$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: mBWfAwU60YTm+yBg8PFU+lnQFJLTvnBW1asW0mZJuUQ= Subject key identifier: E7:E6:94:12:78:89:7F:42:0D:B3:88:4C:0C:A4:35:BE:02:F2:FF:4E Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 0132 Signing time: Sun 15 Jun 2025 03:44:10 +0000 Manifest this update: Sun 15 Jun 2025 03:44:10 +0000 Manifest next update: Sun 22 Jun 2025 03:44:10 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: YB3l7vD6PDUwm2R8aCCM4IqPgNx+kruE/i7CdHiPm3w=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Jun 15 03:44:10 2025 GMT Not After : Jun 22 03:44:10 2025 GMT Subject: CN=684e418a-822a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b3:69:8b:69:32:ee:81:d9:31:f6:16:cc:f9: f4:6b:ee:55:3d:d7:ce:57:32:4d:6f:36:4e:1d:2c: 1a:71:25:75:a6:a7:25:0f:de:8b:61:22:2d:34:ad: 17:ab:a5:b4:aa:5e:e9:bd:10:28:e0:1e:22:ad:58: 61:df:cc:7d:d7:34:2c:fa:5a:ce:49:8f:99:e8:67: 8b:ec:db:21:d8:1e:bf:5b:ca:ca:3a:93:c8:bd:a8: a9:fd:f5:20:7a:b5:ad:92:a8:f9:90:93:87:b7:06: 97:84:a4:a5:60:bc:b1:1f:13:58:46:f3:31:fb:9b: b7:c8:1e:39:bb:94:5b:ec:a2:bf:16:3b:3d:fe:7a: 30:5d:55:6e:d8:84:f4:61:c5:4f:75:96:36:ff:02: 71:56:ab:56:de:96:ea:36:3b:6f:90:40:ce:be:1b: f0:8f:3f:b5:b5:c4:93:38:dd:c8:63:d2:d0:88:42: 73:72:0c:64:69:c9:38:4b:27:91:c1:be:2d:7e:3a: 7a:09:90:a8:c5:8c:5d:aa:44:b8:80:d3:38:48:cb: 45:f2:be:0d:64:7a:a5:1c:ba:bd:14:73:40:3d:e8: 06:52:3e:c7:79:50:98:71:42:1b:92:9a:5b:76:32: 25:b9:8f:17:03:1b:f0:8b:01:14:65:c6:69:17:18: 1e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E6:94:12:78:89:7F:42:0D:B3:88:4C:0C:A4:35:BE:02:F2:FF:4E X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:ac:85:e3:63:02:0b:63:e0:cd:8a:45:16:cb:df:07:a2:54: d0:80:98:63:3a:12:73:71:95:f5:d4:b9:96:34:15:b1:41:e2: d5:54:30:79:bb:d1:d0:b8:5c:7e:8d:ce:9c:c1:4b:e5:8b:13: 9d:0d:40:20:f6:3f:cf:1e:9d:fa:31:22:92:98:d6:a1:b9:e0: ea:9e:83:77:94:ff:75:71:73:83:c9:a4:dc:4d:a7:9f:bb:d0: 10:3e:63:38:f0:99:a7:1b:1f:c3:9b:17:06:d0:99:c3:c0:4a: bf:b2:7b:31:0f:c4:3d:3d:8c:a7:6c:30:3a:5c:39:68:99:6c: 3b:01:32:96:2d:14:ed:98:fb:db:03:7c:9b:ef:30:35:d7:10: b0:ce:22:8e:4d:c6:bc:2e:ec:b8:44:77:5c:e2:27:71:57:22: e1:ac:35:0c:b8:b9:99:c8:5c:cc:00:88:ac:ff:27:b7:11:21: 83:bb:93:c8:25:a4:c5:3b:48:8a:b0:96:0a:ec:f4:91:5a:4d: 53:73:e8:cb:86:02:15:fb:d7:cd:dc:dc:96:79:85:f1:d5:a1: 3e:e0:ea:4f:e3:3c:9a:23:93:53:eb:b4:5a:ad:8c:af:ca:fd: fc:17:d2:f2:f1:8c:34:c8:df:05:3c:e7:26:63:0c:8a:b3:15: cc:2e:b3:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUwNjE1MDM0NDEwWhcNMjUwNjIyMDM0NDEwWjAYMRYwFAYD VQQDEw02ODRlNDE4YS04MjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7Npi2ky7oHZMfYWzPn0a+5VPdfOVzJNbzZOHSwacSV1pqclD96LYSItNK0X q6W0ql7pvRAo4B4irVhh38x91zQs+lrOSY+Z6GeL7Nsh2B6/W8rKOpPIvaip/fUg erWtkqj5kJOHtwaXhKSlYLyxHxNYRvMx+5u3yB45u5Rb7KK/Fjs9/nowXVVu2IT0 YcVPdZY2/wJxVqtW3pbqNjtvkEDOvhvwjz+1tcSTON3IY9LQiEJzcgxkack4SyeR wb4tfjp6CZCoxYxdqkS4gNM4SMtF8r4NZHqlHLq9FHNAPegGUj7HeVCYcUIbkppb djIluY8XAxvwiwEUZcZpFxge5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfmlBJ4 iX9CDbOITAykNb4C8v9OMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAorIXjYwILY+DNikUWy98HolTQgJhjOhJzcZX11LmWNBWxQeLVVDB5 u9HQuFx+jc6cwUvlixOdDUAg9j/PHp36MSKSmNahueDqnoN3lP91cXODyaTcTaef u9AQPmM48JmnGx/DmxcG0JnDwEq/snsxD8Q9PYynbDA6XDlomWw7ATKWLRTtmPvb A3yb7zA11xCwziKOTca8Luy4RHdc4idxVyLhrDUMuLmZyFzMAIis/ye3ESGDu5PI JaTFO0iKsJYK7PSRWk1Tc+jLhgIV+9fN3NyWeYXx1aE+4OpP4zyaI5NT67RarYyv yv38F9Ly8Yw0yN8FPOcmYwyKsxXMLrNc -----END CERTIFICATE-----Generated at Sun Jun 15 09:51:09 2025 by rpki-client