$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft File: vAWTxH2s9senekHgfeuaBhYxpIQ.mft (raw, json) Hash identifier: EYzx+DbKbYRnJrYaO4LuZQzlfzWkwmxjs8lOXFENZNs= Subject key identifier: B8:47:02:83:73:64:10:E8:0C:63:F3:38:06:25:B9:B5:A0:5A:78:91 Authority key identifier: BC:05:93:C4:7D:AC:F6:C7:A7:7A:41:E0:7D:EB:9A:06:16:31:A4:84 Certificate issuer: /CN=A91D0B40/serialNumber=BC0593C47DACF6C7A77A41E07DEB9A061631A484 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft Manifest number: BC Signing time: Tue 01 Jul 2025 06:32:39 +0000 Manifest this update: Tue 01 Jul 2025 06:32:39 +0000 Manifest next update: Tue 08 Jul 2025 06:32:39 +0000 Files and hashes: 1: vAWTxH2s9senekHgfeuaBhYxpIQ.crl (hash: AMEouEihHsyUhuKbbfxEpwpoLFJYxkk7MG6Efw/GrRA=) 2: 0D5C00AC38E311EF99F62432C4F9AE02.roa (hash: xQMEY6P6f4jmqeDgv/TImb1ka64GtPCQvQqQLQx2M8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.crl rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B40, serialNumber=BC0593C47DACF6C7A77A41E07DEB9A061631A484 Validity Not Before: Jul 1 06:32:39 2025 GMT Not After : Jul 8 06:32:39 2025 GMT Subject: CN=68638107-dae1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d8:a6:66:21:89:27:f0:4b:c2:72:41:bf:0a: 16:b2:0f:2f:9b:f6:85:00:ac:f3:88:2c:46:b4:eb: 8d:a0:52:78:d4:35:d8:46:fd:1f:bd:73:af:17:ef: 8a:21:ae:11:dc:c2:52:74:72:a7:71:53:93:b8:fc: d7:ba:c6:c7:5c:a9:fc:5a:ff:68:be:50:bb:92:82: 01:f6:cf:b9:40:99:31:9e:17:d4:b9:61:3d:83:f9: 57:1e:ff:f5:2f:d4:92:1f:16:f1:a8:d5:63:21:b2: e8:4d:4c:7c:21:4a:ce:d7:6c:32:11:6a:5f:20:5b: d0:b1:18:1f:2c:7f:fc:84:8b:81:c1:b0:fd:e5:0b: fb:26:b6:10:04:de:a7:87:d7:e4:43:a4:07:65:da: a5:22:a7:be:f6:44:d4:df:46:3a:e1:f2:58:42:65: c2:3e:54:78:9e:59:9b:ed:9c:5c:24:2f:29:a4:e8: 61:8c:7b:9a:09:6e:30:1f:7d:43:5a:df:3a:b1:ed: 89:f0:ad:8f:82:43:c4:1f:fb:d1:bd:f7:60:3f:93: c5:ff:8b:e0:c8:f0:f4:d0:3d:6b:58:61:14:c2:d9: 54:ef:dc:03:4f:bf:84:a1:5b:6c:51:c8:6b:76:53: ae:f8:7b:d9:9e:52:1d:41:b7:f5:40:1b:83:28:17: aa:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:47:02:83:73:64:10:E8:0C:63:F3:38:06:25:B9:B5:A0:5A:78:91 X509v3 Authority Key Identifier: keyid:BC:05:93:C4:7D:AC:F6:C7:A7:7A:41:E0:7D:EB:9A:06:16:31:A4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:79:b0:87:96:89:b5:14:ae:69:12:d2:3f:89:df:3c:4c:d8: 