$ rpki-client -vvf rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft File: Fh4CKuiXURLudYnUmzFmDKkKBBA.mft (raw, json) Hash identifier: 7Sxesh8KuVw5iQAaDaC3cB1GqGp5Zi/Selh3M9gLkew= Subject key identifier: 38:CC:7C:7F:82:7F:4E:A5:80:EC:66:22:68:5E:A1:6C:9C:F4:7E:59 Authority key identifier: 16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 Certificate issuer: /CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Certificate serial: 0BED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft Manifest number: 0BE1 Signing time: Thu 24 Jul 2025 18:58:08 +0000 Manifest this update: Thu 24 Jul 2025 18:58:07 +0000 Manifest next update: Thu 31 Jul 2025 18:58:07 +0000 Files and hashes: 1: Fh4CKuiXURLudYnUmzFmDKkKBBA.crl (hash: DRHbUj4kobsyp8bheapFzzYzdJ1CuO7DHadtiRtZhqc=) 2: 8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa (hash: Ds+NhA319pny+P4IRt5z4T91HtH5A62GJ0ezQK1TtfA=) 3: 8AAF803A1C8A11EABAA73A62C4F9AE02.roa (hash: aCDVqL+/mM6LYQbOqfYbo7QgHkUrD6MbyKhMbVWHThI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 18:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3053 (0xbed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A865F, serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Validity Not Before: Jul 24 18:58:07 2025 GMT Not After : Jul 31 18:58:07 2025 GMT Subject: CN=68828240-2842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:30:29:d8:88:d2:9f:89:b5:74:e6:d5:8f:b2: 55:7a:23:0e:89:30:87:a1:e1:f9:1c:95:a2:7e:b4: 26:d7:f3:8c:78:85:88:ad:2b:50:23:aa:0d:c8:a9: a2:dd:c2:8c:87:5a:77:0b:4b:5e:c6:18:a2:80:63: da:12:fc:55:d4:56:3d:ee:fa:ce:d2:10:c5:70:94: 7b:db:07:e4:ca:0d:cc:b4:11:59:7c:a3:af:7e:aa: 2a:1c:f1:26:ca:07:91:b2:ce:14:a0:30:95:c8:f3: e0:6f:0d:44:60:ac:92:5c:38:29:1f:73:61:6e:11: 6f:55:8d:f5:03:98:4a:4d:ff:35:6b:14:41:29:64: c4:08:ca:13:3b:34:c1:67:8f:1c:96:95:7d:d3:84: ad:c9:e5:3e:1e:56:ef:ae:8b:29:42:8f:7d:f4:31: 2e:b0:ec:24:83:98:0f:81:d9:06:74:7b:e0:60:bc: 6d:70:3b:49:f6:f1:7a:96:b2:36:db:cf:ea:a8:11: 25:2e:11:21:8b:c8:c8:d6:82:3a:84:c0:bb:2d:09: 00:bb:8d:1e:8b:2a:00:19:8d:92:23:34:c1:74:9f: 86:22:cf:53:0e:2d:73:d6:73:86:97:63:0c:1f:f6: 79:2d:5e:31:bf:07:43:ae:b8:78:59:95:c0:d6:99: b4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CC:7C:7F:82:7F:4E:A5:80:EC:66:22:68:5E:A1:6C:9C:F4:7E:59 X509v3 Authority Key Identifier: keyid:16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:31:11:53:0a:ce:bf:fe:6e:46:84:13:1e:22:55:c2:f8:ba: 43:9e:b4:6a:68:55:b1:cf:88:b4:19:fe:32:00:8d:01:f4:84: 12:41:c1:c4:86:7f:d1:65:4d:68:ea:1c:f9:6f:9f:2f:8b:46: eb:88:be:9b:64:9a:be:81:e1:2b:23:7b:be:23:29:9e:61:a5: 93:b4:2c:bb:44:aa:ec:14:87:ef:43:e9:77:15:61:04:0f:80: 2b:c1:ed:a4:35:1e:04:df:20:06:30:27:b1:9d:17:97:85:ea: 3f:98:bf:2a:6e:9b:a1:23:24:c5:6c:c2:d2:52:c4:3e:ae:59: 3f:a1:af:12:54:e7:f1:e9:d0:93:5a:57:39:98:12:28:e3:eb: 78:10:6f:1e:f5:8f:1e:02:10:85:f6:a2:f2:04:d1:05:11:bb: 89:61:19:f5:2b:e5:d6:7d:6b:6e:bd:4c:10:cd:3d:82:8b:9d: 90:0c:68:78:7c:c0:31:c1:7b:c6:dd:d8:d2:04:88:4d:4e:f3: a3:e9:b6:2c:56:44:b9:a0:6e:00:19:7d:ba:7f:66:ad:62:c7: db:50:5c:ec:6c:bd:12:13:e6:dd:af:0d:f5:ff:7e:1e:6e:dd: 3a:94:10:c3:cf:80:cb:3d:c0:d8:b9:1b:b4:6c:28:e3:6b:69: 83:23:42:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NUYxMTAvBgNVBAUTKDE2MUUwMjJBRTg5NzUxMTJFRTc1ODlENDlCMzE2NjBD QTkwQTA0MTAwHhcNMjUwNzI0MTg1ODA3WhcNMjUwNzMxMTg1ODA3WjAYMRYwFAYD VQQDEw02ODgyODI0MC0yODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDAp2IjSn4m1dObVj7JVeiMOiTCHoeH5HJWifrQm1/OMeIWIrStQI6oNyKmi 3cKMh1p3C0texhiigGPaEvxV1FY97vrO0hDFcJR72wfkyg3MtBFZfKOvfqoqHPEm ygeRss4UoDCVyPPgbw1EYKySXDgpH3NhbhFvVY31A5hKTf81axRBKWTECMoTOzTB Z48clpV904StyeU+HlbvrospQo999DEusOwkg5gPgdkGdHvgYLxtcDtJ9vF6lrI2 28/qqBElLhEhi8jI1oI6hMC7LQkAu40eiyoAGY2SIzTBdJ+GIs9TDi1z1nOGl2MM H/Z5LV4xvwdDrrh4WZXA1pm0WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjMfH+C f06lgOxmImheoWyc9H5ZMB8GA1UdIwQYMBaAFBYeAirol1ES7nWJ1JsxZgypCgQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY1Ri9CRjk2NkU0QTFD ODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVSTHVkWW5VbXpGbURLa0tC QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoNENLdWlYVVJMdWRZblVtekZtREtrS0JCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY1Ri9CRjk2NkU0QTFDODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVS THVkWW5VbXpGbURLa0tCQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXMRFTCs6//m5GhBMeIlXC+LpDnrRqaFWxz4i0Gf4yAI0B9IQSQcHE hn/RZU1o6hz5b58vi0briL6bZJq+geErI3u+IymeYaWTtCy7RKrsFIfvQ+l3FWEE D4Arwe2kNR4E3yAGMCexnReXheo/mL8qbpuhIyTFbMLSUsQ+rlk/oa8SVOfx6dCT Wlc5mBIo4+t4EG8e9Y8eAhCF9qLyBNEFEbuJYRn1K+XWfWtuvUwQzT2Ci52QDGh4 fMAxwXvG3djSBIhNTvOj6bYsVkS5oG4AGX26f2atYsfbUFzsbL0SE+bdrw31/34e bt06lBDDz4DLPcDYuRu0bCjja2mDI0L/ -----END CERTIFICATE-----Generated at Fri Jul 25 11:06:26 2025 by rpki-client