$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: pQhnFuV+xtGnQjXRxn6dBtE0hKLoM3xJ/zkVcVOBUTA= Subject key identifier: 30:D4:C1:1D:08:C9:37:CA:9C:B2:06:08:27:54:37:E7:92:A9:D5:79 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 01D1 Signing time: Fri 17 Apr 2026 03:23:46 +0000 Manifest this update: Fri 17 Apr 2026 03:23:45 +0000 Manifest next update: Fri 24 Apr 2026 03:23:45 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: QVOFxU1A/joJeKx9Co9dz9NBdc63HH0zpnd0UHMr9b0=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: 7xvDxYZ8Q7Qr+JZG4rTDiVXog3eF3DmNJ6tjYp0V/mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Apr 17 03:23:45 2026 GMT Not After : Apr 24 03:23:45 2026 GMT Subject: CN=69e1a7c1-ef69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:25:02:65:fc:88:5f:29:de:e0:8d:5d:98:c9: c3:f5:ce:5c:e0:bb:41:47:6b:b4:bd:91:cd:7b:66: 3d:3c:82:f2:53:01:83:b2:62:af:bf:e4:8d:81:37: bd:3f:74:38:d4:ea:ca:1a:d2:c0:db:03:ba:1a:2d: bf:b3:0e:1e:f6:17:0f:3c:c8:14:e4:16:0f:8b:3b: ee:f4:fa:17:0e:ad:91:ad:4d:90:0b:07:e1:a2:5b: 35:76:17:43:5d:38:27:ee:4b:a6:df:88:00:89:49: bc:e7:38:9e:8f:38:a3:07:4b:a4:65:f7:57:65:2d: a7:e7:b7:34:bb:4d:df:cb:6e:73:97:45:06:c5:a8: 29:de:3a:40:9a:50:36:f4:d5:72:f0:83:41:23:74: cb:2b:70:dd:d1:43:3c:9a:62:95:22:e1:cf:8e:05: 51:e6:04:0e:93:dd:ee:5a:34:ba:5b:6f:ec:41:be: a4:ac:a3:9c:9e:8e:11:9d:d8:9c:c3:14:6e:2d:f3: 73:54:7b:de:06:9e:f9:a8:94:9f:12:4a:30:7a:08: 30:c9:e2:59:5b:b8:e8:fd:d6:5e:a9:ad:a9:3c:3a: af:19:65:33:72:f0:82:2a:95:f5:a9:46:7d:b0:95: f8:ff:42:1e:4a:da:7e:59:8a:9e:35:d4:75:cf:f0: 13:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D4:C1:1D:08:C9:37:CA:9C:B2:06:08:27:54:37:E7:92:A9:D5:79 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:b0:e1:86:c2:1f:4d:52:c1:36:52:a8:5d:fc:11:cb:b9:b7: c0:5a:6d:c7:56:9e:55:4f:76:6e:74:b5:bb:61:02:b4:16:fa: 4f:3a:69:4d:5d:c3:95:6f:02:47:c9:36:2d:eb:22:6c:af:74: 24:b6:df:e3:4e:63:8c:bb:f4:0d:57:0d:8c:07:68:75:a0:62: 8c:d8:3b:e4:70:a9:38:61:2f:6e:41:69:1c:1b:4d:11:40:91: 1c:e6:d0:67:ae:02:cf:0e:b8:79:35:7f:5e:35:64:cb:4b:e4: 27:85:a6:a2:d0:2e:7a:cb:f0:8a:98:25:6a:c2:65:f0:94:48: 76:73:4c:5f:e7:fc:8a:f9:95:0f:2c:fb:0e:63:85:83:ea:f6: 81:7e:bd:16:9e:fc:e1:12:43:e7:92:f9:33:f6:d6:83:d5:92: ed:11:90:5c:44:0f:f7:df:21:b8:9c:6d:fb:ea:a4:0a:f3:fe: c2:39:77:52:14:d7:1a:e0:01:69:3e:49:1d:55:fa:f2:47:46: 44:55:df:ec:cf:de:e9:24:dd:51:20:b1:48:03:ee:d6:a7:3d: f4:9b:97:90:be:d1:d4:dd:2a:7c:2f:10:af:22:74:6f:82:92: 54:37:17:49:c9:e1:cf:48:dc:5c:c4:b9:19:f1:08:bd:57:5f: 20:ae:64:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjYwNDE3MDMyMzQ1WhcNMjYwNDI0MDMyMzQ1WjAYMRYwFAYD VQQDEw02OWUxYTdjMS1lZjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyUCZfyIXyne4I1dmMnD9c5c4LtBR2u0vZHNe2Y9PILyUwGDsmKvv+SNgTe9 P3Q41OrKGtLA2wO6Gi2/sw4e9hcPPMgU5BYPizvu9PoXDq2RrU2QCwfhols1dhdD XTgn7kum34gAiUm85ziejzijB0ukZfdXZS2n57c0u03fy25zl0UGxagp3jpAmlA2 9NVy8INBI3TLK3Dd0UM8mmKVIuHPjgVR5gQOk93uWjS6W2/sQb6krKOcno4Rndic wxRuLfNzVHveBp75qJSfEkoweggwyeJZW7jo/dZeqa2pPDqvGWUzcvCCKpX1qUZ9 sJX4/0IeStp+WYqeNdR1z/AToQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDDUwR0I yTfKnLIGCCdUN+eSqdV5MB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdLDhhsIfTVLBNlKoXfwRy7m3wFptx1aeVU92bnS1u2ECtBb6TzppTV3DlW8C R8k2LesibK90JLbf405jjLv0DVcNjAdodaBijNg75HCpOGEvbkFpHBtNEUCRHObQ Z64Czw64eTV/XjVky0vkJ4WmotAuesvwipglasJl8JRIdnNMX+f8ivmVDyz7DmOF g+r2gX69Fp784RJD55L5M/bWg9WS7RGQXEQP998huJxt++qkCvP+wjl3UhTXGuAB aT5JHVX68kdGRFXf7M/e6STdUSCxSAPu1qc99JuXkL7R1N0qfC8QryJ0b4KSVDcX Scnhz0jcXMS5GfEIvVdfIK5kDg== -----END CERTIFICATE-----Generated at Fri Apr 17 04:57:27 2026 by rpki-client