$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: Av04OYTY+uPCksJXhRpt4jOFQftb9Ko8l5b48HSJFco= Subject key identifier: 8C:E7:05:BE:6C:40:08:0B:2B:53:76:7B:17:A9:30:0A:4E:84:C7:86 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0C8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0C7E Signing time: Tue 04 Nov 2025 18:33:26 +0000 Manifest this update: Tue 04 Nov 2025 18:33:25 +0000 Manifest next update: Tue 11 Nov 2025 18:33:25 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: QBf2D8j4FHxUUC7majhx8iWn3RoGHMYslzcvd+70yj0=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: u6PjzNYcnOXcXRJn9HLyhk2+LGVsDog450i4Tie6o0k=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: sXqVXr7ZHzH2JmpUEnTy5shMtTPK9xhXC3ul6iYq9+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:33:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Nov 4 18:33:25 2025 GMT Not After : Nov 11 18:33:25 2025 GMT Subject: CN=690a46f5-a7bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:86:73:58:49:20:7c:3f:37:99:54:f9:a0:e3: 6b:35:40:ee:ba:58:8c:73:2d:82:61:84:e8:66:bc: bc:78:67:e8:7f:ef:9c:a0:3d:8d:a7:10:d0:bc:0a: 17:90:2e:15:5f:db:97:1d:7a:68:46:f8:66:c1:c2: 3a:17:c9:6c:99:15:c9:c2:64:66:21:5f:a0:75:01: a9:a2:d9:1c:e8:e8:37:4d:83:56:02:ee:67:a4:fa: 83:71:84:f2:d1:be:ea:67:da:ff:cb:53:e4:27:15: 71:b3:9e:7a:3a:2a:0c:26:9e:b7:02:0d:b3:cd:0a: cf:d7:60:99:f1:29:09:d2:50:fe:e4:cd:0d:cc:46: 36:d8:54:90:4a:86:8c:60:df:85:bc:23:e0:39:4c: bb:a2:ba:17:96:ee:97:76:53:79:52:1e:43:61:dc: 95:24:66:21:f6:f3:ae:c4:aa:3a:0c:5f:28:37:e4: 37:c7:26:32:dd:62:b3:80:52:d3:2b:ef:61:d0:c7: f6:ef:d3:c1:c6:45:de:49:ad:bb:40:3f:d4:fe:1f: d9:c8:a1:5c:85:a5:df:05:1a:8e:d1:17:fa:0d:16: 26:5f:d9:80:a2:b6:50:04:52:2c:68:a2:07:2f:97: f6:86:33:51:47:77:a0:36:0a:b8:57:30:25:41:9f: 4b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E7:05:BE:6C:40:08:0B:2B:53:76:7B:17:A9:30:0A:4E:84:C7:86 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:12:00:62:e6:70:17:c1:48:a2:89:e6:05:d8:d7:aa:5b:86: cf:26:e7:04:6e:88:1c:04:51:eb:d5:63:91:b6:02:b4:da:2e: c6:d7:a2:b9:02:eb:91:4d:2f:97:fe:54:47:30:b9:8f:0c:08: 13:3f:aa:3b:b4:06:52:eb:b6:39:2f:42:0e:66:2c:ef:1b:3d: 8e:7c:06:53:aa:63:6d:ff:65:c8:38:f2:cb:e0:8e:36:08:9c: 2c:cb:53:ff:96:90:1a:15:d9:ae:72:99:db:97:3c:0a:a0:06: 2f:68:44:50:12:3b:e1:c1:7f:92:1b:73:a1:a6:60:7d:e9:d9: b1:bb:45:54:49:c5:09:88:3b:4f:24:c6:1a:72:d5:73:d6:e8: 14:83:ae:d2:73:4d:1d:b3:e0:eb:ed:61:4f:23:93:00:a1:e8: 00:d4:e0:38:92:e6:f9:5f:aa:e2:39:77:5e:ea:8a:5b:06:94: c0:4d:0b:dd:1c:15:4a:5b:a0:79:40:fb:bf:1d:fc:d3:f6:d4: a0:3b:fe:c8:93:88:f7:ff:b9:71:31:97:12:9a:bf:6a:2a:32: bf:09:ce:a3:2e:3d:e8:69:b9:ab:4f:03:07:1a:31:8d:46:9c: c0:ae:5f:41:4a:26:e3:ad:bc:a8:7e:56:fb:16:ed:68:f3:b2: 20:ee:c8:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUxMTA0MTgzMzI1WhcNMjUxMTExMTgzMzI1WjAYMRYwFAYD VQQDEw02OTBhNDZmNS1hN2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoZzWEkgfD83mVT5oONrNUDuuliMcy2CYYToZry8eGfof++coD2NpxDQvAoX kC4VX9uXHXpoRvhmwcI6F8lsmRXJwmRmIV+gdQGpotkc6Og3TYNWAu5npPqDcYTy 0b7qZ9r/y1PkJxVxs556OioMJp63Ag2zzQrP12CZ8SkJ0lD+5M0NzEY22FSQSoaM YN+FvCPgOUy7oroXlu6XdlN5Uh5DYdyVJGYh9vOuxKo6DF8oN+Q3xyYy3WKzgFLT K+9h0Mf279PBxkXeSa27QD/U/h/ZyKFchaXfBRqO0Rf6DRYmX9mAorZQBFIsaKIH L5f2hjNRR3egNgq4VzAlQZ9LdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIznBb5s QAgLK1N2exepMApOhMeGMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsEgBi5nAXwUiiieYF2NeqW4bPJucEbogcBFHr1WORtgK02i7G16K5 AuuRTS+X/lRHMLmPDAgTP6o7tAZS67Y5L0IOZizvGz2OfAZTqmNt/2XIOPLL4I42 CJwsy1P/lpAaFdmucpnblzwKoAYvaERQEjvhwX+SG3OhpmB96dmxu0VUScUJiDtP JMYactVz1ugUg67Sc00ds+Dr7WFPI5MAoegA1OA4kub5X6riOXde6opbBpTATQvd HBVKW6B5QPu/HfzT9tSgO/7Ik4j3/7lxMZcSmr9qKjK/Cc6jLj3oabmrTwMHGjGN RpzArl9BSibjrbyoflb7Fu1o87Ig7sit -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:16 2025 by rpki-client