$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft File: VngmFidUtGDLWGbawxSIDHA1Rh0.mft (raw, json) Hash identifier: Tg8Ow1s6dkf9KxhuWa/V/avYlj8CdRlmICHg3qKf84w= Subject key identifier: 7C:72:2B:32:F8:4E:07:5A:18:BB:60:2A:0D:2C:39:D6:ED:96:61:7E Authority key identifier: 56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D Certificate issuer: /CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft Manifest number: 011C Signing time: Mon 03 Nov 2025 04:47:46 +0000 Manifest this update: Mon 03 Nov 2025 04:47:45 +0000 Manifest next update: Mon 10 Nov 2025 04:47:45 +0000 Files and hashes: 1: VngmFidUtGDLWGbawxSIDHA1Rh0.crl (hash: hjzXvZawiJ9Pbn6VTHb3NB1Htq1Y/quAvLSL9AdJv5U=) 2: DFDEC4D007A411EFAB20A473C4F9AE02.roa (hash: hQsClVPo6k6KSQkrPXRux2ZE6YMvDs1XKFlnN0n+rhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:47:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9B8, serialNumber=567826162754B460CB5866DAC314880C7035461D Validity Not Before: Nov 3 04:47:45 2025 GMT Not After : Nov 10 04:47:45 2025 GMT Subject: CN=690833f1-0b4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c7:28:88:c4:73:85:00:90:83:67:1e:ad:ee: 9c:18:8e:0b:2e:90:df:b4:c8:17:e2:68:23:f2:c0: 21:8b:f4:3d:22:a4:b5:45:7a:61:f3:ae:a0:a3:08: 50:fe:f4:b7:ac:bf:89:f5:73:07:94:b9:5d:7c:30: 89:42:db:68:c4:d8:d3:2b:40:68:75:0b:5f:38:d0: 7e:96:34:83:81:7e:c1:a5:5e:cd:18:9c:c2:5e:d3: 54:85:0c:06:af:05:6f:37:01:ee:38:37:87:a8:56: 23:86:58:73:16:40:22:66:fe:23:96:a8:32:cd:7b: 33:a4:69:17:cc:af:bd:51:87:cd:b8:20:d1:a7:bb: b3:89:f9:67:86:04:46:eb:95:57:2d:f0:a4:67:fb: 24:9a:56:67:53:f9:1e:01:7f:c8:a1:57:9a:64:87: 79:e0:5a:d3:c1:a6:89:17:df:da:22:e0:9c:8a:47: 55:af:a0:0e:11:49:b8:87:72:35:36:91:50:f0:41: f8:4f:5a:9e:ac:64:ef:1a:60:e5:bf:d2:3f:f5:b9: f0:cf:5c:b1:43:0b:81:13:ef:16:f4:5b:11:75:a9: d1:4a:70:3a:b9:ab:6e:9f:f4:b6:02:50:8c:cd:b1: df:ee:72:ad:27:c5:f6:e4:89:df:e4:a6:bd:64:7e: 8a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:72:2B:32:F8:4E:07:5A:18:BB:60:2A:0D:2C:39:D6:ED:96:61:7E X509v3 Authority Key Identifier: keyid:56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:f9:4a:8d:9c:2b:98:fe:89:f2:e7:41:23:25:e0:a8:a0:43: 26:df:00:78:48:45:76:f6:a6:04:a5:b1:79:d3:f7:63:df:01: 19:93:2d:4b:4b:46:64:20:d6:6b:2d:b0:ab:81:82:23:00:fd: b7:19:54:df:11:b8:6b:f9:8c:4f:ad:78:1a:72:17:b3:25:05: b4:fb:4c:71:0d:86:9b:44:05:09:da:75:87:31:4b:2b:1a:d7: 0a:2b:fd:08:5c:02:e3:28:e5:0f:fe:90:4d:4a:f4:1b:46:8b: 5d:cb:bf:c7:98:5c:50:d8:9a:35:5a:78:69:fb:e7:c4:20:7f: 97:f8:25:b8:9e:21:b4:ee:30:46:0e:b0:24:d7:0a:cc:7a:ca: 68:09:ab:c8:02:d2:10:18:46:38:e1:53:e2:47:35:b3:55:03: 36:28:38:b4:b1:3b:62:8c:29:dc:2d:f6:af:c8:13:68:33:f4: 7a:2b:59:d9:55:c4:11:fd:99:1f:90:c1:41:e2:35:21:90:1b: 53:6d:14:56:a7:5b:2e:81:1b:6e:4e:5a:f6:aa:2b:f6:de:5e: e2:08:17:55:0f:71:e5:4b:84:53:6a:78:11:e1:a9:fb:24:af: 7b:f1:7b:03:25:bd:25:a6:70:a4:e7:ad:42:84:6e:3d:fd:7c: 27:b5:fd:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5QjgxMTAvBgNVBAUTKDU2NzgyNjE2Mjc1NEI0NjBDQjU4NjZEQUMzMTQ4ODBD NzAzNTQ2MUQwHhcNMjUxMTAzMDQ0NzQ1WhcNMjUxMTEwMDQ0NzQ1WjAYMRYwFAYD VQQDEw02OTA4MzNmMS0wYjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtccoiMRzhQCQg2cere6cGI4LLpDftMgX4mgj8sAhi/Q9IqS1RXph866gowhQ /vS3rL+J9XMHlLldfDCJQttoxNjTK0BodQtfONB+ljSDgX7BpV7NGJzCXtNUhQwG rwVvNwHuODeHqFYjhlhzFkAiZv4jlqgyzXszpGkXzK+9UYfNuCDRp7uziflnhgRG 65VXLfCkZ/skmlZnU/keAX/IoVeaZId54FrTwaaJF9/aIuCcikdVr6AOEUm4h3I1 NpFQ8EH4T1qerGTvGmDlv9I/9bnwz1yxQwuBE+8W9FsRdanRSnA6uatun/S2AlCM zbHf7nKtJ8X25Inf5Ka9ZH6K9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxyKzL4 TgdaGLtgKg0sOdbtlmF+MB8GA1UdIwQYMBaAFFZ4JhYnVLRgy1hm2sMUiAxwNUYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlCOC9DOEIxRDQ0RTA3 QTExMUVGODRGM0QyNkFDNEY5QUUwMi9WbmdtRmlkVXRHRExXR2Jhd3hTSURIQTFS aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZuZ21GaWRVdEdETFdHYmF3eFNJREhBMVJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlCOC9DOEIxRDQ0RTA3QTExMUVGODRGM0QyNkFDNEY5QUUwMi9WbmdtRmlkVXRH RExXR2Jhd3hTSURIQTFSaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq+UqNnCuY/ony50EjJeCooEMm3wB4SEV29qYEpbF50/dj3wEZky1L S0ZkINZrLbCrgYIjAP23GVTfEbhr+YxPrXgachezJQW0+0xxDYabRAUJ2nWHMUsr GtcKK/0IXALjKOUP/pBNSvQbRotdy7/HmFxQ2Jo1Wnhp++fEIH+X+CW4niG07jBG DrAk1wrMespoCavIAtIQGEY44VPiRzWzVQM2KDi0sTtijCncLfavyBNoM/R6K1nZ VcQR/ZkfkMFB4jUhkBtTbRRWp1sugRtuTlr2qiv23l7iCBdVD3HlS4RTangR4an7 JK978XsDJb0lpnCk561ChG49/Xwntf2n -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:42 2025 by rpki-client