$ rpki-client -vvf rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft File: VTcR8u_pSETEP3dtRRAYwGSXLJo.mft (raw, json) Hash identifier: nmNCYJQreuJljktZBVoYYvP74dId9yGppDa3PGB6mto= Subject key identifier: 02:CC:20:73:E5:8D:47:5D:AD:7A:86:27:35:FE:F9:3C:6B:CF:CB:AE Authority key identifier: 55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A Certificate issuer: /CN=A911AAB5/serialNumber=553711F2EFE94844C43F776D451018C064972C9A Certificate serial: 0C69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft Manifest number: 0C5E Signing time: Tue 04 Nov 2025 18:41:23 +0000 Manifest this update: Tue 04 Nov 2025 18:41:23 +0000 Manifest next update: Tue 11 Nov 2025 18:41:23 +0000 Files and hashes: 1: VTcR8u_pSETEP3dtRRAYwGSXLJo.crl (hash: ifKTstZT1em9+FCcOcTqpMpyfeTMyUJMTJVrxikTuSA=) 2: 65EE26547A8711ECBA5D244DC4F9AE02.roa (hash: 9jpZ67QWGAJhgEp9yZYa+B85oL6nxjWkZcfSp/yeSCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:41:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3177 (0xc69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AAB5, serialNumber=553711F2EFE94844C43F776D451018C064972C9A Validity Not Before: Nov 4 18:41:23 2025 GMT Not After : Nov 11 18:41:23 2025 GMT Subject: CN=690a48d3-87ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d6:b5:4c:8f:c1:b3:11:2d:f5:ca:c4:05:cf: 07:83:a1:62:af:cd:62:6a:03:a2:a5:9a:4d:b6:f9: 70:4d:92:33:60:dd:67:b3:9a:ec:a8:3a:e2:b5:d6: 0d:6f:80:13:dc:d7:6e:d0:9e:37:c2:b5:7c:72:02: 0c:f5:d2:58:7f:48:2c:92:3a:22:3b:37:3b:4d:14: 56:84:84:3d:f8:78:12:96:f9:a1:4e:e0:4f:5e:11: 84:6e:66:dc:d9:da:83:a5:be:39:7f:c2:b7:c7:1c: a0:6d:bd:8b:c8:be:2e:d7:2d:00:26:95:9a:09:e6: 23:ec:c3:65:85:d7:d8:f8:28:0a:9e:20:f9:15:e0: 83:70:c7:57:ab:41:4d:8f:d7:a2:63:d1:7e:a2:b1: a9:30:b2:2e:45:38:7c:d8:fe:08:7e:f5:23:a6:bc: 45:74:ee:da:79:55:00:77:ab:3b:9d:35:58:51:85: f1:85:86:32:e1:8c:79:42:d4:ec:c3:3f:a3:e9:38: 7d:f0:0c:8e:0e:1d:7c:0a:c1:0e:fd:ab:b1:35:29: 30:79:08:10:d4:7f:ce:29:c1:e9:5a:5c:cf:dd:7f: e1:14:12:b6:ea:7b:89:e0:22:8c:4f:71:96:45:4a: 55:44:fe:d7:78:78:18:4e:18:86:38:28:98:7a:cb: fa:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CC:20:73:E5:8D:47:5D:AD:7A:86:27:35:FE:F9:3C:6B:CF:CB:AE X509v3 Authority Key Identifier: keyid:55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:b0:e6:7e:28:22:13:af:31:59:8a:13:1d:fc:6a:1e:7c:f1: 4e:62:a5:3f:c7:5b:82:64:f9:d3:5d:ac:5a:ad:36:e9:7d:f0: f1:cc:3b:d6:3a:d3:41:a2:a9:79:46:20:53:5a:93:a0:34:36: 28:13:7e:6b:43:b2:c0:c4:1b:7b:b8:a5:2f:45:4d:62:69:3c: 31:68:7c:99:c2:b1:72:12:aa:ed:a0:c7:8e:12:6b:b7:dc:9d: 61:a4:07:7d:aa:2e:1d:98:7d:d8:45:a1:70:fe:0c:de:65:c2: 70:1c:a8:aa:88:7d:32:cf:18:a9:88:bd:2a:ad:a1:d4:27:cf: af:94:ae:b7:d3:0c:9f:3e:34:4e:44:b0:99:f5:d9:05:20:1b: a7:38:a1:2a:b2:34:cb:03:1a:46:81:e5:d5:b4:ae:42:ab:35: 40:95:b0:4e:eb:60:7d:9f:9a:f8:99:43:c0:a5:fb:d5:e6:f4: dc:1e:11:42:b1:74:9a:05:ec:5c:8e:96:86:51:54:2b:52:0e: b3:91:6e:b5:60:63:66:ad:56:63:35:fc:fb:7d:15:2e:0c:b4: 99:36:9f:39:e5:72:5d:67:89:6e:19:82:1a:e9:cc:31:18:45: 76:15:e4:31:13:79:49:1f:d5:6d:c8:fd:67:ba:d8:52:e7:1e: 42:3b:f1:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFBQjUxMTAvBgNVBAUTKDU1MzcxMUYyRUZFOTQ4NDRDNDNGNzc2RDQ1MTAxOEMw NjQ5NzJDOUEwHhcNMjUxMTA0MTg0MTIzWhcNMjUxMTExMTg0MTIzWjAYMRYwFAYD VQQDEw02OTBhNDhkMy04N2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Na1TI/BsxEt9crEBc8Hg6Fir81iagOipZpNtvlwTZIzYN1ns5rsqDritdYN b4AT3Ndu0J43wrV8cgIM9dJYf0gskjoiOzc7TRRWhIQ9+HgSlvmhTuBPXhGEbmbc 2dqDpb45f8K3xxygbb2LyL4u1y0AJpWaCeYj7MNlhdfY+CgKniD5FeCDcMdXq0FN j9eiY9F+orGpMLIuRTh82P4IfvUjprxFdO7aeVUAd6s7nTVYUYXxhYYy4Yx5QtTs wz+j6Th98AyODh18CsEO/auxNSkweQgQ1H/OKcHpWlzP3X/hFBK26nuJ4CKMT3GW RUpVRP7XeHgYThiGOCiYesv6ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALMIHPl jUddrXqGJzX++Txrz8uuMB8GA1UdIwQYMBaAFFU3EfLv6UhExD93bUUQGMBklyya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUFCNS9BM0JERTdBMDEw RjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNFVEVQM2R0UlJBWXdHU1hM Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZUY1I4dV9wU0VURVAzZHRSUkFZd0dTWExKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUFCNS9BM0JERTdBMDEwRjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNF VEVQM2R0UlJBWXdHU1hMSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvsOZ+KCITrzFZihMd/GoefPFOYqU/x1uCZPnTXaxarTbpffDxzDvW OtNBoql5RiBTWpOgNDYoE35rQ7LAxBt7uKUvRU1iaTwxaHyZwrFyEqrtoMeOEmu3 3J1hpAd9qi4dmH3YRaFw/gzeZcJwHKiqiH0yzxipiL0qraHUJ8+vlK630wyfPjRO RLCZ9dkFIBunOKEqsjTLAxpGgeXVtK5CqzVAlbBO62B9n5r4mUPApfvV5vTcHhFC sXSaBexcjpaGUVQrUg6zkW61YGNmrVZjNfz7fRUuDLSZNp855XJdZ4luGYIa6cwx GEV2FeQxE3lJH9VtyP1nuthS5x5CO/FD -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:42 2025 by rpki-client