$ rpki-client -vvf rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.mft File: Fm664SGI_4_HXurj7PjTvearJxo.mft (raw, json) Hash identifier: TjFRdDu/Up9AMbvvCu5wlIKttaNwY2XGc+co7GtxeiI= Subject key identifier: 89:C1:99:E5:8E:C1:D3:E6:1E:4E:CC:23:ED:43:D6:20:26:D1:70:AC Authority key identifier: 16:6E:BA:E1:21:88:FF:8F:C7:5E:EA:E3:EC:F8:D3:BD:E6:AB:27:1A Certificate issuer: /CN=A91C654A/serialNumber=166EBAE12188FF8FC75EEAE3ECF8D3BDE6AB271A Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fm664SGI_4_HXurj7PjTvearJxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.mft Manifest number: 08DE Signing time: Fri 18 Jul 2025 22:00:31 +0000 Manifest this update: Fri 18 Jul 2025 22:00:30 +0000 Manifest next update: Fri 25 Jul 2025 22:00:30 +0000 Files and hashes: 1: Fm664SGI_4_HXurj7PjTvearJxo.crl (hash: DrtRYz1AKy5c/RRObjeCRO2MLPkzrauvAx8sTjlyRsg=) 2: 50F8849CFDC111ED95AAA041C4F9AE02.roa (hash: 0DD71MyNn/a0ClFzY+negnwcfIlHkrg4N1Q4gkDWcxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.crl rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fm664SGI_4_HXurj7PjTvearJxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C654A, serialNumber=166EBAE12188FF8FC75EEAE3ECF8D3BDE6AB271A Validity Not Before: Jul 18 22:00:30 2025 GMT Not After : Jul 25 22:00:30 2025 GMT Subject: CN=687ac3fe-ac91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:83:ca:67:a3:2e:52:c5:29:51:2e:7b:2b:b0: 46:23:4e:dc:eb:8a:3f:78:64:e1:25:64:ef:56:17: 86:42:34:06:9b:4e:98:29:9e:20:e7:22:47:e2:96: 31:f7:62:d3:b1:b5:30:95:d1:1f:ce:09:90:77:3b: 24:f1:7b:cb:f8:51:96:39:6e:26:09:3d:25:46:a5: 88:8e:d6:ae:6a:72:3b:b9:97:f9:26:06:48:e8:c9: 96:1c:e5:18:29:6b:da:e9:50:32:e3:b5:42:c6:a0: 34:c4:bb:ce:05:0c:5a:2a:62:88:99:56:16:39:40: 31:13:53:74:29:ee:d6:1f:e1:7d:fd:1b:41:63:e8: 57:8c:db:12:75:be:94:98:65:bd:14:63:bb:7d:d3: 0d:87:08:0e:a8:9b:d4:c9:e3:fc:88:b1:33:ec:a2: 83:e1:db:9e:0f:4a:a1:6e:77:33:54:a9:b9:ed:b5: b4:ad:82:60:a9:75:89:49:8f:de:35:bc:f9:69:da: 83:36:15:3c:e5:9e:8a:b5:65:24:21:c0:b8:52:74: ce:be:32:74:b0:86:34:87:cc:de:46:8e:d5:1d:fa: 8b:ef:2c:71:48:5b:7c:1f:db:cb:15:73:7d:4a:5d: 88:e8:21:68:15:4e:39:7a:ef:13:b9:12:f4:7c:0e: fd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C1:99:E5:8E:C1:D3:E6:1E:4E:CC:23:ED:43:D6:20:26:D1:70:AC X509v3 Authority Key Identifier: keyid:16:6E:BA:E1:21:88:FF:8F:C7:5E:EA:E3:EC:F8:D3:BD:E6:AB:27:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fm664SGI_4_HXurj7PjTvearJxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/Fm664SGI_4_HXurj7PjTvearJxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:21:73:b9:34:9e:c5:45:16:17:65:31:27:15:31:ea:dd:93: