$ rpki-client -vvf rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft File: vbWSaolrtlGg51QKOYzV7wcUFx8.mft (raw, json) Hash identifier: cGQyN4Rh8zMjQtGPGtCWmYwJZilceC9IiwCEtPuEXtk= Subject key identifier: 41:DB:4A:19:4F:8F:8C:FB:04:51:5D:EA:BC:19:99:9E:5B:FF:CF:14 Authority key identifier: BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F Certificate issuer: /CN=A916A5CD/serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Certificate serial: 046F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft Manifest number: 046B Signing time: Mon 03 Nov 2025 00:07:28 +0000 Manifest this update: Mon 03 Nov 2025 00:07:27 +0000 Manifest next update: Mon 10 Nov 2025 00:07:27 +0000 Files and hashes: 1: vbWSaolrtlGg51QKOYzV7wcUFx8.crl (hash: d6YUgLXWp5bAL4Aa+0F7x84VBCP05zqMbJaWvwCc6sE=) 2: 66864FCE688011ECAA829E31C4F9AE02.roa (hash: w5bL3BxYC2VJUK/MoXPR18n/PN4tqZHifWiPk20fkzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1135 (0x46f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A5CD, serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Validity Not Before: Nov 3 00:07:27 2025 GMT Not After : Nov 10 00:07:27 2025 GMT Subject: CN=6907f23f-ea7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:48:6c:cb:c3:dd:06:28:c7:2d:22:9d:1b:9e: d3:a8:e8:d6:16:df:c2:eb:dd:7d:79:84:77:d9:f3: d7:a5:bf:24:3e:0d:64:32:f1:e4:d8:85:82:a5:4f: 0d:ed:af:c9:56:c2:91:b6:4a:5c:85:aa:f7:6c:ea: 41:d0:af:ae:51:04:8d:85:b1:26:87:9b:2b:0b:73: 33:56:77:dc:ee:8f:ec:04:45:86:26:e8:08:3c:10: b9:4a:cb:67:4a:e9:39:14:85:92:c9:69:a4:dd:e6: fa:a1:d2:36:f5:4b:3a:3d:bd:43:67:4c:0e:f6:cf: 27:38:d9:51:d2:a2:62:4e:89:46:ec:9f:72:79:ce: 96:79:4c:2f:49:7f:55:88:9c:30:09:04:df:25:77: 18:09:0e:17:9f:d5:f1:13:06:d3:7a:70:8d:6a:dd: 85:c8:30:d3:27:8c:07:c8:fb:7f:1b:78:cb:fe:3d: d0:c0:82:15:b2:48:7d:78:4b:37:01:43:e2:ad:09: 49:25:c0:2d:7f:6c:cc:4f:d0:7d:e1:70:34:43:b0: d0:d7:a8:c5:45:dd:a1:66:e8:92:46:12:06:40:29: db:01:84:c8:94:4e:90:fb:78:9c:86:15:e7:74:b7: 62:7b:1e:77:b3:29:4d:0c:9e:d5:f4:64:92:bb:f2: 8d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:DB:4A:19:4F:8F:8C:FB:04:51:5D:EA:BC:19:99:9E:5B:FF:CF:14 X509v3 Authority Key Identifier: keyid:BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:94:16:9f:21:f8:a7:45:b3:cb:7f:4b:fd:26:a6:77:44:9c: 70:dc:e4:84:77:07:fd:22:c2:c4:66:07:66:a6:e2:dd:0e:5b: d4:56:b8:ed:a0:dc:86:7c:7c:c4:ec:16:71:80:f9:47:48:68: 91:2b:32:eb:f0:5b:f6:31:fd:e1:fe:73:c5:f2:82:76:9b:6e: 86:f1:4d:e8:e3:bd:4c:19:bc:b2:4b:1c:fa:50:65:c9:8b:dd: 05:75:f4:4f:c0:5b:e6:81:55:84:1d:5a:d4:16:e9:0f:23:56: a6:83:53:c9:da:32:68:90:6d:82:6c:3f:c7:ea:c5:6c:cb:66: 15:c6:c7:ef:ec:50:ce:f4:77:24:1b:f5:4d:54:52:17:ca:3e: 86:35:4a:f6:91:9e:29:4f:ad:0d:0b:1b:57:1f:fd:4f:db:d9: 18:92:31:cf:63:58:20:9d:50:33:10:7a:50:b1:d0:d9:2b:12: 27:f4:5f:be:df:9c:3f:e3:5e:c1:18:7a:18:56:ed:06:ac:4a: 96:6f:10:68:18:79:1a:ca:c1:e6:5d:ec:23:df:61:b5:e2:e5: 29:31:f4:c2:f0:44:36:18:77:8d:ef:10:3a:ed:ef:ea:d0:2c: ab:98:73:19:6b:d1:18:ab:43:1c:a5:0b:fe:56:92:d9:bd:2a: 37:3a:57:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1Q0QxMTAvBgNVBAUTKEJEQjU5MjZBODk2QkI2NTFBMEU3NTQwQTM5OENENUVG MDcxNDE3MUYwHhcNMjUxMTAzMDAwNzI3WhcNMjUxMTEwMDAwNzI3WjAYMRYwFAYD VQQDEw02OTA3ZjIzZi1lYTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Ehsy8PdBijHLSKdG57TqOjWFt/C6919eYR32fPXpb8kPg1kMvHk2IWCpU8N 7a/JVsKRtkpchar3bOpB0K+uUQSNhbEmh5srC3MzVnfc7o/sBEWGJugIPBC5Sstn Suk5FIWSyWmk3eb6odI29Us6Pb1DZ0wO9s8nONlR0qJiTolG7J9yec6WeUwvSX9V iJwwCQTfJXcYCQ4Xn9XxEwbTenCNat2FyDDTJ4wHyPt/G3jL/j3QwIIVskh9eEs3 AUPirQlJJcAtf2zMT9B94XA0Q7DQ16jFRd2hZuiSRhIGQCnbAYTIlE6Q+3ichhXn dLdiex53sylNDJ7V9GSSu/KNfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHbShlP j4z7BFFd6rwZmZ5b/88UMB8GA1UdIwQYMBaAFL21kmqJa7ZRoOdUCjmM1e8HFBcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTVDRC8yOTQzNkZDRTY4 N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRsR2c1MVFLT1l6Vjd3Y1VG eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZiV1Nhb2xydGxHZzUxUUtPWXpWN3djVUZ4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTVDRC8yOTQzNkZDRTY4N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRs R2c1MVFLT1l6Vjd3Y1VGeDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAflBafIfinRbPLf0v9JqZ3RJxw3OSEdwf9IsLEZgdmpuLdDlvUVrjt oNyGfHzE7BZxgPlHSGiRKzLr8Fv2Mf3h/nPF8oJ2m26G8U3o471MGbyySxz6UGXJ i90FdfRPwFvmgVWEHVrUFukPI1amg1PJ2jJokG2CbD/H6sVsy2YVxsfv7FDO9Hck G/VNVFIXyj6GNUr2kZ4pT60NCxtXH/1P29kYkjHPY1ggnVAzEHpQsdDZKxIn9F++ 35w/417BGHoYVu0GrEqWbxBoGHkaysHmXewj32G14uUpMfTC8EQ2GHeN7xA67e/q 0CyrmHMZa9EYq0McpQv+VpLZvSo3Ole+ -----END CERTIFICATE-----Generated at Tue Nov 4 08:07:12 2025 by rpki-client