$ rpki-client -vvf rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.mft File: VU0O_yINZrbppAkPDcy6milc3bU.mft (raw, json) Hash identifier: ZmmK17Vjv1X7gU1Tn4Mez0Ju/Dowi63lsL1mSrf4ygc= Subject key identifier: 67:80:58:00:79:B1:A1:4D:47:C9:DD:EC:3E:98:7F:E5:A2:14:1A:F4 Authority key identifier: 55:4D:0E:FF:22:0D:66:B6:E9:A4:09:0F:0D:CC:BA:9A:29:5C:DD:B5 Certificate issuer: /CN=A914A514/serialNumber=554D0EFF220D66B6E9A4090F0DCCBA9A295CDDB5 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU0O_yINZrbppAkPDcy6milc3bU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.mft Manifest number: 67 Signing time: Mon 03 Nov 2025 07:02:21 +0000 Manifest this update: Mon 03 Nov 2025 07:02:20 +0000 Manifest next update: Mon 10 Nov 2025 07:02:20 +0000 Files and hashes: 1: VU0O_yINZrbppAkPDcy6milc3bU.crl (hash: sGuKPmeNIFl5TdTcDG2+coUkwpVCe+A6E7N4SIqkL04=) 2: 4499D9921F4A11F0AF06577CC4F9AE02.roa (hash: 22OD3LRGDCNECXd/CFSHge2YqhsRF1PsexljEXFJrwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.crl rsync://rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU0O_yINZrbppAkPDcy6milc3bU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A514, serialNumber=554D0EFF220D66B6E9A4090F0DCCBA9A295CDDB5 Validity Not Before: Nov 3 07:02:20 2025 GMT Not After : Nov 10 07:02:20 2025 GMT Subject: CN=6908537c-b5e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d5:23:9a:3c:e8:a6:5a:b7:42:6a:1e:d2:f9: da:72:bc:20:ba:89:bd:4a:8a:32:cd:cc:c1:68:49: 72:34:da:81:07:d3:ae:14:c7:dc:cf:01:b8:c3:56: 08:5d:4c:4f:d0:b9:1f:ec:9f:51:af:e9:11:cc:23: b7:53:e9:56:57:2e:b0:69:cc:7b:46:e7:56:28:fd: 18:91:5b:90:3a:11:60:f0:7d:1b:1c:d1:ad:e8:14: 1a:dc:10:2d:6c:7b:37:6b:33:c1:1e:15:13:a6:d6: d3:7d:7a:71:c5:cf:e4:2b:56:9a:05:c6:cf:97:48: e4:ff:d7:3a:2c:bf:d6:a3:4b:31:76:4e:d1:04:1f: be:cc:a5:5c:19:af:b9:89:d6:0c:fb:64:f4:a3:f2: 61:26:55:cd:47:45:6a:0b:bd:ec:72:a1:17:04:b7: 58:a4:0a:35:51:09:76:5d:54:3f:6c:eb:b4:56:20: a8:6c:5a:18:ae:6e:01:ed:f9:ff:48:35:12:03:04: f7:31:c8:5f:da:dc:f5:2a:2a:0b:72:30:2e:05:33: 4b:67:9d:ff:ef:1c:8d:60:1f:4e:50:63:5e:7c:c6: 47:f0:55:22:54:d8:7f:f3:4b:28:fd:7a:fd:c3:da: 66:85:43:43:00:e9:3e:b8:8b:d7:54:20:39:c7:e5: ba:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:80:58:00:79:B1:A1:4D:47:C9:DD:EC:3E:98:7F:E5:A2:14:1A:F4 X509v3 Authority Key Identifier: keyid:55:4D:0E:FF:22:0D:66:B6:E9:A4:09:0F:0D:CC:BA:9A:29:5C:DD:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU0O_yINZrbppAkPDcy6milc3bU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A514/3FF25AFA1F4911F096F7AE7AC4F9AE02/VU0O_yINZrbppAkPDcy6milc3bU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:43:74:ed:13:6b:b7:21:c4:c7:28:61:82:94:48:35:c5:0b: 