$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: qeLFSn3L96AT9l/u8KEz02JiAa3gtUtci97xmrFJJF8= Subject key identifier: 0C:E2:A3:B4:20:E1:26:72:F8:CA:49:BA:4C:0E:5D:33:ED:C4:43:3E Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: 011D Signing time: Sun 19 Oct 2025 07:42:50 +0000 Manifest this update: Sun 19 Oct 2025 07:42:49 +0000 Manifest next update: Sun 26 Oct 2025 07:42:49 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: EkCimBoDPfn1QP0vlUfWmqO1pse6yU6GgY2hzehwE+U=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: Oct 19 07:42:49 2025 GMT Not After : Oct 26 07:42:49 2025 GMT Subject: CN=68f4967a-2adf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e3:9b:99:2b:2d:e8:bd:20:36:fa:3f:29:03: 18:d3:15:75:0a:44:c2:18:52:f2:a2:3e:ee:10:13: 66:a0:9c:7b:18:96:7c:f6:c4:53:28:2d:ef:9a:70: df:7a:4d:e0:59:98:3a:c5:f9:00:11:12:7c:c8:6f: 9f:fa:d3:f4:4b:c5:e2:4a:72:de:f9:84:55:0b:65: 0b:b2:03:9d:65:4b:c0:3d:96:b7:11:fe:9d:f8:b1: 98:48:14:3b:3e:fd:32:e5:1b:7f:51:2b:6e:6d:91: e8:bf:76:a5:3b:b0:67:17:ec:34:38:92:87:c2:cd: 69:8e:c5:f4:a5:4f:86:a2:75:35:2f:e4:f7:a3:d9: d9:15:6e:23:6b:b4:e1:de:da:65:40:3e:d5:43:68: 7f:41:6e:ed:27:3a:b8:11:89:df:bf:2a:bd:29:3e: a7:bb:f7:17:81:0d:39:e6:b7:20:99:a6:52:c1:c6: ac:44:f2:63:01:a3:cf:ba:59:37:40:80:70:66:61: 00:a7:c0:89:f7:b2:f3:4b:e5:e7:93:0f:ec:f7:85: ec:22:6f:88:d7:b5:03:80:a0:25:77:86:f2:7b:35: a2:5d:7c:51:98:b9:6a:71:a4:96:42:78:b7:4e:e7: 0c:aa:a9:17:72:17:e6:3a:fb:87:9e:0e:c5:77:66: e1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E2:A3:B4:20:E1:26:72:F8:CA:49:BA:4C:0E:5D:33:ED:C4:43:3E X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:de:bd:36:c1:7a:61:af:97:8f:82:7b:15:64:ed:3c:d8:aa: d4:e4:2f:53:79:31:bd:56:7d:6a:0c:51:2e:08:08:58:4f:2c: e3:c3:b1:4a:eb:d1:23:ab:4a:5a:f6:ec:39:84:dc:bc:bf:b3: e6:b5:11:77:35:4a:48:97:e3:65:45:17:81:86:99:5d:43:02: 34:27:1c:52:5d:65:20:18:5a:5c:05:13:ac:f1:b5:38:68:45: 7d:34:f7:96:48:b1:f2:fa:1b:12:1c:70:93:56:c3:67:04:0a: 81:e6:a4:13:7c:66:cf:e0:8e:94:20:bb:e8:1f:e3:7f:be:b9: 0a:3f:ea:fa:d3:07:3a:37:71:50:3f:22:41:86:57:20:39:ae: 13:f6:a8:6f:b8:2d:24:2d:78:53:ce:c3:11:05:40:49:87:7b: a9:c2:6c:b2:0e:38:d9:b1:31:d9:c9:01:c3:8d:75:15:12:c1: 47:e4:ec:d4:2c:9e:72:57:7a:98:4d:ab:13:fd:83:63:fa:00: 13:8e:55:84:42:71:ee:f7:0f:ff:a2:59:6f:4b:f2:3f:7a:14: 5a:5c:b1:20:56:fb:68:12:a8:67:35:ec:f4:09:f7:95:c3:65: a1:d9:80:61:17:eb:12:4b:1c:2f:94:3a:fd:c3:4c:31:6f:b4: 7b:1b:aa:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUxMDE5MDc0MjQ5WhcNMjUxMDI2MDc0MjQ5WjAYMRYwFAYD VQQDEw02OGY0OTY3YS0yYWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOObmSst6L0gNvo/KQMY0xV1CkTCGFLyoj7uEBNmoJx7GJZ89sRTKC3vmnDf ek3gWZg6xfkAERJ8yG+f+tP0S8XiSnLe+YRVC2ULsgOdZUvAPZa3Ef6d+LGYSBQ7 Pv0y5Rt/UStubZHov3alO7BnF+w0OJKHws1pjsX0pU+GonU1L+T3o9nZFW4ja7Th 3tplQD7VQ2h/QW7tJzq4EYnfvyq9KT6nu/cXgQ055rcgmaZSwcasRPJjAaPPulk3 QIBwZmEAp8CJ97LzS+Xnkw/s94XsIm+I17UDgKAld4byezWiXXxRmLlqcaSWQni3 TucMqqkXchfmOvuHng7Fd2bh3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzio7Qg 4SZy+MpJukwOXTPtxEM+MB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ3r02wXphr5ePgnsVZO082KrU5C9TeTG9Vn1qDFEuCAhYTyzjw7FK 69Ejq0pa9uw5hNy8v7PmtRF3NUpIl+NlRReBhpldQwI0JxxSXWUgGFpcBROs8bU4 aEV9NPeWSLHy+hsSHHCTVsNnBAqB5qQTfGbP4I6UILvoH+N/vrkKP+r60wc6N3FQ PyJBhlcgOa4T9qhvuC0kLXhTzsMRBUBJh3upwmyyDjjZsTHZyQHDjXUVEsFH5OzU LJ5yV3qYTasT/YNj+gATjlWEQnHu9w//ollvS/I/ehRaXLEgVvtoEqhnNez0CfeV w2Wh2YBhF+sSSxwvlDr9w0wxb7R7G6pv -----END CERTIFICATE-----Generated at Mon Oct 20 10:30:57 2025 by rpki-client