$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft File: VB4KZv5g86rAJQLO8eSOYnpi90E.mft (raw, json) Hash identifier: /4BvDpQ3hwKzCHXZvzsvI0lD1iaeZcvLjT5k/N0dVFo= Subject key identifier: AC:5B:3B:9D:26:37:D0:4B:84:41:DE:AB:13:FB:33:7E:AA:7C:4F:9E Authority key identifier: 54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 Certificate issuer: /CN=A91288D9/serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Certificate serial: 0B5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft Manifest number: 0B57 Signing time: Tue 04 Nov 2025 19:15:14 +0000 Manifest this update: Tue 04 Nov 2025 19:15:14 +0000 Manifest next update: Tue 11 Nov 2025 19:15:14 +0000 Files and hashes: 1: VB4KZv5g86rAJQLO8eSOYnpi90E.crl (hash: E9pfZWQRuIyunnFj11X+QRXBLeKzs1UTZaHyPPlhfm4=) 2: E0FCE614425811EAADEA3B45C4F9AE02.roa (hash: 4i/qRxDxm1IhOaEBUeWCrIN1RXkz58rViMQa88EFEXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2911 (0xb5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Validity Not Before: Nov 4 19:15:14 2025 GMT Not After : Nov 11 19:15:14 2025 GMT Subject: CN=690a50c2-a3d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e4:4d:af:9b:bd:8b:b9:af:d0:99:4a:44:70: 80:aa:38:22:97:fd:58:c5:66:bc:a0:d0:59:61:be: 5f:75:34:1b:f1:b7:ef:27:d2:b6:f6:51:ac:f8:65: 01:49:97:37:ed:92:9d:06:c7:be:f7:14:01:b9:bc: 8c:07:b9:bb:a8:fa:50:aa:de:5c:3e:5f:30:be:c5: 58:53:8b:44:2e:8d:d7:44:96:5e:b2:95:91:fa:35: f9:42:f7:5f:ed:00:07:58:d9:1f:a9:38:36:c6:ae: 38:06:d3:7e:7f:aa:32:62:ed:96:7f:fa:fc:97:e8: 77:95:87:05:73:ba:36:75:e2:1d:18:7f:f2:bd:9c: 02:11:fe:de:ca:6e:32:0f:32:2b:b5:03:f1:2d:3b: 1a:e9:de:63:67:13:55:a6:30:a4:5c:62:12:e6:36: 07:36:f4:72:58:39:df:50:0c:95:4e:fc:d6:ba:37: f6:c0:59:79:e8:f9:5a:f5:29:a3:43:54:d0:71:0d: 12:1d:a5:a2:db:3b:b7:97:aa:f0:4e:73:ab:75:44: aa:50:05:91:1f:67:15:2d:e4:5e:52:1a:90:f3:ab: da:56:68:1d:e7:b5:77:ff:fa:64:14:a8:0f:77:8c: 1a:4d:89:38:a3:91:f2:82:d3:a9:e1:f5:e6:23:9f: 18:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5B:3B:9D:26:37:D0:4B:84:41:DE:AB:13:FB:33:7E:AA:7C:4F:9E X509v3 Authority Key Identifier: keyid:54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:b1:d9:55:05:e2:0e:40:a5:9d:34:11:80:20:da:c1:39:10: 8d:77:e1:26:de:b1:14:91:15:a6:bf:0f:bd:9b:06:67:e4:f0: 12:d0:ca:60:a4:c5:fb:ce:ee:e3:6c:ef:09:90:97:14:9d:2b: fd:f9:8c:d8:e9:de:61:4f:95:ed:7e:a8:17:39:95:5f:0f:5c: a2:85:61:1a:ed:ed:83:04:05:76:a9:47:d5:7b:c4:69:fd:0d: 6d:12:e5:00:dd:ab:ac:89:bf:51:6f:d4:dc:f2:61:75:cd:09: f4:8a:ff:9f:10:b1:1d:73:85:c7:50:b8:46:46:2c:60:70:0d: f4:ae:db:10:d8:90:ae:a4:77:38:1b:ea:52:46:f9:de:09:20: 0c:e5:55:48:1f:ff:a9:67:1b:bb:e7:64:7e:07:9d:3b:84:d6: 95:0b:e7:da:37:d4:94:e8:41:87:cc:3b:ff:52:4d:70:82:a4: 66:8e:08:e2:d1:a3:3f:22:06:e3:7a:04:b1:5e:20:d6:ff:e3: ff:f4:4f:1d:bc:65:f9:fd:ee:a8:e4:95:6d:b1:4a:e7:a8:ee: 4d:a0:cc:4c:78:49:eb:f8:e9:35:e8:6f:48:79:c6:90:14:20: 61:b5:ec:49:b9:16:66:8b:12:cd:6e:b5:76:6a:2e:5c:06:b5: 5c:9d:f3:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKDU0MUUwQTY2RkU2MEYzQUFDMDI1MDJDRUYxRTQ4RTYy N0E2MkY3NDEwHhcNMjUxMTA0MTkxNTE0WhcNMjUxMTExMTkxNTE0WjAYMRYwFAYD VQQDEw02OTBhNTBjMi1hM2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ORNr5u9i7mv0JlKRHCAqjgil/1YxWa8oNBZYb5fdTQb8bfvJ9K29lGs+GUB SZc37ZKdBse+9xQBubyMB7m7qPpQqt5cPl8wvsVYU4tELo3XRJZespWR+jX5Qvdf 7QAHWNkfqTg2xq44BtN+f6oyYu2Wf/r8l+h3lYcFc7o2deIdGH/yvZwCEf7eym4y DzIrtQPxLTsa6d5jZxNVpjCkXGIS5jYHNvRyWDnfUAyVTvzWujf2wFl56Pla9Smj Q1TQcQ0SHaWi2zu3l6rwTnOrdUSqUAWRH2cVLeReUhqQ86vaVmgd57V3//pkFKgP d4waTYk4o5HygtOp4fXmI58YQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxbO50m N9BLhEHeqxP7M36qfE+eMB8GA1UdIwQYMBaAFFQeCmb+YPOqwCUCzvHkjmJ6YvdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9CQTU5NTM1RTQy NTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2ckFKUUxPOGVTT1lucGk5 MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZCNEtadjVnODZyQUpRTE84ZVNPWW5waTkwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODhEOS9CQTU5NTM1RTQyNTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2 ckFKUUxPOGVTT1lucGk5MEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGsdlVBeIOQKWdNBGAINrBORCNd+Em3rEUkRWmvw+9mwZn5PAS0Mpg pMX7zu7jbO8JkJcUnSv9+YzY6d5hT5XtfqgXOZVfD1yihWEa7e2DBAV2qUfVe8Rp /Q1tEuUA3ausib9Rb9Tc8mF1zQn0iv+fELEdc4XHULhGRixgcA30rtsQ2JCupHc4 G+pSRvneCSAM5VVIH/+pZxu752R+B507hNaVC+faN9SU6EGHzDv/Uk1wgqRmjgji 0aM/IgbjegSxXiDW/+P/9E8dvGX5/e6o5JVtsUrnqO5NoMxMeEnr+Ok16G9IecaQ FCBhtexJuRZmixLNbrV2ai5cBrVcnfO8 -----END CERTIFICATE-----Generated at Wed Nov 5 21:14:35 2025 by rpki-client