$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft File: vmOANw9kBuY_dG-vUrxQHsTQvVI.mft (raw, json) Hash identifier: 1BO951lcetYtG6iHSem56g6IOebRpMEo058We+zucl8= Subject key identifier: C6:AE:D3:AC:3D:94:11:4A:32:F5:73:C1:09:7C:59:79:A3:57:0C:03 Authority key identifier: BE:63:80:37:0F:64:06:E6:3F:74:6F:AF:52:BC:50:1E:C4:D0:BD:52 Certificate issuer: /CN=A9171B8D/serialNumber=BE6380370F6406E63F746FAF52BC501EC4D0BD52 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft Manifest number: 70 Signing time: Sun 19 Oct 2025 10:15:10 +0000 Manifest this update: Sun 19 Oct 2025 10:15:09 +0000 Manifest next update: Sun 26 Oct 2025 10:15:09 +0000 Files and hashes: 1: vmOANw9kBuY_dG-vUrxQHsTQvVI.crl (hash: ZEK7s1fqHW1F4JkXPAc2sdXunC36j/oj877g7s7FytE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.crl rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B8D, serialNumber=BE6380370F6406E63F746FAF52BC501EC4D0BD52 Validity Not Before: Oct 19 10:15:09 2025 GMT Not After : Oct 26 10:15:09 2025 GMT Subject: CN=68f4ba2d-ece4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f8:5a:2a:cd:ac:e5:68:91:17:5a:9b:63:12: 3b:02:b9:8b:a5:de:f9:74:cf:67:72:0c:08:73:1c: 32:ee:83:59:9f:a7:f5:58:49:7d:13:6d:90:f9:ea: c0:cd:76:b3:4d:d7:a9:ea:6a:f2:cc:2a:0d:2c:3a: e0:cf:ca:30:8b:b6:36:cf:d8:bb:b6:5b:78:14:b3: ca:ae:f5:66:17:c6:bc:0a:65:b5:d6:30:99:3f:3c: 38:20:ed:ac:6f:24:ca:32:05:8c:f3:9a:0b:59:a7: 06:28:39:6c:45:dd:f3:b7:7b:98:47:3e:91:26:b4: 0b:de:b4:28:82:b5:3b:c4:aa:8d:3c:23:76:8b:b6: 65:8c:ae:a7:3c:c2:2d:67:0e:a4:9e:19:bf:0b:09: 71:0a:d5:12:4b:49:85:39:23:fe:6f:b5:df:3e:b5: f5:00:e9:4a:2f:6d:bf:3a:c9:e2:7c:e5:be:f4:11: a1:f4:2a:9b:64:68:d8:14:55:72:5a:d6:1e:f1:f3: d1:26:c3:87:c9:76:27:6e:de:d4:3c:d6:d0:3b:99: b6:22:96:81:e1:3f:23:88:b5:62:63:82:dd:7c:bc: 39:33:e5:c7:66:24:c9:f8:e7:b7:f2:21:5c:75:70: 46:f4:b4:a6:fb:f1:bd:94:08:be:cd:e3:d4:20:4c: aa:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:AE:D3:AC:3D:94:11:4A:32:F5:73:C1:09:7C:59:79:A3:57:0C:03 X509v3 Authority Key Identifier: keyid:BE:63:80:37:0F:64:06:E6:3F:74:6F:AF:52:BC:50:1E:C4:D0:BD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:c6:57:4a:c7:1d:f7:81:a8:33:aa:06:44:57:d9:02:63:63: 40:4f:15:2f:d5:fe:04:ce:30:a8:67:3f:8a:d5:76:a1:14:9e: 