$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft File: M-VCXQNo-C_4W5uEf0EjitWNTlA.mft (raw, json) Hash identifier: VvaEfE9d6pRsnj67Xa8jmnY7ZWUR8VRaZiBcoBWhGyg= Subject key identifier: 6A:F0:F4:A6:C1:00:E2:12:DA:39:27:30:9D:1B:54:EF:BF:6E:BD:D0 Authority key identifier: 33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 Certificate issuer: /CN=A91CFD5A/serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft Manifest number: 0148 Signing time: Sun 19 Oct 2025 07:04:21 +0000 Manifest this update: Sun 19 Oct 2025 07:04:21 +0000 Manifest next update: Sun 26 Oct 2025 07:04:21 +0000 Files and hashes: 1: M-VCXQNo-C_4W5uEf0EjitWNTlA.crl (hash: Xo3SeuUVD8m3vnfynVW8TgjBaSMwbvx9bvUEQMrMn44=) 2: D677E18AB9AF11EE97EEDB49C4F9AE02.roa (hash: LUJnGhbUriDz5PEXzwqHVqGRqenH5+Jp3evLId0QNQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A, serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Validity Not Before: Oct 19 07:04:21 2025 GMT Not After : Oct 26 07:04:21 2025 GMT Subject: CN=68f48d75-2e9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1d:19:2e:f8:70:38:ee:30:a6:3f:59:85:a8: a4:b0:c9:62:66:e2:aa:4b:0d:46:a1:6a:e8:6a:fe: f0:ca:ea:dd:62:02:9d:a3:a4:82:c7:3a:c2:58:10: 2f:e9:4b:d3:3e:56:15:db:1d:22:fe:de:cb:c9:20: 2e:b9:85:aa:8e:2b:20:98:6c:ef:1e:ec:3d:be:c6: 01:91:4c:f5:4a:e9:e4:27:60:24:2e:9d:6a:68:b2: 67:25:d8:47:b1:5e:c0:5a:23:3a:74:06:68:20:c1: fb:11:34:6b:1c:0b:65:e8:b4:cd:1a:b9:b7:e1:7a: c1:5e:da:aa:0b:ab:9a:2a:ca:7f:68:22:66:22:5b: 17:bf:cf:0f:27:15:3c:bf:b2:21:3f:be:0e:a0:78: 3d:b8:0c:ef:c4:46:4a:df:ba:d9:26:4e:8f:d3:00: fe:2d:22:e7:db:cd:fe:49:b7:30:57:0d:e5:ca:75: fc:d4:c4:f7:b7:3f:80:5b:b9:16:e3:e8:a8:59:69: f0:4a:20:97:1b:9b:4a:14:8c:6e:6a:de:e7:4e:da: b6:27:26:5c:e6:04:78:3b:5d:06:35:09:b2:9c:49: bc:97:d1:4c:5e:9d:4f:c4:be:6d:a2:74:9b:93:b5: 88:3b:f5:e2:44:d5:82:8f:5d:fd:40:0c:d7:3e:a0: 1e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F0:F4:A6:C1:00:E2:12:DA:39:27:30:9D:1B:54:EF:BF:6E:BD:D0 X509v3 Authority Key Identifier: keyid:33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:cc:9e:82:90:08:d7:35:0b:6f:de:90:8f:1e:c5:1b:15:a4: 63:e9:2f:60:6b:e0:35:81:36:ae:36:b7:65:4b:1d:7f:20:01: 8d:98:bf:b9:09:27:55:4c:f6:05:e9:6a:f4:7c:ed:1c:99:66: 3e:b9:7f:d2:da:27:eb:f7:19:c2:30:1d:88:f7:2d:4c:3d:57: 9c:3c:d3:e3:c8:65:72:4e:0e:bc:87:58:db:da:ff:c3:ce:c1: 52:7c:36:e9:b7:74:63:15:66:86:97:76:04:89:a8:a6:ac:c4: 01:68:59:5f:4f:52:cb:f4:f7:7c:d7:b6:68:bb:c1:f2:82:69: 1d:27:37:55:63:b2:78:1f:e2:68:2a:80:3e:2b:af:15:3e:46: 4e:af:14:ce:56:33:84:30:cf:10:c0:14:90:ea:85:1b:47:0f: e1:40:aa:10:2b:e2:42:cc:69:32:07:6c:08:74:4e:f2:43:43: f5:e8:43:f3:ed:05:e3:bc:fc:94:f0:93:23:21:d5:a0:ce:dd: 20:c2:2a:63:81:1d:2e:45:26:d5:a2:c4:fd:93:9f:15:6e:a1: 3d:19:92:8f:62:e4:4a:c3:af:89:ae:27:aa:10:e2:cb:e7:cc: ac:44:0e:dd:d5:b7:55:c2:4f:05:ca:35:14:84:af:be:e6:75: 5e:3d:8b:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDMzRTU0MjVEMDM2OEY4MkZGODVCOUI4NDdGNDEyMzhB RDU4RDRFNTAwHhcNMjUxMDE5MDcwNDIxWhcNMjUxMDI2MDcwNDIxWjAYMRYwFAYD VQQDEw02OGY0OGQ3NS0yZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0R0ZLvhwOO4wpj9ZhaiksMliZuKqSw1GoWroav7wyurdYgKdo6SCxzrCWBAv 6UvTPlYV2x0i/t7LySAuuYWqjisgmGzvHuw9vsYBkUz1SunkJ2AkLp1qaLJnJdhH sV7AWiM6dAZoIMH7ETRrHAtl6LTNGrm34XrBXtqqC6uaKsp/aCJmIlsXv88PJxU8 v7IhP74OoHg9uAzvxEZK37rZJk6P0wD+LSLn283+SbcwVw3lynX81MT3tz+AW7kW 4+ioWWnwSiCXG5tKFIxuat7nTtq2JyZc5gR4O10GNQmynEm8l9FMXp1PxL5tonSb k7WIO/XiRNWCj139QAzXPqAebQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrw9KbB AOIS2jknMJ0bVO+/br3QMB8GA1UdIwQYMBaAFDPlQl0DaPgv+FubhH9BI4rVjU5Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS81RkI3REMwOEI5 QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1DXzRXNXVFZjBFaml0V05U bEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00tVkNYUU5vLUNfNFc1dUVmMEVqaXRXTlRsQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS81RkI3REMwOEI5QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1D XzRXNXVFZjBFaml0V05UbEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKzJ6CkAjXNQtv3pCPHsUbFaRj6S9ga+A1gTauNrdlSx1/IAGNmL+5 CSdVTPYF6Wr0fO0cmWY+uX/S2ifr9xnCMB2I9y1MPVecPNPjyGVyTg68h1jb2v/D zsFSfDbpt3RjFWaGl3YEiaimrMQBaFlfT1LL9Pd817Zou8HygmkdJzdVY7J4H+Jo KoA+K68VPkZOrxTOVjOEMM8QwBSQ6oUbRw/hQKoQK+JCzGkyB2wIdE7yQ0P16EPz 7QXjvPyU8JMjIdWgzt0gwipjgR0uRSbVosT9k58VbqE9GZKPYuRKw6+JrieqEOLL 58ysRA7d1bdVwk8FyjUUhK++5nVePYtZ -----END CERTIFICATE-----Generated at Mon Oct 20 18:28:55 2025 by rpki-client