$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft File: 3VM9EaneKrkYCFCDvoLVFDTfRUA.mft (raw, json) Hash identifier: 51k7fve5IwpQDOidx1jOXS5OF8JGDsQF7n5wCQZgCtM= Subject key identifier: 91:A0:FC:55:6C:C2:66:DF:5D:DE:99:AE:CC:74:CE:97:67:43:36:EF Authority key identifier: DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 Certificate issuer: /CN=A91C8EB6/serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Certificate serial: 15F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft Manifest number: 15EA Signing time: Sun 24 Aug 2025 16:44:16 +0000 Manifest this update: Sun 24 Aug 2025 16:44:16 +0000 Manifest next update: Sun 31 Aug 2025 16:44:16 +0000 Files and hashes: 1: 3VM9EaneKrkYCFCDvoLVFDTfRUA.crl (hash: J2gwnYZRbgsfwhbcJsDDj8TmNkPCJwc7N8YoLtpMIL8=) 2: 116B4B06282011E8BBA2F625C4F9AE02.roa (hash: Xq7aDp/RYbNUbH8lamtxHtlBICT7QgYLuIupGmw4yJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5618 (0x15f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EB6, serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Validity Not Before: Aug 24 16:44:16 2025 GMT Not After : Aug 31 16:44:16 2025 GMT Subject: CN=68ab4160-8e51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:85:40:76:98:a8:f7:f4:a7:17:ca:3b:6f:63: 37:a3:cd:40:84:79:d1:e3:61:73:d5:ca:d5:7d:2f: c5:c0:03:70:72:08:b1:ba:f9:b9:6f:92:56:72:cc: 9b:bc:b9:67:e9:9d:1c:2c:52:5f:9e:ae:96:07:94: 09:08:27:8b:31:82:fc:f0:f6:29:2c:79:72:c5:7e: c1:c9:6f:4b:78:b1:be:52:d5:ca:a9:55:93:50:5f: 96:af:32:d5:56:3c:a8:0d:2c:84:29:e9:cc:92:f7: ec:cb:33:6e:7c:16:06:b5:6e:0e:5a:d2:65:ca:1c: e1:fd:7d:d0:bd:18:65:86:20:38:57:b4:8b:fd:3d: f1:ab:f7:1b:74:bd:22:ef:69:30:b5:6c:75:9e:fb: 31:d0:c4:14:bf:bc:5a:a2:dc:07:a0:21:bd:61:ca: 3d:54:75:57:1d:f9:a3:ee:70:54:0f:35:69:1a:ac: 81:a0:86:7c:02:02:dd:27:78:3a:84:dd:d4:f4:0e: e9:aa:7d:8a:16:05:ec:d8:d8:9b:62:4b:24:e6:5a: 2c:15:53:b0:9b:73:b4:f1:83:39:8c:11:90:6a:b5: 1b:5a:7b:ce:c6:45:76:ca:04:fc:bd:a8:8b:32:6d: b1:fb:e6:22:d3:21:22:cf:7f:63:a5:6a:b2:53:98: c4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:A0:FC:55:6C:C2:66:DF:5D:DE:99:AE:CC:74:CE:97:67:43:36:EF X509v3 Authority Key Identifier: keyid:DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:78:cf:e5:18:df:f4:49:98:f1:e5:c2:6f:7b:34:0f:d8:c1: 52:8d:ad:ec:aa:a3:b6:88:32:6b:d8:4f:f6:44:5e:30:2c:67: 3c:39:b4:62:b3:b2:3f:a2:34:70:76:6c:c0:94:78:5d:ad:76: 74:27:d9:52:93:12:56:aa:63:6d:10:9a:dc:f5:76:90:15:1e: 96:9e:d8:3e:1d:bb:87:e3:10:f8:72:8b:f0:6a:4e:4e:86:2a: a6:8a:df:08:ff:85:79:24:e7:d6:5e:f3:e6:da:92:68:21:5a: 60:83:69:d5:c9:af:8a:e5:0f:42:54:02:b9:03:d5:c9:ef:62: 79:66:8e:86:74:9b:1f:bf:b5:bd:f9:a4:d4:98:bb:43:f3:a9: 35:48:de:c6:22:f1:f2:91:09:3f:f8:65:19:81:cd:e2:26:4c: 8c:7f:94:fc:f9:b8:d2:1e:f7:f5:8b:68:9e:ff:3e:20:d0:af: b2:10:5a:27:bd:be:d9:59:2c:25:07:da:69:0b:9c:bc:3b:22: 7b:22:f2:07:ea:ef:0b:a5:c4:77:ab:14:6d:a3:d8:ca:bf:d0: 02:5f:3f:1b:d7:e9:b2:e5:7a:88:86:cb:23:68:4f:fa:73:d8: 05:fa:ae:94:77:b3:81:a5:18:d1:bf:c9:1e:3a:a6:f0:ae:f7: 9a:13:5c:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFQjYxMTAvBgNVBAUTKERENTMzRDExQTlERTJBQjkxODA4NTA4M0JFODJENTE0 MzRERjQ1NDAwHhcNMjUwODI0MTY0NDE2WhcNMjUwODMxMTY0NDE2WjAYMRYwFAYD VQQDEw02OGFiNDE2MC04ZTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4YVAdpio9/SnF8o7b2M3o81AhHnR42Fz1crVfS/FwANwcgixuvm5b5JWcsyb vLln6Z0cLFJfnq6WB5QJCCeLMYL88PYpLHlyxX7ByW9LeLG+UtXKqVWTUF+WrzLV VjyoDSyEKenMkvfsyzNufBYGtW4OWtJlyhzh/X3QvRhlhiA4V7SL/T3xq/cbdL0i 72kwtWx1nvsx0MQUv7xaotwHoCG9Yco9VHVXHfmj7nBUDzVpGqyBoIZ8AgLdJ3g6 hN3U9A7pqn2KFgXs2NibYksk5losFVOwm3O08YM5jBGQarUbWnvOxkV2ygT8vaiL Mm2x++Yi0yEiz39jpWqyU5jEkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGg/FVs wmbfXd6Zrsx0zpdnQzbvMB8GA1UdIwQYMBaAFN1TPRGp3iq5GAhQg76C1RQ030VA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVCNi8xMDhGNTNBRTI4 MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUtya1lDRkNEdm9MVkZEVGZS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNWTTlFYW5lS3JrWUNGQ0R2b0xWRkRUZlJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVCNi8xMDhGNTNBRTI4MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUty a1lDRkNEdm9MVkZEVGZSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbeM/lGN/0SZjx5cJvezQP2MFSja3sqqO2iDJr2E/2RF4wLGc8ObRi s7I/ojRwdmzAlHhdrXZ0J9lSkxJWqmNtEJrc9XaQFR6Wntg+HbuH4xD4covwak5O hiqmit8I/4V5JOfWXvPm2pJoIVpgg2nVya+K5Q9CVAK5A9XJ72J5Zo6GdJsfv7W9 +aTUmLtD86k1SN7GIvHykQk/+GUZgc3iJkyMf5T8+bjSHvf1i2ie/z4g0K+yEFon vb7ZWSwlB9ppC5y8OyJ7IvIH6u8LpcR3qxRto9jKv9ACXz8b1+my5XqIhssjaE/6 c9gF+q6Ud7OBpRjRv8keOqbwrveaE1xL -----END CERTIFICATE-----Generated at Sun Aug 24 22:02:51 2025 by rpki-client