$ rpki-client -vvf rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft File: vGOOV8p7khRPunE61ttk5tCtSZE.mft (raw, json) Hash identifier: xYnOl8hNAqmVtQtAv/TsCMxFrpnQfNiCgxj4xDNFlDU= Subject key identifier: 2C:18:D7:A2:8B:7A:A7:15:59:E3:E9:23:BF:42:E2:24:04:F4:5A:67 Authority key identifier: BC:63:8E:57:CA:7B:92:14:4F:BA:71:3A:D6:DB:64:E6:D0:AD:49:91 Certificate issuer: /CN=A91D31B0/serialNumber=BC638E57CA7B92144FBA713AD6DB64E6D0AD4991 Certificate serial: 02E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vGOOV8p7khRPunE61ttk5tCtSZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft Manifest number: 02E0 Signing time: Sun 19 Oct 2025 03:23:17 +0000 Manifest this update: Sun 19 Oct 2025 03:23:16 +0000 Manifest next update: Sun 26 Oct 2025 03:23:16 +0000 Files and hashes: 1: vGOOV8p7khRPunE61ttk5tCtSZE.crl (hash: mohNMuVXfTXvU5LCyRxL7mu+0MSy5JdE8lAA85H84rU=) 2: 7BB181E201BA11EDA4103D0DC4F9AE02.roa (hash: lORLBE7+FfhOwINAGtcBHyopu2FbSYXSTs4IIjqvS/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.crl rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vGOOV8p7khRPunE61ttk5tCtSZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 741 (0x2e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D31B0, serialNumber=BC638E57CA7B92144FBA713AD6DB64E6D0AD4991 Validity Not Before: Oct 19 03:23:16 2025 GMT Not After : Oct 26 03:23:16 2025 GMT Subject: CN=68f459a5-f1fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1b:c4:59:5b:46:3a:ac:6c:be:a9:96:dd:69: e4:63:f5:b1:68:ea:f7:9a:28:ab:c8:bb:91:b0:56: 6b:8c:fd:a1:12:ff:b8:14:78:30:b3:a6:81:5e:a6: 76:bc:9f:18:06:6a:47:da:bd:16:55:a4:39:d6:d0: 80:b4:ef:eb:3f:ea:c3:81:2b:ec:00:2e:24:6c:d3: 7a:2d:32:50:b8:27:00:88:c3:ea:42:0a:8c:73:88: e0:5d:a6:0b:14:ca:d3:bc:fd:13:fa:20:cf:69:12: 85:43:b5:4a:37:cb:d6:3e:56:d8:7d:71:b2:c7:f0: fe:d6:76:98:27:7e:fd:55:d5:83:74:6f:4d:92:7d: d8:d9:73:c9:cb:97:5a:6f:f3:16:7b:16:08:f9:78: 9c:fb:37:54:99:29:20:98:aa:8b:6f:e7:ff:07:27: 9c:a1:69:76:44:66:ce:4b:7c:7a:e9:6c:94:1b:62: 68:2b:80:26:d7:33:93:a2:1a:8d:7a:21:3e:aa:b8: 47:62:4a:36:9b:52:e5:87:cf:71:1c:eb:5d:62:ef: 6b:b3:30:23:bf:ea:04:9b:30:f5:6d:94:b6:ae:18: ab:7b:1c:95:fc:6a:a3:fa:4a:05:3e:fe:0e:25:f2: 7c:fe:d6:73:1d:a4:08:8b:c9:aa:31:3a:79:80:91: ce:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:18:D7:A2:8B:7A:A7:15:59:E3:E9:23:BF:42:E2:24:04:F4:5A:67 X509v3 Authority Key Identifier: