$ rpki-client -vvf rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft File: VB3RXhVOUI-wD9skXE528q09iB0.mft (raw, json) Hash identifier: rtoIxP39WzDHW5yHpQID77cYMzrA8dz+LNV8AzBG7oU= Subject key identifier: 4F:36:0D:66:37:50:78:8B:8A:FF:04:6D:8E:0B:90:0E:37:76:2D:4E Authority key identifier: 54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D Certificate issuer: /CN=A911CE4A/serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft Manifest number: 2F Signing time: Sun 19 Oct 2025 11:10:49 +0000 Manifest this update: Sun 19 Oct 2025 11:10:49 +0000 Manifest next update: Sun 26 Oct 2025 11:10:49 +0000 Files and hashes: 1: VB3RXhVOUI-wD9skXE528q09iB0.crl (hash: NGKpmFdG8D1aSmiHvJkbWl804EG8H8WjLKRgAiWneUI=) 2: BA2C0A9E673A11F0B876713DC4F9AE02.roa (hash: qV69gg2P4bFihZzX2d7CSbRtDBRP/ma/ao4YNWgRlJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CE4A, serialNumber=541DD15E154E508FB00FDB245C4E76F2AD3D881D Validity Not Before: Oct 19 11:10:49 2025 GMT Not After : Oct 26 11:10:49 2025 GMT Subject: CN=68f4c739-f752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:07:d3:bf:07:95:38:fc:b3:1d:b6:43:b9:b1: b1:d2:eb:eb:64:09:4a:8f:07:59:da:e4:bd:a0:bc: e7:3e:d1:cb:2f:3c:af:4f:8d:82:cd:7d:04:a4:8d: 6a:f0:fa:be:e1:d0:36:d7:82:f5:14:a9:62:91:0a: 00:2d:a2:eb:7e:99:dc:99:61:a6:44:62:fd:ee:73: e1:48:e3:96:72:e4:ae:db:1b:79:2f:00:43:9f:d9: 77:52:5d:5f:04:ec:6a:d3:4a:51:6f:78:e4:b8:3d: 8e:1d:15:cf:49:49:fd:85:59:2c:05:30:7a:bf:89: 11:41:1e:8e:28:5b:23:21:1b:01:e5:d7:a1:98:56: e4:b4:75:7a:30:2e:dc:c7:2e:a1:30:44:96:d9:39: 96:57:38:81:e8:44:06:9c:cc:d5:41:69:24:03:54: 98:91:73:82:5a:27:99:42:c5:2d:1c:7f:88:7d:a1: 44:e0:03:8d:c2:a9:f8:e4:7c:ae:aa:1d:1d:22:67: 53:1c:ef:62:d5:7b:b9:52:71:4e:a9:e2:9c:7b:25: d7:75:e9:e0:8a:9e:fb:ca:47:dd:a0:f0:2a:66:56: 7d:ea:7a:1d:69:d4:cf:4f:0f:cd:e8:83:a6:5c:b9: a0:d0:48:ef:eb:bc:b1:4b:3b:9e:20:d9:8a:b7:1d: 1a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:36:0D:66:37:50:78:8B:8A:FF:04:6D:8E:0B:90:0E:37:76:2D:4E X509v3 Authority Key Identifier: keyid:54:1D:D1:5E:15:4E:50:8F:B0:0F:DB:24:5C:4E:76:F2:AD:3D:88:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB3RXhVOUI-wD9skXE528q09iB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CE4A/E1EA19F6673811F0AD566D7FC4F9AE02/VB3RXhVOUI-wD9skXE528q09iB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:91:22:35:16:1c:f7:21:54:f3:c1:f1:0a:19:ec:d0:0b:92: 