$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: hAT+91Jxf5ltVTDQeko8Z/pWpO7LU6gTDjDUDG5pNwU= Subject key identifier: 27:CE:6E:6A:C3:DC:D2:93:53:BD:F5:4D:CE:E2:EC:99:DA:54:69:D5 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0C85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0C75 Signing time: Sat 18 Oct 2025 19:14:51 +0000 Manifest this update: Sat 18 Oct 2025 19:14:50 +0000 Manifest next update: Sat 25 Oct 2025 19:14:50 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: U9JpFeISPfercjfB8ROxxFutXxj7lYmrOAWWUi0OLsg=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: u6PjzNYcnOXcXRJn9HLyhk2+LGVsDog450i4Tie6o0k=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: sXqVXr7ZHzH2JmpUEnTy5shMtTPK9xhXC3ul6iYq9+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3205 (0xc85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Oct 18 19:14:50 2025 GMT Not After : Oct 25 19:14:50 2025 GMT Subject: CN=68f3e72b-e8de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:23:60:fc:49:3c:d3:d2:7c:7f:1e:65:04:7e: f4:e7:0e:c3:63:49:b6:1d:8c:17:3d:f1:0a:41:cd: 29:83:aa:28:3e:3a:f9:3d:25:ea:e5:3e:88:f8:a5: 56:63:ec:ee:f5:98:ca:63:59:fe:61:3f:be:ed:2f: 48:87:77:d5:d2:d2:eb:7e:fe:24:51:85:8a:00:f2: 4d:dc:da:d0:05:59:56:e4:a2:fe:67:a8:22:09:0b: e3:03:6b:ac:28:f0:6f:13:a3:74:b1:fa:e3:8d:c5: 8c:b1:6e:74:db:4e:ec:95:b7:27:19:4a:d6:4c:80: 03:f9:cb:ac:ca:d4:3c:e7:a4:95:d0:1a:b0:c4:d5: ec:58:35:ae:75:bc:6a:67:41:bb:4a:86:ad:c6:f4: 8b:0e:f5:d4:dc:b0:49:87:0c:b0:c4:af:78:5c:68: 23:c9:bb:20:bd:71:7f:9c:b1:62:b9:4a:b3:e3:b9: ca:73:1c:fd:88:71:fe:04:7b:b8:5f:f2:cc:93:58: c3:78:7c:fd:67:5c:6f:95:37:c9:5f:34:05:40:a7: 8d:61:96:0c:60:5b:3a:7e:2d:d1:41:33:ce:c2:53: d8:56:62:a5:e7:4c:bb:72:76:14:cc:d2:b4:f1:07: f8:e1:5b:c8:ad:95:38:94:ec:60:e2:4f:c6:07:d8: 38:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:CE:6E:6A:C3:DC:D2:93:53:BD:F5:4D:CE:E2:EC:99:DA:54:69:D5 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:01:6a:ad:5f:a7:f7:60:45:4f:ca:c9:bf:23:c1:4c:2d:f7: 26:57:80:e6:5f:50:75:ea:ef:47:78:b1:6a:24:e2:46:89:f4: 5f:ca:2c:f7:7d:a6:d2:6c:11:3f:df:f1:6a:61:2e:dd:7e:1a: bb:b9:e3:86:f5:55:5f:b5:28:a4:10:c7:b2:bf:05:13:36:03: 40:6d:25:e2:12:08:c1:29:32:03:7f:3a:5d:61:30:9d:97:25: fa:2d:dd:1e:36:83:41:5a:83:40:90:61:76:02:e1:2d:fc:3d: 10:07:01:c8:a0:7b:13:b7:bf:5d:48:96:c4:94:e3:85:52:05: 4e:45:62:05:0f:cb:f0:e1:64:98:4c:d9:61:60:1e:06:f7:ae: 4a:6a:57:2b:ce:98:e7:d3:5c:d2:74:06:d8:c6:73:cf:e5:f3: e2:41:34:11:05:e3:f3:9c:c8:d8:7f:49:4f:b6:4d:c5:90:43: c7:91:eb:5a:24:00:29:d8:c2:cc:74:a3:80:ea:c9:9f:fb:58: 5d:f7:31:ef:ff:68:13:3d:f8:17:7b:e4:ba:85:4a:f5:0a:c0: c0:42:4d:13:d5:6d:4d:72:5e:86:46:54:08:b3:51:ec:51:60: e4:4e:bb:92:57:ad:09:0d:49:99:da:8f:3e:78:7a:c4:e7:e3: 6d:5b:7d:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUxMDE4MTkxNDUwWhcNMjUxMDI1MTkxNDUwWjAYMRYwFAYD VQQDEw02OGYzZTcyYi1lOGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSNg/Ek809J8fx5lBH705w7DY0m2HYwXPfEKQc0pg6ooPjr5PSXq5T6I+KVW Y+zu9ZjKY1n+YT++7S9Ih3fV0tLrfv4kUYWKAPJN3NrQBVlW5KL+Z6giCQvjA2us KPBvE6N0sfrjjcWMsW50207slbcnGUrWTIAD+cusytQ856SV0BqwxNXsWDWudbxq Z0G7SoatxvSLDvXU3LBJhwywxK94XGgjybsgvXF/nLFiuUqz47nKcxz9iHH+BHu4 X/LMk1jDeHz9Z1xvlTfJXzQFQKeNYZYMYFs6fi3RQTPOwlPYVmKl50y7cnYUzNK0 8Qf44VvIrZU4lOxg4k/GB9g45wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfObmrD 3NKTU731Tc7i7JnaVGnVMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUAWqtX6f3YEVPysm/I8FMLfcmV4DmX1B16u9HeLFqJOJGifRfyiz3 fabSbBE/3/FqYS7dfhq7ueOG9VVftSikEMeyvwUTNgNAbSXiEgjBKTIDfzpdYTCd lyX6Ld0eNoNBWoNAkGF2AuEt/D0QBwHIoHsTt79dSJbElOOFUgVORWIFD8vw4WSY TNlhYB4G965Kalcrzpjn01zSdAbYxnPP5fPiQTQRBePznMjYf0lPtk3FkEPHketa JAAp2MLMdKOA6smf+1hd9zHv/2gTPfgXe+S6hUr1CsDAQk0T1W1Ncl6GRlQIs1Hs UWDkTruSV60JDUmZ2o8+eHrE5+NtW30U -----END CERTIFICATE-----Generated at Mon Oct 20 13:56:49 2025 by rpki-client