$ rpki-client -vvf rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft File: vGOOV8p7khRPunE61ttk5tCtSZE.mft (raw, json) Hash identifier: lXFwcKliy/A9xVlnQVjONkylEoMivmKjexeytj1pC1k= Subject key identifier: 47:ED:0A:CB:76:5D:4D:AD:F5:70:AC:70:0D:09:E0:F8:1D:C0:5C:67 Authority key identifier: BC:63:8E:57:CA:7B:92:14:4F:BA:71:3A:D6:DB:64:E6:D0:AD:49:91 Certificate issuer: /CN=A91D31B0/serialNumber=BC638E57CA7B92144FBA713AD6DB64E6D0AD4991 Certificate serial: 02C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vGOOV8p7khRPunE61ttk5tCtSZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft Manifest number: 02C3 Signing time: Sat 23 Aug 2025 01:38:28 +0000 Manifest this update: Sat 23 Aug 2025 01:38:28 +0000 Manifest next update: Sat 30 Aug 2025 01:38:28 +0000 Files and hashes: 1: vGOOV8p7khRPunE61ttk5tCtSZE.crl (hash: UZtrYib5Yk9Y2xL3Cy8RdEsDz+Vt99b8UdFfEfRrHHk=) 2: 7BB181E201BA11EDA4103D0DC4F9AE02.roa (hash: lORLBE7+FfhOwINAGtcBHyopu2FbSYXSTs4IIjqvS/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.crl rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vGOOV8p7khRPunE61ttk5tCtSZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 712 (0x2c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D31B0, serialNumber=BC638E57CA7B92144FBA713AD6DB64E6D0AD4991 Validity Not Before: Aug 23 01:38:28 2025 GMT Not After : Aug 30 01:38:28 2025 GMT Subject: CN=68a91b94-f370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:97:04:af:bb:01:3b:d4:4e:72:14:8c:2b:98: b0:75:3c:ef:4a:54:72:96:7b:f9:32:b1:78:ab:b7: d2:02:35:1d:7a:89:c9:bc:0f:7e:59:af:04:66:8a: a5:fc:13:d0:83:fd:89:1f:76:7b:a3:28:ac:ed:e4: 0e:03:bb:e6:5e:c8:a9:ab:00:b2:a5:b1:bd:f3:23: 51:e8:63:ec:37:e1:b7:47:c9:cf:23:7b:f2:81:db: 65:d2:4a:f8:f2:b4:2c:d1:8b:98:85:09:6e:7f:8e: 49:4b:fd:4f:02:cc:cd:81:8f:44:9f:8f:68:9d:00: 61:1b:f3:76:be:a6:f6:73:bf:45:6f:9f:9c:af:58: d9:f1:1f:4c:7f:27:9e:da:c6:3f:e8:5a:4c:18:48: ce:22:07:fa:d6:2a:ed:67:0f:aa:01:e3:16:9b:57: 4c:e8:eb:24:85:84:8d:2f:31:a4:93:a0:a9:0c:cf: 80:f6:ba:84:94:9c:13:59:90:0c:61:c8:f3:23:e1: ca:11:7b:a0:cc:fc:32:f1:8a:96:ac:53:bb:63:4c: d1:05:1e:b6:a2:0c:d3:60:ba:38:82:3f:2a:b9:a2: 38:61:81:82:e8:43:d7:1a:f1:60:93:1f:6d:d0:c0: a1:1d:26:23:ad:27:b2:3f:47:56:f8:52:5b:3a:4b: 60:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:ED:0A:CB:76:5D:4D:AD:F5:70:AC:70:0D:09:E0:F8:1D:C0:5C:67 X509v3 Authority Key Identifier: