$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: eC7QU0QvO60SzUeMg4/MwCPRGGAPV3kGpmCHBhIahjI= Subject key identifier: 23:DF:02:2C:21:C2:34:EB:C4:ED:62:08:78:59:2B:C4:A6:1E:66:19 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 014E Signing time: Sat 09 Aug 2025 04:37:27 +0000 Manifest this update: Sat 09 Aug 2025 04:37:26 +0000 Manifest next update: Sat 16 Aug 2025 04:37:26 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: f1dwB77k/stoPw90Fe/A0uy1tNw5Xr7cvZy2E2BCcTA=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Aug 9 04:37:26 2025 GMT Not After : Aug 16 04:37:26 2025 GMT Subject: CN=6896d087-5630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:df:11:8e:71:49:cc:2e:b5:14:3d:93:16:f4: 2f:c2:e4:e8:7b:12:f0:00:95:00:dc:e6:85:0d:b7: 00:e3:70:1b:24:b3:d3:30:e6:48:9d:36:0e:53:16: 65:71:11:15:72:a7:37:ac:b5:a1:6d:d4:a6:6c:0a: da:4a:f2:56:32:46:18:4f:6b:ee:82:c9:01:87:e3: c5:f8:cc:04:fb:8d:c7:3d:b2:0b:cd:08:7d:ba:34: fb:e2:b2:86:15:27:43:df:37:9e:56:68:5b:82:42: db:f1:b7:b4:73:2c:e3:a7:3b:5b:b5:c1:47:bb:62: 35:95:54:1f:9b:42:2a:ae:03:d2:a2:7d:50:7d:c3: 06:b9:d3:a2:de:8b:90:77:ef:5c:c3:9c:db:45:33: 31:1c:9d:fe:7c:b0:79:87:9e:e7:59:45:d6:e2:e5: 48:91:d9:7e:bd:a7:36:f8:40:b4:e3:4c:6b:1a:d2: 87:f3:c3:df:10:95:c7:b2:a6:7d:2b:4b:d2:19:6c: 08:35:20:9c:b0:a3:8f:a2:8f:5e:dc:61:b7:68:10: b9:2a:fe:e3:2d:64:08:32:70:8e:88:7c:96:d3:45: fd:8b:05:82:c8:30:83:da:29:27:0c:8a:2a:ea:1b: 7a:a4:38:27:c8:ec:31:65:09:3f:8e:0c:12:0c:9f: 30:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:DF:02:2C:21:C2:34:EB:C4:ED:62:08:78:59:2B:C4:A6:1E:66:19 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:01:ad:7d:ef:d2:d6:bc:55:44:a7:5c:cb:8c:91:3e:51:3a: 70:28:ed:94:dd:ec:c7:76:c7:7f:bb:fd:73:3d:4b:4e:af:24: e1:c6:ef:ca:eb:65:1a:10:42:86:d0:19:bf:f6:2e:11:e7:b1: 05:c8:23:54:19:87:cb:f2:32:25:1d:27:95:7c:52:08:6b:32: 7d:cc:b9:7f:8c:19:d5:e5:b9:49:e2:17:d8:d4:e0:68:ea:be: a9:32:15:6b:db:cd:63:24:9c:af:be:da:16:c7:03:4d:cb:f3: b6:7e:f7:e7:d7:93:a9:01:40:49:ff:18:d8:e4:b6:2c:c3:81: e2:86:62:bb:63:96:ca:1a:01:0f:99:18:aa:0e:22:ef:c4:a6: 1f:84:15:71:c0:81:fb:7f:24:b5:7f:47:fd:00:10:f0:39:57: e0:98:75:8b:78:6a:0c:3d:98:1a:ca:c3:0f:44:6e:21:8c:00: 60:73:fe:4e:2d:4c:9c:22:04:d3:26:b4:e2:73:26:ed:f4:15: 9b:69:6c:78:60:31:88:86:88:09:e0:4b:99:e7:0e:0f:98:41: db:be:da:78:d7:99:40:37:06:e9:86:21:cf:c1:20:21:7d:71: a7:64:c9:e8:c9:34:8a:8e:20:e8:00:e3:c4:20:dc:c5:26:fc: e4:2a:da:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUwODA5MDQzNzI2WhcNMjUwODE2MDQzNzI2WjAYMRYwFAYD VQQDEw02ODk2ZDA4Ny01NjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0t8RjnFJzC61FD2TFvQvwuToexLwAJUA3OaFDbcA43AbJLPTMOZInTYOUxZl cREVcqc3rLWhbdSmbAraSvJWMkYYT2vugskBh+PF+MwE+43HPbILzQh9ujT74rKG FSdD3zeeVmhbgkLb8be0cyzjpztbtcFHu2I1lVQfm0IqrgPSon1QfcMGudOi3ouQ d+9cw5zbRTMxHJ3+fLB5h57nWUXW4uVIkdl+vac2+EC040xrGtKH88PfEJXHsqZ9 K0vSGWwINSCcsKOPoo9e3GG3aBC5Kv7jLWQIMnCOiHyW00X9iwWCyDCD2iknDIoq 6ht6pDgnyOwxZQk/jgwSDJ8wMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCPfAiwh wjTrxO1iCHhZK8SmHmYZMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvAa1979LWvFVEp1zLjJE+UTpwKO2U3ezHdsd/u/1zPUtOryThxu/K 62UaEEKG0Bm/9i4R57EFyCNUGYfL8jIlHSeVfFIIazJ9zLl/jBnV5blJ4hfY1OBo 6r6pMhVr281jJJyvvtoWxwNNy/O2fvfn15OpAUBJ/xjY5LYsw4HihmK7Y5bKGgEP mRiqDiLvxKYfhBVxwIH7fyS1f0f9ABDwOVfgmHWLeGoMPZgaysMPRG4hjABgc/5O LUycIgTTJrTicybt9BWbaWx4YDGIhogJ4EuZ5w4PmEHbvtp415lANwbphiHPwSAh fXGnZMnoyTSKjiDoAOPEINzFJvzkKtqG -----END CERTIFICATE-----Generated at Sun Aug 10 04:47:22 2025 by rpki-client