$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft File: vIYhQTCXFsDk3Dff_zPlqwxVStA.mft (raw, json) Hash identifier: Tpg2PUOvEeGaQZi/hWF//IO4xVF8C4/r0XoQOMkrKJ4= Subject key identifier: 8D:8E:EE:EB:1D:E7:C1:A0:18:F0:F8:59:D2:DC:BE:76:C5:E6:BA:71 Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft Manifest number: 0242 Signing time: Mon 03 Nov 2025 01:43:46 +0000 Manifest this update: Mon 03 Nov 2025 01:43:45 +0000 Manifest next update: Mon 10 Nov 2025 01:43:45 +0000 Files and hashes: 1: vIYhQTCXFsDk3Dff_zPlqwxVStA.crl (hash: uegA4t4UrVEtrxoR0ICIQIs6lb9aHzjKqPTgunQb9WE=) 2: 3DE0E9065F0811EDB42DC97FC4F9AE02.roa (hash: mMG9bEWCN7YmxGDEifOxzTHyHFARTgi2snMHU3b4IPo=) 3: 3F2E65045F0811EDB42DC97FC4F9AE02.roa (hash: M+VldN3Zj4ItVsLXsshINI4uEpHeIoXEm9jDZJqFneg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA27, serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Validity Not Before: Nov 3 01:43:45 2025 GMT Not After : Nov 10 01:43:45 2025 GMT Subject: CN=690808d2-c644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a5:86:df:09:fc:09:6c:2f:51:6c:60:c6:72: 45:ab:10:a4:a0:91:e7:64:f9:d5:af:8d:23:0a:50: eb:91:2b:44:8d:2e:43:0a:59:74:4b:69:51:1e:c4: f2:54:c6:76:9d:0c:cf:fa:93:ea:b7:4b:10:8b:30: bd:16:9e:77:8d:2b:4e:ec:d1:d2:9d:46:7b:72:c7: dd:97:df:b9:b8:8d:89:13:35:41:90:3d:1c:3d:7f: ea:53:2a:17:5a:1a:3a:cb:99:6a:29:1d:dd:e0:fe: 23:aa:6c:32:61:5a:fd:7c:f6:82:80:fb:ae:36:30: 76:7e:1f:24:7a:d5:0e:91:19:ca:20:07:86:ae:8f: 08:70:d6:0d:da:ad:ca:28:05:6d:41:9d:e4:f7:3f: f0:db:fc:79:c1:8a:0d:ed:a5:3a:e9:66:f0:ed:52: 26:a2:d1:17:4e:4a:cb:f8:15:ca:49:43:9f:ae:82: 3b:1c:98:64:cb:98:85:03:c0:6c:2d:a4:d3:d7:69: 75:2d:da:37:46:3e:a4:42:49:d5:8c:7f:22:59:2e: 2b:fe:13:1c:e4:85:c0:8e:c7:01:6a:a9:3c:ac:78: 3d:24:f7:82:d5:1c:b2:af:35:26:ae:2f:77:5a:9b: e5:55:76:74:5c:a9:e1:d5:4f:c7:2c:8f:a5:a2:d7: bf:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8E:EE:EB:1D:E7:C1:A0:18:F0:F8:59:D2:DC:BE:76:C5:E6:BA:71 X509v3 Authority Key Identifier: keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:32:57:fa:0e:19:27:55:48:71:e6:cd:ba:70:8c:6c:2b:38: d2:e6:74:b3:71:24:d1:18:12:3c:68:b7:7a:2f:74:03:95:09: 01:60:9a:71:ad:09:1c:6a:9b:ef:01:92:45:aa:32:49:b7:b1: 2f:43:88:dd:46:22:03:7e:fb:f4:2d:57:09:61:6f:5d:5a:22: 4f:a0:3e:da:35:b2:1d:c7:fa:e9:0e:06:b2:6f:4b:26:12:1b: 90:8d:0f:75:32:b4:25:32:66:87:bf:da:15:32:87:0c:50:52: 12:72:68:ab:29:8e:d0:ff:79:6f:6b:ce:1c:fe:a5:30:cd:a4: 36:ba:c9:2b:ab:eb:ae:21:db:73:e2:af:a6:9a:c5:b3:45:c3: ee:95:3b:19:24:55:fe:cf:17:f0:7a:87:08:cb:37:f2:7e:17: 1e:ba:94:f2:87:4d:16:29:54:fe:1f:5d:66:fd:12:31:7c:d6: 80:40:69:7f:a4:f2:1c:24:4b:3e:88:bb:35:e3:41:93:5d:ca: 93:82:ff:f9:07:94:bf:63:bb:ae:e3:ca:e3:3b:38:b1:13:70: ea:b6:95:f8:01:19:85:97:2a:0b:11:fa:45:31:1e:d2:0a:00: 1f:ea:30:07:ca:0c:52:b5:6d:66:e4:aa:e6:13:bb:58:e5:f5: d8:c3:06:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC MEM1NTRBRDAwHhcNMjUxMTAzMDE0MzQ1WhcNMjUxMTEwMDE0MzQ1WjAYMRYwFAYD VQQDEw02OTA4MDhkMi1jNjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqWG3wn8CWwvUWxgxnJFqxCkoJHnZPnVr40jClDrkStEjS5DCll0S2lRHsTy VMZ2nQzP+pPqt0sQizC9Fp53jStO7NHSnUZ7csfdl9+5uI2JEzVBkD0cPX/qUyoX Who6y5lqKR3d4P4jqmwyYVr9fPaCgPuuNjB2fh8ketUOkRnKIAeGro8IcNYN2q3K KAVtQZ3k9z/w2/x5wYoN7aU66Wbw7VImotEXTkrL+BXKSUOfroI7HJhky5iFA8Bs LaTT12l1Ldo3Rj6kQknVjH8iWS4r/hMc5IXAjscBaqk8rHg9JPeC1RyyrzUmri93 WpvlVXZ0XKnh1U/HLI+lote/+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2O7usd 58GgGPD4WdLcvnbF5rpxMB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0 NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUEyNy82QThCRDA4QzQ0NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZz RGszRGZmX3pQbHF3eFZTdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4Mlf6DhknVUhx5s26cIxsKzjS5nSzcSTRGBI8aLd6L3QDlQkBYJpx rQkcapvvAZJFqjJJt7EvQ4jdRiIDfvv0LVcJYW9dWiJPoD7aNbIdx/rpDgayb0sm EhuQjQ91MrQlMmaHv9oVMocMUFIScmirKY7Q/3lva84c/qUwzaQ2uskrq+uuIdtz 4q+mmsWzRcPulTsZJFX+zxfweocIyzfyfhceupTyh00WKVT+H11m/RIxfNaAQGl/ pPIcJEs+iLs140GTXcqTgv/5B5S/Y7uu48rjOzixE3DqtpX4ARmFlyoLEfpFMR7S CgAf6jAHygxStW1m5KrmE7tY5fXYwwa+ -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:39 2025 by rpki-client