$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: fgBFoxX00kP+KQYCZCy82HotHlBOGhMk/pc5RBq0VK8= Subject key identifier: 29:90:A7:47:08:BA:BF:15:9C:15:32:00:E3:CF:5E:DB:F7:C2:59:F6 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0C64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0C56 Signing time: Fri 22 Aug 2025 18:38:45 +0000 Manifest this update: Fri 22 Aug 2025 18:38:44 +0000 Manifest next update: Fri 29 Aug 2025 18:38:44 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: MvMOGdTELj7HFqhX1G0Cx4AEHLWVUjh+eJr54L6fFhk=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: CC9X+3CcYjfvDOG+Jd491zfowlADhabzoyJw/gqJGUg=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: erICH0cme0SAzh4DFMOpR5Ja+e0q51Z/KWddXql4mQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3172 (0xc64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Aug 22 18:38:44 2025 GMT Not After : Aug 29 18:38:44 2025 GMT Subject: CN=68a8b935-939a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:35:a7:05:26:46:bc:6a:7c:22:42:12:dc:5d: 32:78:7e:2e:93:66:6b:1d:89:a9:c3:06:e8:9b:af: 2b:ed:61:0c:2f:9d:8d:d0:90:13:2c:95:15:e9:6c: 16:dc:16:d3:2e:b1:b1:07:fb:f8:2c:ea:cc:38:63: 6a:17:b4:a1:d3:ee:5c:1b:5d:5e:bf:70:d6:00:4d: 72:f9:a4:8b:3d:b6:4e:d3:0f:88:28:f8:c5:c5:b6: 0c:f6:d5:b0:42:0e:f2:3a:ee:ed:71:13:33:37:1c: c6:70:1d:70:57:a6:c7:9f:68:5c:39:28:be:3f:99: 02:bd:ed:ef:fd:86:98:8c:36:3c:83:57:b8:4f:83: c2:e9:05:65:d3:01:fa:81:a0:d6:2a:06:d9:74:b1: 99:75:23:57:a1:86:83:d6:ac:f1:09:29:fe:82:28: e1:fc:5f:81:19:5b:c3:18:33:b3:f9:d7:56:dd:b0: a8:b4:d0:8e:ed:6a:90:c3:01:ba:7e:04:53:cd:55: f9:ef:2b:02:e0:36:6f:08:30:bc:c0:93:81:8f:74: f5:7d:26:2c:b1:0e:ba:58:45:ef:b2:98:92:c9:f8: 89:8b:69:6f:f3:d9:80:58:93:1e:16:55:84:1d:14: ae:f3:12:79:96:47:ae:79:fb:d7:12:f1:8a:bb:ba: ad:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:90:A7:47:08:BA:BF:15:9C:15:32:00:E3:CF:5E:DB:F7:C2:59:F6 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:9d:3d:8b:67:bd:5a:9f:ee:71:90:e1:38:ca:41:0f:b7:8e: 2d:16:d0:72:69:97:87:58:26:d4:74:db:11:ce:12:ef:86:6c: 85:c4:b8:cd:42:4a:f8:fa:02:34:cc:8a:29:ea:6f:50:5c:eb: fc:b3:6f:67:d7:c0:85:e1:7d:c8:28:1a:98:9f:4b:ce:72:36: 45:8e:78:af:dc:a1:13:d8:a5:f2:db:58:d5:6e:b7:ca:40:ed: a5:67:d9:30:09:55:2c:4e:be:73:f3:94:71:ae:90:d3:5d:a2: f5:d6:a3:05:d5:af:47:24:c6:03:d4:60:9c:48:4c:5c:5a:6b: b0:ee:c9:f7:ad:e9:83:e7:01:bf:e7:ef:2d:19:c3:31:84:86: a4:b4:61:d8:90:d5:11:1b:be:c6:62:dd:f5:fc:13:43:ab:df: ae:1c:59:01:98:69:80:15:a5:36:0a:4d:1b:f0:fb:68:6e:fb: 71:55:fe:77:8d:4e:0c:f1:76:ce:e5:bd:89:bd:c8:91:13:62: a9:ee:ff:18:ed:98:2e:af:70:1f:19:75:32:7c:3d:e6:91:67: 7e:b6:ed:b3:b1:e2:65:a7:55:06:67:f5:e6:8f:b5:4c:d6:dc: 3f:d8:45:8c:37:fe:9c:ac:bc:63:c4:34:05:a3:a1:f2:0d:13: 7b:b8:9b:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUwODIyMTgzODQ0WhcNMjUwODI5MTgzODQ0WjAYMRYwFAYD VQQDEw02OGE4YjkzNS05MzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDWnBSZGvGp8IkIS3F0yeH4uk2ZrHYmpwwbom68r7WEML52N0JATLJUV6WwW 3BbTLrGxB/v4LOrMOGNqF7Sh0+5cG11ev3DWAE1y+aSLPbZO0w+IKPjFxbYM9tWw Qg7yOu7tcRMzNxzGcB1wV6bHn2hcOSi+P5kCve3v/YaYjDY8g1e4T4PC6QVl0wH6 gaDWKgbZdLGZdSNXoYaD1qzxCSn+gijh/F+BGVvDGDOz+ddW3bCotNCO7WqQwwG6 fgRTzVX57ysC4DZvCDC8wJOBj3T1fSYssQ66WEXvspiSyfiJi2lv89mAWJMeFlWE HRSu8xJ5lkeuefvXEvGKu7qtpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmQp0cI ur8VnBUyAOPPXtv3wln2MB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8nT2LZ71an+5xkOE4ykEPt44tFtByaZeHWCbUdNsRzhLvhmyFxLjN Qkr4+gI0zIop6m9QXOv8s29n18CF4X3IKBqYn0vOcjZFjniv3KET2KXy21jVbrfK QO2lZ9kwCVUsTr5z85RxrpDTXaL11qMF1a9HJMYD1GCcSExcWmuw7sn3remD5wG/ 5+8tGcMxhIaktGHYkNURG77GYt31/BNDq9+uHFkBmGmAFaU2Ck0b8PtobvtxVf53 jU4M8XbO5b2JvciRE2Kp7v8Y7Zgur3AfGXUyfD3mkWd+tu2zseJlp1UGZ/Xmj7VM 1tw/2EWMN/6crLxjxDQFo6HyDRN7uJte -----END CERTIFICATE-----Generated at Sat Aug 23 19:02:54 2025 by rpki-client