$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft File: vIYhQTCXFsDk3Dff_zPlqwxVStA.mft (raw, json) Hash identifier: a9M93IrARrtvAkXYMziCp0dc+h/jHy1pnT6gZDXsxOY= Subject key identifier: 24:FA:5D:2F:CE:7F:F8:FE:0D:FE:F1:09:39:C6:D5:FD:86:7D:20:99 Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Certificate serial: 0231 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft Manifest number: 022A Signing time: Fri 19 Sep 2025 02:21:13 +0000 Manifest this update: Fri 19 Sep 2025 02:21:12 +0000 Manifest next update: Fri 26 Sep 2025 02:21:12 +0000 Files and hashes: 1: vIYhQTCXFsDk3Dff_zPlqwxVStA.crl (hash: D24X29T3uGuRfSqSpKgx7yU+xcYEHbHVapn/Q2x+Ots=) 2: 3DE0E9065F0811EDB42DC97FC4F9AE02.roa (hash: MoE7MEPCOyGB/9EMlTXV0tN9ZG/UinteAkee65hBGJ0=) 3: 3F2E65045F0811EDB42DC97FC4F9AE02.roa (hash: IgAv5ZJEhwoH7uEYAUCxosir/fX/9UUdUT7CtlM0EKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA27, serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Validity Not Before: Sep 19 02:21:12 2025 GMT Not After : Sep 26 02:21:12 2025 GMT Subject: CN=68ccbe18-25b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4c:a5:96:18:0a:bf:8e:06:88:69:36:e1:0f: 41:f4:97:9b:df:c9:0a:3d:a3:a6:0f:fe:0f:bc:9e: 9f:43:2e:23:4c:36:1f:48:e0:58:7e:fc:3e:46:ab: db:34:16:cb:c9:0c:0f:32:46:b6:b8:a3:41:35:96: 10:7a:13:3a:27:d0:ef:80:bd:18:b9:7a:2d:e9:27: 02:a3:b9:e5:13:1b:23:16:6f:24:d4:40:f5:50:fc: 41:78:fe:99:b3:a8:4c:37:62:e4:10:b1:73:3d:b5: ef:68:a8:53:f9:1d:d1:6e:e3:42:e7:c2:cc:81:d1: e2:2a:65:53:2f:f6:b5:72:47:8c:cf:5f:5e:ab:ec: 5c:2c:11:dd:1a:35:48:bf:ea:29:44:6f:11:d2:4f: 5a:1c:b6:d4:b4:78:da:2b:0b:c5:3c:2f:43:ea:29: 84:d9:1d:d1:b4:85:98:5c:a1:04:e9:d6:f2:43:ba: 2f:46:01:83:f9:e4:23:43:75:28:cc:d1:08:7b:4d: 9d:10:dc:fc:4b:df:15:8d:5e:89:21:3a:a4:cc:02: 25:86:d4:05:f3:77:b2:86:45:06:b5:6c:71:a8:e4: 3e:f5:d7:39:9d:85:db:ea:8a:06:8d:b3:51:83:e2: 5d:48:ac:ad:7e:18:02:f3:7c:0e:b5:67:76:d9:d3: 8d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:FA:5D:2F:CE:7F:F8:FE:0D:FE:F1:09:39:C6:D5:FD:86:7D:20:99 X509v3 Authority Key Identifier: keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:cf:29:7b:4c:55:61:bd:c3:1f:e0:03:68:5f:49:4c:2e:e2: c3:8a:b7:5e:5b:11:bf:7a:93:f2:1e:9b:57:92:68:74:ba:ad: 93:8b:ed:11:58:ca:94:11:ca:be:7d:c5:94:bc:6e:1d:a0:f9: 4e:b7:d8:0d:bb:6e:35:b0:90:6a:69:c5:27:75:73:31:06:dc: 6b:36:26:18:68:b7:66:03:94:2f:a4:3c:90:7a:0a:52:7e:ed: 41:45:96:fa:39:2d:4d:5c:ae:bb:eb:3f:2a:1f:5a:9a:a9:9e: 53:ed:5b:ae:65:54:6e:ad:66:ec:db:47:34:ef:a2:0a:ef:80: 55:16:d2:dc:c6:7f:80:ef:5f:72:f4:73:8d:46:68:07:8f:86: 30:04:a6:65:de:c2:ee:66:a6:e9:bf:f1:ad:06:97:65:45:d8: a8:cc:22:48:63:6f:08:dd:10:3f:34:91:00:e6:4d:7b:f1:4d: ab:f1:92:ab:bc:e8:ed:81:3c:19:7f:fb:3c:dd:79:86:73:7f: 6b:4e:f1:07:fb:18:79:29:c6:47:46:77:5e:02:d5:80:d4:50: bd:95:30:b0:0a:34:9b:ac:25:f3:3c:d1:39:c7:cf:26:53:92: b8:03:0e:fd:37:0d:9c:78:1b:4d:07:a3:f7:02:f0:be:8f:b6: fd:77:30:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC MEM1NTRBRDAwHhcNMjUwOTE5MDIyMTEyWhcNMjUwOTI2MDIyMTEyWjAYMRYwFAYD VQQDEw02OGNjYmUxOC0yNWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEyllhgKv44GiGk24Q9B9Jeb38kKPaOmD/4PvJ6fQy4jTDYfSOBYfvw+Rqvb NBbLyQwPMka2uKNBNZYQehM6J9DvgL0YuXot6ScCo7nlExsjFm8k1ED1UPxBeP6Z s6hMN2LkELFzPbXvaKhT+R3RbuNC58LMgdHiKmVTL/a1ckeMz19eq+xcLBHdGjVI v+opRG8R0k9aHLbUtHjaKwvFPC9D6imE2R3RtIWYXKEE6dbyQ7ovRgGD+eQjQ3Uo zNEIe02dENz8S98VjV6JITqkzAIlhtQF83eyhkUGtWxxqOQ+9dc5nYXb6ooGjbNR g+JdSKytfhgC83wOtWd22dONyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCT6XS/O f/j+Df7xCTnG1f2GfSCZMB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0 NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUEyNy82QThCRDA4QzQ0NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZz RGszRGZmX3pQbHF3eFZTdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhzyl7TFVhvcMf4ANoX0lMLuLDirdeWxG/epPyHptXkmh0uq2Ti+0R WMqUEcq+fcWUvG4doPlOt9gNu241sJBqacUndXMxBtxrNiYYaLdmA5QvpDyQegpS fu1BRZb6OS1NXK676z8qH1qaqZ5T7VuuZVRurWbs20c076IK74BVFtLcxn+A719y 9HONRmgHj4YwBKZl3sLuZqbpv/GtBpdlRdiozCJIY28I3RA/NJEA5k178U2r8ZKr vOjtgTwZf/s83XmGc39rTvEH+xh5KcZHRndeAtWA1FC9lTCwCjSbrCXzPNE5x88m U5K4Aw79Nw2ceBtNB6P3AvC+j7b9dzBu -----END CERTIFICATE-----Generated at Fri Sep 19 03:58:11 2025 by rpki-client