$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft File: vkiLTmCsanOmVu_bxfpnoajegSo.mft (raw, json) Hash identifier: YjTrN9NyDACQHnZBYwaeK6trcFpEIASd4eU+4Z7wIUw= Subject key identifier: 23:81:E4:5D:C3:40:09:F3:FF:E8:60:7F:32:08:22:E3:E3:56:49:F6 Authority key identifier: BE:48:8B:4E:60:AC:6A:73:A6:56:EF:DB:C5:FA:67:A1:A8:DE:81:2A Certificate issuer: /CN=A91ADE0A/serialNumber=BE488B4E60AC6A73A656EFDBC5FA67A1A8DE812A Certificate serial: 22DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft Manifest number: 229D Signing time: Tue 04 Nov 2025 15:56:29 +0000 Manifest this update: Tue 04 Nov 2025 15:56:28 +0000 Manifest next update: Tue 11 Nov 2025 15:56:28 +0000 Files and hashes: 1: vkiLTmCsanOmVu_bxfpnoajegSo.crl (hash: Z1BPh93W4Id76HX5SQ2BS2bhacSGSWv803lD+dgM8bM=) 2: 4AB8D38E178811EF95C8DF41C4F9AE02.roa (hash: bRjvCEzkjDm3JJYu7t1zkHD97hp8O/fwotkC6wIv1RQ=) 3: 815465903EB511E9881B6529C4F9AE02.roa (hash: gW74XIULKnrcRgyXZDwxsWWvrLPKxQLUY/wa7dOD1h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.crl rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8923 (0x22db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADE0A, serialNumber=BE488B4E60AC6A73A656EFDBC5FA67A1A8DE812A Validity Not Before: Nov 4 15:56:28 2025 GMT Not After : Nov 11 15:56:28 2025 GMT Subject: CN=690a222d-c175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bf:6d:d2:97:d1:43:ef:08:ed:26:25:c1:f8: 74:ef:0f:4a:ef:f0:ec:e9:6a:0c:1c:52:1c:83:a7: df:f4:74:6e:7f:fa:1d:87:6b:f0:c6:b1:2b:e8:d5: 58:d9:f3:86:53:80:7f:85:b5:01:ca:37:fa:1a:c6: ae:69:14:05:77:fe:f9:9a:67:80:80:79:4d:05:a0: 8a:85:06:e2:09:61:29:04:48:39:fd:85:2c:e7:27: f7:00:e3:a7:31:66:27:fc:f4:ee:dc:17:58:33:f1: 57:18:35:82:7e:23:bd:5d:2a:fc:86:e1:cd:aa:52: 34:b6:72:ae:af:f9:ff:f8:51:70:b3:6d:57:e4:28: d4:85:8a:dd:14:76:a3:d1:11:b6:ea:12:15:db:54: dd:60:54:45:1c:15:fd:5a:d5:09:c1:9b:0f:03:dd: b7:36:43:be:07:9e:2f:fa:e4:75:d8:2f:fc:9b:0a: a5:05:83:5a:d8:ca:80:11:53:28:24:49:bc:df:8f: 02:c9:bb:85:fb:6d:8c:76:9d:23:f1:fd:60:ec:ef: 2f:40:fa:9d:49:4a:96:04:a9:59:06:41:80:51:36: d0:b5:c2:e6:0f:09:ac:7f:63:8a:c2:cc:66:ed:b7: 5b:1b:09:b0:05:37:b4:e1:11:2e:a9:d4:ed:c0:e7: da:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:81:E4:5D:C3:40:09:F3:FF:E8:60:7F:32:08:22:E3:E3:56:49:F6 X509v3 Authority Key Identifier: keyid:BE:48:8B:4E:60:AC:6A:73:A6:56:EF:DB:C5:FA:67:A1:A8:DE:81:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:37:89:a7:d2:48:ff:d8:89:e7:9a:0a:29:c0:ed:71:50:11: