$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: 1YqM93bosIseFHggXlb6TNZU+d+yxiKB8/piwC2ZRrc= Subject key identifier: B5:2B:1D:59:20:C9:C0:F0:E0:F7:44:0F:B6:05:BD:89:CC:8C:DA:34 Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: 0125 Signing time: Wed 05 Nov 2025 04:54:06 +0000 Manifest this update: Wed 05 Nov 2025 04:54:05 +0000 Manifest next update: Wed 12 Nov 2025 04:54:05 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: /6flYH2H/h9QOiRYG0oi8oHpO6HpfIYbojvmsKJplB0=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: Nov 5 04:54:05 2025 GMT Not After : Nov 12 04:54:05 2025 GMT Subject: CN=690ad86d-cf96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ff:0d:c9:da:20:dd:f1:36:d8:7c:eb:6f:8c: 63:2d:fa:59:b4:4a:27:1c:db:76:3b:e0:b8:2f:a5: 3c:68:4f:eb:a6:c1:88:91:77:14:3e:20:d9:41:01: 9b:23:52:ae:60:72:bb:3a:d0:46:1e:73:68:31:08: 00:c3:6e:57:d4:1f:70:82:15:51:f0:78:30:b8:0d: 3b:55:30:a3:de:22:0e:9a:44:0f:c3:9c:b2:1c:f4: 06:f9:76:f6:13:74:b0:eb:da:09:3c:27:35:07:fd: 5b:f1:16:09:53:01:7f:7d:40:7f:7a:5a:2f:ed:73: 0f:5d:c8:46:ff:bd:42:72:49:68:09:32:f6:3e:b4: 9c:86:ce:52:13:0f:b6:00:8e:e9:61:df:5b:72:e7: b8:df:e1:fe:ea:9b:95:da:17:53:a5:c2:37:be:5d: 81:70:e7:ac:6a:e4:21:d4:ac:96:b2:20:84:87:95: 2a:58:ca:19:d8:e7:ad:6a:74:13:06:84:52:9d:23: 7a:4c:ca:ed:e1:a4:12:8a:0f:f8:27:71:c9:01:67: 48:3b:a9:e7:4a:d5:47:42:0c:96:66:f6:57:14:f5: 4e:f1:7b:41:32:25:2a:e5:d7:78:3b:01:10:df:42: 8c:ba:a4:54:02:67:1f:cf:00:8a:79:fb:f8:bd:70: 64:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2B:1D:59:20:C9:C0:F0:E0:F7:44:0F:B6:05:BD:89:CC:8C:DA:34 X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:35:c7:06:1a:90:07:50:39:3a:74:b1:8b:13:57:40:b9:ac: 24:16:ec:0e:97:e1:22:cc:ef:a6:0c:9c:7a:c0:31:ee:63:2e: 0b:da:ca:ce:a1:54:6d:6b:de:f9:2d:7c:c0:2b:b0:93:8d:12: fc:e1:39:6a:ca:a1:ab:4e:7e:07:e8:f2:ea:66:13:dc:f3:21: f0:8d:48:2e:86:e0:6b:02:10:99:db:3f:84:9c:41:dd:ae:48: 67:d0:81:17:ef:7a:d2:5f:d4:fc:e8:64:b3:6c:30:4d:c3:1a: fa:64:da:23:74:52:aa:ee:6d:82:7a:62:f4:87:57:33:30:7a: dc:0d:44:b3:4c:ab:0f:58:93:4b:26:4f:07:5d:ae:01:08:4c: 57:d3:c5:2b:37:80:31:b3:15:de:39:11:12:57:65:3a:75:a1: f5:0c:e2:23:81:04:c5:6b:e7:83:85:8e:38:fd:3b:1c:18:3a: d5:8a:92:d0:43:27:7d:73:eb:94:7f:16:0c:06:ef:b4:7b:48: c6:e2:d2:a5:98:12:a0:2c:b0:ab:7c:8d:77:fb:90:3f:a1:4d: c0:77:32:3b:6a:87:38:fc:21:96:9a:3d:92:de:00:af:7c:62: 17:94:d2:a8:03:96:cd:1a:e0:91:1f:fd:88:74:84:dd:c7:8d: a0:c2:5d:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUxMTA1MDQ1NDA1WhcNMjUxMTEyMDQ1NDA1WjAYMRYwFAYD VQQDEw02OTBhZDg2ZC1jZjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArf8Nydog3fE22Hzrb4xjLfpZtEonHNt2O+C4L6U8aE/rpsGIkXcUPiDZQQGb I1KuYHK7OtBGHnNoMQgAw25X1B9wghVR8HgwuA07VTCj3iIOmkQPw5yyHPQG+Xb2 E3Sw69oJPCc1B/1b8RYJUwF/fUB/elov7XMPXchG/71CckloCTL2PrSchs5SEw+2 AI7pYd9bcue43+H+6puV2hdTpcI3vl2BcOesauQh1KyWsiCEh5UqWMoZ2OetanQT BoRSnSN6TMrt4aQSig/4J3HJAWdIO6nnStVHQgyWZvZXFPVO8XtBMiUq5dd4OwEQ 30KMuqRUAmcfzwCKefv4vXBkLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUrHVkg ycDw4PdED7YFvYnMjNo0MB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLNccGGpAHUDk6dLGLE1dAuawkFuwOl+EizO+mDJx6wDHuYy4L2srO oVRta975LXzAK7CTjRL84TlqyqGrTn4H6PLqZhPc8yHwjUguhuBrAhCZ2z+EnEHd rkhn0IEX73rSX9T86GSzbDBNwxr6ZNojdFKq7m2CemL0h1czMHrcDUSzTKsPWJNL Jk8HXa4BCExX08UrN4AxsxXeORESV2U6daH1DOIjgQTFa+eDhY44/TscGDrVipLQ Qyd9c+uUfxYMBu+0e0jG4tKlmBKgLLCrfI13+5A/oU3AdzI7aoc4/CGWmj2S3gCv fGIXlNKoA5bNGuCRH/2IdITdx42gwl0+ -----END CERTIFICATE-----Generated at Wed Nov 5 08:00:17 2025 by rpki-client