$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft File: vBRJ7peREatw2N-Y2rpOJrprxls.mft (raw, json) Hash identifier: JhAf2+pgYJ86KxEl2HLVchkeM0t+U1M76DiUjlxVyZk= Subject key identifier: CC:01:85:C5:DE:7D:FC:C2:85:6F:09:D7:D5:B1:A6:1F:2F:57:72:23 Authority key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B Certificate issuer: /CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Certificate serial: 0742 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft Manifest number: 073B Signing time: Fri 04 Jul 2025 22:07:37 +0000 Manifest this update: Fri 04 Jul 2025 22:07:37 +0000 Manifest next update: Fri 11 Jul 2025 22:07:36 +0000 Files and hashes: 1: vBRJ7peREatw2N-Y2rpOJrprxls.crl (hash: 9pKN9ldyOCGopL9eGb+GVFFeh6oCnwtPaJ3fKe9Rgws=) 2: 7633392033B411EB98035F74C4F9AE02.roa (hash: 2z51i9dV66CcllhW8qVIGTGYHAdnhuR+CInt6YNJqFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1858 (0x742) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCA34, serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Validity Not Before: Jul 4 22:07:37 2025 GMT Not After : Jul 11 22:07:36 2025 GMT Subject: CN=686850a9-253b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5c:ee:df:68:37:e8:38:0c:18:d9:b1:9e:1b: 57:fd:40:82:35:6c:28:b7:7b:97:32:85:0b:83:ad: 06:5d:4f:fc:d7:8c:2f:b8:ec:37:06:ff:46:71:ed: dd:46:8b:d6:95:82:25:3e:24:0a:c3:60:9a:b7:a3: d7:4a:f4:5a:6f:b9:ad:d6:99:83:5c:47:f3:41:1f: 79:69:f7:15:43:a0:4a:df:a3:f5:6a:b1:87:09:ce: fd:ec:68:38:f2:f7:c0:c4:6d:55:05:13:59:96:d7: a2:0c:91:84:69:b8:b2:d1:cb:fe:81:dc:6b:21:57: 3a:cb:eb:8e:49:79:15:44:a0:3e:42:19:bc:4b:7f: d6:32:a9:ac:35:0d:f0:54:ac:5a:06:3d:77:fe:87: f0:0e:75:58:2a:c8:45:3a:cb:a8:44:9d:b8:9f:a2: b1:c5:70:f1:ee:92:52:37:9c:bc:03:58:69:76:f3: 59:5d:ff:26:c9:5b:fe:7b:4e:7a:23:58:f0:10:67: 39:a4:39:e7:d9:97:a4:09:0d:6a:d9:8a:13:06:28: b7:e9:95:d6:88:b4:32:50:c3:03:f0:09:6d:d1:f8: 77:33:83:09:c4:91:c1:a7:8a:29:b8:1b:42:79:ec: 85:68:0a:e6:18:f4:2b:e9:6c:de:44:65:c1:f3:c8: eb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:01:85:C5:DE:7D:FC:C2:85:6F:09:D7:D5:B1:A6:1F:2F:57:72:23 X509v3 Authority Key Identifier: keyid:BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:ae:1a:02:4d:7a:6e:39:8a:13:ee:43:df:76:d8:4f:39:6f: 91:15:ba:67:3c:a2:7b:6f:c9:d8:6b:d0:ef:5b:5b:26:fd:52: 98:99:42:5c:45:a7:2c:65:a3:85:6a:de:6d:5b:30:24:36:46: fa:0e:2e:fa:d5:73:b8:47:e7:c3:3e:9e:ce:9d:a3:54:a2:25: 73:bd:b9:dc:af:12:0e:7c:84:aa:97:d4:b6:e0:2d:f2:ec:c7: b1:c9:ec:35:c1:cb:92:7b:7f:4a:88:79:e8:de:ad:f6:b3:11: f4:09:7f:cf:8e:2d:a8:c3:6e:95:c1:a6:6c:07:91:10:0a:e1: 46:18:97:07:21:1c:a4:6e:43:89:60:1a:dc:8e:ba:f7:d7:0b: 07:77:f4:de:12:0d:43:c4:19:43:7f:04:e8:25:ff:cf:11:76: 1d:c0:be:b6:22:0f:e2:14:19:0c:3d:3a:0c:ab:91:21:70:c8: 76:5c:f0:35:f8:dc:c9:a4:9b:c5:6f:15:b2:0c:4a:47:58:79: a5:62:3b:64:39:bb:10:5c:23:ba:c6:b5:7f:d2:4b:4d:97:b5: 47:a1:f5:f5:18:7f:4c:37:52:1a:26:2e:5b:0f:cf:dd:0b:63: be:cf:79:f9:73:5f:e4:b1:99:77:db:02:c6:93:7e:31:5e:da: 19:9e:97:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBMzQxMTAvBgNVBAUTKEJDMTQ0OUVFOTc5MTExQUI3MEQ4REY5OERBQkE0RTI2 QkE2QkM2NUIwHhcNMjUwNzA0MjIwNzM3WhcNMjUwNzExMjIwNzM2WjAYMRYwFAYD VQQDEw02ODY4NTBhOS0yNTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVzu32g36DgMGNmxnhtX/UCCNWwot3uXMoULg60GXU/814wvuOw3Bv9Gce3d RovWlYIlPiQKw2Cat6PXSvRab7mt1pmDXEfzQR95afcVQ6BK36P1arGHCc797Gg4 8vfAxG1VBRNZlteiDJGEabiy0cv+gdxrIVc6y+uOSXkVRKA+Qhm8S3/WMqmsNQ3w VKxaBj13/ofwDnVYKshFOsuoRJ24n6KxxXDx7pJSN5y8A1hpdvNZXf8myVv+e056 I1jwEGc5pDnn2ZekCQ1q2YoTBii36ZXWiLQyUMMD8Alt0fh3M4MJxJHBp4opuBtC eeyFaArmGPQr6WzeRGXB88jrSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwBhcXe ffzChW8J19Wxph8vV3IjMB8GA1UdIwQYMBaAFLwUSe6XkRGrcNjfmNq6Tia6a8Zb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0EzNC82RkFBMzY3ODMz QjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVhdHcyTi1ZMnJwT0pycHJ4 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCUko3cGVSRWF0dzJOLVkycnBPSnJwcnhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0EzNC82RkFBMzY3ODMzQjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVh dHcyTi1ZMnJwT0pycHJ4bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyrhoCTXpuOYoT7kPfdthPOW+RFbpnPKJ7b8nYa9DvW1sm/VKYmUJc RacsZaOFat5tWzAkNkb6Di761XO4R+fDPp7OnaNUoiVzvbncrxIOfISql9S24C3y 7Mexyew1wcuSe39KiHno3q32sxH0CX/Pji2ow26VwaZsB5EQCuFGGJcHIRykbkOJ YBrcjrr31wsHd/TeEg1DxBlDfwToJf/PEXYdwL62Ig/iFBkMPToMq5EhcMh2XPA1 +NzJpJvFbxWyDEpHWHmlYjtkObsQXCO6xrV/0ktNl7VHofX1GH9MN1IaJi5bD8/d C2O+z3n5c1/ksZl32wLGk34xXtoZnpfN -----END CERTIFICATE-----Generated at Sat Jul 5 11:33:31 2025 by rpki-client