$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft File: VFjEVinBBKqnpYcoaG-NHihyqSo.mft (raw, json) Hash identifier: UVTdgBJw97ihS1k6DeSsTeYSyDQSHfKKiAwL+z185Fc= Subject key identifier: 6F:48:94:EF:5F:8B:F2:3A:FE:2B:9F:2B:FB:E4:1C:B1:52:EC:1E:5E Authority key identifier: 54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A Certificate issuer: /CN=A9153C27/serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Certificate serial: 0CB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft Manifest number: 0CAC Signing time: Sun 02 Nov 2025 18:12:52 +0000 Manifest this update: Sun 02 Nov 2025 18:12:52 +0000 Manifest next update: Sun 09 Nov 2025 18:12:52 +0000 Files and hashes: 1: VFjEVinBBKqnpYcoaG-NHihyqSo.crl (hash: oeFL7npMcahIUmrBc6hbVKLnqfGwOGfCoQsDo0NhRPQ=) 2: DB020E9C010D11EAA82AD83CC4F9AE02.roa (hash: +/HgExCatPcRmJalycUeFMmwknrCCg9dQk/HjuFZjUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:12:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3252 (0xcb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C27, serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Validity Not Before: Nov 2 18:12:52 2025 GMT Not After : Nov 9 18:12:52 2025 GMT Subject: CN=69079f24-1f9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2b:a7:ef:f3:3b:63:4c:c1:0a:9d:fd:fa:e5: 97:30:8e:61:f6:71:75:32:e3:ef:6e:31:8c:4f:fe: 17:e6:32:70:87:d0:04:44:21:47:f0:cd:7b:51:4f: 19:56:54:eb:af:8f:80:a9:cd:09:60:31:1c:9c:d2: 13:63:f1:c2:6e:9a:19:9f:b5:a8:d2:a6:01:62:be: c2:24:b9:5d:14:54:16:25:87:ae:c5:a2:6c:3a:fd: a0:01:f3:9e:38:49:42:38:8a:93:35:6a:ce:67:b5: da:a0:3b:f1:73:b3:76:38:a4:d5:e7:83:2a:7f:92: 04:9d:5f:0f:3a:8f:91:97:6f:45:c4:59:48:c4:21: c5:42:f5:cc:91:a5:4a:90:63:ec:90:45:b9:2e:12: 49:43:61:d6:f4:fc:7e:15:56:5d:86:43:d4:14:1e: 06:7f:26:99:72:bb:14:45:f4:70:3d:e1:ea:20:95: 42:5e:20:91:e5:10:2b:74:9d:13:e6:3b:1c:4b:5c: 13:4a:c8:46:67:04:50:43:f3:f3:f2:a9:bb:a1:e7: 8b:3b:d0:e6:eb:8e:a5:7e:cd:f5:6a:25:82:98:d8: de:bb:20:da:e9:d5:ab:c2:7b:73:a4:5d:0e:62:95: 4c:61:e0:61:26:fb:a8:c0:23:9b:ee:58:97:2a:29: 27:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:48:94:EF:5F:8B:F2:3A:FE:2B:9F:2B:FB:E4:1C:B1:52:EC:1E:5E X509v3 Authority Key Identifier: keyid:54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:ea:25:7f:25:05:bc:22:ce:df:e4:27:29:16:91:2f:d8:44: 59:46:78:3e:f4:d0:48:3c:e0:bc:25:6a:5f:f0:8d:16:e9:7e: c7:8f:a5:c2:ef:fc:df:97:38:a6:ea:66:cf:bf:3c:14:22:42: f9:7d:d9:45:f0:5e:07:c2:6a:65:dd:23:1a:bb:ac:db:24:f1: ec:62:6a:a0:15:81:e6:00:1c:45:23:3f:39:e6:66:97:77:4c: 7a:a1:d0:99:13:fe:c7:3f:c6:71:f7:69:a5:ef:78:e9:c2:0d: ae:61:f4:c0:9d:78:93:50:e2:d2:f6:c0:11:fb:15:23:9f:03: 56:18:d4:0a:28:62:c6:76:7c:43:58:23:8b:7f:8d:86:35:59: e4:69:e6:35:68:1c:fa:2b:a6:94:78:03:10:85:ac:18:5c:12: b1:e8:2f:01:33:d2:57:a7:15:4d:db:38:47:97:07:93:a1:b0: 2e:00:bc:ea:e1:dc:2a:5e:9b:04:58:60:b2:4f:d1:4b:3d:56: ed:9c:b5:47:1e:d7:73:94:a4:b6:72:f2:56:10:1a:a9:50:5c: 1d:9e:90:50:9e:1a:91:5a:82:23:7b:38:ed:49:de:c6:5f:ee: e2:ad:2a:e4:7b:08:24:b6:47:52:78:5a:1e:4f:3b:80:98:71: 7d:15:2d:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDMjcxMTAvBgNVBAUTKDU0NThDNDU2MjlDMTA0QUFBN0E1ODcyODY4NkY4RDFF Mjg3MkE5MkEwHhcNMjUxMTAyMTgxMjUyWhcNMjUxMTA5MTgxMjUyWjAYMRYwFAYD VQQDEw02OTA3OWYyNC0xZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSun7/M7Y0zBCp39+uWXMI5h9nF1MuPvbjGMT/4X5jJwh9AERCFH8M17UU8Z VlTrr4+Aqc0JYDEcnNITY/HCbpoZn7Wo0qYBYr7CJLldFFQWJYeuxaJsOv2gAfOe OElCOIqTNWrOZ7XaoDvxc7N2OKTV54Mqf5IEnV8POo+Rl29FxFlIxCHFQvXMkaVK kGPskEW5LhJJQ2HW9Px+FVZdhkPUFB4GfyaZcrsURfRwPeHqIJVCXiCR5RArdJ0T 5jscS1wTSshGZwRQQ/Pz8qm7oeeLO9Dm646lfs31aiWCmNjeuyDa6dWrwntzpF0O YpVMYeBhJvuowCOb7liXKikndwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9IlO9f i/I6/iufK/vkHLFS7B5eMB8GA1UdIwQYMBaAFFRYxFYpwQSqp6WHKGhvjR4ocqkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0MyNy82NUJCNDg5QzAw NEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJLcW5wWWNvYUctTkhpaHlx U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGakVWaW5CQktxbnBZY29hRy1OSGloeXFTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0MyNy82NUJCNDg5QzAwNEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJL cW5wWWNvYUctTkhpaHlxU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx6iV/JQW8Is7f5CcpFpEv2ERZRng+9NBIPOC8JWpf8I0W6X7Hj6XC 7/zflzim6mbPvzwUIkL5fdlF8F4Hwmpl3SMau6zbJPHsYmqgFYHmABxFIz855maX d0x6odCZE/7HP8Zx92ml73jpwg2uYfTAnXiTUOLS9sAR+xUjnwNWGNQKKGLGdnxD WCOLf42GNVnkaeY1aBz6K6aUeAMQhawYXBKx6C8BM9JXpxVN2zhHlweTobAuALzq 4dwqXpsEWGCyT9FLPVbtnLVHHtdzlKS2cvJWEBqpUFwdnpBQnhqRWoIjezjtSd7G X+7irSrkewgktkdSeFoeTzuAmHF9FS0e -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:53 2025 by rpki-client