$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: ACYs20TdPYpOgltIYIfrLlK0ns5EnJeXS/xI/H3dpuU= Subject key identifier: 5F:54:56:36:40:88:DA:5A:00:A4:5A:D6:8D:52:26:16:F3:BE:3B:8D Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: 01BF Signing time: Fri 19 Sep 2025 03:32:50 +0000 Manifest this update: Fri 19 Sep 2025 03:32:49 +0000 Manifest next update: Fri 26 Sep 2025 03:32:49 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: BZZXkuGxtjLQDTXXhtFAJQWXJhSj56+zaahBWmciF/g=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: NxTIAEmzVEkhnPtaZCQQUJAnARHilUKNCFgj1AKD+gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 03:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: Sep 19 03:32:49 2025 GMT Not After : Sep 26 03:32:49 2025 GMT Subject: CN=68cccee1-4433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:aa:5b:c0:ce:3d:a7:28:22:6e:95:fe:73:91: ea:cd:1a:37:12:05:d8:a7:4e:8c:f9:7f:97:41:dd: c0:29:c7:c0:23:61:34:39:93:7a:5c:22:34:85:8f: 9e:44:5e:7e:f2:d6:25:62:50:54:7e:9e:51:d3:9e: 7e:d4:a2:78:99:db:c9:31:20:af:04:b2:49:47:75: ad:28:b9:de:f9:d4:0c:e3:1f:b9:32:8e:70:dc:71: d4:14:af:99:72:4b:77:69:ec:a6:65:f3:ea:3e:2a: b7:34:2c:d2:f5:46:dd:3c:96:87:c4:bb:cd:8a:13: 15:ee:5b:92:28:8c:3f:82:1f:81:53:2b:de:ca:e3: 34:ce:23:b9:03:68:4a:5f:2e:fb:77:e6:0b:83:f2: 91:8c:03:c7:19:24:7e:0c:8c:6f:6b:b4:19:a5:1f: c0:6a:7d:53:cc:59:28:a8:e4:ed:25:bb:7e:e5:f9: 3d:51:d3:b5:3f:4e:6c:b9:64:75:9b:3e:e6:0f:92: d1:e5:85:30:ea:18:f9:69:77:09:6e:d3:be:04:46: cc:4b:0c:1c:ad:0b:77:e1:a3:f1:d5:94:fe:fa:20: a5:ba:0d:32:64:d3:bc:bd:b1:0c:61:8f:6e:0d:73: ce:00:65:2d:fd:fa:74:fa:21:5a:92:57:49:6e:9c: 25:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:54:56:36:40:88:DA:5A:00:A4:5A:D6:8D:52:26:16:F3:BE:3B:8D X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:01:3f:36:47:6a:c9:77:26:0c:89:c4:7a:55:6f:50:9f:25: ac:4a:4d:c0:42:34:20:76:1f:63:ed:be:f8:d3:52:45:ce:3d: 0d:91:fd:e9:85:fd:f3:3d:4d:c7:e8:9b:50:49:53:2f:57:71: d8:a8:23:8f:ca:01:80:d5:21:b9:1a:e5:71:5a:07:5e:d0:49: 43:fc:15:a9:01:ec:ca:27:b5:10:73:b7:2d:3c:5d:20:d2:5d: 09:59:32:4c:2d:b1:ef:e7:cd:81:be:e6:71:15:b8:60:b9:cc: 83:45:05:5d:e5:ae:15:33:35:ac:60:f7:6d:84:56:6f:a4:58: 53:36:c3:5a:f4:d9:70:bc:69:3a:55:01:2e:31:85:d3:6c:84: ee:8d:63:e1:cc:e7:75:f7:49:39:cb:68:a0:b5:2c:64:73:f3: 86:da:c6:50:d0:d6:30:8b:c9:30:19:1d:1f:1f:f7:49:6a:7b: 2e:82:22:c8:1f:eb:30:c4:35:c9:fb:98:cb:39:86:3e:fc:b9: 2c:08:a3:f4:56:b9:8c:93:41:63:7b:6d:ba:e4:fe:09:aa:70: d5:5d:2c:d0:26:6c:c7:15:c0:23:1f:fa:3a:05:81:56:59:9d: ae:61:21:0c:46:4f:1e:31:ac:54:5a:fe:97:f9:68:9e:81:f4: 31:fc:68:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUwOTE5MDMzMjQ5WhcNMjUwOTI2MDMzMjQ5WjAYMRYwFAYD VQQDEw02OGNjY2VlMS00NDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArapbwM49pygibpX+c5HqzRo3EgXYp06M+X+XQd3AKcfAI2E0OZN6XCI0hY+e RF5+8tYlYlBUfp5R055+1KJ4mdvJMSCvBLJJR3WtKLne+dQM4x+5Mo5w3HHUFK+Z ckt3aeymZfPqPiq3NCzS9UbdPJaHxLvNihMV7luSKIw/gh+BUyveyuM0ziO5A2hK Xy77d+YLg/KRjAPHGSR+DIxva7QZpR/Aan1TzFkoqOTtJbt+5fk9UdO1P05suWR1 mz7mD5LR5YUw6hj5aXcJbtO+BEbMSwwcrQt34aPx1ZT++iClug0yZNO8vbEMYY9u DXPOAGUt/fp0+iFakldJbpwlhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9UVjZA iNpaAKRa1o1SJhbzvjuNMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUAT82R2rJdyYMicR6VW9QnyWsSk3AQjQgdh9j7b7401JFzj0Nkf3p hf3zPU3H6JtQSVMvV3HYqCOPygGA1SG5GuVxWgde0ElD/BWpAezKJ7UQc7ctPF0g 0l0JWTJMLbHv582BvuZxFbhgucyDRQVd5a4VMzWsYPdthFZvpFhTNsNa9NlwvGk6 VQEuMYXTbITujWPhzOd190k5y2igtSxkc/OG2sZQ0NYwi8kwGR0fH/dJansugiLI H+swxDXJ+5jLOYY+/LksCKP0VrmMk0Fje2265P4JqnDVXSzQJmzHFcAjH/o6BYFW WZ2uYSEMRk8eMaxUWv6X+WiegfQx/Ghw -----END CERTIFICATE-----Generated at Fri Sep 19 09:35:36 2025 by rpki-client