$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: E1W8a92WZbGnYGh8fmPjYn+w1pxrBs3tLbl+edGCV1E= Subject key identifier: 1B:BB:55:2C:26:5F:4F:0D:59:37:F1:B0:76:8A:F2:F0:E6:45:37:01 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: 0179 Signing time: Mon 03 Nov 2025 03:46:32 +0000 Manifest this update: Mon 03 Nov 2025 03:46:32 +0000 Manifest next update: Mon 10 Nov 2025 03:46:32 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: ReYt1z4cbcEuO8NHjhOdCU3pUJxcWht7w1s7tGckDcQ=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: RALcV87N2SziukH0pwzyeMCClLLK8BxrG9ZYFcFQDRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3, serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Nov 3 03:46:32 2025 GMT Not After : Nov 10 03:46:32 2025 GMT Subject: CN=69082598-d525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8d:15:43:c4:17:56:60:83:c4:6a:6b:77:17: 2f:c2:67:6c:ae:ae:d4:92:95:09:0b:2d:b5:33:84: fe:f2:b5:a7:70:9f:cf:1d:04:87:93:aa:c6:76:89: d5:cd:93:3e:81:a7:68:18:6a:5c:dc:34:5d:0d:1e: e9:eb:0e:0d:d0:54:38:54:09:31:70:32:73:94:a4: 90:42:1d:ce:d4:82:59:cb:59:f8:7f:c4:10:06:de: 35:a2:a8:4c:72:be:9b:4f:87:7c:22:5f:85:1a:c2: 33:e9:c1:48:06:0a:79:40:06:69:9a:89:64:75:57: 7e:2e:ef:79:af:1d:73:4d:3b:b9:a3:fa:7d:52:ed: 1d:cc:62:57:cf:f9:1c:b3:48:fe:88:62:74:a7:d8: 68:ec:51:50:0d:54:86:8e:7e:0f:2f:a1:e7:66:25: 11:93:a9:ed:3b:fe:b4:c1:74:ea:ae:26:6e:68:46: 32:26:03:6a:10:72:0c:15:19:35:ba:30:2a:35:67: a2:8e:b0:d4:65:f5:da:c5:8a:c7:77:5c:28:d4:7f: 2b:15:2a:f7:9c:4b:1a:a8:ce:81:af:92:34:13:6a: 3c:74:be:5b:de:75:e3:15:11:79:93:1f:6f:7d:28: 61:f5:9e:1a:10:ab:fc:d8:6e:8f:37:32:1c:fd:79: 56:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:BB:55:2C:26:5F:4F:0D:59:37:F1:B0:76:8A:F2:F0:E6:45:37:01 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:0c:3b:86:d3:d6:8b:86:f5:60:28:1d:45:4d:3c:57:d4:4b: 7b:69:eb:eb:0c:b3:03:28:af:8b:c3:93:2d:45:63:22:e6:ac: ce:4a:fc:ff:f1:55:df:7c:be:2d:73:3b:82:96:9b:45:b0:62: 81:09:98:e3:54:7b:c7:d1:e5:9a:e0:7d:af:9b:4f:7a:44:97: 32:71:4c:15:f9:31:85:e4:91:72:bd:59:8a:b6:d9:a0:26:0b: d6:49:5a:8e:a3:83:e3:36:bf:9c:af:cb:68:71:b1:60:1b:41: 40:ba:65:36:ad:fb:d8:ba:bd:75:8e:f7:4e:66:ca:40:9f:78: 73:e0:ed:d2:02:06:40:2b:83:69:3a:c1:4d:97:2f:ed:1a:37: 24:52:ea:ad:5c:9c:ba:f9:38:48:83:41:a7:e5:2b:58:d7:1b: 9a:cc:7e:80:c2:ce:b5:8a:3f:61:72:f8:41:72:72:57:b1:29: 15:15:03:f9:90:6e:1c:7e:20:bb:a7:c5:a0:f3:a4:99:04:69: 68:51:6f:83:15:85:4a:0c:a5:91:ea:58:af:a3:1c:f5:e9:4a: 69:89:8f:5f:dc:36:7f:87:6c:fc:bb:88:72:45:e8:2a:4b:1f: b7:03:fa:07:61:4b:59:1d:eb:c5:80:1d:43:f1:08:e4:64:1f: 92:dc:1f:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjUxMTAzMDM0NjMyWhcNMjUxMTEwMDM0NjMyWjAYMRYwFAYD VQQDEw02OTA4MjU5OC1kNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuY0VQ8QXVmCDxGprdxcvwmdsrq7UkpUJCy21M4T+8rWncJ/PHQSHk6rGdonV zZM+gadoGGpc3DRdDR7p6w4N0FQ4VAkxcDJzlKSQQh3O1IJZy1n4f8QQBt41oqhM cr6bT4d8Il+FGsIz6cFIBgp5QAZpmolkdVd+Lu95rx1zTTu5o/p9Uu0dzGJXz/kc s0j+iGJ0p9ho7FFQDVSGjn4PL6HnZiURk6ntO/60wXTqriZuaEYyJgNqEHIMFRk1 ujAqNWeijrDUZfXaxYrHd1wo1H8rFSr3nEsaqM6Br5I0E2o8dL5b3nXjFRF5kx9v fShh9Z4aEKv82G6PNzIc/XlWDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBu7VSwm X08NWTfxsHaK8vDmRTcBMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTDDuG09aLhvVgKB1FTTxX1Et7aevrDLMDKK+Lw5MtRWMi5qzOSvz/ 8VXffL4tczuClptFsGKBCZjjVHvH0eWa4H2vm096RJcycUwV+TGF5JFyvVmKttmg JgvWSVqOo4PjNr+cr8tocbFgG0FAumU2rfvYur11jvdOZspAn3hz4O3SAgZAK4Np OsFNly/tGjckUuqtXJy6+ThIg0Gn5StY1xuazH6Aws61ij9hcvhBcnJXsSkVFQP5 kG4cfiC7p8Wg86SZBGloUW+DFYVKDKWR6livoxz16UppiY9f3DZ/h2z8u4hyRegq Sx+3A/oHYUtZHevFgB1D8QjkZB+S3B+M -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:44 2025 by rpki-client