72:ba:53:dd:63:3b:80:8c:0f:70:99:1e:c1:33:6e:a1:c8:9d: cb:ee:b5:fc:e6:5e:5e:c8:f3:68:a4:2a:04:0f:2b:b2:ce:05: 60:c1:fa:b3:70:b6:70:9d:3b:8b:30:10:6f:c0:ce:77:33:8d: ba:33:fb:d7:88:71:80:a1:62:10:a2:f8:16:22:b7:df:c8:41: 13:bf:58:45:ba:c3:66:e3:25:41:41:1d:a9:f6:6e:7d:40:ae: f9:0e:5a:f9:39:e3:49:41:64:cf:2c:49:d0:05:ee:2d:a7:b9: 52:54:e7:d7:b6:4e:c7:2a:f8:50:71:fd:26:c5:5e:a4:54:91: 28:6b:47:b8:c9:9f:aa:e5:2d:60:cc:0a:4b:f2:2b:34:af:ab: be:ab:08:a0:6e:3f:7a:85:39:9d:2b:4a:26:4d:d4:68:28:3c: ad:30:e0:18:76:23:85:31:c4:e7:ee:65:70:c5:56:64:8c:b7: 6c:4c:9d:12:51:6d:0f:65:e8:3f:87:76:3b:c4:a3:86:d5:68: e3:b9:58:22:0e:5d:9a:bf:21:b1:08:ed:61:39:2c:34:4c:d1: 25:33:3c:d4:cf:e5:03:f9:e8:78:d1:1f:44:b0:2d:56:da:81: 67:8c:7a:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCNDAxMTAvBgNVBAUTKEJDMDU5M0M0N0RBQ0Y2QzdBNzdBNDFFMDdERUI5QTA2 MTYzMUE0ODQwHhcNMjUwNzAxMDYzMjM5WhcNMjUwNzA4MDYzMjM5WjAYMRYwFAYD VQQDEw02ODYzODEwNy1kYWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9imZiGJJ/BLwnJBvwoWsg8vm/aFAKzziCxGtOuNoFJ41DXYRv0fvXOvF++K Ia4R3MJSdHKncVOTuPzXusbHXKn8Wv9ovlC7koIB9s+5QJkxnhfUuWE9g/lXHv/1 L9SSHxbxqNVjIbLoTUx8IUrO12wyEWpfIFvQsRgfLH/8hIuBwbD95Qv7JrYQBN6n h9fkQ6QHZdqlIqe+9kTU30Y64fJYQmXCPlR4nlmb7ZxcJC8ppOhhjHuaCW4wH31D Wt86se2J8K2PgkPEH/vRvfdgP5PF/4vgyPD00D1rWGEUwtlU79wDT7+EoVtsUchr dlOu+HvZnlIdQbf1QBuDKBeqUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhHAoNz ZBDoDGPzOAYlubWgWniRMB8GA1UdIwQYMBaAFLwFk8R9rPbHp3pB4H3rmgYWMaSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEI0MC8yODQwQzhBNjM4 RTAxMUVGOTRCODREN0ZDNEY5QUUwMi92QVdUeEgyczlzZW5la0hnZmV1YUJoWXhw SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZBV1R4SDJzOXNlbmVrSGdmZXVhQmhZeHBJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEI0MC8yODQwQzhBNjM4RTAxMUVGOTRCODREN0ZDNEY5QUUwMi92QVdUeEgyczlz ZW5la0hnZmV1YUJoWXhwSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjebCHlom1FK5pEtI/id88TNhyulPdYzuAjA9wmR7BM26hyJ3L7rX8 5l5eyPNopCoEDyuyzgVgwfqzcLZwnTuLMBBvwM53M426M/vXiHGAoWIQovgWIrff yEETv1hFusNm4yVBQR2p9m59QK75Dlr5OeNJQWTPLEnQBe4tp7lSVOfXtk7HKvhQ cf0mxV6kVJEoa0e4yZ+q5S1gzApL8is0r6u+qwigbj96hTmdK0omTdRoKDytMOAY diOFMcTn7mVwxVZkjLdsTJ0SUW0PZeg/h3Y7xKOG1WjjuVgiDl2avyGxCO1hOSw0 TNElMzzUz+UD+eh40R9EsC1W2oFnjHoN -----END CERTIFICATE-----Generated at Wed Jul 2 19:08:13 2025 by rpki-client