$ rpki-client -vvf rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft File: VuOUrxtay4_0gsjGAmn-oOTEJ74.mft (raw, json) Hash identifier: ZZvD4TvGHkrvsycLbiuTXrQqNhHem/X0aNZQT7CU2Os= Subject key identifier: D5:2C:5E:B3:1F:E1:24:E9:FF:61:62:E6:7F:80:63:D4:FF:87:89:E5 Authority key identifier: 56:E3:94:AF:1B:5A:CB:8F:F4:82:C8:C6:02:69:FE:A0:E4:C4:27:BE Certificate issuer: /CN=A91A995E/serialNumber=56E394AF1B5ACB8FF482C8C60269FEA0E4C427BE Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VuOUrxtay4_0gsjGAmn-oOTEJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft Manifest number: 7F Signing time: Wed 05 Nov 2025 06:55:45 +0000 Manifest this update: Wed 05 Nov 2025 06:55:45 +0000 Manifest next update: Wed 12 Nov 2025 06:55:45 +0000 Files and hashes: 1: VuOUrxtay4_0gsjGAmn-oOTEJ74.crl (hash: wzZzuk3KmEEwXLYfayx12i7f8JXH8lQLYZ06hr3wAjY=) 2: 3E41E766FA6411EFB8C12C50C4F9AE02.roa (hash: DEF0xkvw3q1tLXUQiXU0nzrLNhOtTutlaMvyugUJMpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.crl rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VuOUrxtay4_0gsjGAmn-oOTEJ74.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A995E, serialNumber=56E394AF1B5ACB8FF482C8C60269FEA0E4C427BE Validity Not Before: Nov 5 06:55:45 2025 GMT Not After : Nov 12 06:55:45 2025 GMT Subject: CN=690af4f1-ced5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1f:0d:aa:76:50:7c:30:cb:93:a9:78:e4:a5: 56:f6:9f:e9:7a:82:95:bf:81:58:5c:11:54:a4:93: af:af:8a:c8:45:16:e5:c7:c1:f4:3b:a7:73:31:5f: 82:d2:70:4c:a2:13:ed:6b:7a:aa:24:77:e5:c0:53: c0:ff:96:aa:49:94:a3:24:d6:a1:4c:e0:52:ab:32: 22:6a:af:df:c6:cb:19:2e:b5:42:cc:a3:b7:a4:5d: 0c:f8:5d:9d:bf:f5:be:02:79:0c:87:3b:14:5d:bd: 26:93:ea:cb:e1:59:c0:72:66:04:af:f5:83:94:f9: 7a:f8:77:3c:99:ca:bb:b7:28:9a:8d:17:6a:28:a9: 55:18:d2:f7:43:b7:bf:a9:4c:df:f1:87:22:64:a8: 68:43:39:7d:47:04:6a:a1:9d:c1:82:1a:73:19:65: 3d:66:b8:73:2c:7e:14:a0:65:5d:67:a5:9f:b3:82: 6d:f2:c9:45:81:69:5d:c0:c4:7c:39:3d:f0:45:e6: 25:63:83:10:ea:79:d0:e4:42:97:b3:1e:38:7e:4e: 85:0c:4a:ca:a3:1f:53:66:6c:6e:c4:7b:fc:80:d1: a9:53:17:3c:80:38:10:c6:c5:47:b5:28:09:67:ff: 82:71:6e:0d:54:a4:12:5d:ff:c1:4f:e8:bf:47:e5: 29:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:2C:5E:B3:1F:E1:24:E9:FF:61:62:E6:7F:80:63:D4:FF:87:89:E5 X509v3 Authority Key Identifier: keyid:56:E3:94:AF:1B:5A:CB:8F:F4:82:C8:C6:02:69:FE:A0:E4:C4:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VuOUrxtay4_0gsjGAmn-oOTEJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A995E/2E7AF298FA6211EF95555C0EC4F9AE02/VuOUrxtay4_0gsjGAmn-oOTEJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:b2:f8:b5:c5:37:c3:01:39:b5:d8:c2:81:9f:0c:0c:f0:5f: 