$ rpki-client -vvf rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft File: VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft (raw, json) Hash identifier: DGVbruulIkapfjD/W4jeNtlPYp3CuncEUGIkbXBU8b0= Subject key identifier: 09:E4:14:F2:0D:55:4A:58:32:2C:AC:F6:5D:A0:49:BB:94:31:96:9A Authority key identifier: 54:58:3C:29:BB:FB:50:09:DB:9C:C0:56:14:F6:3D:62:BC:B7:7C:39 Certificate issuer: /CN=A9195AA2/serialNumber=54583C29BBFB5009DB9CC05614F63D62BCB77C39 Certificate serial: 0C8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft Manifest number: 14B1 Signing time: Tue 04 Nov 2025 18:28:11 +0000 Manifest this update: Tue 04 Nov 2025 18:28:10 +0000 Manifest next update: Tue 11 Nov 2025 18:28:10 +0000 Files and hashes: 1: VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl (hash: pZYtclgIaZG9rixZ1Dea4EIrAmjMLRCB7/W+oWDuAZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:28:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3211 (0xc8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195AA2, serialNumber=54583C29BBFB5009DB9CC05614F63D62BCB77C39 Validity Not Before: Nov 4 18:28:10 2025 GMT Not After : Nov 11 18:28:10 2025 GMT Subject: CN=690a45bb-f626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:13:4e:f2:1f:a3:1e:f9:35:fd:78:df:77:6e: d3:a6:43:aa:0d:21:a5:71:54:ac:73:5c:fc:41:af: f3:7c:ea:cb:d8:0d:af:d4:33:04:43:a4:be:1c:c5: f4:1d:e3:08:be:bd:b6:83:18:3a:1d:df:02:c6:42: b6:04:e1:a0:7f:bc:a3:1f:d4:18:51:6f:5b:c1:f4: ee:7c:e8:28:8e:4a:91:01:c6:c2:2b:08:a4:c5:ef: cd:fd:5b:fd:b1:59:c2:2d:de:79:28:bb:d8:df:4f: 3d:81:bd:5a:9a:cf:01:2c:e3:ba:60:96:04:a7:80: c1:fb:74:a1:0d:71:c4:c0:b5:d0:8d:f5:58:d8:51: 6d:d8:4c:50:56:01:29:1b:3a:fb:9e:09:35:d7:30: 92:3f:87:2e:84:14:e1:71:82:d3:ce:40:ba:8f:bb: b4:e2:67:1c:dc:8c:58:2d:2e:b2:1e:0e:c6:ef:d9: 1f:c4:dc:5f:7c:1b:d7:50:38:44:a9:9a:bd:1c:31: 1c:7d:87:68:0d:1d:d9:9e:f3:3f:8f:1b:2c:0d:2c: 83:a5:45:3e:ac:5f:f2:5e:10:b6:9d:08:8f:de:6a: 1d:b6:fd:3d:e4:97:7c:9c:7e:8b:cd:01:ff:5b:b1: 0f:64:fb:25:a9:74:7b:c0:ab:c8:5b:70:bc:92:7d: 58:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E4:14:F2:0D:55:4A:58:32:2C:AC:F6:5D:A0:49:BB:94:31:96:9A X509v3 Authority Key Identifier: keyid:54:58:3C:29:BB:FB:50:09:DB:9C:C0:56:14:F6:3D:62:BC:B7:7C:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:50:25:30:9c:47:fa:8e:51:c8:ce:98:33:f9:2b:c4:95:6e: 