7:2d:eb:2c:97:01:ce:2c:48:3b: 90:75:f5:46:a6:b8:01:c6:8d:76:fe:39:ee:1f:15: 3a:da:ad:da:ce:20:ce:a9:73:ce:20:22:46:91:cd: d5:b7:08:a6:72:d3:15:7b:46:ca:35:b6:33:55:5f: a3:00:06:e3:b6:f6:cd:05:d1:7e:92:2f:e2:2e:c6: 2e:9a:b9:e3:5f:90:38:40:1f:16:b3:2c:19:79:b1: 3d:4e:d1:44:40:10:0b:ff:36:6f:db:0a:26:c6:bf: 3f:b1:cd:6f:c8:0e:be:e6:69:77:26:54:f9:67:01: fd:ed:1e:7e:32:1e:0a:f1:15:7a:43:3f:dd:af:57: 06:4f:c0:60:4b:3d:9a:2e:f4:70:b9:48:ff:5b:af: 4b:55:1e:35:d1:2f:7f:17:31:13:f1:7c:9e:73:bd: 9b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:06:EF:43:52:AD:F8:80:F4:D8:CE:91:C3:D5:32:FD:17:8E:28:25 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:b6:d7:2b:35:eb:9f:33:80:bd:a3:d1:a9:34:53:e1:48:e6: 05:f3:ae:a4:b1:95:a3:b7:c1:a4:32:0e:51:dc:e2:d0:da:82: 37:ca:7b:55:3d:79:7b:f9:5d:ee:c3:c9:dc:bc:39:ab:b3:76: 2c:d8:79:36:01:43:77:1a:f5:42:8d:3f:48:bc:bc:22:9c:9c: f7:ef:22:a5:e5:ce:a0:01:c9:de:1d:0c:c4:e1:49:8a:14:a7: 6a:e3:87:3c:64:ce:ca:10:2f:12:94:e5:ce:b8:96:77:98:e7: 81:62:cb:55:d5:57:4e:d1:93:33:ab:3b:f6:da:4b:76:c3:83: 6b:8b:aa:66:20:71:0a:65:3a:95:b9:53:31:cb:d0:9f:e7:c8: f2:29:b0:6b:30:fc:e0:99:72:f1:40:65:d5:4b:19:c2:9c:0e: 13:7b:b6:98:e1:13:ca:8b:45:81:7e:e3:62:c6:f8:5d:cb:e2: e2:c2:1d:c9:e8:5b:1d:5c:d4:ea:2c:2a:12:70:04:3a:4e:e5: 18:be:06:ab:72:52:3d:e9:eb:58:5b:5c:09:89:41:94:cf:d9: a1:23:3f:ce:21:46:50:0e:95:7a:51:f1:b5:31:3c:bf:c9:17: e0:3a:b4:43:f1:37:7d:4f:32:f0:f4:03:d3:8e:55:f4:79:61: 2a:75:7e:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUwNjMwMTg0NDM1WhcNMjUwNzA3MTg0NDM1WjAYMRYwFAYD VQQDEw02ODYyZGIxNC0wNGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iQXZXzxezE5tfflcgZlAYr0HgsB00Ew9mvU1fXnaKty2Mo1cUyvMrt35luC vPRdo/z44fUMYQ2kPz/ATk9rQ4HBfVYYqIrgc0rzgd18MFAgJIiPQYvRytr4HWnU TPct6yyXAc4sSDuQdfVGprgBxo12/jnuHxU62q3aziDOqXPOICJGkc3VtwimctMV e0bKNbYzVV+jAAbjtvbNBdF+ki/iLsYumrnjX5A4QB8WsywZebE9TtFEQBAL/zZv 2womxr8/sc1vyA6+5ml3JlT5ZwH97R5+Mh4K8RV6Qz/dr1cGT8BgSz2aLvRwuUj/ W69LVR410S9/FzET8Xyec72bvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYG70NS rfiA9NjOkcPVMv0XjiglMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4ttcrNeufM4C9o9GpNFPhSOYF866ksZWjt8GkMg5R3OLQ2oI3yntV PXl7+V3uw8ncvDmrs3Ys2Hk2AUN3GvVCjT9IvLwinJz37yKl5c6gAcneHQzE4UmK FKdq44c8ZM7KEC8SlOXOuJZ3mOeBYstV1VdO0ZMzqzv22kt2w4Nri6pmIHEKZTqV uVMxy9Cf58jyKbBrMPzgmXLxQGXVSxnCnA4Te7aY4RPKi0WBfuNixvhdy+Liwh3J 6FsdXNTqLCoScAQ6TuUYvgarclI96etYW1wJiUGUz9mhIz/OIUZQDpV6UfG1MTy/ yRfgOrRD8Td9TzLw9APTjlX0eWEqdX6r -----END CERTIFICATE-----Generated at Wed Jul 2 19:16:10 2025 by rpki-client