$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: XkNqUHY6UWI6Vp1JzQmSq9WSixY7oGKZB+QwjBEQApY= Subject key identifier: 48:6D:1E:02:B1:21:14:C0:40:51:48:56:4E:AB:8C:72:FA:EF:62:44 Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 0448 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 0444 Signing time: Tue 01 Jul 2025 00:49:44 +0000 Manifest this update: Tue 01 Jul 2025 00:49:44 +0000 Manifest next update: Tue 08 Jul 2025 00:49:44 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: XTtRFq9QYVnEYNBNWpKJ/zf76oWg91+beiw9hPa14x4=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1096 (0x448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: Jul 1 00:49:44 2025 GMT Not After : Jul 8 00:49:44 2025 GMT Subject: CN=686330a8-d2c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6f:5f:be:c6:2d:ad:a5:36:b7:8d:a6:5c:02: 32:f9:7b:88:84:18:10:21:56:f3:aa:cc:73:c5:74: 30:10:cb:8e:aa:d7:68:b3:a6:f1:b2:45:91:01:10: 51:15:2c:c2:4a:c1:18:35:ff:f9:a9:b4:29:64:43: 08:d3:47:6d:71:85:72:d9:f1:af:82:75:43:bb:5b: 2c:31:99:e6:42:9e:6f:44:1c:4a:2c:46:fd:7f:6b: 10:d5:06:ad:11:7b:a0:e6:30:39:c3:aa:73:ff:c3: f4:24:c0:9b:ef:de:4a:10:39:52:65:64:3e:ba:eb: db:ed:29:80:8b:a1:18:0b:a8:57:9a:6e:33:99:7a: 13:aa:ac:36:a0:ec:ae:7e:af:f2:91:e3:18:00:b6: 60:c9:d6:07:3d:69:f7:a0:51:51:3d:66:48:d9:93: 06:2a:d9:77:23:2a:09:74:f3:74:71:75:be:99:69: e2:0e:c9:e4:33:84:2c:ad:aa:3f:df:26:ca:16:c5: 54:4d:86:59:eb:11:c3:cf:d5:bb:c5:68:10:79:a3: 05:ab:53:7f:cb:ae:82:67:7b:14:5c:50:1c:fd:13: 34:2a:68:09:9a:db:bd:4a:37:8e:6b:1f:6b:12:70: cc:2b:5b:8a:b9:96:58:53:7f:e3:48:2c:fa:60:7a: d1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:6D:1E:02:B1:21:14:C0:40:51:48:56:4E:AB:8C:72:FA:EF:62:44 X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:95:ac:bc:18:62:aa:52:a1:86:cb:ad:27:5f:bf:4e:c2:03: c6:0c:cb:e0:bb:c9:e0:0f:21:57:c0:f5:c4:2b:40:f6:79:08: 56:54:fb:f7:80:02:bc:62:02:a1:05:99:9b:03:77:ae:ef:50: d4:14:39:56:2f:ce:a7:2f:ab:09:7a:22:ea:5d:07:4d:5f:65: 15:b3:a3:ba:82:c0:c2:f9:34:ea:f8:ed:2b:fc:74:ed:ac:be: 63:0c:6f:da:46:bb:f9:b3:5d:0c:ee:f4:7f:ca:e8:77:b6:5c: 3d:c4:e5:9c:f8:f2:09:a3:18:1d:0e:71:d0:71:46:db:22:7a: dc:9c:3e:3c:c6:74:96:52:a2:3f:c8:ae:82:a3:15:41:63:ef: 73:d0:84:5f:73:ed:1d:82:87:9c:57:94:16:14:36:73:16:02: 0d:87:18:d3:03:f8:b7:c8:43:d3:ce:b7:ff:60:63:f0:f4:4f: 82:31:0b:0d:a4:9d:e0:8e:7c:11:2c:29:d6:a1:ad:fd:3d:9d: a8:a6:a9:5b:c0:a6:bf:8c:c0:6a:38:19:63:71:df:a6:2b:ed: 2e:5a:1e:51:28:5b:bc:1d:91:9a:25:da:fc:93:17:3b:81:60: 07:a5:5e:a5:d2:df:3a:31:33:84:d7:86:a1:11:2b:c9:ce:70: d7:52:b2:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjUwNzAxMDA0OTQ0WhcNMjUwNzA4MDA0OTQ0WjAYMRYwFAYD VQQDEw02ODYzMzBhOC1kMmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA729fvsYtraU2t42mXAIy+XuIhBgQIVbzqsxzxXQwEMuOqtdos6bxskWRARBR FSzCSsEYNf/5qbQpZEMI00dtcYVy2fGvgnVDu1ssMZnmQp5vRBxKLEb9f2sQ1Qat EXug5jA5w6pz/8P0JMCb795KEDlSZWQ+uuvb7SmAi6EYC6hXmm4zmXoTqqw2oOyu fq/ykeMYALZgydYHPWn3oFFRPWZI2ZMGKtl3IyoJdPN0cXW+mWniDsnkM4Qsrao/ 3ybKFsVUTYZZ6xHDz9W7xWgQeaMFq1N/y66CZ3sUXFAc/RM0KmgJmtu9SjeOax9r EnDMK1uKuZZYU3/jSCz6YHrRawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhtHgKx IRTAQFFIVk6rjHL672JEMB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0lay8GGKqUqGGy60nX79OwgPGDMvgu8ngDyFXwPXEK0D2eQhWVPv3 gAK8YgKhBZmbA3eu71DUFDlWL86nL6sJeiLqXQdNX2UVs6O6gsDC+TTq+O0r/HTt rL5jDG/aRrv5s10M7vR/yuh3tlw9xOWc+PIJoxgdDnHQcUbbInrcnD48xnSWUqI/ yK6CoxVBY+9z0IRfc+0dgoecV5QWFDZzFgINhxjTA/i3yEPTzrf/YGPw9E+CMQsN pJ3gjnwRLCnWoa39PZ2opqlbwKa/jMBqOBljcd+mK+0uWh5RKFu8HZGaJdr8kxc7 gWAHpV6l0t86MTOE14ahESvJznDXUrLB -----END CERTIFICATE-----Generated at Tue Jul 1 10:23:12 2025 by rpki-client