$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft File: VXiaNBbn71Fc4I8Fo28d7YNETAk.mft (raw, json) Hash identifier: a28j20H303uYDLU6x2qJLykCICnBYkMhdkq6MfRYcSw= Subject key identifier: A7:98:2C:91:A3:CB:3E:10:81:C7:61:14:2E:02:AD:06:CF:B1:E6:DC Authority key identifier: 55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 Certificate issuer: /CN=A91F43F2/serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft Manifest number: 33 Signing time: Sun 19 Oct 2025 11:06:09 +0000 Manifest this update: Sun 19 Oct 2025 11:06:09 +0000 Manifest next update: Sun 26 Oct 2025 11:06:09 +0000 Files and hashes: 1: VXiaNBbn71Fc4I8Fo28d7YNETAk.crl (hash: hBHBKi+qRDW17wHtBpn7Owl3HfNXRU9wznTg91B0pNA=) 2: A19F973C60C011F0A28C7F2CC4F9AE02.roa (hash: z6l4Kf7BBkbhNbxfRp+L0t7tdYphMHusFnOI/s0ajOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Validity Not Before: Oct 19 11:06:09 2025 GMT Not After : Oct 26 11:06:09 2025 GMT Subject: CN=68f4c621-dff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:42:c8:bf:0a:76:7d:27:ff:87:dc:25:08: e1:13:a9:12:8c:8a:48:a8:90:87:f0:90:2f:24:50: a0:34:dd:51:98:b8:80:08:78:ff:cf:3c:a1:33:db: 46:9b:08:4e:3a:de:23:40:ba:77:7c:c7:80:b8:f9: f8:9a:d5:3a:13:65:55:5a:26:af:a0:0a:b6:ac:be: 70:4a:76:9d:88:de:2e:91:78:ec:f2:48:cb:56:40: 4e:3d:07:ed:a4:7f:97:67:aa:de:66:69:04:85:da: 50:34:6f:c0:88:d9:5c:83:ac:03:8f:4a:0f:b2:8c: c9:d5:85:6c:1a:aa:20:dc:80:ec:d1:3a:81:ef:1a: 6f:62:50:1f:06:b8:6c:7e:31:95:f5:b1:81:d0:ff: 06:4d:32:cf:d5:87:c6:c8:74:50:ec:fc:20:46:f5: f9:86:c9:7b:ac:95:ec:f7:a1:43:7e:8e:9b:1e:3d: 86:59:49:17:39:e5:e8:fb:6a:7d:8d:11:62:57:0f: 02:ce:7e:59:39:c2:de:2d:6a:8b:8c:45:7f:3d:df: b5:84:87:3c:49:e0:9d:e7:b5:97:93:fc:a0:e7:b5: 76:62:00:9e:1e:73:7c:b8:29:fd:53:0d:f8:f2:62: 3c:06:e3:3c:6c:09:85:22:e7:c7:10:7b:90:1b:1f: c5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:98:2C:91:A3:CB:3E:10:81:C7:61:14:2E:02:AD:06:CF:B1:E6:DC X509v3 Authority Key Identifier: keyid:55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:7d:19:46:c2:1c:0e:ac:7b:53:73:0e:d0:3f:a8:2d:4f:c6: 06:b0:c7:d1:0c:3e:2f:60:d6:a1:2c:b2:61:46:9f:ee:e1:00: 13:8c:60:e5:9a:cb:6d:ac:8d:f1:32:73:ce:31:9d:5c:2c:62: 33:b3:71:f1:f2:1f:b0:61:aa:73:7d:92:d8:00:df:10:ff:ad: 26:3f:3e:4a:79:51:d3:25:7b:4a:48:aa:ec:15:4c:a7:b9:00: ff:e5:db:46:8b:c1:1f:77:aa:9a:c4:08:b5:53:82:2b:50:8f: 48:eb:e9:f7:b1:05:87:07:6a:07:ed:f4:fa:28:43:d4:29:1e: 53:d4:a6:72:90:b3:78:e1:a3:a0:4f:49:c7:8e:0c:f8:cc:95: 1a:89:69:65:68:4e:93:0a:a0:4e:dd:40:ba:6e:c4:d9:f8:bb: 10:e2:69:e0:f4:dd:85:99:70:69:75:80:6b:e9:75:d6:49:70: 72:fa:0b:95:19:39:0b:b3:5e:ce:ee:e2:eb:26:7f:2b:6e:d5: b2:e3:fb:1a:06:7b:85:09:76:17:4a:ea:26:ec:1b:9a:07:e9: e6:31:1c:d3:e8:6f:a5:74:b5:72:e5:64:b0:72:0c:00:eb:b4: 5c:cd:ae:aa:37:6c:29:87:38:10:ce:cd:b7:fa:48:c2:67:2e: 89:34:bd:1b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDNGMjExMC8GA1UEBRMoNTU3ODlBMzQxNkU3RUY1MTVDRTA4RjA1QTM2RjFERUQ4 MzQ0NEMwOTAeFw0yNTEwMTkxMTA2MDlaFw0yNTEwMjYxMTA2MDlaMBgxFjAUBgNV BAMTDTY4ZjRjNjIxLWRmZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHLULIvwp2fSf/h9wlCOETqRKMikiokIfwkC8kUKA03VGYuIAIeP/PPKEz20ab CE463iNAund8x4C4+fia1ToTZVVaJq+gCrasvnBKdp2I3i6ReOzySMtWQE49B+2k f5dnqt5maQSF2lA0b8CI2VyDrAOPSg+yjMnVhWwaqiDcgOzROoHvGm9iUB8GuGx+ MZX1sYHQ/wZNMs/Vh8bIdFDs/CBG9fmGyXuslez3oUN+jpsePYZZSRc55ej7an2N EWJXDwLOflk5wt4taouMRX8937WEhzxJ4J3ntZeT/KDntXZiAJ4ec3y4Kf1TDfjy YjwG4zxsCYUi58cQe5AbH8VTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUp5gskaPL PhCBx2EULgKtBs+x5twwHwYDVR0jBBgwFoAUVXiaNBbn71Fc4I8Fo28d7YNETAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0M0YyLzQxODA1MDk0NjBD MDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFGYzRJOEZvMjhkN1lORVRB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVlhpYU5CYm43MUZjNEk4Rm8yOGQ3WU5FVEFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 M0YyLzQxODA1MDk0NjBDMDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFG YzRJOEZvMjhkN1lORVRBay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGh9GUbCHA6se1NzDtA/qC1Pxgawx9EMPi9g1qEssmFGn+7hABOMYOWa y22sjfEyc84xnVwsYjOzcfHyH7BhqnN9ktgA3xD/rSY/Pkp5UdMle0pIquwVTKe5 AP/l20aLwR93qprECLVTgitQj0jr6fexBYcHagft9PooQ9QpHlPUpnKQs3jho6BP SceODPjMlRqJaWVoTpMKoE7dQLpuxNn4uxDiaeD03YWZcGl1gGvpddZJcHL6C5UZ OQuzXs7u4usmfytu1bLj+xoGe4UJdhdK6ibsG5oH6eYxHNPob6V0tXLlZLByDADr tFzNrqo3bCmHOBDOzbf6SMJnLok0vRs= -----END CERTIFICATE-----Generated at Mon Oct 20 18:07:14 2025 by rpki-client