$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft File: VXiaNBbn71Fc4I8Fo28d7YNETAk.mft (raw, json) Hash identifier: fDdPUxIPSUoGrru8sY36LWP62dqTiJ/Y0SabpeZo0ow= Subject key identifier: 32:CB:79:99:7C:D6:F9:DC:99:2E:B2:70:05:2D:DF:67:AB:EF:2E:AC Authority key identifier: 55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 Certificate issuer: /CN=A91F43F2/serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft Manifest number: 16 Signing time: Sat 23 Aug 2025 08:13:24 +0000 Manifest this update: Sat 23 Aug 2025 08:13:23 +0000 Manifest next update: Sat 30 Aug 2025 08:13:23 +0000 Files and hashes: 1: VXiaNBbn71Fc4I8Fo28d7YNETAk.crl (hash: jmZZxM8Y/FmW0/usNfCWbzwLtWRY/poFjHoELMxA7p8=) 2: A19F973C60C011F0A28C7F2CC4F9AE02.roa (hash: z6l4Kf7BBkbhNbxfRp+L0t7tdYphMHusFnOI/s0ajOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Validity Not Before: Aug 23 08:13:23 2025 GMT Not After : Aug 30 08:13:23 2025 GMT Subject: CN=68a97823-eac1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8a:83:32:98:4f:b1:84:98:59:48:55:36:93: 26:de:59:0e:01:f2:2d:56:d0:a5:3b:19:e8:77:c7: 1c:22:e4:63:d4:06:24:c2:c2:0a:8d:2b:cd:38:51: 13:55:c4:da:db:ae:29:e3:98:7e:b3:58:c2:fa:ad: de:b8:c2:18:df:2d:bb:8c:b0:83:55:15:88:41:5a: 23:5c:55:9f:a3:97:f5:9c:cc:ef:e5:69:2f:ef:5b: 98:4d:fb:c4:b9:f3:56:9f:0d:7c:48:6e:9a:d5:d6: ad:dc:83:02:f7:80:31:9d:47:bf:32:9d:72:89:52: c4:8a:9a:26:c3:9f:11:74:5f:e8:d9:6b:6b:7e:32: 28:e5:b2:ad:ae:e4:21:f0:06:f6:88:c6:b4:46:1d: 94:36:73:3d:f1:f4:49:0a:87:f4:63:35:ed:90:fa: 9b:33:87:9b:1f:47:e4:48:03:6b:3b:f7:02:10:23: 6c:7d:2b:ea:97:b2:62:50:fc:03:07:b1:4e:8e:60: b6:dc:38:da:8f:b2:e5:b7:2a:bd:42:92:28:28:10: 0b:7d:ac:ec:fd:88:2d:3c:c3:70:76:76:6b:89:a0: 6c:2a:aa:64:12:aa:28:93:8f:a9:12:68:89:6b:a3: b6:25:e6:a9:10:2c:bf:2e:31:c3:5e:24:82:79:ac: f4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:CB:79:99:7C:D6:F9:DC:99:2E:B2:70:05:2D:DF:67:AB:EF:2E:AC X509v3 Authority Key Identifier: keyid:55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:86:99:d8:d2:22:06:91:68:f8:c1:f4:a9:69:48:18:8b:44: ba:c3:97:f3:53:9c:5b:1d:a0:f4:d4:27:6f:3c:12:3e:a5:7b: 57:0e:25:6f:14:78:a5:b9:91:c9:91:0b:93:6e:62:69:99:e0: 77:33:ff:f2:7e:ce:a2:a0:a9:5f:93:b2:7f:62:3a:47:2d:22: 07:de:6a:e7:44:4d:7a:7f:70:9d:d7:bc:08:7c:19:c9:a2:0f: d7:e6:92:f7:dd:f6:48:ae:26:27:84:99:a5:b0:09:4b:e4:1a: f7:4b:d7:de:24:86:05:06:33:f6:bf:5d:c8:00:51:65:72:bc: 6d:72:46:bb:d9:e2:5b:3c:b7:9a:e5:d0:e7:a7:23:d1:5b:a8: e4:d3:9b:f3:bf:04:df:c3:17:57:17:93:18:c3:b4:91:25:4b: fd:4e:19:91:b6:86:d0:2b:6b:42:de:e4:14:f4:fe:ad:dc:db: 69:84:15:d4:73:af:8b:39:ae:4e:64:ac:1d:69:db:d5:44:05: 63:08:30:c8:ec:df:90:5e:26:de:3f:3c:4b:06:9d:17:b7:35: fd:6b:7c:02:1e:7d:70:e0:63:de:dd:c4:57:13:a2:7a:d8:b5: 59:db:58:d0:cb:26:20:93:96:a2:8d:92:9b:52:d9:05:6e:fa: a3:e3:57:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDNGMjExMC8GA1UEBRMoNTU3ODlBMzQxNkU3RUY1MTVDRTA4RjA1QTM2RjFERUQ4 MzQ0NEMwOTAeFw0yNTA4MjMwODEzMjNaFw0yNTA4MzAwODEzMjNaMBgxFjAUBgNV BAMTDTY4YTk3ODIzLWVhYzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaioMymE+xhJhZSFU2kybeWQ4B8i1W0KU7Geh3xxwi5GPUBiTCwgqNK804URNV xNrbrinjmH6zWML6rd64whjfLbuMsINVFYhBWiNcVZ+jl/WczO/laS/vW5hN+8S5 81afDXxIbprV1q3cgwL3gDGdR78ynXKJUsSKmibDnxF0X+jZa2t+Mijlsq2u5CHw BvaIxrRGHZQ2cz3x9EkKh/RjNe2Q+pszh5sfR+RIA2s79wIQI2x9K+qXsmJQ/AMH sU6OYLbcONqPsuW3Kr1CkigoEAt9rOz9iC08w3B2dmuJoGwqqmQSqiiTj6kSaIlr o7Yl5qkQLL8uMcNeJIJ5rPQFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMst5mXzW +dyZLrJwBS3fZ6vvLqwwHwYDVR0jBBgwFoAUVXiaNBbn71Fc4I8Fo28d7YNETAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0M0YyLzQxODA1MDk0NjBD MDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFGYzRJOEZvMjhkN1lORVRB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVlhpYU5CYm43MUZjNEk4Rm8yOGQ3WU5FVEFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 M0YyLzQxODA1MDk0NjBDMDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFG YzRJOEZvMjhkN1lORVRBay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACCGmdjSIgaRaPjB9KlpSBiLRLrDl/NTnFsdoPTUJ288Ej6le1cOJW8U eKW5kcmRC5NuYmmZ4Hcz//J+zqKgqV+Tsn9iOkctIgfeaudETXp/cJ3XvAh8Gcmi D9fmkvfd9kiuJieEmaWwCUvkGvdL194khgUGM/a/XcgAUWVyvG1yRrvZ4ls8t5rl 0OenI9FbqOTTm/O/BN/DF1cXkxjDtJElS/1OGZG2htAra0Le5BT0/q3c22mEFdRz r4s5rk5krB1p29VEBWMIMMjs35BeJt4/PEsGnRe3Nf1rfAIefXDgY97dxFcTonrY tVnbWNDLJiCTlqKNkptS2QVu+qPjVyU= -----END CERTIFICATE-----Generated at Sat Aug 23 12:06:31 2025 by rpki-client