$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft File: VCuU2GJc9xGWT9E3QSldJ616kAQ.mft (raw, json) Hash identifier: ZKrlvwHFpbGmcpZCWIRoWq20LX/8rp9MPqzCg6GHrZM= Subject key identifier: 13:55:88:F7:F6:6E:89:8F:D9:5E:B7:9C:66:21:E1:68:2B:8C:23:D7 Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft Manifest number: 021B Signing time: Sun 19 Oct 2025 05:15:45 +0000 Manifest this update: Sun 19 Oct 2025 05:15:45 +0000 Manifest next update: Sun 26 Oct 2025 05:15:45 +0000 Files and hashes: 1: VCuU2GJc9xGWT9E3QSldJ616kAQ.crl (hash: G+NVjk3Tyh4zASpC/6klribFJyorzS643brSdHaztVc=) 2: 3352C1BAECFC11EFA398671BC4F9AE02.roa (hash: Im9wfZuP6zDy1h0Hl9Jq0NXIaM8u/vuOASHLbchH8jE=) 3: 020607A2498711EFBB260663C4F9AE02.roa (hash: T6rwUDI540K7kNvAic9olkLe7ckJW9yi5Gt2J/Ejnw0=) 4: D13FCAEAA62E11EFBC284C42C4F9AE02.roa (hash: K8NnxbaCBJETQFsMtKq3Bzg51wGMgmnozQ6OqtNXVto=) 5: 05F505961AA311F0A475D464C4F9AE02.roa (hash: DJ6ceD+nzuCFrSpyZtlueLHrerXM29TFRnLIJO8v0Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: Oct 19 05:15:45 2025 GMT Not After : Oct 26 05:15:45 2025 GMT Subject: CN=68f47401-ffc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4b:d9:d9:33:87:f1:59:e3:10:5a:f2:7f:d1: e9:ad:cf:2b:3b:4c:2f:fe:e4:ae:41:98:9c:72:05: b8:55:84:32:7a:f7:cb:64:31:70:94:05:8e:e7:d9: ab:7c:97:ce:9b:dd:21:3c:c2:59:f4:e5:65:48:27: 67:99:82:77:cb:54:cf:6d:1e:2d:2a:d1:6b:cb:2e: f6:59:ed:8d:91:72:2c:3b:4e:ed:51:30:a6:3d:4d: 7e:f1:f6:f0:5b:a8:f0:11:69:a4:ff:df:3d:09:58: bb:dc:7a:3b:a5:3c:32:b0:c4:6c:18:00:e9:21:1f: 9e:06:be:ee:73:5f:8b:9d:d3:b4:03:f2:df:01:75: e3:ed:1f:70:ea:0f:cc:b6:75:35:e5:89:a0:f6:ad: ea:4e:c1:51:58:2c:48:d2:c4:f0:28:2e:37:a5:d3: 73:f9:e9:0f:84:a1:37:43:52:85:14:10:50:9a:e8: 34:30:4c:df:ab:48:c6:c2:76:4e:db:8b:49:61:8f: d9:73:43:e1:bf:42:66:d9:4a:f1:03:87:5d:55:58: 87:f0:61:ac:b3:c7:72:f9:f6:76:d6:25:0e:20:ac: 55:88:60:81:45:39:7e:3c:00:83:ec:c7:75:eb:22: fd:ae:71:91:44:ed:10:4c:5d:ff:12:50:51:8a:5d: b9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:55:88:F7:F6:6E:89:8F:D9:5E:B7:9C:66:21:E1:68:2B:8C:23:D7 X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:5b:2f:60:c9:c6:09:25:e0:f1:b3:e8:ab:4b:25:c6:dd:cc: b4:11:0f:53:72:01:26:82:8f:86:d9:fb:c2:0f:8a:e5:43:16: ba:50:84:dc:ff:67:27:ab:32:1f:a1:8c:8d:f3:c2:4b:48:6a: 7b:9a:32:d3:fa:d8:4e:2e:a8:f1:d3:cd:a4:e5:b9:92:32:50: c3:15:ea:97:a7:cb:54:41:43:10:13:9b:61:e5:c8:d8:c4:e4: e3:10:db:69:56:be:2f:1e:7f:de:c0:56:e7:9f:3c:4a:35:af: 0d:5e:5c:fc:2b:92:a2:00:16:46:c6:3f:94:3a:8c:4c:2e:0c: 18:dc:61:bc:9f:dd:72:dc:f0:7e:12:0f:e4:05:27:0d:67:f1: 8d:e3:96:a3:bb:b4:f5:6c:b9:6d:2a:03:76:8a:f5:9e:24:1e: 78:12:25:7d:ef:f1:8c:0a:4d:d8:4b:a1:d2:9f:1a:62:79:35: 80:97:a9:99:c0:c6:aa:a5:5c:11:04:92:06:21:1a:7a:5e:96: e1:92:2b:f5:bb:4d:6f:71:d0:8d:73:8f:42:47:fd:71:59:2e: 62:da:ac:32:f5:46:0c:c5:06:af:ee:17:74:91:14:2b:65:78: 1b:92:32:47:b8:1d:00:b1:72:b7:8f:c1:39:2f:5c:5f:c1:3a: fb:e9:ea:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUxMDE5MDUxNTQ1WhcNMjUxMDI2MDUxNTQ1WjAYMRYwFAYD VQQDEw02OGY0NzQwMS1mZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UvZ2TOH8VnjEFryf9Hprc8rO0wv/uSuQZiccgW4VYQyevfLZDFwlAWO59mr fJfOm90hPMJZ9OVlSCdnmYJ3y1TPbR4tKtFryy72We2NkXIsO07tUTCmPU1+8fbw W6jwEWmk/989CVi73Ho7pTwysMRsGADpIR+eBr7uc1+LndO0A/LfAXXj7R9w6g/M tnU15Ymg9q3qTsFRWCxI0sTwKC43pdNz+ekPhKE3Q1KFFBBQmug0MEzfq0jGwnZO 24tJYY/Zc0Phv0Jm2UrxA4ddVViH8GGss8dy+fZ21iUOIKxViGCBRTl+PACD7Md1 6yL9rnGRRO0QTF3/ElBRil25GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNViPf2 bomP2V63nGYh4WgrjCPXMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC8xNjFENEMwQUU0Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4 R1dUOUUzUVNsZEo2MTZrQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4Wy9gycYJJeDxs+irSyXG3cy0EQ9TcgEmgo+G2fvCD4rlQxa6UITc /2cnqzIfoYyN88JLSGp7mjLT+thOLqjx082k5bmSMlDDFeqXp8tUQUMQE5th5cjY xOTjENtpVr4vHn/ewFbnnzxKNa8NXlz8K5KiABZGxj+UOoxMLgwY3GG8n91y3PB+ Eg/kBScNZ/GN45aju7T1bLltKgN2ivWeJB54EiV97/GMCk3YS6HSnxpieTWAl6mZ wMaqpVwRBJIGIRp6Xpbhkiv1u01vcdCNc49CR/1xWS5i2qwy9UYMxQav7hd0kRQr ZXgbkjJHuB0AsXK3j8E5L1xfwTr76erP -----END CERTIFICATE-----Generated at Mon Oct 20 08:57:40 2025 by rpki-client