$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft File: VXiaNBbn71Fc4I8Fo28d7YNETAk.mft (raw, json) Hash identifier: 2kIClmh9ZzKH7o9goG5A8YrhuRk/0eSoTJesY9BmPCg= Subject key identifier: 10:33:34:14:13:AB:21:1B:EB:C2:67:10:7E:25:CC:98:2A:D6:B0:2E Authority key identifier: 55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 Certificate issuer: /CN=A91F43F2/serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft Manifest number: 3C Signing time: Wed 05 Nov 2025 07:42:12 +0000 Manifest this update: Wed 05 Nov 2025 07:42:11 +0000 Manifest next update: Wed 12 Nov 2025 07:42:11 +0000 Files and hashes: 1: VXiaNBbn71Fc4I8Fo28d7YNETAk.crl (hash: 4xvjjRqnzHyp9/wHO7viRCS9wwVJKb+IIJdwcJr+qv8=) 2: A19F973C60C011F0A28C7F2CC4F9AE02.roa (hash: z6l4Kf7BBkbhNbxfRp+L0t7tdYphMHusFnOI/s0ajOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:42:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Validity Not Before: Nov 5 07:42:11 2025 GMT Not After : Nov 12 07:42:11 2025 GMT Subject: CN=690affd4-a7ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:26:b5:22:2b:e9:4e:e0:70:83:c8:90:d7:e1: cd:e9:23:93:4f:cc:ac:34:66:e9:7c:89:e5:0b:87: 00:e1:7c:d9:b1:95:20:14:0f:eb:0e:fa:bd:6f:1e: 86:b7:09:56:bf:93:8d:d6:56:a3:8e:ee:1a:95:d4: 0a:ac:bf:57:e5:3a:57:48:dd:5b:41:08:64:e0:ed: 46:14:c5:72:26:be:43:40:f8:04:7b:e6:5a:12:66: c0:ab:5d:c4:fa:fc:37:37:c4:9a:02:5e:74:d3:53: b9:07:e3:fa:fd:8e:28:49:5f:24:1c:0d:aa:fa:bf: e6:2f:72:d6:fe:01:af:36:6a:7e:a3:27:7f:61:73: 5f:52:c8:12:16:8e:d3:71:a2:41:e0:c8:ce:74:5e: 28:0e:9a:af:15:ec:ca:73:41:1b:54:a1:4b:ec:7c: 30:73:4b:06:06:c0:e2:f6:99:db:0a:08:41:ce:ee: 76:99:47:97:1f:8d:61:a2:9f:f3:94:a1:bd:07:0e: 4a:a6:56:6f:af:95:b8:0a:88:0c:67:3b:87:3c:a6: c5:bc:3f:9d:35:55:29:99:08:21:6c:d1:ff:12:55: 6a:23:13:f7:45:3a:16:84:39:47:c3:ab:34:b2:a4: 98:67:c7:5e:d4:13:e5:9f:77:3c:92:7a:62:4b:0b: af:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:33:34:14:13:AB:21:1B:EB:C2:67:10:7E:25:CC:98:2A:D6:B0:2E X509v3 Authority Key Identifier: keyid:55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:51:c6:b1:d3:5d:c3:36:41:a6:a6:68:0b:44:23:a1:61:60: b7:f9:91:f3:e6:bc:50:9d:11:67:e4:be:eb:9e:4b:7c:47:b6: 1f:14:42:3a:d7:5f:95:bf:04:61:bc:1b:06:d7:18:ff:04:31: e7:1f:5f:f4:70:47:8f:5a:f0:e1:65:34:1f:14:29:17:71:e1: 1c:aa:ef:bc:23:bd:36:3c:88:91:90:2c:3f:45:ca:bc:13:c4: 87:35:5b:e0:58:27:e0:c4:38:89:d2:de:9e:32:89:f8:c7:e9: f3:c6:df:6e:c2:62:97:d9:1d:3a:99:88:f6:d7:cf:cc:54:e8: 96:a3:ba:5e:37:00:91:e6:a5:dd:db:f5:44:c6:2f:f4:1d:2a: 0d:be:2c:5c:39:18:c1:65:2e:70:8b:05:6e:2b:29:ab:30:43: a3:3d:da:87:4d:c8:f9:0e:85:a5:06:5d:29:43:fd:5e:39:42: 28:fe:ce:60:e8:e1:86:09:31:b1:eb:d3:1c:cc:9c:d4:41:a6: c8:48:92:43:38:a9:e5:52:95:18:02:47:e6:b8:5b:4c:11:8c: 00:70:a5:83:a8:11:19:a2:f4:21:5d:b1:70:78:d1:e9:cf:38: 86:92:2f:bd:f8:ed:cb:26:6c:1d:98:d1:11:18:aa:41:06:45: a3:68:c3:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDNGMjExMC8GA1UEBRMoNTU3ODlBMzQxNkU3RUY1MTVDRTA4RjA1QTM2RjFERUQ4 MzQ0NEMwOTAeFw0yNTExMDUwNzQyMTFaFw0yNTExMTIwNzQyMTFaMBgxFjAUBgNV BAMTDTY5MGFmZmQ0LWE3YmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4JrUiK+lO4HCDyJDX4c3pI5NPzKw0Zul8ieULhwDhfNmxlSAUD+sO+r1vHoa3 CVa/k43WVqOO7hqV1Aqsv1flOldI3VtBCGTg7UYUxXImvkNA+AR75loSZsCrXcT6 /Dc3xJoCXnTTU7kH4/r9jihJXyQcDar6v+Yvctb+Aa82an6jJ39hc19SyBIWjtNx okHgyM50XigOmq8V7MpzQRtUoUvsfDBzSwYGwOL2mdsKCEHO7naZR5cfjWGin/OU ob0HDkqmVm+vlbgKiAxnO4c8psW8P501VSmZCCFs0f8SVWojE/dFOhaEOUfDqzSy pJhnx17UE+WfdzySemJLC69lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEDM0FBOr IRvrwmcQfiXMmCrWsC4wHwYDVR0jBBgwFoAUVXiaNBbn71Fc4I8Fo28d7YNETAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0M0YyLzQxODA1MDk0NjBD MDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFGYzRJOEZvMjhkN1lORVRB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVlhpYU5CYm43MUZjNEk4Rm8yOGQ3WU5FVEFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 M0YyLzQxODA1MDk0NjBDMDExRjBBRkI0NTcyQkM0RjlBRTAyL1ZYaWFOQmJuNzFG YzRJOEZvMjhkN1lORVRBay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFNRxrHTXcM2QaamaAtEI6FhYLf5kfPmvFCdEWfkvuueS3xHth8UQjrX X5W/BGG8GwbXGP8EMecfX/RwR49a8OFlNB8UKRdx4Ryq77wjvTY8iJGQLD9FyrwT xIc1W+BYJ+DEOInS3p4yifjH6fPG327CYpfZHTqZiPbXz8xU6Jajul43AJHmpd3b 9UTGL/QdKg2+LFw5GMFlLnCLBW4rKaswQ6M92odNyPkOhaUGXSlD/V45Qij+zmDo 4YYJMbHr0xzMnNRBpshIkkM4qeVSlRgCR+a4W0wRjABwpYOoERmi9CFdsXB40enP OIaSL7347csmbB2Y0REYqkEGRaNow10= -----END CERTIFICATE-----Generated at Wed Nov 5 23:45:03 2025 by rpki-client