$ rpki-client -vvf rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft File: Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft (raw, json) Hash identifier: TUiQUtDQPcQpSjjFnsD5UrC14EllHOmB4SlHT9Gz3YA= Subject key identifier: 59:6C:6C:AF:0E:73:08:1F:4C:25:5B:4E:E2:3D:5A:CF:04:BE:D6:AD Authority key identifier: 56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 Certificate issuer: /CN=A91203DC/serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Certificate serial: 21CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft Manifest number: 21C1 Signing time: Sat 18 Oct 2025 16:09:09 +0000 Manifest this update: Sat 18 Oct 2025 16:09:08 +0000 Manifest next update: Sat 25 Oct 2025 16:09:08 +0000 Files and hashes: 1: Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl (hash: 3PX0w4wWPUpHBQIbX7UX49x4dvF4f175luj9LORgTTs=) 2: 1D9DC82A652311EBA8CF3C4CC4F9AE02.roa (hash: dCLTxe5AeU3EWuhpQGl4ZlWRgK483ALuIyneqH0vPGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8653 (0x21cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203DC, serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Validity Not Before: Oct 18 16:09:08 2025 GMT Not After : Oct 25 16:09:08 2025 GMT Subject: CN=68f3bba4-7c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b3:03:5e:13:6c:7a:13:2b:e7:d5:29:f5:20: 6f:b5:7a:87:65:f7:af:9b:a6:d0:3a:40:6a:67:1c: f6:7e:e3:e6:7a:05:0d:5b:72:82:9e:00:38:29:a5: fd:67:46:82:1e:86:40:eb:e0:f8:ea:ab:e3:64:4c: 35:b7:7c:49:5f:7a:9d:73:39:f5:4b:15:f3:a6:ea: 6a:cb:32:85:ba:11:bf:de:d8:78:a7:62:67:95:aa: c6:73:11:c6:d1:11:11:66:63:f1:7f:e2:8b:79:7a: ab:79:20:c3:3f:51:b5:d3:df:6f:95:25:7c:c6:4d: b0:79:97:85:51:23:d5:32:c9:56:b0:e7:a5:e4:e1: de:14:6a:81:08:99:df:f0:dc:e2:a2:a9:7c:8a:34: 0d:8f:75:77:ca:1f:ef:c6:3a:3a:45:4d:9c:6b:e0: 24:94:86:ba:27:5e:ed:7d:e1:0e:65:d8:3c:b1:7d: 37:50:5e:65:53:54:c1:7f:96:8c:0b:95:45:6b:7d: 4a:78:69:b9:23:6c:40:29:c5:95:37:24:03:56:74: c3:71:92:4d:8d:eb:20:c8:ec:33:c5:62:df:37:fe: b0:22:d8:86:1b:68:f7:14:b4:4a:e9:8e:11:fe:b0: 7f:8f:6a:6a:c3:3b:8d:37:f2:4c:db:04:e6:0d:2f: b2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6C:6C:AF:0E:73:08:1F:4C:25:5B:4E:E2:3D:5A:CF:04:BE:D6:AD X509v3 Authority Key Identifier: keyid:56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:a8:b3:8f:12:58:62:fb:75:20:46:ce:f3:84:a8:cf:72:ef: a6:48:c2:66:67:49:a4:61:59:33:13:c1:d4:44:f1:b5:17:0c: a4:6f:88:ba:19:67:2c:c9:69:e0:12:df:98:8c:cc:84:92:62: 2e:4b:be:89:38:a5:94:42:6a:5e:08:65:8b:90:db:b3:3d:d1: 92:26:ab:82:05:27:e1:57:99:04:50:99:8f:6e:d2:ab:44:78: 17:9d:fb:f4:8a:5c:53:39:cb:12:44:91:9e:c9:f5:65:ff:6a: fe:18:eb:3f:8d:03:67:15:af:10:bb:7f:b8:d1:28:7e:02:1b: 50:eb:e8:a2:b8:e6:39:e8:bc:2a:eb:df:ce:f2:9e:9d:4a:f9: 59:78:91:b0:5e:6e:9b:47:68:87:2b:6e:0f:99:a8:0d:7a:47: 59:e3:75:1c:30:7e:ee:98:32:31:54:da:17:b6:d0:7f:d5:b7: 45:8d:80:a3:ed:e4:b6:39:48:c7:44:fa:e3:5f:92:6b:b2:00: 7e:f9:aa:51:38:e8:ee:47:90:c3:d3:a3:4e:ff:f7:79:ff:8f: 6f:93:84:fc:45:1b:05:2d:dd:05:46:5f:e0:9b:63:87:95:00: 7b:03:58:6f:ea:e7:6b:22:4c:a6:85:17:07:b3:c1:7a:e3:c0: e9:94:5c:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzREMxMTAvBgNVBAUTKDU2NDZFMDdBMEY2MDI1RjFFMjYwRjFDNDk5NkY5QTY4 MUIyOTIwNzEwHhcNMjUxMDE4MTYwOTA4WhcNMjUxMDI1MTYwOTA4WjAYMRYwFAYD VQQDEw02OGYzYmJhNC03Yzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rMDXhNsehMr59Up9SBvtXqHZfevm6bQOkBqZxz2fuPmegUNW3KCngA4KaX9 Z0aCHoZA6+D46qvjZEw1t3xJX3qdczn1SxXzpupqyzKFuhG/3th4p2JnlarGcxHG 0RERZmPxf+KLeXqreSDDP1G1099vlSV8xk2weZeFUSPVMslWsOel5OHeFGqBCJnf 8Nzioql8ijQNj3V3yh/vxjo6RU2ca+AklIa6J17tfeEOZdg8sX03UF5lU1TBf5aM C5VFa31KeGm5I2xAKcWVNyQDVnTDcZJNjesgyOwzxWLfN/6wItiGG2j3FLRK6Y4R /rB/j2pqwzuNN/JM2wTmDS+yMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlsbK8O cwgfTCVbTuI9Ws8EvtatMB8GA1UdIwQYMBaAFFZG4HoPYCXx4mDxxJlvmmgbKSBx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNEQy9GQUQzRDZGQ0RD NDkxMUU1QTA2MjVGODJDNEY5QUUwMi9Wa2JnZWc5Z0pmSGlZUEhFbVctYWFCc3BJ SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZrYmdlZzlnSmZIaVlQSEVtVy1hYUJzcElIRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDNEQy9GQUQzRDZGQ0RDNDkxMUU1QTA2MjVGODJDNEY5QUUwMi9Wa2JnZWc5Z0pm SGlZUEhFbVctYWFCc3BJSEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGqLOPElhi+3UgRs7zhKjPcu+mSMJmZ0mkYVkzE8HURPG1Fwykb4i6 GWcsyWngEt+YjMyEkmIuS76JOKWUQmpeCGWLkNuzPdGSJquCBSfhV5kEUJmPbtKr RHgXnfv0ilxTOcsSRJGeyfVl/2r+GOs/jQNnFa8Qu3+40Sh+AhtQ6+iiuOY56Lwq 69/O8p6dSvlZeJGwXm6bR2iHK24PmagNekdZ43UcMH7umDIxVNoXttB/1bdFjYCj 7eS2OUjHRPrjX5JrsgB++apROOjuR5DD06NO//d5/49vk4T8RRsFLd0FRl/gm2OH lQB7A1hv6udrIkymhRcHs8F648DplFwG -----END CERTIFICATE-----Generated at Mon Oct 20 10:34:10 2025 by rpki-client