$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft File: VFjEVinBBKqnpYcoaG-NHihyqSo.mft (raw, json) Hash identifier: BBZJ0x0m9AwhZ6AgoOBdH4U71makDgHSi3Xpk7MUvIg= Subject key identifier: E2:23:0A:BA:8F:AE:9F:0E:00:FF:23:E5:6D:4F:E2:4A:C5:07:96:06 Authority key identifier: 54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A Certificate issuer: /CN=A9153C27/serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Certificate serial: 0C9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft Manifest number: 0C95 Signing time: Thu 18 Sep 2025 18:25:31 +0000 Manifest this update: Thu 18 Sep 2025 18:25:31 +0000 Manifest next update: Thu 25 Sep 2025 18:25:31 +0000 Files and hashes: 1: VFjEVinBBKqnpYcoaG-NHihyqSo.crl (hash: 3p+/riZtlQr5WECU5X4C8bYl6RVos1QLf4C9lk/l6Ks=) 2: DB020E9C010D11EAA82AD83CC4F9AE02.roa (hash: +/HgExCatPcRmJalycUeFMmwknrCCg9dQk/HjuFZjUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3229 (0xc9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C27, serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Validity Not Before: Sep 18 18:25:31 2025 GMT Not After : Sep 25 18:25:31 2025 GMT Subject: CN=68cc4e9b-205c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0e:f6:97:b8:9b:6c:c3:93:b6:92:d2:2a:aa: a6:fe:ce:c8:04:67:c8:e6:22:5d:00:8d:da:18:73: 71:62:87:cc:bf:fb:61:e7:bf:20:97:78:96:73:62: 51:b7:d7:31:ec:34:f5:c2:99:07:0f:37:0d:68:8b: 7f:cc:16:ad:26:38:5e:59:82:cf:81:11:bd:ce:a0: 43:9e:f0:6c:b4:11:eb:16:de:83:15:de:91:3d:30: 05:a6:1d:78:95:ac:8c:11:c7:1a:c0:85:3b:ff:fb: a6:43:db:d5:97:db:b4:0f:f9:66:78:80:17:44:70: 2d:cd:7d:a1:c1:e0:d8:64:8e:eb:73:3e:41:57:9c: 70:e3:3c:d7:d6:71:21:59:cf:13:fd:58:11:7c:82: d1:f8:2c:f9:11:60:ff:4a:3e:b3:c7:c4:fc:82:67: 55:c0:83:c6:a3:76:d9:6d:33:28:48:8f:99:66:c7: 2d:93:fc:62:d6:18:7c:8c:27:ca:87:98:d7:53:31: 05:3e:2e:62:35:c8:06:34:43:7e:17:f0:bb:f2:d1: b8:e2:de:cf:c1:33:19:51:7c:87:f2:10:cf:ad:68: ab:80:57:b7:8e:cc:cb:b5:be:29:e4:a7:21:52:8d: 3d:eb:2f:af:d3:0d:7b:07:5e:4c:ba:2a:52:0b:09: fe:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:23:0A:BA:8F:AE:9F:0E:00:FF:23:E5:6D:4F:E2:4A:C5:07:96:06 X509v3 Authority Key Identifier: keyid:54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:91:fd:cf:19:06:bf:52:da:65:37:21:84:d9:ef:eb:02:37: c5:d8:ca:fe:ec:d3:20:16:e1:03:cf:11:bf:2b:1c:c3:fe:20: 96:48:5a:b6:04:87:f3:24:32:a0:ae:f6:a0:57:b1:0a:40:69: 24:fd:da:35:bb:f9:1d:cc:a9:39:54:b7:21:8b:77:03:de:66: 4f:4e:43:ee:2e:be:97:a0:f4:92:cf:f5:90:4f:e3:58:3f:52: 28:36:41:72:5f:90:4c:18:7b:42:6e:4f:0d:78:b3:6f:bc:b3: 59:75:b5:d5:28:d5:19:3f:df:6a:61:6b:92:33:ad:67:e3:a7: fd:a9:44:3f:d7:00:23:aa:c9:49:03:ec:96:62:c0:09:22:b1: 3c:03:75:53:ca:f9:6e:78:05:7c:4c:1e:95:b1:1e:fc:19:46: 49:18:c9:8f:e2:03:1d:27:ed:45:cf:2d:09:52:7c:a9:76:bf: 4c:e6:80:bc:83:cd:c9:49:16:e9:77:6d:62:38:ad:26:0e:7a: e4:c5:34:f0:a6:b3:98:32:07:1f:4f:22:d3:6b:43:3a:2d:2b: 20:e4:cd:2f:fc:69:c3:61:f6:09:f2:61:93:6c:f2:42:57:98: fa:a6:22:2b:5d:ca:00:10:58:5b:3f:a1:4d:5d:8b:e7:1e:db: 56:19:be:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDMjcxMTAvBgNVBAUTKDU0NThDNDU2MjlDMTA0QUFBN0E1ODcyODY4NkY4RDFF Mjg3MkE5MkEwHhcNMjUwOTE4MTgyNTMxWhcNMjUwOTI1MTgyNTMxWjAYMRYwFAYD VQQDEw02OGNjNGU5Yi0yMDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQ72l7ibbMOTtpLSKqqm/s7IBGfI5iJdAI3aGHNxYofMv/th578gl3iWc2JR t9cx7DT1wpkHDzcNaIt/zBatJjheWYLPgRG9zqBDnvBstBHrFt6DFd6RPTAFph14 layMEccawIU7//umQ9vVl9u0D/lmeIAXRHAtzX2hweDYZI7rcz5BV5xw4zzX1nEh Wc8T/VgRfILR+Cz5EWD/Sj6zx8T8gmdVwIPGo3bZbTMoSI+ZZsctk/xi1hh8jCfK h5jXUzEFPi5iNcgGNEN+F/C78tG44t7PwTMZUXyH8hDPrWirgFe3jszLtb4p5Kch Uo096y+v0w17B15MuipSCwn+wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIjCrqP rp8OAP8j5W1P4krFB5YGMB8GA1UdIwQYMBaAFFRYxFYpwQSqp6WHKGhvjR4ocqkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0MyNy82NUJCNDg5QzAw NEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJLcW5wWWNvYUctTkhpaHlx U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGakVWaW5CQktxbnBZY29hRy1OSGloeXFTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0MyNy82NUJCNDg5QzAwNEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJL cW5wWWNvYUctTkhpaHlxU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpkf3PGQa/UtplNyGE2e/rAjfF2Mr+7NMgFuEDzxG/KxzD/iCWSFq2 BIfzJDKgrvagV7EKQGkk/do1u/kdzKk5VLchi3cD3mZPTkPuLr6XoPSSz/WQT+NY P1IoNkFyX5BMGHtCbk8NeLNvvLNZdbXVKNUZP99qYWuSM61n46f9qUQ/1wAjqslJ A+yWYsAJIrE8A3VTyvlueAV8TB6VsR78GUZJGMmP4gMdJ+1Fzy0JUnypdr9M5oC8 g83JSRbpd21iOK0mDnrkxTTwprOYMgcfTyLTa0M6LSsg5M0v/GnDYfYJ8mGTbPJC V5j6piIrXcoAEFhbP6FNXYvnHttWGb7L -----END CERTIFICATE-----Generated at Fri Sep 19 07:59:44 2025 by rpki-client