$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft File: 3VM9EaneKrkYCFCDvoLVFDTfRUA.mft (raw, json) Hash identifier: yfI0PpiCngoxl9qQbW5vFF97RA+ibm9Te9krTeEX8jc= Subject key identifier: F0:6A:69:76:26:3E:7D:C7:25:14:0A:33:86:D7:C1:72:41:A1:A5:73 Authority key identifier: DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 Certificate issuer: /CN=A91C8EB6/serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Certificate serial: 1616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft Manifest number: 160E Signing time: Sun 02 Nov 2025 16:44:34 +0000 Manifest this update: Sun 02 Nov 2025 16:44:33 +0000 Manifest next update: Sun 09 Nov 2025 16:44:33 +0000 Files and hashes: 1: 3VM9EaneKrkYCFCDvoLVFDTfRUA.crl (hash: 2DntVLTQhORipySk+ANW7DQFAAqjCNgWzGLdB3IcOjk=) 2: 116B4B06282011E8BBA2F625C4F9AE02.roa (hash: Xq7aDp/RYbNUbH8lamtxHtlBICT7QgYLuIupGmw4yJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:44:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5654 (0x1616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EB6, serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Validity Not Before: Nov 2 16:44:33 2025 GMT Not After : Nov 9 16:44:33 2025 GMT Subject: CN=69078a72-3f5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d1:e3:f0:9e:34:f1:fa:23:8e:35:54:cb:15: 80:ec:6c:7c:2b:f3:69:81:9a:77:ee:e0:7b:7c:ff: 58:0d:6a:a7:26:95:4b:f6:0c:96:59:5e:ab:6c:8d: c5:95:a6:f5:df:10:7d:e3:46:ad:12:98:30:1c:7a: 63:52:26:8e:59:97:e6:20:3b:a7:0e:9c:d3:95:33: 66:e1:c9:11:d3:e5:63:e9:60:ff:78:53:ec:db:de: 2a:f6:be:38:e8:b0:3c:f8:32:7d:b1:0b:93:28:5f: 42:2c:0f:1c:af:46:e1:bc:96:4d:7e:13:65:da:4b: d5:ee:43:bb:56:ef:48:73:5a:29:3a:d1:a7:24:9c: c7:16:81:24:2c:c8:ec:72:8d:63:dc:72:9f:7c:84: 90:d1:ec:8c:c1:58:a9:0d:b8:9c:46:24:ef:22:aa: 24:9d:3c:38:29:62:03:11:2f:9e:e8:fc:29:92:0a: fa:47:a6:ef:3b:44:55:d8:d8:e5:f0:2f:8c:c2:d1: 33:f3:42:64:e2:11:ab:11:a1:39:06:66:29:e8:80: 55:06:96:18:f9:b0:fa:e5:45:f1:3f:f7:4a:3c:5c: a8:7a:c4:f2:fa:36:0d:87:9c:9f:68:60:63:db:ec: 86:72:ed:65:a0:50:d4:fb:02:86:41:d0:37:b5:b9: e1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6A:69:76:26:3E:7D:C7:25:14:0A:33:86:D7:C1:72:41:A1:A5:73 X509v3 Authority Key Identifier: keyid:DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:64:9c:c0:05:cd:2a:3c:b5:a1:bc:7f:81:b1:68:b4:76:8c: 1f:92:4b:34:e3:79:22:94:97:02:f6:79:8c:be:15:eb:0c:5c: 7c:66:92:e2:02:c3:d4:b8:c1:30:88:d6:a3:c3:31:fa:7b:6d: d6:db:00:2f:9e:27:60:cd:7a:76:a1:cb:a3:69:02:8c:0f:90: 6b:b0:c7:ae:28:7c:fd:6b:ea:8d:7e:68:92:43:ca:64:8c:49: ce:07:46:fe:d2:50:aa:db:75:ab:7c:44:18:77:b1:a8:2a:21: 7e:c2:42:3b:3b:7e:29:86:f2:5b:03:38:fc:62:b0:0f:5d:b2: 19:fc:c6:ae:72:44:f6:23:9d:c8:cd:df:04:a4:8d:b4:6d:af: 1b:51:dd:e5:96:f3:82:1d:c5:40:40:1a:78:4e:fa:29:3a:5e: 83:96:f3:33:8d:d1:09:e3:20:d4:46:77:80:d8:bf:16:b5:a7: f2:00:2b:0d:05:a0:0d:7d:1d:fa:5b:14:21:d6:21:fd:c3:7e: f5:2b:c4:0f:ca:29:d2:0f:7d:ba:7f:6a:95:5e:00:37:6e:e9: 0a:d3:b3:ec:82:e1:82:a9:f3:27:3c:01:cf:6c:bc:fb:fd:b9: 1e:30:40:33:40:63:f7:f1:30:80:53:60:de:c1:21:51:f0:df: a6:45:47:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFQjYxMTAvBgNVBAUTKERENTMzRDExQTlERTJBQjkxODA4NTA4M0JFODJENTE0 MzRERjQ1NDAwHhcNMjUxMTAyMTY0NDMzWhcNMjUxMTA5MTY0NDMzWjAYMRYwFAYD VQQDEw02OTA3OGE3Mi0zZjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9Hj8J408fojjjVUyxWA7Gx8K/NpgZp37uB7fP9YDWqnJpVL9gyWWV6rbI3F lab13xB940atEpgwHHpjUiaOWZfmIDunDpzTlTNm4ckR0+Vj6WD/eFPs294q9r44 6LA8+DJ9sQuTKF9CLA8cr0bhvJZNfhNl2kvV7kO7Vu9Ic1opOtGnJJzHFoEkLMjs co1j3HKffISQ0eyMwVipDbicRiTvIqoknTw4KWIDES+e6Pwpkgr6R6bvO0RV2Njl 8C+MwtEz80Jk4hGrEaE5BmYp6IBVBpYY+bD65UXxP/dKPFyoesTy+jYNh5yfaGBj 2+yGcu1loFDU+wKGQdA3tbnh1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBqaXYm Pn3HJRQKM4bXwXJBoaVzMB8GA1UdIwQYMBaAFN1TPRGp3iq5GAhQg76C1RQ030VA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVCNi8xMDhGNTNBRTI4 MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUtya1lDRkNEdm9MVkZEVGZS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNWTTlFYW5lS3JrWUNGQ0R2b0xWRkRUZlJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVCNi8xMDhGNTNBRTI4MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUty a1lDRkNEdm9MVkZEVGZSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbZJzABc0qPLWhvH+BsWi0dowfkks043kilJcC9nmMvhXrDFx8ZpLi AsPUuMEwiNajwzH6e23W2wAvnidgzXp2ocujaQKMD5BrsMeuKHz9a+qNfmiSQ8pk jEnOB0b+0lCq23WrfEQYd7GoKiF+wkI7O34phvJbAzj8YrAPXbIZ/MauckT2I53I zd8EpI20ba8bUd3llvOCHcVAQBp4TvopOl6DlvMzjdEJ4yDURneA2L8WtafyACsN BaANfR36WxQh1iH9w371K8QPyinSD326f2qVXgA3bukK07PsguGCqfMnPAHPbLz7 /bkeMEAzQGP38TCAU2DewSFR8N+mRUdJ -----END CERTIFICATE-----Generated at Tue Nov 4 12:41:49 2025 by rpki-client