$ rpki-client -vvf rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft File: v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft (raw, json) Hash identifier: 06djp+mAjfjiEYlAUUBpilkZEJyq+6bJgNu+km+KwDw= Subject key identifier: 79:8E:1C:0C:0F:73:5B:FC:92:00:5A:9F:3B:C2:77:9E:15:C2:40:9B Authority key identifier: BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF Certificate issuer: /CN=A91401C4/serialNumber=BF7BCAF1909C10BCFEA0D8E7D45D8254F269C6BF Certificate serial: 3512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft Manifest number: 34DF Signing time: Fri 08 Aug 2025 14:15:54 +0000 Manifest this update: Fri 08 Aug 2025 14:15:54 +0000 Manifest next update: Fri 15 Aug 2025 14:15:54 +0000 Files and hashes: 1: v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl (hash: q/23FgEMxe+u/90M9ZMXcdFPdbp3iQ70pOL6sAbEN+M=) 2: 13773D180C8111EB9BD25070C4F9AE02.roa (hash: EcHgJTBJZVSZcmyoGTsJf6lDzdXZarLLw4Yz9Tt75wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13586 (0x3512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91401C4, serialNumber=BF7BCAF1909C10BCFEA0D8E7D45D8254F269C6BF Validity Not Before: Aug 8 14:15:54 2025 GMT Not After : Aug 15 14:15:54 2025 GMT Subject: CN=6896069a-8777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:97:66:39:13:2b:7f:55:ad:08:85:a0:c8:22: 5f:c3:f6:6e:2a:49:1d:0a:37:4e:4a:9c:de:65:50: 0d:6b:30:89:8b:44:68:4a:01:80:13:bb:fe:69:fb: 4a:d9:42:3a:8c:3b:39:70:4d:80:cb:8c:e1:ae:65: 93:40:4d:55:fe:84:d4:01:ad:01:3f:e8:bc:8d:bd: bb:67:29:ba:f0:ee:ff:02:8d:19:0a:3c:02:2c:5a: 79:82:30:2d:3a:93:c1:39:09:48:66:aa:bb:f7:a5: 47:1c:e5:2a:09:28:97:3d:0d:42:f0:4e:71:87:01: dc:1a:ae:83:68:36:e1:34:e5:9e:53:af:78:e5:39: 7e:c2:a0:0e:62:a7:36:e0:0c:aa:4d:01:c8:24:7c: be:84:29:6b:a7:2c:59:74:53:18:13:74:69:e7:76: 78:47:ce:47:bf:8e:4c:4c:62:18:cc:3a:ca:c6:29: 06:20:33:f9:80:0d:2a:c2:aa:ba:98:4c:84:66:c5: 34:b9:d7:91:78:fb:43:90:87:68:f1:3e:d3:16:3e: 03:ba:2d:80:aa:32:d1:3a:07:67:e4:23:08:32:bd: ad:07:73:ed:db:00:fc:f6:c7:ae:eb:53:d0:c6:92: 8e:13:01:71:76:e2:d0:fb:5c:d5:bc:76:2c:b0:f1: 53:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:8E:1C:0C:0F:73:5B:FC:92:00:5A:9F:3B:C2:77:9E:15:C2:40:9B X509v3 Authority Key Identifier: keyid:BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:7f:23:57:4d:b4:7d:79:97:1e:b7:3c:f0:8f:e4:2a:6c:32: 