$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: mJxTf8YoJX7hE1DQ/tHgZbv70ZUmWAKnh7BPs7GT6b0= Subject key identifier: F6:CE:61:C1:05:37:D0:E5:9D:E4:90:0D:06:7F:29:96:27:67:8C:F1 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 01CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 01C5 Signing time: Wed 25 Mar 2026 03:06:24 +0000 Manifest this update: Wed 25 Mar 2026 03:06:24 +0000 Manifest next update: Wed 01 Apr 2026 03:06:24 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: QdMEg08DkXH9gQ1e69VVUxOaLUQlVszq37kCVJxsVA0=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: 7xvDxYZ8Q7Qr+JZG4rTDiVXog3eF3DmNJ6tjYp0V/mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Mar 25 03:06:24 2026 GMT Not After : Apr 1 03:06:24 2026 GMT Subject: CN=69c35130-04ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e8:b1:fa:b0:c0:55:fe:e2:ca:f6:b8:89:61: c0:66:e8:d0:61:ba:ad:91:44:aa:23:cd:be:47:88: 4c:d5:7d:ef:53:e4:10:f6:77:8e:82:9b:bf:f5:c6: 42:bf:d6:e4:33:62:d5:43:c3:6d:3f:c2:4b:a3:d7: 37:94:94:6e:4d:08:3f:2b:5f:74:34:29:c3:52:f5: ac:96:5e:1f:63:da:e2:3b:9a:2e:76:21:78:af:f6: dc:c8:9e:0c:7b:2d:7d:4f:a3:6b:00:77:ef:dc:37: 43:0c:ca:cf:27:98:48:eb:fc:ac:97:ae:0f:ef:08: 97:78:86:9e:86:1b:30:12:bb:c7:ad:0c:50:ae:72: 4d:0f:24:38:bd:04:2a:ef:07:80:92:51:9a:cd:34: 32:1c:ad:5f:a3:81:c3:f7:57:ee:57:a4:b5:18:25: 89:f6:e2:57:92:d8:9a:3e:f0:bf:ac:6e:4d:b4:bb: b9:71:de:9a:10:e1:f9:b5:93:36:6f:3f:9e:66:7c: 9b:19:b7:c1:88:ea:3a:52:f3:38:28:28:e5:91:39: e3:f4:82:ef:bf:92:4d:54:b7:75:d2:f8:d6:01:e5: 28:cb:7e:6b:87:e9:04:9c:7d:1f:e3:64:53:00:70: 67:96:8d:38:d6:42:27:8c:64:c8:8a:c7:07:55:f6: 78:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CE:61:C1:05:37:D0:E5:9D:E4:90:0D:06:7F:29:96:27:67:8C:F1 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:a5:ef:7b:5d:a5:32:d3:97:b9:25:b6:3d:02:8f:04:71:97: 6a:3d:fb:4b:d5:4d:64:92:b0:46:19:2c:4a:0f:de:ea:8f:32: 7c:1e:df:87:f0:18:24:9e:eb:8f:b4:99:21:0b:fb:a4:97:48: 53:0f:0e:ea:41:fc:96:8d:dc:52:81:8b:a3:21:81:0f:41:48: cc:98:57:41:11:59:db:f6:c1:b4:5e:35:02:ce:a1:b6:9a:c6: da:58:f8:9c:72:8e:6e:87:1d:d0:0e:42:3d:f8:40:b7:d7:a6: 29:80:e4:d3:e3:67:9c:68:08:99:e8:ee:63:e8:2f:0f:33:84: 4a:e6:13:be:62:22:1b:ce:e0:65:0d:b9:ed:b4:57:36:bf:97: c3:e6:19:d0:bc:52:fa:b3:7f:84:b1:02:de:81:3e:0a:f5:79: 7f:4e:3d:68:9e:66:b7:f4:dd:7f:a1:04:c6:38:97:ca:f1:fe: 91:c1:16:22:14:f6:6e:24:a3:cc:4c:56:f8:ca:72:a5:4e:14: eb:e1:71:d5:d1:b3:44:f7:ce:56:5d:7f:11:55:10:d0:58:a3: 8e:ca:75:fc:26:06:80:d5:2c:8e:7d:a7:03:1b:c9:a1:e6:de: 28:d3:5f:3e:85:a4:ca:ca:39:b0:a1:94:e0:94:96:c9:bd:e0: 0e:cb:83:ae -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjYwMzI1MDMwNjI0WhcNMjYwNDAxMDMwNjI0WjAYMRYwFAYD VQQDEw02OWMzNTEzMC0wNGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOix+rDAVf7iyva4iWHAZujQYbqtkUSqI82+R4hM1X3vU+QQ9neOgpu/9cZC v9bkM2LVQ8NtP8JLo9c3lJRuTQg/K190NCnDUvWsll4fY9riO5oudiF4r/bcyJ4M ey19T6NrAHfv3DdDDMrPJ5hI6/ysl64P7wiXeIaehhswErvHrQxQrnJNDyQ4vQQq 7weAklGazTQyHK1fo4HD91fuV6S1GCWJ9uJXktiaPvC/rG5NtLu5cd6aEOH5tZM2 bz+eZnybGbfBiOo6UvM4KCjlkTnj9ILvv5JNVLd10vjWAeUoy35rh+kEnH0f42RT AHBnlo041kInjGTIiscHVfZ47QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPbOYcEF N9DlneSQDQZ/KZYnZ4zxMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhKXve12lMtOXuSW2PQKPBHGXaj37S9VNZJKwRhksSg/e6o8yfB7fh/AYJJ7r j7SZIQv7pJdIUw8O6kH8lo3cUoGLoyGBD0FIzJhXQRFZ2/bBtF41As6htprG2lj4 nHKObocd0A5CPfhAt9emKYDk0+NnnGgImejuY+gvDzOESuYTvmIiG87gZQ257bRX Nr+Xw+YZ0LxS+rN/hLEC3oE+CvV5f049aJ5mt/Tdf6EExjiXyvH+kcEWIhT2biSj zExW+MpypU4U6+Fx1dGzRPfOVl1/EVUQ0Fijjsp1/CYGgNUsjn2nAxvJoebeKNNf PoWkyso5sKGU4JSWyb3gDsuDrg== -----END CERTIFICATE-----Generated at Thu Mar 26 06:46:22 2026 by rpki-client