22:09:ae:3f:f5:60:de:fb:98:e4:b4:4a:73:7a:c3:20:1a:ef: 32:b5:91:13:8e:23:77:bc:cf:12:98:64:c5:ad:47:32:22:80: 35:2f:57:92:9e:3a:d7:66:f9:9b:8f:bc:3f:95:a8:2a:31:1c: 36:a3:f1:d3:11:58:6d:4d:2d:ed:21:f3:20:3c:82:f7:f6:27: f1:68:d8:39:30:9f:f0:70:b0:07:cc:70:49:7e:d7:82:12:e4: e1:e0:cb:ab:0a:00:8c:ae:3b:bb:b3:15:90:7c:db:72:6b:77: 62:1d:bf:a9:fb:7a:d7:43:78:1b:b2:47:26:19:73:f7:62:f2: 37:4b:29:03:be:a6:1e:30:ad:96:29:39:d5:7b:ae:c3:8e:a9: 97:f1:62:99:45:50:38:38:bd:66:06:4c:9c:80:c2:db:35:2a: e9:35:58:49:33:4f:9e:ac:39:6c:25:3c:33:99:9c:55:29:ac: 78:4f:86:3e:cf:ff:9b:63:44:c0:21:60:6d:4f:0c:a1:1d:94: 9f:d9:a6:dc:3e:e7:57:dc:4b:fb:51:c0:70:e3:5f:e4:96:f5: 86:8c:52:3e:39:83:b2:2b:f1:0d:95:32:d6:f3:12:e4:6d:2a: 9d:2a:ba:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBQTIxMTAvBgNVBAUTKDU0NTgzQzI5QkJGQjUwMDlEQjlDQzA1NjE0RjYzRDYy QkNCNzdDMzkwHhcNMjUxMTA0MTgyODEwWhcNMjUxMTExMTgyODEwWjAYMRYwFAYD VQQDEw02OTBhNDViYi1mNjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xNO8h+jHvk1/Xjfd27TpkOqDSGlcVSsc1z8Qa/zfOrL2A2v1DMEQ6S+HMX0 HeMIvr22gxg6Hd8CxkK2BOGgf7yjH9QYUW9bwfTufOgojkqRAcbCKwikxe/N/Vv9 sVnCLd55KLvY3089gb1ams8BLOO6YJYEp4DB+3ShDXHEwLXQjfVY2FFt2ExQVgEp Gzr7ngk11zCSP4cuhBThcYLTzkC6j7u04mcc3IxYLS6yHg7G79kfxNxffBvXUDhE qZq9HDEcfYdoDR3ZnvM/jxssDSyDpUU+rF/yXhC2nQiP3modtv095Jd8nH6LzQH/ W7EPZPslqXR7wKvIW3C8kn1YEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnkFPIN VUpYMiys9l2gSbuUMZaaMB8GA1UdIwQYMBaAFFRYPCm7+1AJ25zAVhT2PWK8t3w5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUFBMi8xRkUzNTdENDA2 QzUxMUVBODg4RUQ5MTlDNEY5QUUwMi9WRmc4S2J2N1VBbmJuTUJXRlBZOVlyeTNm RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGZzhLYnY3VUFuYm5NQldGUFk5WXJ5M2ZEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUFBMi8xRkUzNTdENDA2QzUxMUVBODg4RUQ5MTlDNEY5QUUwMi9WRmc4S2J2N1VB bmJuTUJXRlBZOVlyeTNmRGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaUCUwnEf6jlHIzpgz+SvElW4iCa4/9WDe+5jktEpzesMgGu8ytZET jiN3vM8SmGTFrUcyIoA1L1eSnjrXZvmbj7w/lagqMRw2o/HTEVhtTS3tIfMgPIL3 9ifxaNg5MJ/wcLAHzHBJfteCEuTh4MurCgCMrju7sxWQfNtya3diHb+p+3rXQ3gb skcmGXP3YvI3SykDvqYeMK2WKTnVe67DjqmX8WKZRVA4OL1mBkycgMLbNSrpNVhJ M0+erDlsJTwzmZxVKax4T4Y+z/+bY0TAIWBtTwyhHZSf2abcPudX3Ev7UcBw41/k lvWGjFI+OYOyK/ENlTLW8xLkbSqdKrou -----END CERTIFICATE-----Generated at Wed Nov 5 15:16:52 2025 by rpki-client