c0:3e:b3:d3:e0:13:dc:ef:22:a5:06:d6:31:f5:e4:63:3d:cb: 31:14:28:48:9d:a0:82:a6:bd:11:8b:55:3a:61:85:e0:ce:fe: 77:6b:25:d9:40:0c:6d:a8:e5:9c:ca:18:f8:ab:3b:e6:38:cd: 0b:35:ac:e7:93:c6:41:4c:90:b9:16:fb:4f:13:38:e3:f0:a4: ba:7e:4d:b6:aa:88:9b:4a:b2:9c:f2:ad:e8:79:f8:32:e7:b7: 82:b9:e9:3b:bf:59:a5:8a:2d:eb:42:f3:79:c8:cf:e3:33:4a: 74:39:46:2f:e0:26:c7:3d:f5:a5:22:ff:f9:93:52:fd:a3:33: 1e:b4:09:47:98:df:4b:81:cb:33:b3:d2:b0:33:f7:47:d3:b4: 61:f9:81:97:91:09:8b:54:1c:47:58:41:ca:55:28:a6:11:9c: 1d:fc:a3:35:de:96:4c:9f:68:aa:3b:40:eb:ad:92:c0:9a:7e: 6b:92:27:34:99:ae:e5:c0:a7:7e:20:1c:b5:38:19:da:96:98: e6:f6:6b:06:99:7d:47:c5:6f:db:32:f9:fc:f4:11:1f:1a:9b: e7:1a:b9:f9:58:cc:01:a8:f5:f7:75:32:77:0e:aa:9c:55:86: 7c:cf:a3:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NEExMTAvBgNVBAUTKDE2NkVCQUUxMjE4OEZGOEZDNzVFRUFFM0VDRjhEM0JE RTZBQjI3MUEwHhcNMjUwNzE4MjIwMDMwWhcNMjUwNzI1MjIwMDMwWjAYMRYwFAYD VQQDEw02ODdhYzNmZS1hYzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYPKZ6MuUsUpUS57K7BGI07c64o/eGThJWTvVheGQjQGm06YKZ4g5yJH4pYx 92LTsbUwldEfzgmQdzsk8XvL+FGWOW4mCT0lRqWIjtauanI7uZf5JgZI6MmWHOUY KWva6VAy47VCxqA0xLvOBQxaKmKImVYWOUAxE1N0Ke7WH+F9/RtBY+hXjNsSdb6U mGW9FGO7fdMNhwgOqJvUyeP8iLEz7KKD4dueD0qhbnczVKm57bW0rYJgqXWJSY/e Nbz5adqDNhU85Z6KtWUkIcC4UnTOvjJ0sIY0h8zeRo7VHfqL7yxxSFt8H9vLFXN9 Sl2I6CFoFU45eu8TuRL0fA79ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInBmeWO wdPmHk7MI+1D1iAm0XCsMB8GA1UdIwQYMBaAFBZuuuEhiP+Px17q4+z4073mqyca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU0QS83MUZBQjBEODM1 MjkxMUVCQjgwRjEzNDlDNEY5QUUwMi9GbTY2NFNHSV80X0hYdXJqN1BqVHZlYXJK eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZtNjY0U0dJXzRfSFh1cmo3UGpUdmVhckp4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjU0QS83MUZBQjBEODM1MjkxMUVCQjgwRjEzNDlDNEY5QUUwMi9GbTY2NFNHSV80 X0hYdXJqN1BqVHZlYXJKeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxIXO5NJ7FRRYXZTEnFTHq3ZPAPrPT4BPc7yKlBtYx9eRjPcsxFChI naCCpr0Ri1U6YYXgzv53ayXZQAxtqOWcyhj4qzvmOM0LNaznk8ZBTJC5FvtPEzjj 8KS6fk22qoibSrKc8q3oefgy57eCuek7v1mlii3rQvN5yM/jM0p0OUYv4CbHPfWl Iv/5k1L9ozMetAlHmN9Lgcszs9KwM/dH07Rh+YGXkQmLVBxHWEHKVSimEZwd/KM1 3pZMn2iqO0DrrZLAmn5rkic0ma7lwKd+IBy1OBnalpjm9msGmX1HxW/bMvn89BEf GpvnGrn5WMwBqPX3dTJ3DqqcVYZ8z6MT -----END CERTIFICATE-----Generated at Sun Jul 20 11:26:35 2025 by rpki-client