$ rpki-client -vvf rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/vRTPGp8I9oE3_oEWzXdq29sv77Q.mft File: vRTPGp8I9oE3_oEWzXdq29sv77Q.mft (raw, json) Hash identifier: KHfCN5xZdjkL5Opzk/RT2jHfetTJspD36eAgJph5lNU= Subject key identifier: FB:BA:FF:5B:B1:CE:82:FE:F3:E9:21:48:99:FF:ED:A3:C3:B1:C2:F9 Authority key identifier: BD:14:CF:1A:9F:08:F6:81:37:FE:81:16:CD:77:6A:DB:DB:2F:EF:B4 Certificate issuer: /CN=A9119A40/serialNumber=BD14CF1A9F08F68137FE8116CD776ADBDB2FEFB4 Certificate serial: 0429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRTPGp8I9oE3_oEWzXdq29sv77Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/vRTPGp8I9oE3_oEWzXdq29sv77Q.mft Manifest number: 10CD Signing time: Fri 31 Oct 2025 18:25:42 +0000 Manifest this update: Fri 31 Oct 2025 18:25:42 +0000 Manifest next update: Fri 07 Nov 2025 18:25:42 +0000 Files and hashes: 1: vRTPGp8I9oE3_oEWzXdq29sv77Q.crl (hash: d8I3sv7wg4bkot/xgJtnw4t8XLHXDL2jWVNz0oiMrxA=) 2: D5DBA6BC63ED11ED851C647DC4F9AE02.roa (hash: mgb6NflmQm35vBEH6/rdIKJ5eJitJ9zemuTs4qdaAl8=) 3: 5277F6368D2411EC816B4C70C4F9AE02.roa (hash: 5GGssBwo34kMxY1fgtwCfjU7+p5mfAazSfRBFfVGB/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/vRTPGp8I9oE3_oEWzXdq29sv77Q.crl rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/vRTPGp8I9oE3_oEWzXdq29sv77Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRTPGp8I9oE3_oEWzXdq29sv77Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 18:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119A40, serialNumber=BD14CF1A9F08F68137FE8116CD776ADBDB2FEFB4 Validity Not Before: Oct 31 18:25:42 2025 GMT Not After : Nov 7 18:25:42 2025 GMT Subject: CN=6904ff26-04fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:96:81:d5:c8:c7:14:43:ba:04:e8:27:d1:c3: ed:2f:0d:54:52:a1:c3:8a:13:1e:0d:89:1e:a9:13: b3:80:7d:6e:a6:fa:ed:d3:c3:3a:f4:42:09:a0:c7: 64:a4:a0:bd:4e:2b:60:e1:a6:2c:e1:1e:4d:6b:b3: 61:7d:04:0c:d9:2e:3f:b0:22:b4:de:64:67:54:20: 7e:aa:ac:51:c8:9e:72:13:bc:13:e9:42:c6:69:ed: c7:55:3d:f0:97:cc:ec:30:e8:6f:87:34:b6:9c:89: 27:e1:58:30:c0:a2:dc:b3:61:94:21:57:6b:f1:5d: c2:a1:f4:90:f8:0a:ed:cb:bd:11:5e:6e:f7:f3:ec: 2a:1e:fd:14:42:59:23:f7:c7:ac:13:d5:66:02:60: 1a:16:f3:7b:2f:0b:f8:ed:d5:6c:8c:b2:2e:3c:8f: 1e:c7:d0:ff:f8:2d:01:1f:3e:18:9a:66:73:9f:c7: c2:39:e9:9e:34:a9:8d:47:32:84:be:11:f1:4a:fd: 08:32:b8:05:59:a3:dd:09:d8:16:9d:c6:e0:42:75: 35:33:27:b4:a4:a3:95:a2:51:ab:d8:76:7a:4c:2a: f4:cf:d2:d7:79:1c:99:67:f4:a3:f9:da:39:da:17: 9c:51:bd:a9:7a:ca:4a:35:36:c2:42:20:10:70:1f: da:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:BA:FF:5B:B1:CE:82:FE:F3:E9:21:48:99:FF:ED:A3:C3:B1:C2:F9 X509v3 Authority Key Identifier: keyid:BD:14:CF:1A:9F:08:F6:81:37:FE:81:16:CD:77:6A:DB:DB:2F:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/vRTPGp8I9oE3_oEWzXdq29sv77Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRTPGp8I9oE3_oEWzXdq29sv77Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/vRTPGp8I9oE3_oEWzXdq29sv77Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c0:4e:55:d5:ee:d3:5a:d6:e8:a8:f1:06:cf:08:06:0f:eb: bd:8b:e9:42:52:f9:42:fe:13:43:09:05:9d:82:9e:c9:59:91: 6f:61:b2:3f:c2:a3:d7:f6:6d:84:ec:52:53:3e:93:c6:4d:ae: 2a:d1:e0:1e:17:3e:0d:4a:57:4b:ff:4b:4d:48:73:e6:92:58: 67:74:02:3e:d5:37:5c:f7:98:9c:82:ef:e1:43:de:4f:25:95: fa:40:43:30:52:24:2b:1a:36:a8:99:0b:c7:4a:6e:11:6f:5d: 9d:e2:f3:29:38:fa:8d:92:15:39:21:54:d0:fe:1f:db:4f:f6: bc:8e:b1:9d:8c:47:23:28:ad:21:85:11:5f:61:c9:cb:bd:a3: ab:66:de:8b:7f:e3:46:0b:03:38:47:8c:09:6d:47:33:85:2e: cb:0c:8b:c7:13:fd:ea:d1:00:9f:3f:6e:cb:bd:85:a2:e7:93: b6:1f:ef:c8:a8:54:b4:b6:7a:8b:0b:16:d4:c3:8e:a0:cd:87: 32:03:35:46:4d:74:a7:0b:95:39:97:29:e7:64:25:74:a2:5a: 97:4b:69:b2:5f:6b:4f:14:35:2f:f8:88:a5:36:ca:9e:d2:61: 12:9d:a3:e7:bb:39:a9:c0:1a:b8:12:4e:03:5f:74:56:fa:72: 15:c3:0d:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBNDAxMTAvBgNVBAUTKEJEMTRDRjFBOUYwOEY2ODEzN0ZFODExNkNENzc2QURC REIyRkVGQjQwHhcNMjUxMDMxMTgyNTQyWhcNMjUxMTA3MTgyNTQyWjAYMRYwFAYD VQQDEw02OTA0ZmYyNi0wNGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJaB1cjHFEO6BOgn0cPtLw1UUqHDihMeDYkeqROzgH1upvrt08M69EIJoMdk pKC9Titg4aYs4R5Na7NhfQQM2S4/sCK03mRnVCB+qqxRyJ5yE7wT6ULGae3HVT3w l8zsMOhvhzS2nIkn4VgwwKLcs2GUIVdr8V3CofSQ+Arty70RXm738+wqHv0UQlkj 98esE9VmAmAaFvN7Lwv47dVsjLIuPI8ex9D/+C0BHz4YmmZzn8fCOemeNKmNRzKE vhHxSv0IMrgFWaPdCdgWncbgQnU1Mye0pKOVolGr2HZ6TCr0z9LXeRyZZ/Sj+do5 2hecUb2pespKNTbCQiAQcB/aOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPu6/1ux zoL+8+khSJn/7aPDscL5MB8GA1UdIwQYMBaAFL0UzxqfCPaBN/6BFs13atvbL++0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUE0MC8wQkQ0NTYyMjAw N0ExMUVBQjhCMzFCMTBDNEY5QUUwMi92UlRQR3A4STlvRTNfb0VXelhkcTI5c3Y3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZSVFBHcDhJOW9FM19vRVd6WGRxMjlzdjc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUE0MC8wQkQ0NTYyMjAwN0ExMUVBQjhCMzFCMTBDNEY5QUUwMi92UlRQR3A4STlv RTNfb0VXelhkcTI5c3Y3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9wE5V1e7TWtboqPEGzwgGD+u9i+lCUvlC/hNDCQWdgp7JWZFvYbI/ wqPX9m2E7FJTPpPGTa4q0eAeFz4NSldL/0tNSHPmklhndAI+1Tdc95icgu/hQ95P JZX6QEMwUiQrGjaomQvHSm4Rb12d4vMpOPqNkhU5IVTQ/h/bT/a8jrGdjEcjKK0h hRFfYcnLvaOrZt6Lf+NGCwM4R4wJbUczhS7LDIvHE/3q0QCfP27LvYWi55O2H+/I qFS0tnqLCxbUw46gzYcyAzVGTXSnC5U5lynnZCV0olqXS2myX2tPFDUv+IilNsqe 0mESnaPnuzmpwBq4Ek4DX3RW+nIVww0W -----END CERTIFICATE-----Generated at Sat Nov 1 17:09:36 2025 by rpki-client