$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: aBiPr6TvDTFmg8u3DSX6VHLnFtQpuAmlszoI+O2GkOA= Subject key identifier: 1F:CE:E4:67:7A:52:2F:FD:51:FC:42:7E:14:78:F6:DC:AF:29:6E:EB Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: 0174 Signing time: Wed 17 Sep 2025 04:21:54 +0000 Manifest this update: Wed 17 Sep 2025 04:21:53 +0000 Manifest next update: Wed 24 Sep 2025 04:21:53 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: cg7ZsQPAgGAqDkVD55heGY8ei4tI5sKCNu5hayv0NFM=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: y4oU/tmfDIcfKqPlw3m/SWCw2QZiYO8Vo2XRM+uGFBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:21:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: Sep 17 04:21:53 2025 GMT Not After : Sep 24 04:21:53 2025 GMT Subject: CN=68ca3761-5490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:12:96:91:e3:88:4b:72:b8:f3:99:ec:bd:3b: be:47:1b:e8:02:c0:40:f5:b8:19:ad:95:8b:29:c7: 45:db:a1:24:9a:94:d9:6e:1d:3a:f3:83:ea:b2:b3: e0:8f:52:4b:2b:98:b1:b0:44:21:0c:5c:54:cf:a6: 68:d1:63:25:f1:3e:44:c9:45:26:9e:b5:f3:bb:c0: 21:8e:43:c6:8e:15:c2:f9:2b:42:15:1b:34:9d:dd: 86:71:86:dc:e3:bb:45:a4:d8:dc:c5:a7:55:09:f2: e3:68:9c:43:56:2f:84:db:43:b8:1f:34:25:47:84: 4e:43:b8:cb:e4:c9:61:f7:b2:72:90:48:5d:0f:bb: d2:3b:20:f9:13:76:7d:62:d6:e7:53:83:f4:54:e9: c9:76:41:8a:e0:f8:aa:7c:e0:e3:9b:82:ae:97:d7: b1:89:d8:04:51:92:f1:ac:65:e4:86:6e:c2:8c:3a: 19:03:d5:f1:9b:22:59:11:72:c2:62:ff:d0:41:7b: 86:46:ee:e5:b8:78:0a:5a:22:1d:51:3e:91:a5:d3: 06:c2:97:bf:66:83:37:57:10:8b:3b:4e:21:43:e4: d2:e8:7f:2d:58:a9:81:e7:ee:95:6d:72:1e:dc:2e: 40:fb:76:0c:4f:14:65:f7:60:84:ce:1d:f3:2f:b9: 44:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:CE:E4:67:7A:52:2F:FD:51:FC:42:7E:14:78:F6:DC:AF:29:6E:EB X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:a1:3f:0e:fe:7f:cc:3f:3d:bf:ee:db:d7:58:34:f5:cc:cb: 59:43:33:5e:af:4b:77:95:90:b8:2c:29:1d:ee:69:9d:ee:fd: 24:27:f5:55:af:e6:c9:a6:23:26:8b:4d:f6:24:82:6a:c8:e6: 94:a2:9f:6c:5c:98:7a:01:55:85:bf:40:8d:bb:27:8a:ae:b8: c8:53:ac:66:86:43:80:64:6e:05:a3:dc:d6:85:b0:ce:60:c9: ab:85:5a:ce:cb:06:7b:b6:3a:bb:6b:5a:04:4a:aa:c5:10:04: 3c:ac:6d:ef:e9:80:d5:53:b6:ad:db:89:c3:10:f2:fb:4a:34: c9:7b:6e:d8:a9:72:60:66:86:06:6c:bf:5e:78:93:fe:2e:b5: 8c:10:13:72:be:e8:93:29:53:85:9a:45:2a:b9:71:0a:65:c4: c0:15:5b:5a:59:d3:8e:c6:26:2b:38:ec:bf:19:b9:43:2b:f3: 01:4f:cc:d0:9d:3b:ee:96:49:a2:49:d3:c8:fb:3e:01:90:46: 96:54:79:f4:eb:d8:c9:7a:05:bc:62:47:0f:76:2a:f6:8d:41: 69:8b:3c:26:f0:a3:34:56:62:5e:68:e0:b4:98:82:fd:96:51: 3c:40:35:1f:87:4d:99:d8:5d:90:73:66:7c:32:bf:ab:d5:90: f2:59:17:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjUwOTE3MDQyMTUzWhcNMjUwOTI0MDQyMTUzWjAYMRYwFAYD VQQDEw02OGNhMzc2MS01NDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhKWkeOIS3K485nsvTu+RxvoAsBA9bgZrZWLKcdF26EkmpTZbh0684PqsrPg j1JLK5ixsEQhDFxUz6Zo0WMl8T5EyUUmnrXzu8AhjkPGjhXC+StCFRs0nd2GcYbc 47tFpNjcxadVCfLjaJxDVi+E20O4HzQlR4ROQ7jL5Mlh97JykEhdD7vSOyD5E3Z9 YtbnU4P0VOnJdkGK4PiqfODjm4Kul9exidgEUZLxrGXkhm7CjDoZA9XxmyJZEXLC Yv/QQXuGRu7luHgKWiIdUT6RpdMGwpe/ZoM3VxCLO04hQ+TS6H8tWKmB5+6VbXIe 3C5A+3YMTxRl92CEzh3zL7lEMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/O5Gd6 Ui/9UfxCfhR49tyvKW7rMB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR MUpkdmJpbGhFN3J5S296MTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMoT8O/n/MPz2/7tvXWDT1zMtZQzNer0t3lZC4LCkd7mmd7v0kJ/VV r+bJpiMmi032JIJqyOaUop9sXJh6AVWFv0CNuyeKrrjIU6xmhkOAZG4Fo9zWhbDO YMmrhVrOywZ7tjq7a1oESqrFEAQ8rG3v6YDVU7at24nDEPL7SjTJe27YqXJgZoYG bL9eeJP+LrWMEBNyvuiTKVOFmkUquXEKZcTAFVtaWdOOxiYrOOy/GblDK/MBT8zQ nTvulkmiSdPI+z4BkEaWVHn069jJegW8YkcPdir2jUFpizwm8KM0VmJeaOC0mIL9 llE8QDUfh02Z2F2Qc2Z8Mr+r1ZDyWRc8 -----END CERTIFICATE-----Generated at Thu Sep 18 19:09:51 2025 by rpki-client