46:44:d4:55:88:75:93:6a:3b:88:4a:f4:42:64:a0:05:b0:00: 0a:34:20:62:bb:98:62:9d:0d:77:74:67:4c:ea:e9:76:33:e3: 96:b6:8a:22:ab:26:49:ce:53:8d:a3:77:8d:7f:52:99:37:80: 81:8f:4f:96:a3:f7:fa:9f:fb:69:f3:9b:80:78:e0:61:c9:8b: 96:19:dc:b1:c2:af:dd:3f:ea:3d:3d:18:08:c3:01:b0:fe:d1: 44:a0:41:c6:86:9d:9f:1a:8c:79:cc:7a:05:05:9d:99:a2:91: 99:0c:f1:9e:f2:42:5b:8f:01:23:2a:f2:af:b5:d9:5e:ef:4a: f0:ef:63:d6:4a:bb:fa:93:90:42:d1:1d:23:d1:c0:b5:42:1d: cd:e1:49:b8:44:de:3d:d7:87:01:4a:1e:51:8f:0d:95:66:55: 1b:09:8d:e6:ce:86:70:cf:66:d4:63:d7:d6:47:76:bb:f8:e4: 37:2c:0c:9d:14:a9:ba:96:ce:0f:0f:15:b9:d8:f5:3b:39:04: a4:70:9d:2f:d9:ec:65:1c:e2:64:60:59:bc:72:d0:ba:63:e3: c9:d7:32:f4:4e:f9:82:25:58:81:fc:83:8c:c4:b9:c0:05:b5: a3:47:08:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QTUxNDExMC8GA1UEBRMoNTU0RDBFRkYyMjBENjZCNkU5QTQwOTBGMERDQ0JBOUEy OTVDRERCNTAeFw0yNTExMDMwNzAyMjBaFw0yNTExMTAwNzAyMjBaMBgxFjAUBgNV BAMTDTY5MDg1MzdjLWI1ZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn1SOaPOimWrdCah7S+dpyvCC6ib1KijLNzMFoSXI02oEH064Ux9zPAbjDVghd TE/QuR/sn1Gv6RHMI7dT6VZXLrBpzHtG51Yo/RiRW5A6EWDwfRsc0a3oFBrcEC1s ezdrM8EeFROm1tN9enHFz+QrVpoFxs+XSOT/1zosv9ajSzF2TtEEH77MpVwZr7mJ 1gz7ZPSj8mEmVc1HRWoLvexyoRcEt1ikCjVRCXZdVD9s67RWIKhsWhiubgHt+f9I NRIDBPcxyF/a3PUqKgtyMC4FM0tnnf/vHI1gH05QY158xkfwVSJU2H/zSyj9ev3D 2maFQ0MA6T64i9dUIDnH5bq1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ4BYAHmx oU1Hyd3sPph/5aIUGvQwHwYDVR0jBBgwFoAUVU0O/yINZrbppAkPDcy6milc3bUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRBNTE0LzNGRjI1QUZBMUY0 OTExRjA5NkY3QUU3QUM0RjlBRTAyL1ZVME9feUlOWnJicHBBa1BEY3k2bWlsYzNi VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVlUwT195SU5acmJwcEFrUERjeTZtaWxjM2JVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRB NTE0LzNGRjI1QUZBMUY0OTExRjA5NkY3QUU3QUM0RjlBRTAyL1ZVME9feUlOWnJi cHBBa1BEY3k2bWlsYzNiVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJZDdO0Ta7chxMcoYYKUSDXFC0ZE1FWIdZNqO4hK9EJkoAWwAAo0IGK7 mGKdDXd0Z0zq6XYz45a2iiKrJknOU42jd41/Upk3gIGPT5aj9/qf+2nzm4B44GHJ i5YZ3LHCr90/6j09GAjDAbD+0USgQcaGnZ8ajHnMegUFnZmikZkM8Z7yQluPASMq 8q+12V7vSvDvY9ZKu/qTkELRHSPRwLVCHc3hSbhE3j3XhwFKHlGPDZVmVRsJjebO hnDPZtRj19ZHdrv45DcsDJ0UqbqWzg8PFbnY9Ts5BKRwnS/Z7GUc4mRgWbxy0Lpj 48nXMvRO+YIlWIH8g4zEucAFtaNHCPc= -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:34 2025 by rpki-client