$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft File: VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft (raw, json) Hash identifier: 7X6/ONnSN6grZDHDN7zFtqkFRP4Qw9wQAgxNJKrxnO8= Subject key identifier: 8B:47:6A:9F:5E:DB:EF:B2:C0:C1:53:8C:DD:64:55:3F:EE:AD:0D:A9 Authority key identifier: 56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A Certificate issuer: /CN=A91D6F2B/serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A Certificate serial: 03A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft Manifest number: 03A2 Signing time: Wed 05 Nov 2025 00:48:52 +0000 Manifest this update: Wed 05 Nov 2025 00:48:52 +0000 Manifest next update: Wed 12 Nov 2025 00:48:52 +0000 Files and hashes: 1: VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl (hash: da1Vn8HadCO9ud1CWJr3mMOJQHuv5rOfVHKe3F6TtdQ=) 2: 2A22D2FCB6CB11ECA43EEE87C4F9AE02.roa (hash: KlAC54soZmN85lgdd13wHGCcsR/XbE59aQyhJMVb4zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 935 (0x3a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6F2B, serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A Validity Not Before: Nov 5 00:48:52 2025 GMT Not After : Nov 12 00:48:52 2025 GMT Subject: CN=690a9ef4-df5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2a:df:cb:98:1c:e1:90:70:d0:79:67:a2:81: 3c:3e:af:6c:00:4d:bf:d6:57:24:35:05:76:65:cf: ff:28:56:c8:a2:8b:4b:76:c4:e5:8a:40:e4:4a:07: c2:4a:ba:41:cd:4f:bd:f2:c2:86:75:13:e6:b4:a7: a5:e9:1e:4c:69:2a:ac:03:65:b5:f9:b2:d1:91:78: 80:23:6e:3d:af:26:63:c4:47:6b:a8:5c:96:1e:89: c8:17:b7:8f:af:92:66:c0:43:3e:e2:f6:8f:5a:da: 4f:cf:84:aa:10:e0:10:d4:3e:a0:13:31:10:74:d4: 67:57:5e:8b:ab:87:ff:56:04:c2:0d:82:00:da:ba: f2:e9:b3:3e:4b:f1:82:da:e2:08:87:6c:6e:15:2f: f9:9e:57:22:52:74:2b:1a:10:a9:a6:13:04:d6:8d: a6:b6:78:72:dd:cf:4f:06:bf:ab:ac:fa:e3:cb:eb: 12:d0:29:2e:22:e6:b3:2a:88:b6:b1:12:07:ae:5c: e3:4a:47:60:2c:e1:cc:ed:02:df:af:ad:3e:fa:9b: 27:7e:cf:89:cb:a6:82:62:f8:ad:15:09:49:22:71: 22:3e:4f:18:63:97:2d:12:0b:7d:17:a2:9f:e7:0c: 53:7c:c2:78:5c:fd:0e:24:ef:3e:3e:ff:d8:85:89: 44:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:47:6A:9F:5E:DB:EF:B2:C0:C1:53:8C:DD:64:55:3F:EE:AD:0D:A9 X509v3 Authority Key Identifier: keyid:56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:7e:75:0e:16:38:0f:6c:c2:75:36:88:5f:7d:dc:9f:6f:26: 9b:5e:90:10:52:3a:5f:13:87:c6:3d:6f:7f:d1:3a:96:cd:de: 04:6a:68:56:22:9b:b9:b6:a2:cf:e5:69:6e:9c:17:71:06:ea: 95:dc:48:c0:51:4d:c1:a3:cd:87:5f:d2:89:4f:11:0e:11:5f: 11:e8:da:2e:95:97:25:8e:24:08:af:97:5a:45:15:d0:d5:e6: 7a:69:59:f9:63:ad:a5:c8:1e:4c:ff:3e:57:66:ac:25:4f:24: 0d:70:7d:52:45:5f:a2:ea:bd:0e:3d:26:56:62:a3:c1:55:33: 06:33:37:0b:3a:6d:d8:53:a6:a9:d7:01:95:a4:ca:71:d4:50: 88:80:77:3d:73:7e:36:94:e8:b1:b9:21:fa:9b:47:c1:28:9c: 31:eb:50:50:06:53:44:41:da:ed:ad:6b:3e:a8:1b:02:6b:d7: 6a:4a:8c:22:c2:f4:bb:1a:51:75:15:28:2e:6a:66:3e:a9:51: 10:30:d3:bf:c2:08:a6:de:42:37:56:4f:87:f8:58:67:d9:b3: b3:06:2b:15:a8:19:ee:1e:b0:14:45:dd:41:87:e0:bd:72:4f: 03:3e:60:1b:c8:e5:c2:9e:53:10:3b:42:1a:75:09:53:69:f2: 39:9b:28:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZGMkIxMTAvBgNVBAUTKDU2MzhDQjFFMjZEMTE5OURBQkU4QjhDN0VEMjJCMDND NENFOEM4MEEwHhcNMjUxMTA1MDA0ODUyWhcNMjUxMTEyMDA0ODUyWjAYMRYwFAYD VQQDEw02OTBhOWVmNC1kZjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCrfy5gc4ZBw0HlnooE8Pq9sAE2/1lckNQV2Zc//KFbIootLdsTlikDkSgfC SrpBzU+98sKGdRPmtKel6R5MaSqsA2W1+bLRkXiAI249ryZjxEdrqFyWHonIF7eP r5JmwEM+4vaPWtpPz4SqEOAQ1D6gEzEQdNRnV16Lq4f/VgTCDYIA2rry6bM+S/GC 2uIIh2xuFS/5nlciUnQrGhCpphME1o2mtnhy3c9PBr+rrPrjy+sS0CkuIuazKoi2 sRIHrlzjSkdgLOHM7QLfr60++psnfs+Jy6aCYvitFQlJInEiPk8YY5ctEgt9F6Kf 5wxTfMJ4XP0OJO8+Pv/YhYlEsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItHap9e 2++ywMFTjN1kVT/urQ2pMB8GA1UdIwQYMBaAFFY4yx4m0Rmdq+i4x+0isDxM6MgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkYyQi8zMzg2Njc2NkI2 QzkxMUVDODlCREM2ODdDNEY5QUUwMi9WampMSGliUkdaMnI2TGpIN1NLd1BFem95 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqakxIaWJSR1oycjZMakg3U0t3UEV6b3lBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkYyQi8zMzg2Njc2NkI2QzkxMUVDODlCREM2ODdDNEY5QUUwMi9WampMSGliUkda MnI2TGpIN1NLd1BFem95QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCafnUOFjgPbMJ1NohffdyfbyabXpAQUjpfE4fGPW9/0TqWzd4EamhW Ipu5tqLP5WlunBdxBuqV3EjAUU3Bo82HX9KJTxEOEV8R6NoulZcljiQIr5daRRXQ 1eZ6aVn5Y62lyB5M/z5XZqwlTyQNcH1SRV+i6r0OPSZWYqPBVTMGMzcLOm3YU6ap 1wGVpMpx1FCIgHc9c342lOixuSH6m0fBKJwx61BQBlNEQdrtrWs+qBsCa9dqSowi wvS7GlF1FSguamY+qVEQMNO/wgim3kI3Vk+H+Fhn2bOzBisVqBnuHrAURd1Bh+C9 ck8DPmAbyOXCnlMQO0IadQlTafI5myig -----END CERTIFICATE-----Generated at Wed Nov 5 08:02:28 2025 by rpki-client