40:cb:df:ef:a8:76:de:85:05:f6:cd:f8:01:ae:e9:94:04:8c: 0b:0b:f3:08:2f:b2:08:f6:c8:b9:a5:ac:c2:93:1c:17:c1:9f: f8:7c:cc:f8:e9:ee:69:0c:c5:ee:ea:ba:ff:a8:f5:29:2f:d4: 96:8a:56:a5:f4:0c:fa:f7:92:4b:86:0f:14:41:4c:3a:ac:09: dc:94:08:6d:cd:a0:d8:e2:ba:c6:ad:57:80:0e:d0:6b:0e:3c: 59:5c:e4:2f:cb:c7:52:7f:6e:d5:a7:5e:78:5c:4a:33:47:36: bc:1d:1c:b7:e4:3a:c3:1f:ed:62:cf:7a:6a:24:22:cf:de:71: 4b:69:55:a7:30:ff:bd:11:b3:70:74:15:a1:fd:82:1b:04:7b: d4:a0:a6:4e:ab:a2:08:93:b8:18:54:18:3c:1d:8d:c7:0e:3d: 23:83:f7:88:57:f4:ec:e7:ba:de:e7:13:c7:a1:ad:2e:1e:84: bd:51:9e:34:39:37:59:82:ce:f5:96:9e:77:59:0f:fe:6b:51: ef:13:cb:1c:c3:b1:d6:8d:b1:4f:d9:55:10:3e:e9:0d:4a:80: 9e:7b:89:29:e8:b6:03:3b:8d:11:05:23:75:67:55:09:0d:05: ae:d0:92:fb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Q0U0QTExMC8GA1UEBRMoNTQxREQxNUUxNTRFNTA4RkIwMEZEQjI0NUM0RTc2RjJB RDNEODgxRDAeFw0yNTEwMTkxMTEwNDlaFw0yNTEwMjYxMTEwNDlaMBgxFjAUBgNV BAMTDTY4ZjRjNzM5LWY3NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWB9O/B5U4/LMdtkO5sbHS6+tkCUqPB1na5L2gvOc+0csvPK9PjYLNfQSkjWrw +r7h0DbXgvUUqWKRCgAtout+mdyZYaZEYv3uc+FI45Zy5K7bG3kvAEOf2XdSXV8E 7GrTSlFveOS4PY4dFc9JSf2FWSwFMHq/iRFBHo4oWyMhGwHl16GYVuS0dXowLtzH LqEwRJbZOZZXOIHoRAaczNVBaSQDVJiRc4JaJ5lCxS0cf4h9oUTgA43CqfjkfK6q HR0iZ1Mc72LVe7lScU6p4px7Jdd16eCKnvvKR92g8CpmVn3qeh1p1M9PD83og6Zc uaDQSO/rvLFLO54g2Yq3HRqfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTzYNZjdQ eIuK/wRtjguQDjd2LU4wHwYDVR0jBBgwFoAUVB3RXhVOUI+wD9skXE528q09iB0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDRTRBL0UxRUExOUY2Njcz ODExRjBBRDU2NkQ3RkM0RjlBRTAyL1ZCM1JYaFZPVUktd0Q5c2tYRTUyOHEwOWlC MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVkIzUlhoVk9VSS13RDlza1hFNTI4cTA5aUIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD RTRBL0UxRUExOUY2NjczODExRjBBRDU2NkQ3RkM0RjlBRTAyL1ZCM1JYaFZPVUkt d0Q5c2tYRTUyOHEwOWlCMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACWRIjUWHPchVPPB8QoZ7NALkkDL3++odt6FBfbN+AGu6ZQEjAsL8wgv sgj2yLmlrMKTHBfBn/h8zPjp7mkMxe7quv+o9Skv1JaKVqX0DPr3kkuGDxRBTDqs CdyUCG3NoNjiusatV4AO0GsOPFlc5C/Lx1J/btWnXnhcSjNHNrwdHLfkOsMf7WLP emokIs/ecUtpVacw/70Rs3B0FaH9ghsEe9Sgpk6rogiTuBhUGDwdjccOPSOD94hX 9Oznut7nE8ehrS4ehL1RnjQ5N1mCzvWWnndZD/5rUe8TyxzDsdaNsU/ZVRA+6Q1K gJ57iSnotgM7jREFI3VnVQkNBa7Qkvs= -----END CERTIFICATE-----Generated at Mon Oct 20 07:09:43 2025 by rpki-client