$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft File: vNzosG8FliNAMAycR0e1olGiGcQ.mft (raw, json) Hash identifier: Qga+xYdHWm7k0cqKR28NNnBP7FCPrOi2TkX7fx2PPa0= Subject key identifier: A2:CE:6F:C3:63:59:FA:0F:76:F3:A9:0C:CC:A0:EE:6E:59:A6:40:02 Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 34D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft Manifest number: 34C1 Signing time: Fri 22 Aug 2025 14:56:07 +0000 Manifest this update: Fri 22 Aug 2025 14:56:06 +0000 Manifest next update: Fri 29 Aug 2025 14:56:06 +0000 Files and hashes: 1: vNzosG8FliNAMAycR0e1olGiGcQ.crl (hash: uEBShJl8ja+U+86ikNpUFfB5ItJpDIAj1v+XVNsNX3c=) 2: 3FEFA562483D11EC82E81112C4F9AE02.roa (hash: rK0c8XECyvN9kLfaJ8Yz0Teq8RiIt0v2rBtEKSM98ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13521 (0x34d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8, serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: Aug 22 14:56:06 2025 GMT Not After : Aug 29 14:56:06 2025 GMT Subject: CN=68a88507-7d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b9:b3:77:74:3b:88:0b:b0:d7:31:7c:ba:d5: 9c:28:28:d5:31:52:32:77:9b:e8:59:ba:ec:37:53: 89:7f:f2:73:ba:50:08:6f:cb:ff:06:9b:9a:8c:72: 50:a8:4d:91:d6:9a:bd:ff:d1:4b:c9:74:ae:3b:22: c8:e2:78:e1:04:a7:3e:95:29:05:89:ba:e5:11:d5: c2:06:75:43:b4:f3:bc:14:ff:73:74:fc:de:22:a4: 92:3c:aa:85:4d:72:b8:60:49:c1:85:6a:b1:6b:6e: 00:8d:c7:2e:ba:dd:21:09:b9:5d:c9:31:93:4d:5f: 9d:a8:65:31:de:1a:05:98:81:e2:f2:32:87:83:82: bd:7b:68:d5:b9:3f:e4:c0:6b:e5:94:1d:81:03:8d: f9:57:a0:52:64:5b:37:91:41:aa:dd:0f:4d:fa:5c: 05:cd:ba:f8:7d:c6:64:87:2c:fd:b0:ac:c6:50:1a: 5a:b0:f9:62:67:a7:67:28:94:ba:59:da:ca:38:a2: c7:cf:5d:6e:a4:e1:a2:7d:5e:5a:b2:21:5d:da:5e: bd:33:c6:48:45:a0:4f:5c:13:22:91:8f:23:8b:bb: 39:d4:20:94:9b:fd:62:0a:7b:6b:61:79:5e:f3:83: 83:95:90:d1:1c:b7:1a:0f:d2:d2:07:0e:15:a7:76: 1d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:CE:6F:C3:63:59:FA:0F:76:F3:A9:0C:CC:A0:EE:6E:59:A6:40:02 X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:d9:13:04:11:93:66:b4:dc:75:fa:01:5a:9b:d5:c5:8d:23: ad:f7:ad:97:66:8e:c2:44:b8:e8:64:6d:fd:96:e1:00:af:b6: 56:a3:28:37:16:c1:6a:ab:f2:35:96:a4:da:fe:57:f4:c0:31: 41:d8:e4:5e:b2:01:7a:b2:e6:a3:cf:8f:7b:8d:24:bc:e9:7f: 5c:b2:da:e4:35:9f:23:b7:de:b9:50:0b:16:1f:c8:ed:fd:c8: 10:46:ad:a9:f8:40:11:1b:95:48:d7:26:a1:15:b6:8c:7f:4d: ff:80:9e:f8:1b:db:55:e6:45:3c:d7:49:3a:ad:56:06:53:60: 23:56:ee:26:a0:26:c3:cb:62:d2:7c:98:a6:2b:2d:ee:cd:4b: fe:90:48:79:3f:aa:b5:2d:1d:26:ac:96:c2:35:6f:db:d3:13: 82:7b:d6:b1:49:67:a1:73:3e:ec:04:fe:8a:d8:28:aa:c5:74: 18:5f:5f:3e:29:38:66:be:47:08:3d:f3:ec:70:75:37:93:38: 69:90:dd:49:0b:d4:32:10:e9:a5:07:91:27:a8:b9:ee:f8:58: 98:4e:17:d4:16:0d:a3:34:95:56:c3:90:47:6c:23:85:8b:29: ea:fc:96:8d:d6:02:17:d5:d4:7e:d4:b5:79:59:d3:49:aa:bd: 73:89:2f:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjUwODIyMTQ1NjA2WhcNMjUwODI5MTQ1NjA2WjAYMRYwFAYD VQQDEw02OGE4ODUwNy03ZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7mzd3Q7iAuw1zF8utWcKCjVMVIyd5voWbrsN1OJf/JzulAIb8v/BpuajHJQ qE2R1pq9/9FLyXSuOyLI4njhBKc+lSkFibrlEdXCBnVDtPO8FP9zdPzeIqSSPKqF TXK4YEnBhWqxa24Ajccuut0hCbldyTGTTV+dqGUx3hoFmIHi8jKHg4K9e2jVuT/k wGvllB2BA435V6BSZFs3kUGq3Q9N+lwFzbr4fcZkhyz9sKzGUBpasPliZ6dnKJS6 WdrKOKLHz11upOGifV5asiFd2l69M8ZIRaBPXBMikY8ji7s51CCUm/1iCntrYXle 84ODlZDRHLcaD9LSBw4Vp3YdnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLOb8Nj WfoPdvOpDMyg7m5ZpkACMB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjVFOC9BMUYyM0E2NDFEOTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4Rmxp TkFNQXljUjBlMW9sR2lHY1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm2RMEEZNmtNx1+gFam9XFjSOt962XZo7CRLjoZG39luEAr7ZWoyg3 FsFqq/I1lqTa/lf0wDFB2OResgF6suajz497jSS86X9cstrkNZ8jt965UAsWH8jt /cgQRq2p+EARG5VI1yahFbaMf03/gJ74G9tV5kU810k6rVYGU2AjVu4moCbDy2LS fJimKy3uzUv+kEh5P6q1LR0mrJbCNW/b0xOCe9axSWehcz7sBP6K2CiqxXQYX18+ KThmvkcIPfPscHU3kzhpkN1JC9QyEOmlB5EnqLnu+FiYThfUFg2jNJVWw5BHbCOF iynq/JaN1gIX1dR+1LV5WdNJqr1ziS9x -----END CERTIFICATE-----Generated at Sat Aug 23 19:04:38 2025 by rpki-client