1b:9e:78:f1:5b:ea:7c:0c:95:22:39:ea:93:82:f7:64:38:9f: 34:02:8c:77:21:01:e5:9d:d5:04:f0:ee:96:50:03:57:11:ea: bc:d7:73:df:b3:f1:2d:56:dc:65:0d:9f:6d:3e:85:8d:e3:97: 21:6a:7d:6e:0b:9b:35:0c:c4:6e:95:71:d4:6e:a8:c6:90:5f: 5e:58:02:9c:4f:84:50:cd:e0:56:8c:48:b7:1e:93:a7:1e:f9: f0:d9:7f:07:88:d6:88:2a:3b:29:ca:e5:de:6e:15:7b:91:73: 7d:1d:67:e9:93:4b:fb:60:16:c7:00:a0:42:6a:01:e0:af:78: 6d:db:8b:bd:0e:70:09:e1:e3:4b:24:16:ae:a6:8a:06:aa:d8: 36:18:f7:20:33:8c:20:04:e3:ae:b5:85:d6:9f:38:83:5f:f3: 1f:82:09:c3:c9:b4:c8:1c:8d:60:4f:e9:41:0b:dd:21:00:a6: 92:4f:1e:5c:8d:2a:6f:ec:90:86:92:ed:c7:92:b0:98:d1:b4: 0e:54:27:98:04:26:82:4a:b6:c6:2d:c4:0f:ea:1b:c3:16:4a: af:5f:45:52:12:bc:42:22:c2:7c:fd:92:b0:dd:c7:23:ef:3d: 75:ac:d4:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAxQzQxMTAvBgNVBAUTKEJGN0JDQUYxOTA5QzEwQkNGRUEwRDhFN0Q0NUQ4MjU0 RjI2OUM2QkYwHhcNMjUwODA4MTQxNTU0WhcNMjUwODE1MTQxNTU0WjAYMRYwFAYD VQQDEw02ODk2MDY5YS04Nzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15dmORMrf1WtCIWgyCJfw/ZuKkkdCjdOSpzeZVANazCJi0RoSgGAE7v+aftK 2UI6jDs5cE2Ay4zhrmWTQE1V/oTUAa0BP+i8jb27Zym68O7/Ao0ZCjwCLFp5gjAt OpPBOQlIZqq796VHHOUqCSiXPQ1C8E5xhwHcGq6DaDbhNOWeU6945Tl+wqAOYqc2 4AyqTQHIJHy+hClrpyxZdFMYE3Rp53Z4R85Hv45MTGIYzDrKxikGIDP5gA0qwqq6 mEyEZsU0udeRePtDkIdo8T7TFj4Dui2AqjLROgdn5CMIMr2tB3Pt2wD89seu61PQ xpKOEwFxduLQ+1zVvHYssPFTTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmOHAwP c1v8kgBanzvCd54VwkCbMB8GA1UdIwQYMBaAFL97yvGQnBC8/qDY59RdglTyaca/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDFDNC8yQjJCM0M5RTFE NjkxMUUyQUFBMDU1QTYwOEIwMkNEMi92M3ZLOFpDY0VMei1vTmpuMUYyQ1ZQSnB4 cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Yzdks4WkNjRUx6LW9Oam4xRjJDVlBKcHhyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDFDNC8yQjJCM0M5RTFENjkxMUUyQUFBMDU1QTYwOEIwMkNEMi92M3ZLOFpDY0VM ei1vTmpuMUYyQ1ZQSnB4cjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMfyNXTbR9eZcetzzwj+QqbDIbnnjxW+p8DJUiOeqTgvdkOJ80Aox3 IQHlndUE8O6WUANXEeq813Pfs/EtVtxlDZ9tPoWN45chan1uC5s1DMRulXHUbqjG kF9eWAKcT4RQzeBWjEi3HpOnHvnw2X8HiNaIKjspyuXebhV7kXN9HWfpk0v7YBbH AKBCagHgr3ht24u9DnAJ4eNLJBaupooGqtg2GPcgM4wgBOOutYXWnziDX/MfggnD ybTIHI1gT+lBC90hAKaSTx5cjSpv7JCGku3HkrCY0bQOVCeYBCaCSrbGLcQP6hvD FkqvX0VSErxCIsJ8/ZKw3ccj7z11rNTU -----END CERTIFICATE-----Generated at Sat Aug 9 22:47:41 2025 by rpki-client