keyid:BC:63:8E:57:CA:7B:92:14:4F:BA:71:3A:D6:DB:64:E6:D0:AD:49:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vGOOV8p7khRPunE61ttk5tCtSZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:f8:94:6b:01:0c:97:45:64:4d:e2:1b:24:64:35:a8:81:de: 4e:0b:33:28:76:ee:72:d8:80:1e:d7:79:98:20:45:ad:31:59: f7:d0:8d:bb:9d:54:f4:ea:51:4f:71:06:f4:26:3e:a4:a8:19: f6:5d:05:ba:16:04:66:94:5e:e3:55:44:58:f0:07:6e:b1:b1: b7:3b:e2:22:e2:34:39:3b:d7:ad:9f:ab:aa:99:2a:7e:95:3f: ea:64:29:76:fb:be:c1:c9:f0:81:e6:8a:86:da:39:19:21:57: 88:61:d1:33:09:a3:e6:ad:65:3f:ec:56:49:fe:86:05:53:4c: c4:be:b2:f2:e9:2f:5f:79:15:df:b1:cb:f3:d3:c3:2f:45:83: 00:e6:09:cf:1b:71:7a:2f:55:02:6a:3d:7a:73:f5:45:6a:cf: c3:87:42:87:79:83:6b:b4:62:0c:d0:11:74:f4:3c:f6:f4:50: a1:a2:c5:f9:5c:49:b1:af:25:b3:8c:2c:11:f2:b5:f8:af:4e: f8:88:c1:33:26:3f:be:d1:7c:e7:df:dd:af:d0:fb:16:e7:30: 24:1b:ef:fb:a1:b5:34:7f:a3:b0:56:33:ae:cc:69:38:2a:7e: 0e:cd:c9:fc:6d:97:a7:db:93:7d:c5:3e:f1:04:c7:af:b7:17: fa:b0:5b:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxQjAxMTAvBgNVBAUTKEJDNjM4RTU3Q0E3QjkyMTQ0RkJBNzEzQUQ2REI2NEU2 RDBBRDQ5OTEwHhcNMjUwODIzMDEzODI4WhcNMjUwODMwMDEzODI4WjAYMRYwFAYD VQQDEw02OGE5MWI5NC1mMzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypcEr7sBO9ROchSMK5iwdTzvSlRylnv5MrF4q7fSAjUdeonJvA9+Wa8EZoql /BPQg/2JH3Z7oyis7eQOA7vmXsipqwCypbG98yNR6GPsN+G3R8nPI3vygdtl0kr4 8rQs0YuYhQluf45JS/1PAszNgY9En49onQBhG/N2vqb2c79Fb5+cr1jZ8R9Mfyee 2sY/6FpMGEjOIgf61irtZw+qAeMWm1dM6OskhYSNLzGkk6CpDM+A9rqElJwTWZAM YcjzI+HKEXugzPwy8YqWrFO7Y0zRBR62ogzTYLo4gj8quaI4YYGC6EPXGvFgkx9t 0MChHSYjrSeyP0dW+FJbOktgNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEftCst2 XU2t9XCscA0J4PgdwFxnMB8GA1UdIwQYMBaAFLxjjlfKe5IUT7pxOtbbZObQrUmR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzFCMC8xNUNGNUE4ODAx QjYxMUVEQjFBNEQyODJDNEY5QUUwMi92R09PVjhwN2toUlB1bkU2MXR0azV0Q3RT WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZHT09WOHA3a2hSUHVuRTYxdHRrNXRDdFNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzFCMC8xNUNGNUE4ODAxQjYxMUVEQjFBNEQyODJDNEY5QUUwMi92R09PVjhwN2to UlB1bkU2MXR0azV0Q3RTWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO+JRrAQyXRWRN4hskZDWogd5OCzModu5y2IAe13mYIEWtMVn30I27 nVT06lFPcQb0Jj6kqBn2XQW6FgRmlF7jVURY8AdusbG3O+Ii4jQ5O9etn6uqmSp+ lT/qZCl2+77ByfCB5oqG2jkZIVeIYdEzCaPmrWU/7FZJ/oYFU0zEvrLy6S9feRXf scvz08MvRYMA5gnPG3F6L1UCaj16c/VFas/Dh0KHeYNrtGIM0BF09Dz29FChosX5 XEmxryWzjCwR8rX4r074iMEzJj++0Xzn392v0PsW5zAkG+/7obU0f6OwVjOuzGk4 Kn4Ozcn8bZen25N9xT7xBMevtxf6sFsH -----END CERTIFICATE-----Generated at Sat Aug 23 16:35:34 2025 by rpki-client