$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: 6QKdqtA9xBO6JaU52Zm6up32OoWZMfUiujxKjfcTFLA= Subject key identifier: 24:45:B4:51:26:39:57:E8:B2:AD:00:17:6C:46:A2:DD:8D:30:09:8C Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: 0124 Signing time: Mon 03 Nov 2025 04:45:14 +0000 Manifest this update: Mon 03 Nov 2025 04:45:13 +0000 Manifest next update: Mon 10 Nov 2025 04:45:13 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: pwtKZXbYyEJkM806VQTnGDfb7r5l1kr0SPoNVlf29IA=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: ntYNg2NxlTO59svip/Wfi9QINiH7RWI4kV7Rh6n46eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556, serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: Nov 3 04:45:13 2025 GMT Not After : Nov 10 04:45:13 2025 GMT Subject: CN=6908335a-073b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:29:84:69:6f:1d:25:75:79:e9:e7:02:95:e8: c5:87:c0:7d:92:95:7e:9a:3f:ac:43:f3:65:1c:d0: 89:bc:68:ee:9a:81:47:10:ff:73:ed:b2:bd:ee:b0: 51:c1:8f:92:26:35:b6:10:d4:02:08:50:cc:e0:0a: 1d:16:c1:58:39:f2:05:8c:22:a0:df:b6:a7:a4:05: d3:38:db:f1:35:60:ef:32:b4:9a:cb:57:e0:61:59: ba:5a:8c:a0:7c:d0:b7:d6:c9:86:5e:4a:55:e4:22: 08:65:07:18:04:52:cb:83:08:0e:27:71:e1:52:6f: 23:94:ef:08:ec:63:29:51:e9:55:11:05:ee:cf:ec: ce:d4:c8:d2:37:e9:eb:7f:84:db:33:e3:93:a5:46: 42:09:15:7e:6c:fb:24:cc:2d:68:3f:d5:48:6d:db: 32:08:ef:ee:51:00:2a:34:68:a5:d4:08:1a:80:5c: 9a:b5:e1:a8:8d:34:d7:3f:fa:f3:46:3c:c6:91:62: a1:39:ae:d9:6b:1f:64:16:68:05:cd:44:52:cc:28: 9b:86:3d:eb:e0:80:8d:84:f8:f0:d2:ee:fe:86:92: 62:c3:b8:78:e3:10:72:7d:08:85:00:00:a0:2d:53: 08:4b:8d:17:5f:b4:47:a3:db:3d:45:cc:ab:70:b1: 8e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:45:B4:51:26:39:57:E8:B2:AD:00:17:6C:46:A2:DD:8D:30:09:8C X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:3a:71:6f:da:ca:66:b6:2a:6e:46:cd:94:8d:33:43:f6:82: 72:69:53:28:df:1a:c5:dd:b1:c8:aa:6f:6b:e5:bc:38:2b:2c: fd:49:1d:ec:68:bf:aa:9b:00:8f:19:a1:5b:67:07:92:50:76: 94:7b:e6:8f:67:05:58:9f:95:cf:f2:fa:79:39:b6:e5:b3:0e: a6:87:d5:e0:17:07:fc:92:1b:73:32:bf:3f:b8:4f:dd:73:c3: a5:a7:4c:a5:16:21:4d:f3:be:a4:4e:f3:b5:0e:37:09:0e:85: 70:fd:30:ce:1b:94:24:17:c2:6a:ff:46:eb:0c:68:86:98:55: 3d:0f:09:54:73:1d:8f:6c:b7:8e:04:db:85:5e:07:1c:96:0f: cd:39:e1:be:aa:70:30:6c:2c:ad:a9:77:35:bb:fe:20:dc:a8: b7:cf:68:1f:bb:67:34:8c:bd:83:8c:c5:f8:d2:de:51:32:b0: 34:74:5c:af:c2:cd:64:93:a9:cf:90:ff:64:33:95:fb:0a:09: 14:0b:19:55:e0:2b:d4:7b:72:97:00:6a:6c:52:94:03:03:fd: 0b:ba:25:9f:06:5c:a9:fc:c1:24:88:ae:90:ac:3c:64:19:cd: 1b:0c:66:dd:2c:1e:8e:17:b5:38:a1:c9:f2:40:b3:f1:8c:35: 79:9c:56:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NTYxMTAvBgNVBAUTKDU0QUE0RjIxMTNBMEQxQTFCN0VFNTUxMkJFQUU1Mzcx RUM2REE0MjEwHhcNMjUxMTAzMDQ0NTEzWhcNMjUxMTEwMDQ0NTEzWjAYMRYwFAYD VQQDEw02OTA4MzM1YS0wNzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzimEaW8dJXV56ecClejFh8B9kpV+mj+sQ/NlHNCJvGjumoFHEP9z7bK97rBR wY+SJjW2ENQCCFDM4AodFsFYOfIFjCKg37anpAXTONvxNWDvMrSay1fgYVm6Woyg fNC31smGXkpV5CIIZQcYBFLLgwgOJ3HhUm8jlO8I7GMpUelVEQXuz+zO1MjSN+nr f4TbM+OTpUZCCRV+bPskzC1oP9VIbdsyCO/uUQAqNGil1AgagFyateGojTTXP/rz RjzGkWKhOa7Zax9kFmgFzURSzCibhj3r4ICNhPjw0u7+hpJiw7h44xByfQiFAACg LVMIS40XX7RHo9s9RcyrcLGONQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRFtFEm OVfosq0AF2xGot2NMAmMMB8GA1UdIwQYMBaAFFSqTyEToNGht+5VEr6uU3HsbaQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU1Ni9CMTQ1RDAyRTAx N0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBhRzM3bFVTdnE1VGNleHRw Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9WS3BQSVJPZzBh RzM3bFVTdnE1VGNleHRwQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcOnFv2spmtipuRs2UjTND9oJyaVMo3xrF3bHIqm9r5bw4Kyz9SR3s aL+qmwCPGaFbZweSUHaUe+aPZwVYn5XP8vp5Obblsw6mh9XgFwf8khtzMr8/uE/d c8Olp0ylFiFN876kTvO1DjcJDoVw/TDOG5QkF8Jq/0brDGiGmFU9DwlUcx2PbLeO BNuFXgcclg/NOeG+qnAwbCytqXc1u/4g3Ki3z2gfu2c0jL2DjMX40t5RMrA0dFyv ws1kk6nPkP9kM5X7CgkUCxlV4CvUe3KXAGpsUpQDA/0LuiWfBlyp/MEkiK6QrDxk Gc0bDGbdLB6OF7U4ocnyQLPxjDV5nFax -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:56 2025 by rpki-client