$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: SiNBLTcwnE+PZhmCyetnF/5OeblzTX9yi3IR55X3sEY= Subject key identifier: 93:58:D2:E2:D4:2D:83:C7:38:5A:F9:F5:71:A6:39:73:67:7A:26:70 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 0155 Signing time: Sat 23 Aug 2025 04:17:42 +0000 Manifest this update: Sat 23 Aug 2025 04:17:41 +0000 Manifest next update: Sat 30 Aug 2025 04:17:41 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: JXRtd9mTGNJhJLAE80IuvxjMdnAcZikPgxEFdnd6srk=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Aug 23 04:17:41 2025 GMT Not After : Aug 30 04:17:41 2025 GMT Subject: CN=68a940e6-f8c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9a:5a:db:51:f1:44:b3:87:43:ba:e1:8b:d3: c3:58:91:55:87:38:4b:b1:b5:1a:e3:3b:6c:08:82: 24:e4:a4:22:00:22:48:80:8d:5c:c0:cf:81:96:76: 2d:6d:62:b7:22:8e:5a:08:e7:14:94:c1:63:3d:81: 8b:61:a1:32:1c:6e:c4:32:a8:59:5e:f0:f7:9c:98: b6:22:82:be:14:b7:e9:e0:b7:f6:10:ae:b2:af:7a: 1e:9e:ca:b0:e0:80:66:f8:19:aa:bb:20:0d:83:72: 74:d0:da:5f:f5:68:41:c3:19:f9:9d:bd:6c:86:50: d3:24:d2:3b:53:70:cd:5b:c6:e5:76:26:54:2e:bd: 6d:8c:e6:c9:e5:89:cb:ba:8d:8e:3c:cb:8a:dd:c4: b8:d0:07:68:99:fd:bb:1b:30:dd:dc:1a:77:b3:bd: 1d:83:d7:ae:0a:ae:cd:6d:a5:6d:c3:65:32:03:9b: a1:17:a8:4d:eb:a7:d9:23:f2:6e:80:d1:fe:a3:cf: 25:80:34:04:c7:aa:05:28:ca:8b:9b:ed:50:0d:f9: d6:74:73:71:3e:6b:47:00:a6:e6:55:10:cb:fa:8a: 70:0a:ba:84:a2:5a:45:b4:5c:59:e1:6b:d3:b6:75: 9d:57:4b:fe:a0:73:82:d8:f9:5c:0b:f4:ed:fa:1a: b4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:58:D2:E2:D4:2D:83:C7:38:5A:F9:F5:71:A6:39:73:67:7A:26:70 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:9c:2b:8f:ab:e3:db:f6:59:5b:53:68:c3:45:e6:ef:ec:2d: 30:0b:6d:46:de:8a:13:4e:23:c1:0c:ce:a6:72:07:23:01:72: 26:fd:48:e4:76:bd:af:5a:b7:ab:8c:9c:8f:29:33:17:27:74: a3:1b:1e:b7:12:56:2b:cd:a1:a2:f3:8c:7d:ef:c8:a6:7b:61: de:1e:5d:47:93:df:33:9e:09:03:b6:52:93:c5:fa:41:aa:d6: fa:51:36:c2:42:de:5e:40:a0:f9:fc:35:fe:78:13:66:63:a1: 5a:0e:92:f3:4c:28:b4:7c:ca:1a:0d:a5:7e:f8:1d:b1:91:80: 3b:21:e8:dc:c1:c9:d7:86:3d:f6:b6:56:2f:10:71:b6:e0:31: d6:07:13:38:35:82:98:b6:46:d5:3e:90:19:9a:11:73:a2:87: ee:bb:ed:f5:65:f1:e3:8a:0d:40:10:b2:93:f6:6e:ba:fc:69: 83:76:e8:4e:66:88:2f:0a:87:27:94:59:24:ec:ce:fc:50:95: bc:81:b0:4f:c9:a2:d6:e1:66:41:d3:04:a3:04:8a:03:79:63: 68:f5:63:c1:e9:d6:72:1d:7a:92:dc:df:2c:d6:88:13:5c:e5: 8b:08:f2:2c:90:e0:c9:06:bd:63:21:e4:bd:3f:d6:9d:17:a0: d9:2e:6e:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUwODIzMDQxNzQxWhcNMjUwODMwMDQxNzQxWjAYMRYwFAYD VQQDEw02OGE5NDBlNi1mOGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZpa21HxRLOHQ7rhi9PDWJFVhzhLsbUa4ztsCIIk5KQiACJIgI1cwM+BlnYt bWK3Io5aCOcUlMFjPYGLYaEyHG7EMqhZXvD3nJi2IoK+FLfp4Lf2EK6yr3oensqw 4IBm+BmquyANg3J00Npf9WhBwxn5nb1shlDTJNI7U3DNW8bldiZULr1tjObJ5YnL uo2OPMuK3cS40Adomf27GzDd3Bp3s70dg9euCq7NbaVtw2UyA5uhF6hN66fZI/Ju gNH+o88lgDQEx6oFKMqLm+1QDfnWdHNxPmtHAKbmVRDL+opwCrqEolpFtFxZ4WvT tnWdV0v+oHOC2PlcC/Tt+hq0jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNY0uLU LYPHOFr59XGmOXNneiZwMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJnCuPq+Pb9llbU2jDRebv7C0wC21G3ooTTiPBDM6mcgcjAXIm/Ujk dr2vWrerjJyPKTMXJ3SjGx63ElYrzaGi84x978ime2HeHl1Hk98zngkDtlKTxfpB qtb6UTbCQt5eQKD5/DX+eBNmY6FaDpLzTCi0fMoaDaV++B2xkYA7IejcwcnXhj32 tlYvEHG24DHWBxM4NYKYtkbVPpAZmhFzoofuu+31ZfHjig1AELKT9m66/GmDduhO ZogvCocnlFkk7M78UJW8gbBPyaLW4WZB0wSjBIoDeWNo9WPB6dZyHXqS3N8s1ogT XOWLCPIskODJBr1jIeS9P9adF6DZLm5L -----END CERTIFICATE-----Generated at Sun Aug 24 07:01:58 2025 by rpki-client