$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: 2bYr/u72fLbpI4GoH2WPU1OXS0Vgmjpn7wo2vhPPk8k= Subject key identifier: 53:F9:59:A8:FF:A9:DC:45:BB:F7:9A:7A:1F:76:4D:93:B1:11:91:2F Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 0172 Signing time: Sun 19 Oct 2025 06:30:10 +0000 Manifest this update: Sun 19 Oct 2025 06:30:10 +0000 Manifest next update: Sun 26 Oct 2025 06:30:09 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: tZ995dQIrPGfgn+WtIkR0dFXNhHsk6IyEOd5S8ETDW0=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:30:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Oct 19 06:30:10 2025 GMT Not After : Oct 26 06:30:09 2025 GMT Subject: CN=68f48572-face Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:24:37:b3:81:e1:88:98:6f:4b:11:c7:b8:87: fd:b1:13:db:6e:7c:13:98:1b:bd:2d:72:2e:3b:62: f5:12:43:3d:2e:4b:5c:97:39:db:2e:e8:c4:a2:e3: d4:e6:e9:0a:37:13:37:9d:f1:de:d8:ea:98:a5:0d: e3:db:da:68:3c:97:4e:45:40:61:dc:d5:58:3a:68: 19:28:29:0c:8a:53:0b:04:01:7a:60:8c:47:7e:11: 93:41:28:46:66:55:6d:ce:4e:5e:b5:24:c8:de:e4: 49:54:08:65:43:b9:7e:d0:16:a0:30:12:c3:1d:02: b0:56:30:9d:b7:9a:a4:12:63:85:98:2a:e4:b8:d2: 80:4a:07:bb:96:00:dd:9a:f3:2c:7a:5d:71:42:bf: 33:90:72:1d:db:28:9f:0c:7a:33:65:63:16:2b:47: 0c:19:52:eb:4b:be:1f:75:cb:23:88:cf:c4:da:26: cc:ec:f2:15:cf:31:3f:2e:78:6a:a8:36:11:52:e8: 65:c3:73:61:a6:b1:76:f5:1f:7b:b2:52:52:c2:09: 65:43:d7:89:cd:69:a3:97:ec:38:9b:70:78:ad:7d: 6f:27:29:c8:7b:81:a4:e6:32:36:0b:7a:df:5d:bf: 38:14:79:3f:8e:8a:c7:5e:79:83:77:74:f7:a7:a7: 98:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:F9:59:A8:FF:A9:DC:45:BB:F7:9A:7A:1F:76:4D:93:B1:11:91:2F X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:41:90:03:06:5e:1c:13:bd:32:c8:4a:64:14:8b:e0:33:2a: 76:51:b5:39:5b:db:33:50:66:d6:e1:46:f4:99:e8:0e:99:3b: 78:99:b6:ba:9b:c3:dd:38:fe:a6:6f:dd:73:5f:f1:50:06:eb: c9:db:e6:67:38:40:54:4c:12:72:32:0f:85:a8:ae:c9:a7:10: ce:29:0d:a5:4d:ff:73:b2:90:e8:3b:29:6c:5c:74:b3:5d:1d: 1f:cc:4f:33:e5:4e:f6:90:ce:8b:0f:d9:b4:58:46:d3:c6:94: 0e:9c:2f:dd:dc:7f:57:aa:43:de:f9:65:ce:ed:c1:25:3a:07: 20:fb:0b:0c:06:bd:bd:70:c7:93:93:64:c6:f7:55:df:d3:ec: b8:5f:5d:f4:08:0f:77:49:ac:72:8c:8a:f2:ed:d1:1d:ba:05: af:2f:41:aa:dc:c2:f3:4d:26:ea:64:a6:4f:dc:c7:dd:0e:5f: 65:7f:a3:d6:90:15:bb:8c:06:1b:f8:e2:70:11:1e:11:d1:4c: 56:ae:11:7f:20:3c:44:aa:ca:ae:35:34:79:06:76:1b:cc:a0: 2e:19:8a:48:6a:c2:98:15:a9:6a:fb:e5:b7:6b:99:7e:94:16: b3:3b:3f:cd:43:e5:80:f5:08:03:2f:ab:fe:03:a9:53:08:62: fd:aa:12:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUxMDE5MDYzMDEwWhcNMjUxMDI2MDYzMDA5WjAYMRYwFAYD VQQDEw02OGY0ODU3Mi1mYWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iQ3s4HhiJhvSxHHuIf9sRPbbnwTmBu9LXIuO2L1EkM9LktclznbLujEouPU 5ukKNxM3nfHe2OqYpQ3j29poPJdORUBh3NVYOmgZKCkMilMLBAF6YIxHfhGTQShG ZlVtzk5etSTI3uRJVAhlQ7l+0BagMBLDHQKwVjCdt5qkEmOFmCrkuNKASge7lgDd mvMsel1xQr8zkHId2yifDHozZWMWK0cMGVLrS74fdcsjiM/E2ibM7PIVzzE/Lnhq qDYRUuhlw3NhprF29R97slJSwgllQ9eJzWmjl+w4m3B4rX1vJynIe4Gk5jI2C3rf Xb84FHk/jorHXnmDd3T3p6eYaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFP5Waj/ qdxFu/eaeh92TZOxEZEvMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+QZADBl4cE70yyEpkFIvgMyp2UbU5W9szUGbW4Ub0megOmTt4mba6 m8PdOP6mb91zX/FQBuvJ2+ZnOEBUTBJyMg+FqK7JpxDOKQ2lTf9zspDoOylsXHSz XR0fzE8z5U72kM6LD9m0WEbTxpQOnC/d3H9XqkPe+WXO7cElOgcg+wsMBr29cMeT k2TG91Xf0+y4X130CA93SaxyjIry7dEdugWvL0Gq3MLzTSbqZKZP3MfdDl9lf6PW kBW7jAYb+OJwER4R0UxWrhF/IDxEqsquNTR5BnYbzKAuGYpIasKYFalq++W3a5l+ lBazOz/NQ+WA9QgDL6v+A6lTCGL9qhIO -----END CERTIFICATE-----Generated at Mon Oct 20 14:44:59 2025 by rpki-client