$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft File: vsKCSG834xbxe1ILRVKHvDB_ieg.mft (raw, json) Hash identifier: pVC7v4/A+ePp5Riv9tZreL6dUvlXjDGk+YgfoUJ6jB0= Subject key identifier: 37:F2:5A:9F:F4:37:51:A2:38:C2:E1:3B:DC:D7:14:DC:9E:3F:AE:83 Authority key identifier: BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 Certificate issuer: /CN=A918A469/serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft Manifest number: 011D Signing time: Sun 19 Oct 2025 07:38:06 +0000 Manifest this update: Sun 19 Oct 2025 07:38:06 +0000 Manifest next update: Sun 26 Oct 2025 07:38:06 +0000 Files and hashes: 1: vsKCSG834xbxe1ILRVKHvDB_ieg.crl (hash: LqkN15Zv72cWwbhpHLTZ7jT6c1HDovxdHC63K2mmr7o=) 2: 71403B04F7E511EEBC67981CC4F9AE02.roa (hash: xdCJJSBmKRi6P083PXPoHsI4LKPSNh2nAQa1KhgQI3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Validity Not Before: Oct 19 07:38:06 2025 GMT Not After : Oct 26 07:38:06 2025 GMT Subject: CN=68f4955e-b2ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:47:5f:ab:d5:1e:67:39:74:c8:4d:06:3e:fe: 4f:9d:89:8b:45:69:d1:7f:73:fa:e2:07:51:50:f4: 0c:05:ce:40:a2:bc:72:a2:0e:63:d6:33:15:24:56: f2:23:49:92:1e:5c:c5:45:28:47:9c:c4:5f:f4:74: 12:fd:3a:7a:ab:8f:16:3b:19:dc:44:f3:c1:fe:96: 8f:3f:04:4f:8b:cd:05:dc:5b:f0:8f:f5:5b:56:e9: 7e:99:a1:07:2a:99:72:35:9a:47:e4:09:07:aa:42: ff:2b:a0:b6:c7:4d:e8:9f:61:63:cd:6d:75:30:98: 85:d3:d9:33:36:c4:65:10:e8:7c:08:f2:8a:25:64: 42:50:c5:26:e1:78:02:bd:97:a7:f7:11:d7:b3:12: b5:b3:19:c0:75:1b:d3:ca:0a:40:e5:e5:76:60:ab: 27:cb:6c:0c:ff:b8:01:04:b0:67:dc:45:96:11:6b: 75:9d:cc:07:66:c8:55:ea:5c:e9:f7:ba:d3:91:f1: e1:82:96:90:aa:9e:9c:52:81:4e:7a:69:2d:31:6e: 34:a6:26:b3:cc:83:66:15:26:93:af:03:bd:62:2a: 84:50:a2:02:a7:17:8d:c6:81:c9:44:7f:3f:d2:0d: 0e:1f:0d:ae:0c:76:28:3b:09:84:ab:ac:8b:91:96: 16:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F2:5A:9F:F4:37:51:A2:38:C2:E1:3B:DC:D7:14:DC:9E:3F:AE:83 X509v3 Authority Key Identifier: keyid:BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:61:3f:fa:38:53:6d:d4:97:1d:af:e2:6f:cf:c0:5f:69:ce: aa:b3:41:eb:3d:c5:d0:38:ea:ab:3b:f8:81:f1:ef:6d:37:cc: 78:1e:2b:36:2b:75:bb:ef:ec:10:e4:d6:df:6a:fa:5a:4e:80: 9e:ec:9e:85:b8:65:e7:f5:43:3d:5c:33:fa:e8:7c:b5:11:72: d4:c5:d1:15:e7:ce:b1:28:61:60:46:00:08:c0:a3:18:14:50: cc:6c:9e:08:3e:c0:22:4a:fd:54:9f:59:a9:5e:a3:ae:db:5d: 9a:f9:47:4e:b6:a5:c1:f0:6e:f6:20:f0:19:a6:81:7d:f4:3a: 3b:ff:1e:20:a7:b4:56:3b:69:7e:e5:d9:66:e7:40:82:22:e4: 2b:7c:15:6b:ce:a3:f3:06:48:0d:6e:e5:d4:0b:4a:a1:ff:7e: 97:38:e5:d4:0e:32:d4:8b:df:6d:6b:40:e1:9b:f7:6a:fc:8d: 73:14:9c:df:e3:dc:09:5d:f2:65:ee:d6:ff:fe:91:79:c9:fa: 70:67:48:fb:96:4b:73:11:3a:3c:dd:7b:48:af:2e:d6:8b:a9: 26:3b:db:47:35:cb:4a:33:fb:bd:ef:21:db:53:da:f5:f6:c9: 9e:4d:32:4d:b4:a3:90:41:f7:2e:89:e7:91:d2:b1:4c:88:c6: 62:11:a1:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKEJFQzI4MjQ4NkYzN0UzMTZGMTdCNTIwQjQ1NTI4N0JD MzA3Rjg5RTgwHhcNMjUxMDE5MDczODA2WhcNMjUxMDI2MDczODA2WjAYMRYwFAYD VQQDEw02OGY0OTU1ZS1iMmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUdfq9UeZzl0yE0GPv5PnYmLRWnRf3P64gdRUPQMBc5Aorxyog5j1jMVJFby I0mSHlzFRShHnMRf9HQS/Tp6q48WOxncRPPB/paPPwRPi80F3Fvwj/VbVul+maEH KplyNZpH5AkHqkL/K6C2x03on2FjzW11MJiF09kzNsRlEOh8CPKKJWRCUMUm4XgC vZen9xHXsxK1sxnAdRvTygpA5eV2YKsny2wM/7gBBLBn3EWWEWt1ncwHZshV6lzp 97rTkfHhgpaQqp6cUoFOemktMW40piazzINmFSaTrwO9YiqEUKICpxeNxoHJRH8/ 0g0OHw2uDHYoOwmEq6yLkZYWRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfyWp/0 N1GiOMLhO9zXFNyeP66DMB8GA1UdIwQYMBaAFL7CgkhvN+MW8XtSC0VSh7wwf4no MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GNTg0MzhGRUY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4YnhlMUlMUlZLSHZEQl9p ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZzS0NTRzgzNHhieGUxSUxSVktIdkRCX2llZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GNTg0MzhGRUY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4 YnhlMUlMUlZLSHZEQl9pZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWYT/6OFNt1Jcdr+Jvz8Bfac6qs0HrPcXQOOqrO/iB8e9tN8x4His2 K3W77+wQ5NbfavpaToCe7J6FuGXn9UM9XDP66Hy1EXLUxdEV586xKGFgRgAIwKMY FFDMbJ4IPsAiSv1Un1mpXqOu212a+UdOtqXB8G72IPAZpoF99Do7/x4gp7RWO2l+ 5dlm50CCIuQrfBVrzqPzBkgNbuXUC0qh/36XOOXUDjLUi99ta0Dhm/dq/I1zFJzf 49wJXfJl7tb//pF5yfpwZ0j7lktzETo83XtIry7Wi6kmO9tHNctKM/u97yHbU9r1 9smeTTJNtKOQQfcuieeR0rFMiMZiEaEi -----END CERTIFICATE-----Generated at Tue Oct 21 07:25:47 2025 by rpki-client