$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft File: 3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft (raw, json) Hash identifier: tXT//48CGN9DHGBYddlKxw5WmOufbcba617PV4uM4Rs= Subject key identifier: E5:76:00:6A:68:31:13:91:6E:EB:83:4B:BE:6C:7C:58:44:5C:58:5B Authority key identifier: DC:F5:47:0C:5C:87:82:88:D6:1D:9E:A5:A5:15:D5:85:0E:7B:58:73 Certificate issuer: /CN=A91B5AAA/serialNumber=DCF5470C5C878288D61D9EA5A515D5850E7B5873 Certificate serial: 0B68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft Manifest number: 4016 Signing time: Sun 24 Aug 2025 14:48:45 +0000 Manifest this update: Sun 24 Aug 2025 14:48:44 +0000 Manifest next update: Sun 31 Aug 2025 14:48:44 +0000 Files and hashes: 1: 3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl (hash: IqHH1mxnfxdYbh1tJu8tpikSOH7PyQs2Pc4SE1Bfx3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2920 (0xb68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=DCF5470C5C878288D61D9EA5A515D5850E7B5873 Validity Not Before: Aug 24 14:48:44 2025 GMT Not After : Aug 31 14:48:44 2025 GMT Subject: CN=68ab264c-0016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d2:68:22:d9:62:11:5a:bb:1c:cd:71:23:d9: be:12:bd:88:e0:27:15:23:b5:6e:ad:e4:6b:9a:45: e6:b9:be:ab:19:4c:e7:e5:f3:ce:35:fd:c1:6f:45: 2a:43:a4:f5:bf:00:c5:e2:42:fd:9f:40:aa:dd:df: 40:48:9c:a4:bc:f7:ab:dd:66:20:5d:13:51:41:be: fc:8c:b5:a5:55:96:41:a7:4b:7c:a0:a7:bc:ad:16: 6e:96:43:b8:16:0f:c0:df:ca:d3:76:ce:fc:71:c5: b1:28:ce:12:65:f0:d7:82:63:42:97:3a:e3:0a:b6: 6d:7f:6c:9f:11:de:9d:f2:b7:14:12:26:13:5e:89: b9:f9:b8:da:6e:f9:a5:a7:9b:3a:35:49:c5:ec:b1: 11:f6:d0:49:c3:72:0a:2a:9a:46:3e:e6:66:cb:aa: f9:20:c7:79:6a:2a:c5:8e:e9:01:46:4e:44:83:bc: ae:4d:cf:e7:b2:3a:96:cb:19:d5:6d:6e:c8:68:06: c2:da:ae:c1:e4:8f:50:78:9e:a8:cf:4e:da:45:ec: 7f:30:79:57:d8:a5:74:96:7c:1c:2d:79:e9:bf:2e: 30:f2:bf:b8:78:b9:19:cd:c3:f1:8c:8f:52:a1:34: 77:df:3f:40:88:cc:f6:c3:f7:9a:73:69:5d:51:09: 4b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:76:00:6A:68:31:13:91:6E:EB:83:4B:BE:6C:7C:58:44:5C:58:5B X509v3 Authority Key Identifier: keyid:DC:F5:47:0C:5C:87:82:88:D6:1D:9E:A5:A5:15:D5:85:0E:7B:58:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/3PVHDFyHgojWHZ6lpRXVhQ57WHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:51:43:48:f5:3a:5b:d6:d2:26:f5:e5:99:23:97:ac:32:72: a5:90:42:55:04:8b:f4:c0:49:df:04:49:d7:3f:85:0e:10:f5: e0:33:da:a7:71:3a:9b:30:3b:c7:2e:db:21:71:e1:4d:9b:4b: a3:2e:cf:f0:8a:d2:d7:f7:f4:82:e1:0e:90:58:33:e1:93:f9: 91:de:39:a3:13:5e:f6:a8:a1:7a:48:e9:54:45:45:61:e2:4a: 40:b4:ce:e2:f5:3d:a9:2b:56:2e:d9:75:18:02:5b:0d:fa:4f: a0:c8:17:08:08:aa:ae:cc:68:ab:46:af:c0:27:11:62:21:1c: 33:dc:95:52:43:c6:f8:6a:ff:a8:91:bc:61:b5:f8:65:8e:c3: 0a:c2:97:c0:6f:f8:58:b0:45:f9:58:3c:83:60:9d:cf:8c:51: fd:7f:fe:78:e9:93:7b:23:68:05:11:48:a8:35:10:10:91:b7: d9:41:19:30:27:7e:dc:c2:1a:c0:6f:21:d4:f4:93:0d:cc:c0: 05:8e:b7:28:f7:62:47:cd:0a:e4:d0:b9:5e:b3:31:53:35:15: 38:9d:c7:0e:94:a4:84:f9:8b:fd:28:78:df:98:eb:53:25:50: 6e:6b:4f:e2:a0:5c:f3:27:aa:dd:d4:77:7f:78:d5:58:f9:27: 63:51:c7:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKERDRjU0NzBDNUM4NzgyODhENjFEOUVBNUE1MTVENTg1 MEU3QjU4NzMwHhcNMjUwODI0MTQ0ODQ0WhcNMjUwODMxMTQ0ODQ0WjAYMRYwFAYD VQQDEw02OGFiMjY0Yy0wMDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tJoItliEVq7HM1xI9m+Er2I4CcVI7VureRrmkXmub6rGUzn5fPONf3Bb0Uq Q6T1vwDF4kL9n0Cq3d9ASJykvPer3WYgXRNRQb78jLWlVZZBp0t8oKe8rRZulkO4 Fg/A38rTds78ccWxKM4SZfDXgmNClzrjCrZtf2yfEd6d8rcUEiYTXom5+bjabvml p5s6NUnF7LER9tBJw3IKKppGPuZmy6r5IMd5airFjukBRk5Eg7yuTc/nsjqWyxnV bW7IaAbC2q7B5I9QeJ6oz07aRex/MHlX2KV0lnwcLXnpvy4w8r+4eLkZzcPxjI9S oTR33z9AiMz2w/eac2ldUQlLEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOV2AGpo MRORbuuDS75sfFhEXFhbMB8GA1UdIwQYMBaAFNz1Rwxch4KI1h2epaUV1YUOe1hz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi8zUFZIREZ5SGdvaldIWjZscFJYVmhRNTdX SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNQVkhERnlIZ29qV0haNmxwUlhWaFE1N1dITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi8zUFZIREZ5SGdv aldIWjZscFJYVmhRNTdXSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClUUNI9Tpb1tIm9eWZI5esMnKlkEJVBIv0wEnfBEnXP4UOEPXgM9qn cTqbMDvHLtshceFNm0ujLs/witLX9/SC4Q6QWDPhk/mR3jmjE172qKF6SOlURUVh 4kpAtM7i9T2pK1Yu2XUYAlsN+k+gyBcICKquzGirRq/AJxFiIRwz3JVSQ8b4av+o kbxhtfhljsMKwpfAb/hYsEX5WDyDYJ3PjFH9f/546ZN7I2gFEUioNRAQkbfZQRkw J37cwhrAbyHU9JMNzMAFjrco92JHzQrk0LleszFTNRU4nccOlKSE+Yv9KHjfmOtT JVBua0/ioFzzJ6rd1Hd/eNVY+SdjUceF -----END CERTIFICATE-----Generated at Sun Aug 24 21:38:49 2025 by rpki-client