70:8f:0f:2b:78:f4:36:7b:39:0a:97:e6:84:1c:21:b1:cb:c7: 13:5b:e5:ec:25:2c:50:78:e6:af:a2:a3:3e:1c:f2:9f:74:af: ba:4e:00:a0:44:7d:19:8c:fa:f0:ea:ad:ac:a5:99:d0:1f:da: d3:3d:dd:93:14:34:42:85:e1:f7:09:cf:c6:8a:ad:f3:78:57: 3b:4a:b7:2f:71:7a:c3:33:29:fe:f3:45:ab:fb:0b:a1:bc:e7: b3:ce:5c:49:1b:d7:73:72:b3:45:e0:3c:ec:f0:bf:7d:a7:8b: da:5c:bf:96:cb:32:93:68:4c:a5:2b:51:b3:2e:8b:8c:88:51: 07:cf:af:a7:b1:ba:e4:30:8a:81:f4:4b:52:b6:d7:25:25:44: 39:47:f1:30:74:00:20:42:96:65:05:22:11:43:29:8e:67:1a: 2d:58:e2:5b:98:da:7e:5e:d5:7a:48:7d:04:80:c0:94:d8:46: 20:9e:ff:3d:7f:56:63:fc:cb:74:a4:60:1e:09:69:1c:6a:10: c3:87:11:20:14:df:d4:b5:81:a7:e2:95:12:d7:fd:fc:ad:3b: 61:ee:48:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MUI4RDExMC8GA1UEBRMoQkU2MzgwMzcwRjY0MDZFNjNGNzQ2RkFGNTJCQzUwMUVD NEQwQkQ1MjAeFw0yNTEwMTkxMDE1MDlaFw0yNTEwMjYxMDE1MDlaMBgxFjAUBgNV BAMTDTY4ZjRiYTJkLWVjZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDm+FoqzazlaJEXWptjEjsCuYul3vl0z2dyDAhzHDLug1mfp/VYSX0TbZD56sDN drNN16nqavLMKg0sOuDPyjCLtjbP2Lu2W3gUs8qu9WYXxrwKZbXWMJk/PDgg7axv JMoyBYzzmgtZpwYoOWxF3fO3e5hHPpEmtAvetCiCtTvEqo08I3aLtmWMrqc8wi1n DqSeGb8LCXEK1RJLSYU5I/5vtd8+tfUA6Uovbb86yeJ85b70EaH0KptkaNgUVXJa 1h7x89Emw4fJdidu3tQ81tA7mbYiloHhPyOItWJjgt18vDkz5cdmJMn457fyIVx1 cEb0tKb78b2UCL7N49QgTKovAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxq7TrD2U EUoy9XPBCXxZeaNXDAMwHwYDVR0jBBgwFoAUvmOANw9kBuY/dG+vUrxQHsTQvVIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxQjhELzFDRjlBODdBMDNE MTExRjBCMjM0QkMxNUM0RjlBRTAyL3ZtT0FOdzlrQnVZX2RHLXZVcnhRSHNUUXZW SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdm1PQU53OWtCdVlfZEctdlVyeFFIc1RRdlZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx QjhELzFDRjlBODdBMDNEMTExRjBCMjM0QkMxNUM0RjlBRTAyL3ZtT0FOdzlrQnVZ X2RHLXZVcnhRSHNUUXZWSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADjGV0rHHfeBqDOqBkRX2QJjY0BPFS/V/gTOMKhnP4rVdqEUnnCPDyt4 9DZ7OQqX5oQcIbHLxxNb5ewlLFB45q+ioz4c8p90r7pOAKBEfRmM+vDqraylmdAf 2tM93ZMUNEKF4fcJz8aKrfN4VztKty9xesMzKf7zRav7C6G857POXEkb13Nys0Xg POzwv32ni9pcv5bLMpNoTKUrUbMui4yIUQfPr6exuuQwioH0S1K21yUlRDlH8TB0 ACBClmUFIhFDKY5nGi1Y4luY2n5e1XpIfQSAwJTYRiCe/z1/VmP8y3SkYB4JaRxq EMOHESAU39S1gafilRLX/fytO2HuSHc= -----END CERTIFICATE-----Generated at Mon Oct 20 09:37:43 2025 by rpki-client