$ rpki-client -vvf rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft File: 3VdGDwwSvgVGE6L0KWewfaVoe_A.mft (raw, json) Hash identifier: C/PfFzh4ktnNeCz4Gjus6l0YzCWireCMnapmMrj3cz4= Subject key identifier: 6D:60:AE:09:FE:43:E7:39:72:F1:B0:69:0A:4A:E4:D9:69:01:8A:1E Authority key identifier: DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 Certificate issuer: /CN=A91566DC/serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft Manifest number: 8B Signing time: Thu 03 Jul 2025 06:41:51 +0000 Manifest this update: Thu 03 Jul 2025 06:41:50 +0000 Manifest next update: Thu 10 Jul 2025 06:41:50 +0000 Files and hashes: 1: 3VdGDwwSvgVGE6L0KWewfaVoe_A.crl (hash: 0fXfOlks/fTX129gfNe42p0IVgHG77I0Y6oaZhU94y0=) 2: ABF1FAF2860211EF8D8AD011C4F9AE02.roa (hash: FjxvcClLpMvzDMGgYVpt3T25fLDEAyl8BO+4pScMyJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91566DC, serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Validity Not Before: Jul 3 06:41:50 2025 GMT Not After : Jul 10 06:41:50 2025 GMT Subject: CN=6866262f-4d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c6:25:4e:0f:d2:34:96:7a:d1:fd:91:75:36: 64:51:ec:4d:27:9d:aa:7f:d8:74:8f:8c:32:63:63: 56:af:dd:f4:24:12:1d:a5:4a:b4:2b:39:c3:b3:77: 05:c4:5a:14:d4:c7:9d:14:5d:3c:38:96:d8:e5:c1: 5a:c4:c8:a0:89:69:50:65:13:19:fb:af:83:af:99: 23:79:69:ec:af:20:fd:67:6d:94:24:7d:0f:81:21: 51:6b:0f:62:e8:1f:cc:42:21:cf:51:cd:44:ab:ed: c7:e0:2d:e3:f7:71:f2:ad:b4:e9:59:08:62:4c:c2: c2:13:a1:6a:ea:fd:c2:9b:28:8b:31:a7:36:b9:53: c2:90:2c:82:2b:48:92:93:3d:e7:7d:30:de:a8:c6: aa:3b:64:c4:8f:e5:ec:3a:e7:b5:3a:45:aa:ed:7f: c5:2b:9d:1a:a9:35:1d:e7:28:2c:b1:7f:28:04:3f: 40:62:9e:18:c4:92:f3:d3:d5:64:06:92:ed:4e:56: 9e:10:2e:47:10:df:02:f6:17:9b:7b:48:52:60:cb: 24:49:29:76:60:aa:99:75:6c:9c:0c:e1:77:f7:9f: 5a:12:b5:29:fe:9a:b0:df:be:54:39:b9:31:ff:bd: e7:0e:e4:3a:da:e8:a6:94:30:e1:4a:59:cf:1d:9f: d8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:60:AE:09:FE:43:E7:39:72:F1:B0:69:0A:4A:E4:D9:69:01:8A:1E X509v3 Authority Key Identifier: keyid:DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:3d:df:88:2e:51:58:24:31:1e:fc:e8:9d:11:42:9d:26:83: 9b:70:5c:d1:1c:28:d4:4b:bf:33:4f:2d:d2:d5:7c:b5:66:15: 10:c7:2b:de:18:f0:99:75:65:66:64:d2:af:52:94:7c:7e:af: df:5f:70:94:a5:06:a8:e8:ef:ff:5e:5c:e7:e1:67:c1:24:aa: 74:3a:31:0e:d9:3f:9f:22:9c:60:4c:df:6a:70:fc:24:4b:13: 08:d3:be:2c:3b:07:4d:f5:47:58:41:54:50:43:27:bf:1f:b6: 3f:8a:0f:d8:bb:3e:f7:15:3e:a2:37:d2:44:24:a2:57:79:35: 29:7a:b3:4b:da:05:d1:39:64:3a:84:22:1c:d3:ea:a7:96:40: 01:da:fb:af:da:94:86:91:7d:e2:41:29:69:b1:03:13:6e:17: 52:66:b1:83:0d:1c:ae:bb:9d:8a:83:d9:ab:c6:3c:ce:1a:2e: 03:92:1f:7f:fd:bf:8f:a4:00:5e:29:53:8d:08:c4:d7:b4:6b: cb:05:65:39:8f:0b:e6:c1:d3:90:4e:4c:a5:f7:f0:ef:3b:df: a0:6e:9b:93:9a:86:f6:d1:74:ea:8f:0b:57:5d:a5:aa:cc:c8: 5d:53:9e:eb:1d:4a:45:73:dc:83:a8:b2:11:f8:a0:bf:24:68: e0:51:fd:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY2REMxMTAvBgNVBAUTKERENTc0NjBGMEMxMkJFMDU0NjEzQTJGNDI5NjdCMDdE QTU2ODdCRjAwHhcNMjUwNzAzMDY0MTUwWhcNMjUwNzEwMDY0MTUwWjAYMRYwFAYD VQQDEw02ODY2MjYyZi00ZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MYlTg/SNJZ60f2RdTZkUexNJ52qf9h0j4wyY2NWr930JBIdpUq0KznDs3cF xFoU1MedFF08OJbY5cFaxMigiWlQZRMZ+6+Dr5kjeWnsryD9Z22UJH0PgSFRaw9i 6B/MQiHPUc1Eq+3H4C3j93HyrbTpWQhiTMLCE6Fq6v3CmyiLMac2uVPCkCyCK0iS kz3nfTDeqMaqO2TEj+XsOue1OkWq7X/FK50aqTUd5ygssX8oBD9AYp4YxJLz09Vk BpLtTlaeEC5HEN8C9hebe0hSYMskSSl2YKqZdWycDOF3959aErUp/pqw375UObkx /73nDuQ62uimlDDhSlnPHZ/YyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1grgn+ Q+c5cvGwaQpK5NlpAYoeMB8GA1UdIwQYMBaAFN1XRg8MEr4FRhOi9ClnsH2laHvw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjZEQy81QTE4MkM3Qzg1 MjMxMUVGOUI0OEZGNDFDNEY5QUUwMi8zVmRHRHd3U3ZnVkdFNkwwS1dld2ZhVm9l X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNWZEdEd3dTdmdWR0U2TDBLV2V3ZmFWb2VfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjZEQy81QTE4MkM3Qzg1MjMxMUVGOUI0OEZGNDFDNEY5QUUwMi8zVmRHRHd3U3Zn VkdFNkwwS1dld2ZhVm9lX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWPd+ILlFYJDEe/OidEUKdJoObcFzRHCjUS78zTy3S1Xy1ZhUQxyve GPCZdWVmZNKvUpR8fq/fX3CUpQao6O//Xlzn4WfBJKp0OjEO2T+fIpxgTN9qcPwk SxMI074sOwdN9UdYQVRQQye/H7Y/ig/Yuz73FT6iN9JEJKJXeTUperNL2gXROWQ6 hCIc0+qnlkAB2vuv2pSGkX3iQSlpsQMTbhdSZrGDDRyuu52Kg9mrxjzOGi4Dkh9/ /b+PpABeKVONCMTXtGvLBWU5jwvmwdOQTkyl9/DvO9+gbpuTmob20XTqjwtXXaWq zMhdU57rHUpFc9yDqLIR+KC/JGjgUf2N -----END CERTIFICATE-----Generated at Fri Jul 4 14:26:31 2025 by rpki-client