$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft File: FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft (raw, json) Hash identifier: LsdWnDxe1PvI9A5/G7d+nOL0Ies4kTfrhmZ7IuT60P4= Subject key identifier: B7:C9:3D:F6:8E:F7:3C:65:51:5D:39:61:DD:1D:D1:73:B4:6F:AD:22 Authority key identifier: 14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 Certificate issuer: /CN=A91B2131/serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Certificate serial: 068D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft Manifest number: 0687 Signing time: Sun 20 Jul 2025 22:26:37 +0000 Manifest this update: Sun 20 Jul 2025 22:26:36 +0000 Manifest next update: Sun 27 Jul 2025 22:26:36 +0000 Files and hashes: 1: FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl (hash: ExhDiRsW2VPDCOSi2ou6xz6WCm2DB8E/GIwYtdQZ+WY=) 2: D240E2EE814D11EBB1CE367FC4F9AE02.roa (hash: OcDk0+b+7yUXsyGIwS3/BcoBm4sD7lmajtFFAPMecA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1677 (0x68d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2131, serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Validity Not Before: Jul 20 22:26:36 2025 GMT Not After : Jul 27 22:26:36 2025 GMT Subject: CN=687d6d1c-b54c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:04:03:8a:22:3e:e8:38:bc:82:6f:f2:4b:69: 22:b3:d2:83:90:91:26:1d:f2:30:06:2c:e5:67:77: cb:e9:8c:f1:ca:60:5e:d2:54:5d:53:b4:26:83:e9: fc:d7:f3:ae:30:6b:03:2d:71:53:a8:ba:ca:fe:37: d7:9b:3a:43:46:3a:5b:f6:e0:1f:63:7f:0c:bf:03: 27:66:0a:47:3c:1d:25:72:48:f5:56:5e:7e:14:05: c5:47:18:70:8f:49:e4:82:e7:a9:57:e3:8b:b3:27: ab:92:48:aa:4c:84:d2:e7:21:c2:c3:95:ba:5d:1e: f7:2a:96:d6:ab:93:5f:9f:c8:f2:2e:0e:2e:a8:da: 51:74:c5:d5:b6:2d:0a:74:72:5f:69:9d:2f:11:2c: 22:3f:5b:7b:75:c3:b3:0c:0b:4b:a9:90:cf:37:67: 04:39:60:f7:81:ba:f5:42:a5:85:ec:4a:8a:4e:cf: 56:d8:51:26:93:95:02:26:61:14:f6:50:6a:1d:7f: ea:b9:36:4c:ec:95:71:b8:41:9d:de:14:31:51:dd: c1:f8:97:d6:ac:85:3d:39:f1:23:e9:65:2c:1d:74: 56:5e:9a:77:02:d9:e9:04:ac:2b:de:2d:50:20:33: f1:ec:6d:dc:64:35:61:b3:db:1c:75:ed:1b:24:e1: 26:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C9:3D:F6:8E:F7:3C:65:51:5D:39:61:DD:1D:D1:73:B4:6F:AD:22 X509v3 Authority Key Identifier: keyid:14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:66:e7:8c:ce:0d:cb:fd:04:c9:af:1c:98:4b:67:a4:4b:0c: 5b:9b:63:f2:f0:66:27:89:e9:05:21:bd:92:5f:5f:14:5a:b4: 7a:8f:a8:ab:3f:0c:cb:3c:2c:dc:34:04:d9:a9:1f:31:c0:f8: 7f:e6:61:1f:65:6d:12:4b:ff:b4:44:a0:d9:a6:52:d3:3d:75: 08:b1:6a:66:9c:c7:71:08:8e:b1:87:ad:a8:7a:b7:43:2d:45: 12:5f:e2:c5:83:30:20:6d:01:32:c8:67:cb:42:3a:01:9d:59: 61:e2:6c:8d:1b:7b:16:2e:9e:0b:34:df:33:4b:93:0d:2e:10: 7c:ee:69:aa:d3:b2:8a:16:5d:e7:07:50:88:0d:74:84:20:52: fa:51:af:0f:3f:37:61:53:71:c3:12:8d:7d:2d:8d:90:31:1b: 60:1c:07:fc:c0:ab:14:a5:39:17:c3:e3:44:4b:07:0d:88:96: e7:bf:90:61:74:ae:f6:91:ab:00:9c:33:a5:85:77:f3:08:fb: c6:01:34:f4:f3:11:c1:8b:63:1c:9b:01:5d:7c:d0:cd:8c:94: ac:ba:4a:7f:54:2a:02:28:7f:a0:52:71:89:01:99:d3:ba:4a: fd:a0:5e:1d:c3:2b:d1:7e:1b:fa:d7:18:0c:2d:67:16:8b:5f: b5:a0:9d:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIxMzExMTAvBgNVBAUTKDE0MDdFMzFDODdFMTE2MjQ1OUQ4M0MzQUVCNDg4Qzk3 NUE5QzIzRjEwHhcNMjUwNzIwMjIyNjM2WhcNMjUwNzI3MjIyNjM2WjAYMRYwFAYD VQQDEw02ODdkNmQxYy1iNTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gQDiiI+6Di8gm/yS2kis9KDkJEmHfIwBizlZ3fL6YzxymBe0lRdU7Qmg+n8 1/OuMGsDLXFTqLrK/jfXmzpDRjpb9uAfY38MvwMnZgpHPB0lckj1Vl5+FAXFRxhw j0nkguepV+OLsyerkkiqTITS5yHCw5W6XR73KpbWq5Nfn8jyLg4uqNpRdMXVti0K dHJfaZ0vESwiP1t7dcOzDAtLqZDPN2cEOWD3gbr1QqWF7EqKTs9W2FEmk5UCJmEU 9lBqHX/quTZM7JVxuEGd3hQxUd3B+JfWrIU9OfEj6WUsHXRWXpp3AtnpBKwr3i1Q IDPx7G3cZDVhs9scde0bJOEmawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfJPfaO 9zxlUV05Yd0d0XO0b60iMB8GA1UdIwQYMBaAFBQH4xyH4RYkWdg8OutIjJdanCPx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjEzMS9CRTRBNkNEMDdE NzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZpUloyRHc2NjBpTWwxcWNJ X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZBZmpISWZoRmlSWjJEdzY2MGlNbDFxY0lfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjEzMS9CRTRBNkNEMDdENzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZp UloyRHc2NjBpTWwxcWNJX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOZueMzg3L/QTJrxyYS2ekSwxbm2Py8GYniekFIb2SX18UWrR6j6ir PwzLPCzcNATZqR8xwPh/5mEfZW0SS/+0RKDZplLTPXUIsWpmnMdxCI6xh62oerdD LUUSX+LFgzAgbQEyyGfLQjoBnVlh4myNG3sWLp4LNN8zS5MNLhB87mmq07KKFl3n B1CIDXSEIFL6Ua8PPzdhU3HDEo19LY2QMRtgHAf8wKsUpTkXw+NESwcNiJbnv5Bh dK72kasAnDOlhXfzCPvGATT08xHBi2McmwFdfNDNjJSsukp/VCoCKH+gUnGJAZnT ukr9oF4dwyvRfhv61xgMLWcWi1+1oJ3a -----END CERTIFICATE-----Generated at Mon Jul 21 12:40:50 2025 by rpki-client