$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: yKYYho3CMFy65sHfimgrFCrH+FcCS6WBvzKX1P9Akzc= Subject key identifier: 8F:CE:22:7E:68:EA:FC:A4:09:97:DF:A0:BB:96:59:B6:95:90:32:E6 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 0162 Signing time: Wed 17 Sep 2025 04:34:41 +0000 Manifest this update: Wed 17 Sep 2025 04:34:41 +0000 Manifest next update: Wed 24 Sep 2025 04:34:41 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: IkGA4o0t99d5uhV5lC5InOXiG9oRKg5CKZBPXfI0iKA=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Sep 17 04:34:41 2025 GMT Not After : Sep 24 04:34:41 2025 GMT Subject: CN=68ca3a61-4a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0c:a4:01:b7:2b:88:42:68:60:b2:49:d3:57: da:21:9f:a6:23:1b:39:c3:44:55:11:17:29:74:14: 9c:61:84:e2:12:e8:5b:b6:d4:92:f0:4a:34:00:bf: 34:02:f5:85:19:5e:37:3a:31:c5:4e:e9:bb:c6:02: 82:f3:2a:93:a8:be:49:97:df:b6:50:53:5e:bb:d8: d9:ef:de:98:f0:07:13:46:06:d9:b1:24:9c:7a:b1: 30:c4:52:4d:93:d1:d2:c2:c2:dd:1a:94:d1:08:33: 57:53:2d:69:9e:59:a1:26:3a:b7:1d:4e:fb:35:4e: ed:15:54:d6:41:52:36:18:b9:24:78:eb:3f:c3:ca: 89:b3:cf:ba:a0:12:05:d7:9b:1c:ef:c9:43:97:d6: 42:45:9a:17:9c:3c:58:69:a4:ca:20:fd:93:96:b3: 3c:f6:3b:1c:f9:90:65:60:20:ec:02:ad:6d:a8:91: c6:5b:d8:83:a1:05:76:c7:27:65:66:73:71:e5:aa: b9:ef:93:63:c2:5a:a2:83:66:b1:80:68:f7:19:28: 2a:cd:f1:94:18:7c:58:b5:43:18:26:d3:fe:15:43: eb:f9:30:01:6b:01:bf:07:a2:6f:f4:c7:04:a9:94: 64:e8:53:a0:8e:65:1a:98:60:e3:66:3f:09:4d:3e: f8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CE:22:7E:68:EA:FC:A4:09:97:DF:A0:BB:96:59:B6:95:90:32:E6 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:9e:87:27:09:f4:e2:f7:df:31:86:94:67:cc:6a:be:fd:44: 7d:c1:4d:ac:f9:50:1a:c2:0a:5f:5d:f4:56:0d:9c:5e:5c:23: 9b:8b:79:36:f2:a9:49:d1:b3:51:ff:2a:58:98:aa:12:64:28: 67:6a:a2:81:bf:d2:5e:5c:07:79:64:07:dd:5c:99:27:ce:cc: c4:68:16:5c:61:08:3f:e2:25:99:ca:1a:5c:73:1a:c4:07:aa: 50:ff:7b:7f:45:d7:01:92:06:53:7e:15:d4:85:7e:c2:04:00: 99:8e:36:5e:c7:37:65:7a:20:2a:bf:09:18:0b:e8:48:10:0a: e9:80:dc:f3:44:79:8d:95:dd:07:2c:1f:0c:86:95:63:8d:0d: c3:e2:4a:60:c7:6b:98:d6:b0:80:a5:84:9c:98:25:d3:44:5e: 13:08:4b:59:e7:61:ca:46:ab:60:38:73:40:a5:a7:ff:53:45: c6:a7:40:6e:ca:9b:4c:20:2e:03:28:32:53:fd:db:cb:85:c4: ad:bc:7e:50:f4:08:4f:72:cd:aa:e3:e2:7c:ea:cb:4a:db:15: 05:39:a1:44:b5:c5:b4:3d:a1:90:7a:4f:09:f2:b1:40:eb:bc: 40:f7:0e:d2:f6:2b:4c:39:21:32:bc:98:38:21:54:1e:11:7f: 54:41:2b:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUwOTE3MDQzNDQxWhcNMjUwOTI0MDQzNDQxWjAYMRYwFAYD VQQDEw02OGNhM2E2MS00YTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwykAbcriEJoYLJJ01faIZ+mIxs5w0RVERcpdBScYYTiEuhbttSS8Eo0AL80 AvWFGV43OjHFTum7xgKC8yqTqL5Jl9+2UFNeu9jZ796Y8AcTRgbZsSScerEwxFJN k9HSwsLdGpTRCDNXUy1pnlmhJjq3HU77NU7tFVTWQVI2GLkkeOs/w8qJs8+6oBIF 15sc78lDl9ZCRZoXnDxYaaTKIP2TlrM89jsc+ZBlYCDsAq1tqJHGW9iDoQV2xydl ZnNx5aq575Njwlqig2axgGj3GSgqzfGUGHxYtUMYJtP+FUPr+TABawG/B6Jv9McE qZRk6FOgjmUamGDjZj8JTT74KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/OIn5o 6vykCZffoLuWWbaVkDLmMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABnocnCfTi998xhpRnzGq+/UR9wU2s+VAawgpfXfRWDZxeXCObi3k2 8qlJ0bNR/ypYmKoSZChnaqKBv9JeXAd5ZAfdXJknzszEaBZcYQg/4iWZyhpccxrE B6pQ/3t/RdcBkgZTfhXUhX7CBACZjjZexzdleiAqvwkYC+hIEArpgNzzRHmNld0H LB8MhpVjjQ3D4kpgx2uY1rCApYScmCXTRF4TCEtZ52HKRqtgOHNApaf/U0XGp0Bu yptMIC4DKDJT/dvLhcStvH5Q9AhPcs2q4+J86stK2xUFOaFEtcW0PaGQek8J8rFA 67xA9w7S9itMOSEyvJg4IVQeEX9UQSt7 -----END CERTIFICATE-----Generated at Fri Sep 19 02:32:05 2025 by rpki-client