1d:4f:b8:fb:c6:18:81:8f:07:8a:15:12:a4:84:c2:3e:db:42: 7f:c8:be:ef:f7:8a:41:b6:d3:4a:9b:71:22:0b:f0:cd:94:b7: fc:2d:3b:d2:30:a7:e8:fa:eb:4a:b3:45:2c:bd:5b:b3:6c:fe: 98:fe:0f:3e:a1:c9:83:8c:ee:2a:8e:8a:77:fb:42:fb:39:13: 18:83:27:cb:20:6a:69:4a:b2:c0:17:17:88:22:48:04:37:e3: 9f:f4:89:7b:41:d0:33:37:9c:90:ce:e1:46:22:02:d7:a1:45: 01:ef:1e:b7:9b:7c:20:01:c3:63:f7:ae:ea:ff:82:a3:d1:57: b6:98:5f:f2:77:dc:6d:48:26:15:80:8f:bd:67:5e:fd:56:d5: e6:d5:49:3b:39:eb:f6:8c:20:48:a1:5c:29:6b:e7:47:72:59: ac:39:fc:e6:4f:d0:8e:85:8c:44:eb:11:77:af:73:64:dc:58: f4:f5:40:b4:4d:7d:ec:b7:f5:64:ef:80:e8:f6:1e:3c:82:6b: 6b:b6:fb:c7:db:03:de:91:9d:2f:b5:99:9e:31:3b:64:b8:7d: 84:93:d9:22:01:7f:91:dc:47:ac:c8:1e:60:cb:4d:ea:df:df: 5f:66:ca:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5NUUxMTAvBgNVBAUTKDU2RTM5NEFGMUI1QUNCOEZGNDgyQzhDNjAyNjlGRUEw RTRDNDI3QkUwHhcNMjUxMTA1MDY1NTQ1WhcNMjUxMTEyMDY1NTQ1WjAYMRYwFAYD VQQDEw02OTBhZjRmMS1jZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0x8NqnZQfDDLk6l45KVW9p/peoKVv4FYXBFUpJOvr4rIRRblx8H0O6dzMV+C 0nBMohPta3qqJHflwFPA/5aqSZSjJNahTOBSqzIiaq/fxssZLrVCzKO3pF0M+F2d v/W+AnkMhzsUXb0mk+rL4VnAcmYEr/WDlPl6+Hc8mcq7tyiajRdqKKlVGNL3Q7e/ qUzf8YciZKhoQzl9RwRqoZ3BghpzGWU9ZrhzLH4UoGVdZ6Wfs4Jt8slFgWldwMR8 OT3wReYlY4MQ6nnQ5EKXsx44fk6FDErKox9TZmxuxHv8gNGpUxc8gDgQxsVHtSgJ Z/+CcW4NVKQSXf/BT+i/R+UpBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUsXrMf 4STp/2Fi5n+AY9T/h4nlMB8GA1UdIwQYMBaAFFbjlK8bWsuP9ILIxgJp/qDkxCe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTk1RS8yRTdBRjI5OEZB NjIxMUVGOTU1NTVDMEVDNEY5QUUwMi9WdU9Vcnh0YXk0XzBnc2pHQW1uLW9PVEVK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Z1T1VyeHRheTRfMGdzakdBbW4tb09URUo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTk1RS8yRTdBRjI5OEZBNjIxMUVGOTU1NTVDMEVDNEY5QUUwMi9WdU9Vcnh0YXk0 XzBnc2pHQW1uLW9PVEVKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnsvi1xTfDATm12MKBnwwM8F8dT7j7xhiBjweKFRKkhMI+20J/yL7v 94pBttNKm3EiC/DNlLf8LTvSMKfo+utKs0UsvVuzbP6Y/g8+ocmDjO4qjop3+0L7 ORMYgyfLIGppSrLAFxeIIkgEN+Of9Il7QdAzN5yQzuFGIgLXoUUB7x63m3wgAcNj 967q/4Kj0Ve2mF/yd9xtSCYVgI+9Z179VtXm1Uk7Oev2jCBIoVwpa+dHclmsOfzm T9COhYxE6xF3r3Nk3Fj09UC0TX3st/Vk74Do9h48gmtrtvvH2wPekZ0vtZmeMTtk uH2Ek9kiAX+R3EesyB5gy03q399fZsqz -----END CERTIFICATE-----Generated at Wed Nov 5 10:03:46 2025 by rpki-client