$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: b2j/v4CaH41aPhbXUUS0+2Rg0p30lQs0jht0404hsig= Subject key identifier: B4:D1:B5:7D:32:6D:7D:C8:C5:0C:EF:9E:85:3C:C8:A9:C0:BD:BD:7B Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 0463 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 045F Signing time: Sat 23 Aug 2025 00:25:26 +0000 Manifest this update: Sat 23 Aug 2025 00:25:26 +0000 Manifest next update: Sat 30 Aug 2025 00:25:26 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: B7ywjtY1kiG8NUTNag08RUjqZKPTWdzGQSRHh9xAfNY=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: Aug 23 00:25:26 2025 GMT Not After : Aug 30 00:25:26 2025 GMT Subject: CN=68a90a76-23f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:65:61:bd:64:6a:fe:52:f5:e6:2c:5b:41:1b: 86:a8:79:4b:bc:cb:28:8a:7f:23:60:9b:03:26:f1: e4:42:8b:12:ce:22:d1:9f:fc:e2:92:28:47:59:06: af:8e:21:39:b4:f7:ac:ac:1e:c1:ce:3d:b4:0a:93: 57:3a:fb:68:e9:03:23:e3:8a:17:a3:cc:6f:2c:2d: 74:42:7c:eb:23:fc:a1:cf:32:2c:39:8c:22:82:4e: 5c:e6:87:0f:05:5c:45:2a:46:14:5a:63:b8:27:45: f5:ca:ae:cc:14:85:46:52:2c:67:a3:15:b2:ad:d1: 2a:7b:f3:36:19:e6:6a:25:44:1d:21:77:ee:7c:04: 5e:ea:16:ad:68:ed:fa:2f:ed:b3:1d:d1:e6:f1:8f: d7:cd:8f:f8:15:f5:56:aa:ce:9b:3b:d8:70:eb:9e: 14:b4:95:e2:a6:d0:3a:85:13:73:26:82:62:35:51: 9e:35:c6:45:91:70:ea:69:cf:44:2f:50:67:f3:09: e6:06:6d:cb:3a:0e:66:14:52:0d:7f:29:48:e3:fa: ba:3c:ee:1a:76:11:a8:53:2e:c3:4e:c7:31:91:81: 54:6b:18:ee:51:fe:33:6a:73:71:c2:fe:92:f8:c4: e8:2c:c5:54:d7:8e:7a:cd:26:98:40:1d:4c:a9:e6: ab:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D1:B5:7D:32:6D:7D:C8:C5:0C:EF:9E:85:3C:C8:A9:C0:BD:BD:7B X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:4a:6f:b5:12:61:fd:3a:43:40:21:32:b1:57:04:7f:41:8b: 82:28:7c:b2:97:d1:a6:e7:a1:43:01:b0:24:b9:cf:f0:13:95: fa:b6:1f:e4:fe:9b:18:02:82:73:64:71:25:4d:33:48:47:b6: 77:c0:4b:3f:2a:60:8c:c5:23:22:98:07:22:87:e1:db:01:22: e0:b3:27:e9:63:11:a1:ee:b2:18:6a:d1:32:90:df:4c:6c:c6: 83:e2:68:64:d9:09:57:c0:16:92:b4:bc:d7:6e:30:5d:2b:43: 2f:52:51:4d:d0:4e:f2:80:34:ef:dc:d4:d4:58:1a:82:ee:79: 42:13:35:a7:31:f1:2d:2f:51:d6:48:0d:05:ba:c8:38:fa:dd: 32:dc:2f:1c:68:12:8e:18:75:16:60:dd:df:b1:f4:c9:85:5b: 44:0d:3b:0b:71:ef:07:43:21:62:4f:48:d6:9f:37:93:b5:da: e4:dc:2c:00:52:71:79:18:1a:f2:08:24:de:16:02:53:4c:25: a5:2a:41:d6:b3:44:8e:e2:1d:6c:92:36:f6:7a:23:b3:29:12: 9f:f7:d1:c3:47:5f:0c:ea:ec:06:a1:cb:ff:e3:81:e3:27:56: 6c:71:20:6c:0b:a0:f4:5d:d5:b1:06:f3:df:74:08:89:d0:bf: 1c:9f:8d:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjUwODIzMDAyNTI2WhcNMjUwODMwMDAyNTI2WjAYMRYwFAYD VQQDEw02OGE5MGE3Ni0yM2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGVhvWRq/lL15ixbQRuGqHlLvMsoin8jYJsDJvHkQosSziLRn/zikihHWQav jiE5tPesrB7Bzj20CpNXOvto6QMj44oXo8xvLC10QnzrI/yhzzIsOYwigk5c5ocP BVxFKkYUWmO4J0X1yq7MFIVGUixnoxWyrdEqe/M2GeZqJUQdIXfufARe6hataO36 L+2zHdHm8Y/XzY/4FfVWqs6bO9hw654UtJXiptA6hRNzJoJiNVGeNcZFkXDqac9E L1Bn8wnmBm3LOg5mFFINfylI4/q6PO4adhGoUy7DTscxkYFUaxjuUf4zanNxwv6S +MToLMVU1456zSaYQB1Mqear3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTRtX0y bX3IxQzvnoU8yKnAvb17MB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4Sm+1EmH9OkNAITKxVwR/QYuCKHyyl9Gm56FDAbAkuc/wE5X6th/k /psYAoJzZHElTTNIR7Z3wEs/KmCMxSMimAcih+HbASLgsyfpYxGh7rIYatEykN9M bMaD4mhk2QlXwBaStLzXbjBdK0MvUlFN0E7ygDTv3NTUWBqC7nlCEzWnMfEtL1HW SA0Fusg4+t0y3C8caBKOGHUWYN3fsfTJhVtEDTsLce8HQyFiT0jWnzeTtdrk3CwA UnF5GBryCCTeFgJTTCWlKkHWs0SO4h1skjb2eiOzKRKf99HDR18M6uwGocv/44Hj J1ZscSBsC6D0XdWxBvPfdAiJ0L8cn42Q -----END CERTIFICATE-----Generated at Sat Aug 23 16:27:25 2025 by rpki-client