$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft File: vNzosG8FliNAMAycR0e1olGiGcQ.mft (raw, json) Hash identifier: /c5H0KsWPDDj5N6mL9sBb6efNwjnamllz2sw7J1eSH8= Subject key identifier: 84:43:95:AD:FD:B1:7A:96:98:98:59:B6:5E:25:5B:45:8E:6A:44:11 Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 34B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft Manifest number: 34A8 Signing time: Fri 04 Jul 2025 15:02:16 +0000 Manifest this update: Fri 04 Jul 2025 15:02:15 +0000 Manifest next update: Fri 11 Jul 2025 15:02:15 +0000 Files and hashes: 1: vNzosG8FliNAMAycR0e1olGiGcQ.crl (hash: bB48iZlTpJ82VVIj55/nmS0PXvZYqYz3JI1FEeWdJHc=) 2: 3FEFA562483D11EC82E81112C4F9AE02.roa (hash: rK0c8XECyvN9kLfaJ8Yz0Teq8RiIt0v2rBtEKSM98ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13496 (0x34b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8, serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: Jul 4 15:02:15 2025 GMT Not After : Jul 11 15:02:15 2025 GMT Subject: CN=6867ecf8-46a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:01:c9:b0:31:ab:16:1f:6c:ed:b8:ae:97:da: 75:44:79:2d:c6:18:26:88:03:b1:20:d4:7b:09:fb: a4:9f:5d:6c:2d:95:b8:dc:9f:63:3f:4c:b4:dc:3b: ee:69:ea:97:86:f3:30:64:1f:52:77:79:f0:31:ac: 0c:2b:28:7b:a9:8a:a5:7f:08:fc:31:ba:3f:b4:ba: 5e:cf:d0:42:d3:3c:f3:c5:98:2d:cb:c7:35:67:44: cb:ef:e6:46:be:8b:9d:de:2a:4a:95:a5:42:be:d0: 0b:b2:55:97:46:c4:fc:59:26:ef:5e:5d:18:57:10: 5b:ca:1a:0c:7e:70:b5:ca:2d:10:36:2f:bf:b2:0e: b9:b3:bd:fb:77:57:c1:bc:65:ca:d8:47:2a:4b:58: 48:3a:2d:f8:05:b1:fb:97:93:d6:2f:90:20:f5:d5: 4e:c9:04:f1:5a:c1:ae:51:1c:11:32:6c:94:e2:b0: 95:97:8e:a3:0b:e0:19:9c:d6:cb:bb:af:d0:f1:b6: f0:59:fe:85:45:cf:c0:98:7d:df:64:1b:e7:b4:21: 02:e8:2e:c3:5c:7e:f6:88:2b:69:cd:62:9a:3a:0c: cb:a2:47:8d:7c:a1:d8:23:41:6d:1a:ea:9e:68:0c: 10:9c:06:04:9d:cc:62:92:35:13:de:dd:9b:e7:b5: 98:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:43:95:AD:FD:B1:7A:96:98:98:59:B6:5E:25:5B:45:8E:6A:44:11 X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:92:e2:3f:b7:f1:d4:84:8c:30:7a:e7:83:0d:ea:f3:a8:83: 6a:b8:89:1b:e2:07:74:3a:a8:b8:80:f6:39:ad:51:b1:9c:26: 4f:4b:0c:71:a9:39:76:33:90:28:12:ec:e8:9b:1e:ea:57:58: cf:24:20:f4:39:3c:3a:26:cb:fb:12:eb:93:e8:5d:ab:3a:24: e9:71:92:99:1a:0e:80:2c:ee:94:a4:c3:19:54:e2:87:c7:6b: 85:27:ea:6e:be:91:df:d1:26:7d:ea:cc:95:7e:01:53:34:43: 2e:a3:c4:2a:93:e8:52:c8:53:5b:94:3d:1d:08:57:4c:aa:51: c1:9f:6c:87:e1:a7:d4:f3:b5:b7:c3:ee:f7:0d:86:a7:a1:2c: 73:64:c6:b6:c3:42:f1:83:03:af:cb:bc:0a:6c:9b:d0:73:e6: ba:c5:dd:e9:64:c2:2a:54:e9:0b:62:f6:61:98:ac:05:5d:ff: 10:c1:9b:e4:2c:03:76:15:4f:19:ad:b3:a9:0d:ea:b1:e2:70: 37:f1:c4:68:bf:75:60:58:91:fe:f9:d2:3f:7f:5e:54:82:17: d0:fc:09:26:04:c3:5f:d5:9c:9f:3a:a3:22:d1:8b:90:c8:00: a4:4c:3c:85:98:71:f2:35:0b:22:94:18:a5:21:03:b7:2d:b2: 49:a5:e4:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjUwNzA0MTUwMjE1WhcNMjUwNzExMTUwMjE1WjAYMRYwFAYD VQQDEw02ODY3ZWNmOC00NmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3AHJsDGrFh9s7biul9p1RHktxhgmiAOxINR7Cfukn11sLZW43J9jP0y03Dvu aeqXhvMwZB9Sd3nwMawMKyh7qYqlfwj8Mbo/tLpez9BC0zzzxZgty8c1Z0TL7+ZG voud3ipKlaVCvtALslWXRsT8WSbvXl0YVxBbyhoMfnC1yi0QNi+/sg65s737d1fB vGXK2EcqS1hIOi34BbH7l5PWL5Ag9dVOyQTxWsGuURwRMmyU4rCVl46jC+AZnNbL u6/Q8bbwWf6FRc/AmH3fZBvntCEC6C7DXH72iCtpzWKaOgzLokeNfKHYI0FtGuqe aAwQnAYEncxikjUT3t2b57WYYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRDla39 sXqWmJhZtl4lW0WOakQRMB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjVFOC9BMUYyM0E2NDFEOTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4Rmxp TkFNQXljUjBlMW9sR2lHY1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9kuI/t/HUhIwweueDDerzqINquIkb4gd0Oqi4gPY5rVGxnCZPSwxx qTl2M5AoEuzomx7qV1jPJCD0OTw6Jsv7EuuT6F2rOiTpcZKZGg6ALO6UpMMZVOKH x2uFJ+puvpHf0SZ96syVfgFTNEMuo8Qqk+hSyFNblD0dCFdMqlHBn2yH4afU87W3 w+73DYanoSxzZMa2w0LxgwOvy7wKbJvQc+a6xd3pZMIqVOkLYvZhmKwFXf8QwZvk LAN2FU8ZrbOpDeqx4nA38cRov3VgWJH++dI/f15UghfQ/AkmBMNf1ZyfOqMi0YuQ yACkTDyFmHHyNQsilBilIQO3LbJJpeQW -----END CERTIFICATE-----Generated at Sun Jul 6 00:30:00 2025 by rpki-client