c8:8d:a3:52:cc:c6:df:6e:b5:31:f8:e4:64:15:93:a0:a7:29: 9b:62:d1:5a:38:c3:dd:d6:b1:03:6d:11:81:8a:47:06:67:45: f9:f4:9a:36:49:ad:c9:b9:96:9d:20:f7:4e:c5:58:15:e1:89: 10:1d:96:f3:14:97:ac:f2:65:51:d0:00:1b:0f:e0:d3:57:3a: b2:c0:b2:78:c8:7f:b9:4c:b0:71:ea:f6:2a:27:37:a4:c8:9a: 46:96:5a:cc:e4:1d:0d:4d:3b:5c:27:41:b2:f8:60:d7:1f:f2: 81:3f:16:61:f1:87:8c:3f:b0:fd:4e:d0:75:87:fb:97:f6:7f: 01:01:6c:79:1a:38:2b:97:a9:10:9d:53:98:8e:54:f6:f1:45: 08:21:db:b6:75:8f:e6:e3:6d:49:ee:45:c0:c0:cf:b2:95:96: 9d:e1:07:a6:da:46:fd:1f:17:33:38:7c:7d:37:14:cc:47:24: 54:8a:23:f6:44:bc:b4:2e:84:b4:d0:b3:38:3c:ba:53:82:32: 74:68:22:18:86:99:9d:e6:e0:f3:eb:7c:7b:85:2d:0c:c1:35: 46:9d:4a:69:1d:e7:d5:5c:0f:d5:85:5d:1d:dd:08:49:39:aa: 70:0b:e4:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICItswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURFMEExMTAvBgNVBAUTKEJFNDg4QjRFNjBBQzZBNzNBNjU2RUZEQkM1RkE2N0Ex QThERTgxMkEwHhcNMjUxMTA0MTU1NjI4WhcNMjUxMTExMTU1NjI4WjAYMRYwFAYD VQQDEw02OTBhMjIyZC1jMTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtr9t0pfRQ+8I7SYlwfh07w9K7/Ds6WoMHFIcg6ff9HRuf/odh2vwxrEr6NVY 2fOGU4B/hbUByjf6GsauaRQFd/75mmeAgHlNBaCKhQbiCWEpBEg5/YUs5yf3AOOn MWYn/PTu3BdYM/FXGDWCfiO9XSr8huHNqlI0tnKur/n/+FFws21X5CjUhYrdFHaj 0RG26hIV21TdYFRFHBX9WtUJwZsPA923NkO+B54v+uR12C/8mwqlBYNa2MqAEVMo JEm8348CybuF+22Mdp0j8f1g7O8vQPqdSUqWBKlZBkGAUTbQtcLmDwmsf2OKwsxm 7bdbGwmwBTe04REuqdTtwOfaxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOB5F3D QAnz/+hgfzIIIuPjVkn2MB8GA1UdIwQYMBaAFL5Ii05grGpzplbv28X6Z6Go3oEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREUwQS8zMEQ4MDEyNkMx MTMxMUU1QjAxQTcyNjlDNEY5QUUwMi92a2lMVG1Dc2FuT21WdV9ieGZwbm9hamVn U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZraUxUbUNzYW5PbVZ1X2J4ZnBub2FqZWdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REUwQS8zMEQ4MDEyNkMxMTMxMUU1QjAxQTcyNjlDNEY5QUUwMi92a2lMVG1Dc2Fu T21WdV9ieGZwbm9hamVnU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoN4mn0kj/2InnmgopwO1xUBHIjaNSzMbfbrUx+ORkFZOgpymbYtFa OMPd1rEDbRGBikcGZ0X59Jo2Sa3JuZadIPdOxVgV4YkQHZbzFJes8mVR0AAbD+DT VzqywLJ4yH+5TLBx6vYqJzekyJpGllrM5B0NTTtcJ0Gy+GDXH/KBPxZh8YeMP7D9 TtB1h/uX9n8BAWx5Gjgrl6kQnVOYjlT28UUIIdu2dY/m421J7kXAwM+ylZad4Qem 2kb9HxczOHx9NxTMRyRUiiP2RLy0LoS00LM4PLpTgjJ0aCIYhpmd5uDz63x7hS0M wTVGnUppHefVXA/VhV0d3QhJOapwC+Sq -----END CERTIFICATE-----Generated at Wed Nov 5 07:53:28 2025 by rpki-client