$ rpki-client -vvf rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft File: 3VdGDwwSvgVGE6L0KWewfaVoe_A.mft (raw, json) Hash identifier: u8p1tXbdZYrifSqOoTdy7SQth03TjeiyimKh7IoaOHw= Subject key identifier: 35:5A:5C:7E:20:51:2A:64:83:3F:36:D0:9C:CF:1F:D9:6F:6C:74:94 Authority key identifier: DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 Certificate issuer: /CN=A91566DC/serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft Manifest number: C2 Signing time: Sun 19 Oct 2025 08:56:35 +0000 Manifest this update: Sun 19 Oct 2025 08:56:35 +0000 Manifest next update: Sun 26 Oct 2025 08:56:35 +0000 Files and hashes: 1: 3VdGDwwSvgVGE6L0KWewfaVoe_A.crl (hash: 77ERO644NY33adZ9FmysztllVIOZSbEts671gxsqybE=) 2: ABF1FAF2860211EF8D8AD011C4F9AE02.roa (hash: FjxvcClLpMvzDMGgYVpt3T25fLDEAyl8BO+4pScMyJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91566DC, serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Validity Not Before: Oct 19 08:56:35 2025 GMT Not After : Oct 26 08:56:35 2025 GMT Subject: CN=68f4a7c3-9203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c0:22:9e:20:8f:ea:7d:88:f2:48:6e:30:e9: d9:f3:60:83:9a:4c:aa:41:41:c3:7e:54:9f:51:73: 5d:9b:76:a3:2f:1e:8a:87:45:8f:9f:2c:ba:63:90: a1:8d:48:89:60:b3:20:42:67:c7:f1:3b:14:08:14: f4:a8:0c:9d:f4:19:69:03:ac:21:17:42:fa:f2:8a: 29:28:b7:95:9a:75:f2:98:41:59:ad:6e:bc:1e:f0: 1f:10:c0:44:96:9f:7c:ad:c3:14:3f:37:ba:f2:03: 29:82:c8:f1:a0:9b:35:7d:c2:b1:58:21:a9:18:1b: f2:b7:88:8d:87:0b:b0:ff:1d:55:8d:16:65:23:a2: ac:09:b7:cb:18:5b:56:38:2b:9b:42:28:45:95:2d: 3e:19:15:d7:f6:3d:ee:02:55:5b:75:27:ce:48:f0: 19:6a:38:6a:98:c9:a4:52:8d:ab:65:45:fd:71:19: 24:9d:25:b2:b5:e3:05:3f:7d:2d:05:b1:d7:0d:b9: 83:a9:b4:2e:d8:b9:7a:cb:1a:1c:f4:f8:9a:ac:ed: d3:0d:84:9f:06:63:c3:71:c1:1e:f8:c1:96:fd:59: 5e:76:74:1d:12:43:0c:27:c5:c6:e8:1c:dd:0a:20: 25:be:ea:87:35:b6:2f:ed:d9:02:36:f6:1f:54:65: 3a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:5A:5C:7E:20:51:2A:64:83:3F:36:D0:9C:CF:1F:D9:6F:6C:74:94 X509v3 Authority Key Identifier: keyid:DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:95:7c:8c:c8:c3:5e:be:44:5a:c1:70:0a:fd:b1:4e:8f:b8: 90:a6:ea:36:3c:58:cd:42:9d:78:10:70:38:91:4e:06:9e:e8: 9c:a6:9c:62:62:6c:ca:41:7b:55:17:42:92:45:c7:e5:c1:c5: 2e:e6:4b:34:58:ad:46:fb:34:4b:12:47:ea:aa:0d:13:36:2e: 39:03:66:41:2a:cb:09:30:ff:2a:7c:65:da:86:9c:ef:07:9e: 62:78:30:b4:fb:ea:dd:3f:6a:93:e2:f5:16:6b:fc:34:f7:f7: e4:ce:96:eb:32:7e:51:0b:3c:1b:1e:13:89:e4:82:46:61:58: 71:09:aa:6a:48:44:a7:8e:7d:27:7f:ba:2d:e4:7d:bf:65:25: d8:72:54:aa:e4:45:73:a5:dd:96:30:bc:e2:b6:26:9c:f1:80: e6:51:e6:82:37:64:22:c6:bb:79:1b:92:a7:0a:95:1c:5b:75: 7b:f1:fd:0f:1e:e8:27:df:13:ef:bc:b2:cc:e2:cd:e9:7e:9e: 97:6e:3c:24:89:46:a2:44:5f:43:3c:ce:e1:03:de:b0:5f:91: 18:47:a8:2f:38:78:e2:3f:85:b5:df:66:3a:a8:bd:c5:67:e6: 4f:1d:ad:29:66:0f:fc:3a:a2:b9:87:49:cc:88:39:2c:9a:96: dd:95:9a:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY2REMxMTAvBgNVBAUTKERENTc0NjBGMEMxMkJFMDU0NjEzQTJGNDI5NjdCMDdE QTU2ODdCRjAwHhcNMjUxMDE5MDg1NjM1WhcNMjUxMDI2MDg1NjM1WjAYMRYwFAYD VQQDEw02OGY0YTdjMy05MjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMAiniCP6n2I8khuMOnZ82CDmkyqQUHDflSfUXNdm3ajLx6Kh0WPnyy6Y5Ch jUiJYLMgQmfH8TsUCBT0qAyd9BlpA6whF0L68oopKLeVmnXymEFZrW68HvAfEMBE lp98rcMUPze68gMpgsjxoJs1fcKxWCGpGBvyt4iNhwuw/x1VjRZlI6KsCbfLGFtW OCubQihFlS0+GRXX9j3uAlVbdSfOSPAZajhqmMmkUo2rZUX9cRkknSWyteMFP30t BbHXDbmDqbQu2Ll6yxoc9PiarO3TDYSfBmPDccEe+MGW/VlednQdEkMMJ8XG6Bzd CiAlvuqHNbYv7dkCNvYfVGU62wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVaXH4g USpkgz820JzPH9lvbHSUMB8GA1UdIwQYMBaAFN1XRg8MEr4FRhOi9ClnsH2laHvw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjZEQy81QTE4MkM3Qzg1 MjMxMUVGOUI0OEZGNDFDNEY5QUUwMi8zVmRHRHd3U3ZnVkdFNkwwS1dld2ZhVm9l X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNWZEdEd3dTdmdWR0U2TDBLV2V3ZmFWb2VfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjZEQy81QTE4MkM3Qzg1MjMxMUVGOUI0OEZGNDFDNEY5QUUwMi8zVmRHRHd3U3Zn VkdFNkwwS1dld2ZhVm9lX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/lXyMyMNevkRawXAK/bFOj7iQpuo2PFjNQp14EHA4kU4Gnuicppxi YmzKQXtVF0KSRcflwcUu5ks0WK1G+zRLEkfqqg0TNi45A2ZBKssJMP8qfGXahpzv B55ieDC0++rdP2qT4vUWa/w09/fkzpbrMn5RCzwbHhOJ5IJGYVhxCapqSESnjn0n f7ot5H2/ZSXYclSq5EVzpd2WMLzitiac8YDmUeaCN2Qixrt5G5KnCpUcW3V78f0P Hugn3xPvvLLM4s3pfp6XbjwkiUaiRF9DPM7hA96wX5EYR6gvOHjiP4W132Y6qL3F Z+ZPHa0pZg/8OqK5h0nMiDksmpbdlZq/ -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:03 2025 by rpki-client