$ rpki-client -vvf rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft File: 3VdGDwwSvgVGE6L0KWewfaVoe_A.mft (raw, json) Hash identifier: iYWolrQoMItNlZG8DcnS2lnVqyl6eAxaq9diOv05mcQ= Subject key identifier: 69:2F:4C:D1:46:83:61:73:5B:F8:AD:A5:2B:5F:CD:95:6F:47:CD:00 Authority key identifier: DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 Certificate issuer: /CN=A91566DC/serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft Manifest number: A5 Signing time: Sat 23 Aug 2025 06:24:38 +0000 Manifest this update: Sat 23 Aug 2025 06:24:38 +0000 Manifest next update: Sat 30 Aug 2025 06:24:38 +0000 Files and hashes: 1: 3VdGDwwSvgVGE6L0KWewfaVoe_A.crl (hash: wc/XXhP8lPE6mdbTwr/QAxy+DzD+9xnurN6EGqu8wVE=) 2: ABF1FAF2860211EF8D8AD011C4F9AE02.roa (hash: FjxvcClLpMvzDMGgYVpt3T25fLDEAyl8BO+4pScMyJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91566DC, serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Validity Not Before: Aug 23 06:24:38 2025 GMT Not After : Aug 30 06:24:38 2025 GMT Subject: CN=68a95ea6-3920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c7:d7:e9:5c:b0:9c:9f:3b:eb:09:fa:ab:5b: 3f:e5:fd:e7:e0:3c:91:e6:e4:b1:de:7a:76:7a:c1: 17:b8:5a:73:32:5c:24:9a:51:57:d9:5d:a0:52:6c: 1f:31:a2:af:02:16:08:eb:9d:99:fb:53:e6:52:4a: de:16:b2:6e:a6:0d:a7:b5:63:30:f4:cb:25:0b:89: 99:1a:c8:ea:43:bb:c3:fe:c8:a3:08:01:82:af:1e: a6:95:5a:99:61:c6:47:3e:1b:ba:9e:dc:bf:fb:f9: fc:9e:2f:12:65:1b:60:53:c6:4d:ae:cf:78:f0:ff: da:df:cd:5e:2c:3b:7d:47:03:7b:8c:05:4a:e5:aa: 42:4b:a0:64:84:2f:87:67:1a:1a:2f:c1:26:c2:d0: d2:99:d1:5c:0b:60:ec:75:f4:78:95:33:2b:8b:05: 37:d8:39:86:9c:c9:da:80:5b:08:2e:b5:51:b8:22: a0:88:ae:9d:18:a8:61:41:3d:82:2a:d3:43:f5:63: c5:0c:9a:14:e1:43:b3:5f:38:83:4e:32:ba:29:3a: 72:21:44:fd:97:07:74:b5:ba:9d:0c:67:00:a2:cc: b8:be:2a:09:52:91:b1:ff:cf:dd:19:2e:c4:e4:d6: f0:01:4f:b6:33:30:d4:e5:25:75:48:7f:df:80:09: 26:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:2F:4C:D1:46:83:61:73:5B:F8:AD:A5:2B:5F:CD:95:6F:47:CD:00 X509v3 Authority Key Identifier: keyid:DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:79:35:82:51:53:8f:2e:89:39:99:be:d2:fa:ad:86:0b:7f: e5:f6:8f:df:85:61:b8:42:a7:da:bd:18:b9:5c:84:8e:d5:aa: b7:9b:9b:4f:7e:74:d0:d4:86:42:7a:e3:30:ca:08:4c:45:55: bc:26:c3:4f:12:e0:8a:85:64:58:5f:c2:49:f8:a1:ef:a1:cc: ec:96:bc:e8:45:9f:76:13:ff:cb:88:50:63:5f:7a:85:a0:c5: 14:bb:43:3a:14:3e:92:2b:64:47:71:02:99:1b:d2:b0:77:b6: 41:7f:29:5e:5e:1e:34:a1:a3:4a:20:04:6e:12:7c:da:6f:8e: 44:59:cb:ef:43:d7:78:30:6b:62:ec:0c:99:54:7b:db:16:67: d9:99:00:55:67:6a:84:3b:3e:d8:9d:6c:d5:54:91:97:63:7e: 38:58:cc:ff:eb:19:b5:c8:11:fc:37:dd:cf:a3:17:57:73:a9: cc:e0:cd:8a:95:23:48:0a:9a:cc:54:2a:41:a6:33:66:d6:1e: 7e:f3:29:f2:ea:22:2b:be:17:1d:b9:1f:d4:49:62:a2:fc:d9: 75:6c:b4:b7:41:b5:20:9b:0c:ac:05:44:f8:cd:f9:2e:0f:5e: cb:ad:67:c0:39:cb:53:3d:7a:84:f4:38:16:2f:ae:57:14:71: 35:2b:85:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY2REMxMTAvBgNVBAUTKERENTc0NjBGMEMxMkJFMDU0NjEzQTJGNDI5NjdCMDdE QTU2ODdCRjAwHhcNMjUwODIzMDYyNDM4WhcNMjUwODMwMDYyNDM4WjAYMRYwFAYD VQQDEw02OGE5NWVhNi0zOTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8fX6VywnJ876wn6q1s/5f3n4DyR5uSx3np2esEXuFpzMlwkmlFX2V2gUmwf MaKvAhYI652Z+1PmUkreFrJupg2ntWMw9MslC4mZGsjqQ7vD/sijCAGCrx6mlVqZ YcZHPhu6nty/+/n8ni8SZRtgU8ZNrs948P/a381eLDt9RwN7jAVK5apCS6BkhC+H ZxoaL8EmwtDSmdFcC2DsdfR4lTMriwU32DmGnMnagFsILrVRuCKgiK6dGKhhQT2C KtND9WPFDJoU4UOzXziDTjK6KTpyIUT9lwd0tbqdDGcAosy4vioJUpGx/8/dGS7E 5NbwAU+2MzDU5SV1SH/fgAkmQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkvTNFG g2FzW/itpStfzZVvR80AMB8GA1UdIwQYMBaAFN1XRg8MEr4FRhOi9ClnsH2laHvw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjZEQy81QTE4MkM3Qzg1 MjMxMUVGOUI0OEZGNDFDNEY5QUUwMi8zVmRHRHd3U3ZnVkdFNkwwS1dld2ZhVm9l X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNWZEdEd3dTdmdWR0U2TDBLV2V3ZmFWb2VfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjZEQy81QTE4MkM3Qzg1MjMxMUVGOUI0OEZGNDFDNEY5QUUwMi8zVmRHRHd3U3Zn VkdFNkwwS1dld2ZhVm9lX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADeTWCUVOPLok5mb7S+q2GC3/l9o/fhWG4QqfavRi5XISO1aq3m5tP fnTQ1IZCeuMwyghMRVW8JsNPEuCKhWRYX8JJ+KHvoczslrzoRZ92E//LiFBjX3qF oMUUu0M6FD6SK2RHcQKZG9Kwd7ZBfyleXh40oaNKIARuEnzab45EWcvvQ9d4MGti 7AyZVHvbFmfZmQBVZ2qEOz7YnWzVVJGXY344WMz/6xm1yBH8N93PoxdXc6nM4M2K lSNICprMVCpBpjNm1h5+8yny6iIrvhcduR/USWKi/Nl1bLS3QbUgmwysBUT4zfku D17LrWfAOctTPXqE9DgWL65XFHE1K4Xl -----END CERTIFICATE-----Generated at Sat Aug 23 19:59:52 2025 by rpki-client