$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft File: M-VCXQNo-C_4W5uEf0EjitWNTlA.mft (raw, json) Hash identifier: 2tXqopsLLt3G4NO3PpOElJSYRbzMGx5xg1tgQXgeol0= Subject key identifier: C0:B6:FB:DF:8D:BF:E4:CC:21:70:30:46:C3:CC:E8:BB:9D:8C:EE:88 Authority key identifier: 33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 Certificate issuer: /CN=A91CFD5A/serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft Manifest number: 012B Signing time: Sat 23 Aug 2025 04:47:22 +0000 Manifest this update: Sat 23 Aug 2025 04:47:22 +0000 Manifest next update: Sat 30 Aug 2025 04:47:22 +0000 Files and hashes: 1: M-VCXQNo-C_4W5uEf0EjitWNTlA.crl (hash: Z/HlfIEH7N4gVDTz11xFrz84e2iNCXaZ6fOA2anxyyw=) 2: D677E18AB9AF11EE97EEDB49C4F9AE02.roa (hash: LUJnGhbUriDz5PEXzwqHVqGRqenH5+Jp3evLId0QNQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A, serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Validity Not Before: Aug 23 04:47:22 2025 GMT Not After : Aug 30 04:47:22 2025 GMT Subject: CN=68a947da-7022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:56:eb:6f:33:6c:2d:87:a0:55:36:9e:fb:53: ec:97:76:44:28:85:88:2b:74:fa:1a:24:1a:35:48: cd:ca:50:93:e8:b0:30:bc:6d:53:cc:55:16:90:42: f2:ad:df:9c:45:ff:4e:df:01:a9:ab:a4:ab:d9:93: 8f:be:d4:68:d9:7a:d5:ab:61:df:bc:cb:1b:91:51: 1d:df:08:22:b9:0d:3c:d3:94:24:f4:dc:f3:58:52: df:a3:ba:44:bd:7b:b6:91:5c:f4:ea:92:16:2b:ed: cc:7e:df:ad:c4:60:bf:79:ec:37:ff:8f:f6:56:ec: f0:11:05:1f:f9:87:69:61:86:1c:d5:d2:ea:4d:4a: 62:f3:fd:75:98:34:b1:a4:85:27:81:5e:ab:f4:5c: fb:ac:6b:fd:cf:89:2b:60:fe:b3:9f:c0:6e:b5:80: c9:66:74:01:72:9b:fe:88:f3:55:3f:90:27:8a:a9: e9:86:8a:a5:6d:c9:9c:5c:9a:b0:8d:6f:ce:0e:81: ee:e7:27:84:7a:82:a5:b4:2f:37:fb:fb:a7:93:d9: 75:cf:6b:11:ba:69:c8:5c:d4:27:41:79:66:00:7e: b2:37:43:dc:97:a9:a9:0b:ea:0e:fb:69:4a:ab:c8: 74:cd:c6:7c:5f:8e:d1:5c:f2:75:97:f7:32:21:23: 8c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B6:FB:DF:8D:BF:E4:CC:21:70:30:46:C3:CC:E8:BB:9D:8C:EE:88 X509v3 Authority Key Identifier: keyid:33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:cc:30:f2:b3:ea:ed:5e:5f:c9:9e:b8:ce:cd:d9:57:a3:20: 86:63:18:5c:1e:1a:ab:14:a5:c7:c1:93:ae:20:4e:58:e2:d5: 3d:84:b1:9b:aa:bb:86:ee:2c:37:66:97:ea:fa:06:ff:5e:41: cc:ab:99:d3:1e:c6:1f:67:a7:61:ec:9d:d1:55:e4:28:69:39: ca:4b:5c:59:6c:1d:71:44:4c:43:c3:66:d2:ac:df:df:b4:16: 59:8f:32:21:96:1b:6c:ed:3b:5b:90:d0:9d:f5:1e:3d:ca:b0: d5:9d:eb:fc:6d:84:90:da:85:1f:ee:59:7b:2e:84:c9:da:ea: a9:db:e2:6c:26:0f:27:3f:0d:91:08:a0:65:6b:c9:ce:29:23: 13:74:d5:42:01:c7:d9:f1:46:82:b1:a8:f8:54:41:50:a1:60: f1:1e:cd:11:07:d0:18:42:a2:83:b4:68:41:af:9a:4d:14:5e: 0c:f4:6d:50:01:5c:87:2f:f7:97:8a:95:c3:5b:a4:34:a0:48: c3:3e:40:3d:ae:ee:b1:50:c3:df:d9:89:66:8b:7e:5b:89:84: ee:79:11:7e:44:08:07:37:c4:d5:44:ea:d3:fe:4a:a1:ff:e0: 58:d4:35:63:32:53:b5:1d:76:f8:e1:7e:ff:9a:f2:a6:2a:a1: 96:97:35:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDMzRTU0MjVEMDM2OEY4MkZGODVCOUI4NDdGNDEyMzhB RDU4RDRFNTAwHhcNMjUwODIzMDQ0NzIyWhcNMjUwODMwMDQ0NzIyWjAYMRYwFAYD VQQDEw02OGE5NDdkYS03MDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FbrbzNsLYegVTae+1Psl3ZEKIWIK3T6GiQaNUjNylCT6LAwvG1TzFUWkELy rd+cRf9O3wGpq6Sr2ZOPvtRo2XrVq2HfvMsbkVEd3wgiuQ0805Qk9NzzWFLfo7pE vXu2kVz06pIWK+3Mft+txGC/eew3/4/2VuzwEQUf+YdpYYYc1dLqTUpi8/11mDSx pIUngV6r9Fz7rGv9z4krYP6zn8ButYDJZnQBcpv+iPNVP5AniqnphoqlbcmcXJqw jW/ODoHu5yeEeoKltC83+/unk9l1z2sRumnIXNQnQXlmAH6yN0Pcl6mpC+oO+2lK q8h0zcZ8X47RXPJ1l/cyISOMDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMC2+9+N v+TMIXAwRsPM6LudjO6IMB8GA1UdIwQYMBaAFDPlQl0DaPgv+FubhH9BI4rVjU5Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS81RkI3REMwOEI5 QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1DXzRXNXVFZjBFaml0V05U bEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00tVkNYUU5vLUNfNFc1dUVmMEVqaXRXTlRsQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS81RkI3REMwOEI5QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1D XzRXNXVFZjBFaml0V05UbEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHzDDys+rtXl/JnrjOzdlXoyCGYxhcHhqrFKXHwZOuIE5Y4tU9hLGb qruG7iw3Zpfq+gb/XkHMq5nTHsYfZ6dh7J3RVeQoaTnKS1xZbB1xRExDw2bSrN/f tBZZjzIhlhts7TtbkNCd9R49yrDVnev8bYSQ2oUf7ll7LoTJ2uqp2+JsJg8nPw2R CKBla8nOKSMTdNVCAcfZ8UaCsaj4VEFQoWDxHs0RB9AYQqKDtGhBr5pNFF4M9G1Q AVyHL/eXipXDW6Q0oEjDPkA9ru6xUMPf2Ylmi35biYTueRF+RAgHN8TVROrT/kqh /+BY1DVjMlO1HXb44X7/mvKmKqGWlzU9 -----END CERTIFICATE-----Generated at Sat Aug 23 13:11:32 2025 by rpki-client