$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: niruXlN0FV3gO4CqOQfXybA3eaAgNSYhkJDizaHzfjU= Subject key identifier: 3A:C6:7C:3A:F4:EA:B1:CE:E4:FD:18:BC:B0:2E:88:C0:6A:55:27:F1 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 0143 Signing time: Sat 19 Jul 2025 04:33:38 +0000 Manifest this update: Sat 19 Jul 2025 04:33:37 +0000 Manifest next update: Sat 26 Jul 2025 04:33:37 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: YwisvANZWjFRamdGBkvAG7ENopxQWVFFydQN3do+0HE=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Jul 19 04:33:37 2025 GMT Not After : Jul 26 04:33:37 2025 GMT Subject: CN=687b2021-b3ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:30:be:b3:c0:f9:db:32:14:3f:c6:cf:95:32: c3:f5:74:c8:ed:ab:9f:0f:4c:40:03:f0:2c:cd:45: da:b6:fa:84:21:16:c6:8c:7a:62:60:0f:6d:5f:34: 53:85:79:89:b7:5c:f9:86:bd:77:49:9f:90:75:f5: ad:4f:ef:2c:2f:33:c6:bb:6e:18:f9:eb:ed:1b:f3: 8a:6b:7e:03:1d:59:fa:bf:59:29:ed:a7:8e:8e:37: c2:c4:ce:dc:cc:f5:c3:28:30:1d:c8:8d:94:4f:40: bf:f7:39:fe:64:61:77:3c:75:66:bb:32:78:1f:00: 8f:a9:ad:b3:3f:10:6d:f2:14:91:f6:b3:d4:f1:5e: ad:c2:c0:51:f4:fa:8b:99:02:e5:a5:10:2d:92:52: 52:6f:06:28:a8:48:a6:06:f5:c2:b1:e4:84:a6:b7: da:f6:95:75:2a:0c:6c:01:5e:8a:7a:bd:e1:6d:34: b4:3e:c3:3d:a7:fc:a9:ed:6d:1c:11:ef:5d:1a:61: 3d:1a:cc:61:57:7a:26:eb:56:10:21:96:24:fe:29: a2:d5:b0:a9:6c:1d:c4:29:e7:2d:fc:80:01:5e:0b: b0:b8:c9:a2:53:6d:e9:b2:d7:8b:7d:a3:c2:92:61: 56:c9:69:76:c6:c8:6c:ac:1d:23:19:4a:02:be:a4: c7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C6:7C:3A:F4:EA:B1:CE:E4:FD:18:BC:B0:2E:88:C0:6A:55:27:F1 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:3a:92:c6:6e:6f:51:2f:39:0d:bf:a0:e7:3b:49:9a:b8:15: 9e:6d:90:55:1f:7e:6e:c8:d8:8b:63:28:9d:ed:0b:93:0e:23: 27:40:25:a0:58:9c:36:26:54:86:92:f0:ec:f5:2c:0d:7b:d5: 60:ec:b5:25:6b:22:46:cb:58:32:fc:e3:6e:b4:39:ae:4b:46: bf:e1:31:ce:e0:a4:70:ba:ed:59:16:7f:cd:a9:33:ad:ac:63: b1:d1:92:5f:82:cb:38:b9:42:32:9d:9c:eb:59:68:03:e4:c9: cc:d6:2c:58:c1:ac:46:f2:78:3b:08:e5:02:e1:f4:7c:66:76: cf:d6:a2:22:2f:22:b8:8b:98:fd:22:aa:2f:77:e6:61:57:0c: a1:12:54:c0:02:03:cc:89:de:1e:7a:9c:e8:ae:8f:3f:84:c8: 39:aa:44:d4:cf:ad:34:cc:4c:55:64:4b:ce:32:bd:7d:44:15: 75:f0:81:40:77:ec:cb:b4:ed:cc:df:0b:11:52:50:99:90:58: 88:dd:03:1a:db:db:70:ab:18:82:29:77:6f:08:5b:58:7a:5e: d0:2a:10:c9:d0:1b:56:1d:71:01:cd:e7:12:72:da:ba:64:39: 10:cc:73:2d:4c:be:61:e2:d5:3e:2e:17:b2:0e:5c:08:7c:ca: 17:e9:89:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUwNzE5MDQzMzM3WhcNMjUwNzI2MDQzMzM3WjAYMRYwFAYD VQQDEw02ODdiMjAyMS1iM2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTC+s8D52zIUP8bPlTLD9XTI7aufD0xAA/AszUXatvqEIRbGjHpiYA9tXzRT hXmJt1z5hr13SZ+QdfWtT+8sLzPGu24Y+evtG/OKa34DHVn6v1kp7aeOjjfCxM7c zPXDKDAdyI2UT0C/9zn+ZGF3PHVmuzJ4HwCPqa2zPxBt8hSR9rPU8V6twsBR9PqL mQLlpRAtklJSbwYoqEimBvXCseSEprfa9pV1KgxsAV6Ker3hbTS0PsM9p/yp7W0c Ee9dGmE9GsxhV3om61YQIZYk/imi1bCpbB3EKect/IABXguwuMmiU23psteLfaPC kmFWyWl2xshsrB0jGUoCvqTHMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrGfDr0 6rHO5P0YvLAuiMBqVSfxMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHOpLGbm9RLzkNv6DnO0mauBWebZBVH35uyNiLYyid7QuTDiMnQCWg WJw2JlSGkvDs9SwNe9Vg7LUlayJGy1gy/ONutDmuS0a/4THO4KRwuu1ZFn/NqTOt rGOx0ZJfgss4uUIynZzrWWgD5MnM1ixYwaxG8ng7COUC4fR8ZnbP1qIiLyK4i5j9 Iqovd+ZhVwyhElTAAgPMid4eepzoro8/hMg5qkTUz600zExVZEvOMr19RBV18IFA d+zLtO3M3wsRUlCZkFiI3QMa29twqxiCKXdvCFtYel7QKhDJ0BtWHXEBzecSctq6 ZDkQzHMtTL5h4tU+LheyDlwIfMoX6YlY -----END CERTIFICATE-----Generated at Sun Jul 20 07:48:24 2025 by rpki-client