$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: /PdsZb5x+Q1/4wgirzMi1CNL5xo0LKWjecVqUqUszas= Subject key identifier: 97:8F:82:B2:7A:5D:8C:62:F2:11:70:46:30:55:81:5C:37:FA:C9:C2 Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: 018C Signing time: Mon 03 Nov 2025 03:33:32 +0000 Manifest this update: Mon 03 Nov 2025 03:33:31 +0000 Manifest next update: Mon 10 Nov 2025 03:33:31 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: dZPl1+Qi157nOGuqMAhY2xNM+Ni+vHU3QxCaD3tO1wY=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: y4oU/tmfDIcfKqPlw3m/SWCw2QZiYO8Vo2XRM+uGFBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: Nov 3 03:33:31 2025 GMT Not After : Nov 10 03:33:31 2025 GMT Subject: CN=6908228c-84c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:08:2b:f5:41:92:2f:59:a8:61:a8:b0:2d:a7: 33:d7:fe:c1:29:ae:1d:e6:40:98:6d:cd:e9:30:ee: 24:61:33:a4:c6:6e:ee:97:10:13:d6:f7:e5:25:82: c6:a6:63:5c:8b:65:ac:ee:d9:81:13:3a:82:c3:ba: 43:ba:c9:28:9d:cf:10:e3:0e:fe:38:05:38:1d:96: 53:90:0f:6c:88:b1:df:07:eb:94:eb:ed:b3:d6:dc: 4a:6c:2c:3d:ca:de:be:d0:39:33:ba:21:ef:72:b1: b9:72:b5:30:47:61:f8:73:28:93:03:51:5b:e6:2d: 7a:18:b5:3f:52:46:0e:89:85:66:06:af:2f:4d:83: 88:bd:b7:dd:0f:20:24:9d:17:01:b0:62:92:a5:4c: 46:67:46:5a:f9:30:51:09:db:d4:19:48:9b:59:c4: a6:36:73:26:a5:79:25:3d:4e:d6:39:e1:25:23:1c: d3:d2:fd:2d:ff:01:16:d3:46:fd:76:ca:d5:4e:54: 4b:6c:8c:c1:79:92:b2:5b:14:b4:8b:6a:34:b2:f7: 81:b8:44:32:01:a6:eb:cd:d7:a4:d0:19:1d:97:8c: 82:18:81:8a:67:aa:0f:1a:aa:25:4f:a0:29:15:5e: 87:ea:b8:b2:0b:1b:72:c6:6d:87:d0:71:52:f8:18: a3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:8F:82:B2:7A:5D:8C:62:F2:11:70:46:30:55:81:5C:37:FA:C9:C2 X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:ea:0e:46:57:1f:ed:b6:fe:42:91:5e:44:88:0c:9d:12:40: 45:94:7a:f0:db:1d:d5:98:43:ef:11:1d:6e:87:e2:7a:19:5a: 52:8b:ba:ff:12:80:0b:7a:43:19:88:b1:36:11:00:f0:6b:32: 0c:a2:81:bc:dc:ad:da:32:14:65:90:69:90:0d:6a:43:e7:df: cb:79:55:54:8e:b2:a4:dc:73:d9:45:78:c5:ef:22:b0:16:eb: 83:c4:cc:c5:55:d7:8e:45:14:58:65:6e:60:10:93:e3:85:5a: 95:37:d5:36:2e:92:78:dc:5e:f7:08:09:b2:d5:ae:37:f4:f8: ef:20:92:f7:09:e6:29:72:f1:8a:7b:41:a1:25:ba:62:98:37: 44:7e:85:f1:24:d0:c0:8c:bd:07:e3:19:17:7b:ac:37:d5:e7: 2b:22:c5:26:51:69:ec:6b:0f:7c:06:7f:96:6e:e8:0a:f2:fd: a0:f5:be:0d:9a:2d:5a:dd:97:37:b3:fd:a7:ea:92:01:a5:54: fd:cd:eb:9f:db:f0:e9:b7:4b:55:73:07:bb:b1:97:f0:18:3e: 40:49:e2:19:06:97:82:63:c6:64:cf:1c:42:65:61:7a:8b:7c: e6:0e:e7:9f:e3:0b:6a:7a:8e:16:ab:98:1c:0e:98:16:05:f1: 59:b9:da:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjUxMTAzMDMzMzMxWhcNMjUxMTEwMDMzMzMxWjAYMRYwFAYD VQQDEw02OTA4MjI4Yy04NGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Qgr9UGSL1moYaiwLacz1/7BKa4d5kCYbc3pMO4kYTOkxm7ulxAT1vflJYLG pmNci2Ws7tmBEzqCw7pDuskonc8Q4w7+OAU4HZZTkA9siLHfB+uU6+2z1txKbCw9 yt6+0DkzuiHvcrG5crUwR2H4cyiTA1Fb5i16GLU/UkYOiYVmBq8vTYOIvbfdDyAk nRcBsGKSpUxGZ0Za+TBRCdvUGUibWcSmNnMmpXklPU7WOeElIxzT0v0t/wEW00b9 dsrVTlRLbIzBeZKyWxS0i2o0sveBuEQyAabrzdek0Bkdl4yCGIGKZ6oPGqolT6Ap FV6H6riyCxtyxm2H0HFS+Bij9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJePgrJ6 XYxi8hFwRjBVgVw3+snCMB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR MUpkdmJpbGhFN3J5S296MTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk6g5GVx/ttv5CkV5EiAydEkBFlHrw2x3VmEPvER1uh+J6GVpSi7r/ EoALekMZiLE2EQDwazIMooG83K3aMhRlkGmQDWpD59/LeVVUjrKk3HPZRXjF7yKw FuuDxMzFVdeORRRYZW5gEJPjhVqVN9U2LpJ43F73CAmy1a439PjvIJL3CeYpcvGK e0GhJbpimDdEfoXxJNDAjL0H4xkXe6w31ecrIsUmUWnsaw98Bn+WbugK8v2g9b4N mi1a3Zc3s/2n6pIBpVT9zeuf2/Dpt0tVcwe7sZfwGD5ASeIZBpeCY8ZkzxxCZWF6 i3zmDuef4wtqeo4Wq5gcDpgWBfFZudpA -----END CERTIFICATE-----Generated at Mon Nov 3 18:15:03 2025 by rpki-client