$ rpki-client -vvf rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft File: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft (raw, json) Hash identifier: jumMPG8xTsT75Y1V3+SaYO/fbPLozTcAt4joXx+Xmug= Subject key identifier: F2:36:E5:88:0B:BA:C2:3B:09:3E:42:5A:FA:EB:1F:C9:F4:96:89:A9 Authority key identifier: BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 Certificate issuer: /CN=A917B503/serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft Manifest number: F2 Signing time: Thu 23 Oct 2025 07:14:07 +0000 Manifest this update: Thu 23 Oct 2025 07:14:06 +0000 Manifest next update: Thu 30 Oct 2025 07:14:06 +0000 Files and hashes: 1: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl (hash: /iFRRQs9RjOqGzV7UijUxWn1ZdzTKGWU/R5gx3nNFtQ=) 2: FF7048A08BB111EF8981B871C4F9AE02.roa (hash: 9uEwzB8ckH0lupP2vcJh2pZkJ61ZIv0842o4n0sbwyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B503, serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Validity Not Before: Oct 23 07:14:06 2025 GMT Not After : Oct 30 07:14:06 2025 GMT Subject: CN=68f9d5bf-e11c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:28:ab:f7:ef:52:09:6e:6d:64:b6:91:7e:ed: 9e:5b:8e:cb:b1:e7:09:f3:8d:56:14:89:10:2b:bd: d5:d6:cc:a2:08:0e:76:ca:cb:6d:cb:e5:21:99:b1: 1e:53:37:ef:c1:0a:ff:88:e4:be:d1:a5:a0:91:93: fc:e9:ae:66:11:83:93:e8:b6:3f:68:07:4c:5d:98: 62:fb:12:27:c6:43:6a:43:46:e4:a0:ad:6e:2c:fe: 7b:7f:1c:02:29:3f:cf:1c:5b:43:59:66:ec:b3:1c: 6c:11:5a:ae:f0:5a:13:66:5d:1f:e6:b7:33:2e:81: 8f:f4:68:4e:77:88:b1:cb:80:a0:5a:f1:2c:85:c1: 1d:71:d2:b6:15:fc:8e:0d:37:ee:e1:6f:d1:1a:d5: c4:b7:8c:a9:af:e9:99:44:15:76:ea:e9:c0:fc:e4: 45:52:41:3c:98:20:f3:cd:0f:a2:d5:fa:ae:4e:9b: 19:42:2a:ef:f9:56:57:6c:23:05:51:17:ff:48:71: 75:c6:e8:67:84:87:01:d6:07:c3:b0:76:c9:3e:48: ac:47:60:b8:9c:5d:ea:31:38:35:1b:e5:67:7b:99: 9b:73:e0:79:a4:7f:75:97:74:80:58:83:df:87:ec: 0b:de:94:95:c2:d1:d0:23:d8:79:9e:de:fe:3a:52: a4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:36:E5:88:0B:BA:C2:3B:09:3E:42:5A:FA:EB:1F:C9:F4:96:89:A9 X509v3 Authority Key Identifier: keyid:BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:4d:b0:0c:51:76:2c:10:40:40:2f:41:21:a0:8e:7d:92:ba: 90:ef:91:ac:b7:b4:cf:d7:ee:b5:27:b4:99:fd:73:40:20:69: 24:5b:4e:e1:aa:69:80:78:6e:61:10:f4:4d:6e:39:bb:b2:bf: df:12:ff:c8:f8:03:bc:5e:0c:5f:65:a6:22:93:4c:42:45:14: 48:06:47:47:86:3b:b5:4a:c5:9b:9c:16:d5:3b:30:4e:9d:a4: e7:c2:89:fb:df:82:3e:6d:21:dc:2c:b9:c4:4a:49:21:6b:6b: a5:f8:f3:a3:2b:ce:63:31:aa:8f:f6:69:1a:ed:bf:19:8d:e8: 59:c9:39:77:bb:7e:7c:00:29:80:72:22:f3:d1:10:e9:b8:49: 99:79:7e:c5:6a:95:28:41:1a:04:b8:86:d6:87:b7:3d:47:bd: 1d:3a:51:db:8d:c5:5d:1d:32:c0:8c:f4:ff:b5:c1:7c:8b:8c: c4:a5:11:60:fb:e8:d8:5c:b2:11:31:fa:af:13:82:a6:13:cb: a8:ba:04:72:c2:b8:4f:5f:e2:c5:36:3c:d3:41:51:4a:1f:58: 57:de:3f:68:e6:5c:5d:41:93:6e:18:24:06:48:af:f7:c4:b2: b6:d3:cf:17:7c:f6:50:bc:3b:37:20:59:48:d1:a5:3c:67:9a: fe:ea:ee:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MDMxMTAvBgNVBAUTKEJENjNFMEREQ0I1Q0Q0MUIzNDUwMURGMkU4MUEyQTcy Q0VFMzZFRjIwHhcNMjUxMDIzMDcxNDA2WhcNMjUxMDMwMDcxNDA2WjAYMRYwFAYD VQQDEw02OGY5ZDViZi1lMTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yir9+9SCW5tZLaRfu2eW47LsecJ841WFIkQK73V1syiCA52ystty+UhmbEe UzfvwQr/iOS+0aWgkZP86a5mEYOT6LY/aAdMXZhi+xInxkNqQ0bkoK1uLP57fxwC KT/PHFtDWWbssxxsEVqu8FoTZl0f5rczLoGP9GhOd4ixy4CgWvEshcEdcdK2FfyO DTfu4W/RGtXEt4ypr+mZRBV26unA/ORFUkE8mCDzzQ+i1fquTpsZQirv+VZXbCMF URf/SHF1xuhnhIcB1gfDsHbJPkisR2C4nF3qMTg1G+Vne5mbc+B5pH91l3SAWIPf h+wL3pSVwtHQI9h5nt7+OlKk2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPI25YgL usI7CT5CWvrrH8n0lompMB8GA1UdIwQYMBaAFL1j4N3LXNQbNFAd8ugaKnLO427y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUwMy83Qjg4NUZFNDQz MTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFCczBVQjN5NkJvcWNzN2pi dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZXUGczY3RjMUJzMFVCM3k2Qm9xY3M3amJ2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUwMy83Qjg4NUZFNDQzMTAxMUVGODk0OEEzODFDNEY5QUUwMi92V1BnM2N0YzFC czBVQjN5NkJvcWNzN2pidkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgTbAMUXYsEEBAL0EhoI59krqQ75Gst7TP1+61J7SZ/XNAIGkkW07h qmmAeG5hEPRNbjm7sr/fEv/I+AO8XgxfZaYik0xCRRRIBkdHhju1SsWbnBbVOzBO naTnwon734I+bSHcLLnESkkha2ul+POjK85jMaqP9mka7b8ZjehZyTl3u358ACmA ciLz0RDpuEmZeX7FapUoQRoEuIbWh7c9R70dOlHbjcVdHTLAjPT/tcF8i4zEpRFg ++jYXLIRMfqvE4KmE8uougRywrhPX+LFNjzTQVFKH1hX3j9o5lxdQZNuGCQGSK/3 xLK2088XfPZQvDs3IFlI0aU8Z5r+6u4q -----END CERTIFICATE-----Generated at Thu Oct 23 19:26:01 2025 by rpki-client