$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft File: vphUuYSZNmQ-DUAVo7N7XkSErVo.mft (raw, json) Hash identifier: PokENHlLq+rUNBTTXv6DyYsrjrTolyWfB+jUAEivbJE= Subject key identifier: 85:EB:95:89:6E:0F:30:FF:21:BB:29:8E:CF:49:8C:6E:49:01:B8:1D Authority key identifier: BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A Certificate issuer: /CN=A9123D19/serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Certificate serial: 2A1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft Manifest number: 2A08 Signing time: Tue 04 Nov 2025 15:40:23 +0000 Manifest this update: Tue 04 Nov 2025 15:40:23 +0000 Manifest next update: Tue 11 Nov 2025 15:40:23 +0000 Files and hashes: 1: vphUuYSZNmQ-DUAVo7N7XkSErVo.crl (hash: ne6EoyQfHjJz4jvg35xqNQIO5LZvfeq/5XG6BFakzQk=) 2: 73E0191A967811EA92E45A27C4F9AE02.roa (hash: tpW2hEp1WUinGORU3b4Fa8fzBLaeCCXQIdHVixzwtfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10781 (0x2a1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D19, serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Validity Not Before: Nov 4 15:40:23 2025 GMT Not After : Nov 11 15:40:23 2025 GMT Subject: CN=690a1e67-1d93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cc:18:cf:77:d2:d4:0d:a6:cb:8c:d8:84:86: b9:07:85:f4:ee:16:fb:09:cc:49:d7:84:f3:5a:02: 91:a1:dc:d3:cc:c1:fc:db:cc:b9:c9:c1:17:aa:e3: 18:54:78:88:04:c9:fd:b5:d7:d8:27:4c:c6:30:97: 58:1f:87:33:63:91:0d:67:4b:bf:2c:2c:5d:f4:4d: 8d:49:69:34:e0:de:66:fc:b1:95:a3:bf:bc:6c:e9: b8:9b:38:f4:c2:a9:06:94:0c:99:fa:18:6e:f6:96: 5a:72:7c:b0:45:e9:f2:10:07:39:c3:94:1c:6b:8b: 28:58:69:1e:a2:fd:f8:af:81:d9:9f:c0:22:1a:48: 52:68:c2:d2:91:c6:52:43:25:22:d6:08:b1:67:e3: bd:2a:bf:f9:f4:eb:5d:61:c9:e9:d1:5a:6d:a6:3b: 54:1b:03:05:39:5a:ca:42:81:3f:b3:41:ea:2c:6d: 1c:71:c4:43:d0:70:37:8d:ad:20:51:69:61:e0:23: b5:40:6b:61:f9:31:43:8e:a9:85:bf:e4:74:22:e1: 2e:46:76:54:5e:de:0c:81:83:8b:3c:2f:37:ad:9e: a2:f6:51:43:7c:43:d3:39:3c:1b:a3:cd:dd:3c:10: 6c:97:64:ef:7a:a4:bc:c2:5d:58:58:72:43:b5:d2: d3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:EB:95:89:6E:0F:30:FF:21:BB:29:8E:CF:49:8C:6E:49:01:B8:1D X509v3 Authority Key Identifier: keyid:BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:74:84:11:99:82:5c:d9:eb:9c:01:92:a1:d5:a4:28:78:e7: 25:15:3c:ef:61:60:fb:b0:5a:44:0c:36:de:6f:5a:4a:41:c4: 64:15:ac:fb:a3:9b:fc:eb:74:3e:62:f8:c2:e4:ce:52:08:33: 63:f9:04:9a:9f:46:2b:32:ba:be:1c:ed:38:16:b9:ae:37:c0: 70:31:7b:a6:c7:3a:39:d3:73:02:5a:3f:cd:03:25:6a:b3:e7: 91:25:48:89:ae:c4:64:7e:f1:31:f6:c3:c6:f7:49:3b:9d:d1: d4:7e:bf:26:41:d8:cc:4d:c7:18:83:e0:ed:69:f7:f4:7a:7f: ad:ce:ec:d1:7f:84:09:fd:a0:49:24:97:a6:db:31:84:de:4b: 97:cd:7a:d0:f9:72:30:12:ce:e6:e8:34:ac:80:2f:57:fb:e2: 83:18:8f:b8:43:74:c2:00:0f:ce:78:2d:5c:f4:b8:0d:9b:01: 32:da:68:b0:ce:8e:9e:07:00:0c:5b:14:2f:1e:25:17:cc:f0: 0d:8d:ae:08:88:ef:be:73:a2:a2:a9:ff:eb:ed:b4:14:d1:f2: b3:8b:e3:0b:d7:38:c8:05:9b:81:1e:2f:3d:39:c1:a0:ae:69: 42:58:a3:e2:fa:aa:d3:d5:d9:b0:67:21:de:c6:14:98:83:62: 27:34:97:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMTkxMTAvBgNVBAUTKEJFOTg1NEI5ODQ5OTM2NjQzRTBENDAxNUEzQjM3QjVF NDQ4NEFENUEwHhcNMjUxMTA0MTU0MDIzWhcNMjUxMTExMTU0MDIzWjAYMRYwFAYD VQQDEw02OTBhMWU2Ny0xZDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcwYz3fS1A2my4zYhIa5B4X07hb7CcxJ14TzWgKRodzTzMH828y5ycEXquMY VHiIBMn9tdfYJ0zGMJdYH4czY5ENZ0u/LCxd9E2NSWk04N5m/LGVo7+8bOm4mzj0 wqkGlAyZ+hhu9pZacnywRenyEAc5w5Qca4soWGkeov34r4HZn8AiGkhSaMLSkcZS QyUi1gixZ+O9Kr/59OtdYcnp0VptpjtUGwMFOVrKQoE/s0HqLG0cccRD0HA3ja0g UWlh4CO1QGth+TFDjqmFv+R0IuEuRnZUXt4MgYOLPC83rZ6i9lFDfEPTOTwbo83d PBBsl2TveqS8wl1YWHJDtdLTrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXrlYlu DzD/Ibspjs9JjG5JAbgdMB8GA1UdIwQYMBaAFL6YVLmEmTZkPg1AFaOze15EhK1a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QxOS80MEVEODAyMDQy OUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5tUS1EVUFWbzdON1hrU0Vy Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwaFV1WVNaTm1RLURVQVZvN043WGtTRXJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QxOS80MEVEODAyMDQyOUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5t US1EVUFWbzdON1hrU0VyVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEdIQRmYJc2eucAZKh1aQoeOclFTzvYWD7sFpEDDbeb1pKQcRkFaz7 o5v863Q+YvjC5M5SCDNj+QSan0YrMrq+HO04FrmuN8BwMXumxzo503MCWj/NAyVq s+eRJUiJrsRkfvEx9sPG90k7ndHUfr8mQdjMTccYg+Dtaff0en+tzuzRf4QJ/aBJ JJem2zGE3kuXzXrQ+XIwEs7m6DSsgC9X++KDGI+4Q3TCAA/OeC1c9LgNmwEy2miw zo6eBwAMWxQvHiUXzPANja4IiO++c6Kiqf/r7bQU0fKzi+ML1zjIBZuBHi89OcGg rmlCWKPi+qrT1dmwZyHexhSYg2InNJe4 -----END CERTIFICATE-----Generated at Wed Nov 5 13:33:47 2025 by rpki-client