keyid:BC:63:8E:57:CA:7B:92:14:4F:BA:71:3A:D6:DB:64:E6:D0:AD:49:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vGOOV8p7khRPunE61ttk5tCtSZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D31B0/15CF5A8801B611EDB1A4D282C4F9AE02/vGOOV8p7khRPunE61ttk5tCtSZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:52:6e:29:74:13:09:53:dd:d2:fc:cc:7e:4a:f5:fb:df:72: 10:34:46:47:6f:ff:61:48:c6:05:94:43:e9:bc:2d:3a:68:23: 3c:97:ac:0b:0e:b2:8a:d3:30:b0:b8:39:44:e5:a6:31:22:34: 37:89:ee:09:bc:2f:f4:64:16:36:1c:5d:ee:02:9f:e3:33:37: 02:d0:cd:d8:b5:6c:d9:78:24:e1:df:5c:08:db:75:ed:ce:6c: c5:05:ab:16:0e:15:81:98:0a:d2:93:0d:a8:45:93:13:ed:77: 04:6a:fa:7b:27:fa:19:36:60:df:d9:03:be:eb:ae:b8:3b:64: a4:e8:92:a2:ed:49:54:f1:63:48:1e:82:a5:37:7c:cd:45:b9: 56:92:b3:54:73:d6:41:d3:dc:34:5c:33:b5:7b:85:4a:1d:34: 6b:f3:10:0a:07:bb:b2:a0:28:31:4e:96:4e:cc:88:cb:27:b0: 52:81:08:ae:cd:7d:f6:ce:78:21:cd:d6:db:27:db:28:4a:2e: 69:45:df:be:90:80:3c:ca:cf:3a:5f:a4:6a:c7:a8:84:c5:13: 71:0f:7d:01:96:6e:61:94:83:2e:29:bc:fe:b8:ad:bf:4f:06: 8d:5e:3c:c2:4f:d9:42:92:90:04:a7:13:57:b5:12:47:5e:64: de:3c:43:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxQjAxMTAvBgNVBAUTKEJDNjM4RTU3Q0E3QjkyMTQ0RkJBNzEzQUQ2REI2NEU2 RDBBRDQ5OTEwHhcNMjUxMDE5MDMyMzE2WhcNMjUxMDI2MDMyMzE2WjAYMRYwFAYD VQQDEw02OGY0NTlhNS1mMWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hvEWVtGOqxsvqmW3WnkY/WxaOr3miiryLuRsFZrjP2hEv+4FHgws6aBXqZ2 vJ8YBmpH2r0WVaQ51tCAtO/rP+rDgSvsAC4kbNN6LTJQuCcAiMPqQgqMc4jgXaYL FMrTvP0T+iDPaRKFQ7VKN8vWPlbYfXGyx/D+1naYJ379VdWDdG9Nkn3Y2XPJy5da b/MWexYI+Xic+zdUmSkgmKqLb+f/ByecoWl2RGbOS3x66WyUG2JoK4Am1zOTohqN eiE+qrhHYko2m1Llh89xHOtdYu9rszAjv+oEmzD1bZS2rhirexyV/Gqj+koFPv4O JfJ8/tZzHaQIi8mqMTp5gJHOmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwY16KL eqcVWePpI79C4iQE9FpnMB8GA1UdIwQYMBaAFLxjjlfKe5IUT7pxOtbbZObQrUmR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzFCMC8xNUNGNUE4ODAx QjYxMUVEQjFBNEQyODJDNEY5QUUwMi92R09PVjhwN2toUlB1bkU2MXR0azV0Q3RT WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZHT09WOHA3a2hSUHVuRTYxdHRrNXRDdFNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzFCMC8xNUNGNUE4ODAxQjYxMUVEQjFBNEQyODJDNEY5QUUwMi92R09PVjhwN2to UlB1bkU2MXR0azV0Q3RTWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVUm4pdBMJU93S/Mx+SvX733IQNEZHb/9hSMYFlEPpvC06aCM8l6wL DrKK0zCwuDlE5aYxIjQ3ie4JvC/0ZBY2HF3uAp/jMzcC0M3YtWzZeCTh31wI23Xt zmzFBasWDhWBmArSkw2oRZMT7XcEavp7J/oZNmDf2QO+6664O2Sk6JKi7UlU8WNI HoKlN3zNRblWkrNUc9ZB09w0XDO1e4VKHTRr8xAKB7uyoCgxTpZOzIjLJ7BSgQiu zX32znghzdbbJ9soSi5pRd++kIA8ys86X6Rqx6iExRNxD30Blm5hlIMuKbz+uK2/ TwaNXjzCT9lCkpAEpxNXtRJHXmTePEPC -----END CERTIFICATE-----Generated at Mon Oct 20 07:56:10 2025 by rpki-client