$ rpki-client -vvf rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft File: 3VdGDwwSvgVGE6L0KWewfaVoe_A.mft (raw, json) Hash identifier: jZ604n4MaXS+BbgPgB8IoySq7751RKjvr2eLcZcYnmo= Subject key identifier: D0:19:F3:40:13:7D:CA:E9:4B:A4:59:98:A3:02:50:FB:36:A9:93:8C Authority key identifier: DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 Certificate issuer: /CN=A91566DC/serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft Manifest number: 72 Signing time: Tue 13 May 2025 06:00:01 +0000 Manifest this update: Tue 13 May 2025 06:00:01 +0000 Manifest next update: Tue 20 May 2025 06:00:00 +0000 Files and hashes: 1: 3VdGDwwSvgVGE6L0KWewfaVoe_A.crl (hash: Luqj/8bsT0qR57QXwU2oN5IWlHJft+HBVEGwz8t8Nr4=) 2: ABF1FAF2860211EF8D8AD011C4F9AE02.roa (hash: FjxvcClLpMvzDMGgYVpt3T25fLDEAyl8BO+4pScMyJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91566DC, serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Validity Not Before: May 13 06:00:01 2025 GMT Not After : May 20 06:00:00 2025 GMT Subject: CN=6822dfe1-e186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dd:c0:30:09:94:f9:0b:83:7f:c2:a0:32:57: f8:8e:a1:2a:0c:06:fd:74:cb:70:78:bc:75:48:00: 8f:7a:93:67:53:fe:33:3a:fd:d7:5e:dd:67:76:b2: c6:ba:be:dc:0f:5b:7e:1b:49:36:b9:14:28:4b:f0: 7d:06:95:b5:6a:32:98:78:e8:1f:c8:50:a7:0e:0e: 10:27:d4:37:26:63:92:f1:57:77:53:fc:b3:ee:61: dc:1b:77:bc:5f:9f:85:f3:27:ce:26:d3:23:76:8d: 6a:4d:f4:d9:b6:8e:d4:ae:cf:1f:8d:db:2e:18:dd: a4:6e:e4:7b:b3:ac:ab:94:54:41:5f:c2:39:f0:7e: 2a:de:c6:eb:eb:e7:98:2f:d9:5d:6e:1a:ff:db:d0: 5c:4b:b0:c2:60:5f:04:c7:71:e6:e0:2c:e1:6d:f3: 91:91:f3:1c:f6:a4:a1:aa:bf:22:56:6f:39:66:eb: d5:3f:a2:2b:bc:4e:b8:65:c2:74:0e:c0:7e:e1:84: 83:06:d1:4b:1b:68:7e:be:ab:86:0f:b9:c1:af:69: 23:e9:55:5b:c2:c3:7e:df:24:47:5a:3e:ce:65:89: 03:7e:d1:a5:56:60:68:24:4f:11:76:25:bd:ee:7b: 90:31:ab:3e:45:c9:85:42:69:66:5e:d9:56:e4:20: e6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:19:F3:40:13:7D:CA:E9:4B:A4:59:98:A3:02:50:FB:36:A9:93:8C X509v3 Authority Key Identifier: keyid:DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:0d:fa:15:bd:48:f5:61:3b:66:a6:ce:e1:2c:3f:f6:e9:ff: e5:c4:9b:47:59:46:59:88:0d:1b:90:be:a8:d0:9a:34:e3:f9: 58:d7:11:cb:f3:bc:c1:a4:b9:70:1d:98:0a:be:e6:f4:a8:2b: b3:26:98:af:a6:bd:e0:24:17:60:b5:71:78:a9:23:c0:df:ca: 31:1d:3d:d3:54:56:f5:c2:e6:04:cd:84:fe:4b:e7:5b:2d:ae: 3a:3f:46:2a:c9:c0:bb:bb:18:5b:9e:84:ee:f9:7c:ab:27:99: 96:63:7c:3c:9c:b0:76:c3:52:f2:40:bd:08:47:f0:b9:3f:31: 99:eb:8f:13:62:cd:37:e9:56:4f:86:6d:90:0e:2f:89:d2:9b: 7f:b8:7b:bc:6e:c7:d2:1b:67:b2:b3:45:cb:4c:de:22:63:ee: d6:05:4d:71:0f:57:40:1d:f9:07:68:3c:1e:e5:53:51:3c:6c: 01:76:fe:6f:66:8d:01:b8:97:89:a7:a5:ab:b7:29:46:ac:3e: a7:82:d5:36:8a:33:04:d7:96:e2:8b:db:24:69:1f:81:f1:fe: 70:34:6a:65:c7:31:b2:9d:e1:01:49:36:84:54:26:96:df:10: 79:cc:d1:86:a0:1b:aa:88:5c:15:af:05:f9:da:4a:91:cc:b5: 32:b8:88:02 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjZEQzExMC8GA1UEBRMoREQ1NzQ2MEYwQzEyQkUwNTQ2MTNBMkY0Mjk2N0IwN0RB NTY4N0JGMDAeFw0yNTA1MTMwNjAwMDFaFw0yNTA1MjAwNjAwMDBaMBgxFjAUBgNV BAMTDTY4MjJkZmUxLWUxODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO3cAwCZT5C4N/wqAyV/iOoSoMBv10y3B4vHVIAI96k2dT/jM6/dde3Wd2ssa6 vtwPW34bSTa5FChL8H0GlbVqMph46B/IUKcODhAn1DcmY5LxV3dT/LPuYdwbd7xf n4XzJ84m0yN2jWpN9Nm2jtSuzx+N2y4Y3aRu5HuzrKuUVEFfwjnwfirexuvr55gv 2V1uGv/b0FxLsMJgXwTHcebgLOFt85GR8xz2pKGqvyJWbzlm69U/oiu8TrhlwnQO wH7hhIMG0UsbaH6+q4YPucGvaSPpVVvCw37fJEdaPs5liQN+0aVWYGgkTxF2Jb3u e5Axqz5FyYVCaWZe2VbkIOalAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0BnzQBN9 yulLpFmYowJQ+zapk4wwHwYDVR0jBBgwFoAU3VdGDwwSvgVGE6L0KWewfaVoe/Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2NkRDLzVBMTgyQzdDODUy MzExRUY5QjQ4RkY0MUM0RjlBRTAyLzNWZEdEd3dTdmdWR0U2TDBLV2V3ZmFWb2Vf QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM1ZkR0R3d1N2Z1ZHRTZMMEtXZXdmYVZvZV9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 NkRDLzVBMTgyQzdDODUyMzExRUY5QjQ4RkY0MUM0RjlBRTAyLzNWZEdEd3dTdmdW R0U2TDBLV2V3ZmFWb2VfQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGUN+hW9SPVhO2amzuEsP/bp/+XEm0dZRlmIDRuQvqjQmjTj+VjXEcvz vMGkuXAdmAq+5vSoK7MmmK+mveAkF2C1cXipI8DfyjEdPdNUVvXC5gTNhP5L51st rjo/RirJwLu7GFuehO75fKsnmZZjfDycsHbDUvJAvQhH8Lk/MZnrjxNizTfpVk+G bZAOL4nSm3+4e7xux9IbZ7KzRctM3iJj7tYFTXEPV0Ad+QdoPB7lU1E8bAF2/m9m jQG4l4mnpau3KUasPqeC1TaKMwTXluKL2yRpH4Hx/nA0amXHMbKd4QFJNoRUJpbf EHnM0YagG6qIXBWvBfnaSpHMtTK4iAI= -----END CERTIFICATE-----Generated at Wed May 14 14:07:54 2025 by rpki-client