$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft File: FrgD2zk43LFdxZooyXcZ2h_yClM.mft (raw, json) Hash identifier: m7aubCRURf+weMRFOxcpwtMDa4YCv0wTxQ52ouseXMw= Subject key identifier: 52:3D:4A:61:F6:C4:13:3B:45:1B:00:CB:81:3F:88:98:ED:E2:05:B5 Authority key identifier: 16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 Certificate issuer: /CN=A9149E0D/serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Certificate serial: 0B74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft Manifest number: 0B69 Signing time: Sun 24 Aug 2025 19:05:08 +0000 Manifest this update: Sun 24 Aug 2025 19:05:07 +0000 Manifest next update: Sun 31 Aug 2025 19:05:07 +0000 Files and hashes: 1: FrgD2zk43LFdxZooyXcZ2h_yClM.crl (hash: 46EPT7ykQ3EYTxNqGY8IHc5kv231GY7zV4obpKxcvig=) 2: C8FB48F808AF11EBAB78DF6BC4F9AE02.roa (hash: QwMnRtpt+1eT07NMpTybXiiH3v3R91ylnqw2cVEHLL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2932 (0xb74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E0D, serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Validity Not Before: Aug 24 19:05:07 2025 GMT Not After : Aug 31 19:05:07 2025 GMT Subject: CN=68ab6263-fe97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4c:65:a1:40:04:c3:87:6f:c3:82:27:df:77: ef:b9:71:b8:b5:1a:b8:12:cd:50:c9:e2:70:67:1c: cc:70:50:3c:b5:04:29:02:30:e7:3e:d8:bc:fc:e0: 28:04:16:dc:e2:55:71:d8:73:2b:df:61:7c:8d:44: 69:9a:32:6c:89:6d:e2:59:29:24:cd:51:ea:e3:9e: 97:e1:94:4f:51:ad:b6:00:03:9e:f3:0e:24:dc:1b: 0a:22:e5:89:95:29:30:ab:b9:29:37:d2:14:15:6e: 45:b8:d7:4e:54:79:00:31:23:17:3b:65:3b:e6:b3: d2:96:1f:24:c6:d1:09:d5:27:df:e5:59:48:4a:ce: 27:c2:e7:2e:2e:00:5c:82:94:15:18:3e:e1:20:64: e7:b6:f2:87:03:42:7e:57:91:24:1f:4d:7e:cf:78: 1f:79:5f:11:02:96:9b:ae:70:a4:e9:f1:c1:bb:ee: be:2a:eb:5c:ae:81:c2:a0:f7:b0:8d:8a:c7:3f:e2: ac:6c:5c:32:3e:5c:39:99:38:dd:49:0c:07:aa:42: b3:7e:a5:96:09:83:19:b2:2f:99:b4:ef:85:c1:e0: 57:65:69:bb:b0:a0:78:e5:85:55:fc:8f:bc:7a:2b: 08:0d:65:df:a7:86:0d:c5:5d:64:43:e3:c7:58:8c: 5a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:3D:4A:61:F6:C4:13:3B:45:1B:00:CB:81:3F:88:98:ED:E2:05:B5 X509v3 Authority Key Identifier: keyid:16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:a7:30:29:dd:78:9d:a0:d6:ad:8d:87:4c:c6:bc:96:8c:27: 30:e9:c0:cb:5d:c8:b8:42:60:83:92:a6:12:f7:8f:ea:5b:ea: ad:0a:c1:c6:5c:14:cc:d2:85:70:72:f9:ca:56:ab:7b:b1:3f: 7d:f1:e4:32:0d:0b:4e:9c:86:ec:51:da:9b:f9:4b:6f:40:a0: 00:e4:95:25:29:ad:20:d0:5b:5e:98:ad:51:ad:0d:4c:0b:36: 9b:0e:cb:9e:cc:93:94:eb:10:ea:e5:2f:5a:0f:54:36:a1:88: d3:b7:33:73:c7:9d:54:65:5d:20:b8:04:ea:7d:29:ed:ea:58: 8b:b3:38:89:00:5d:85:0b:97:58:be:0a:90:ac:84:32:07:1e: 6c:f5:30:e3:f6:ba:50:86:05:41:f1:09:45:cc:52:de:12:45: 3e:e8:99:d0:05:de:3b:07:b6:47:79:77:6f:ce:81:31:41:fa: a5:a3:7f:13:c9:5d:ff:52:a2:de:f2:ef:ef:d7:8d:0e:04:c4: 6d:9a:21:0b:66:e9:aa:02:3a:d4:7f:b0:f2:22:9f:6a:5b:dc: d1:87:ad:13:ec:24:19:45:88:1c:e2:cf:21:65:e9:56:0b:c0: 06:36:fc:07:21:0b:3d:85:c1:96:32:80:23:29:92:36:15:bb: a8:50:10:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlFMEQxMTAvBgNVBAUTKDE2QjgwM0RCMzkzOERDQjE1REM1OUEyOEM5NzcxOURB MUZGMjBBNTMwHhcNMjUwODI0MTkwNTA3WhcNMjUwODMxMTkwNTA3WjAYMRYwFAYD VQQDEw02OGFiNjI2My1mZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0xloUAEw4dvw4In33fvuXG4tRq4Es1QyeJwZxzMcFA8tQQpAjDnPti8/OAo BBbc4lVx2HMr32F8jURpmjJsiW3iWSkkzVHq456X4ZRPUa22AAOe8w4k3BsKIuWJ lSkwq7kpN9IUFW5FuNdOVHkAMSMXO2U75rPSlh8kxtEJ1Sff5VlISs4nwucuLgBc gpQVGD7hIGTntvKHA0J+V5EkH01+z3gfeV8RApabrnCk6fHBu+6+KutcroHCoPew jYrHP+KsbFwyPlw5mTjdSQwHqkKzfqWWCYMZsi+ZtO+FweBXZWm7sKB45YVV/I+8 eisIDWXfp4YNxV1kQ+PHWIxa8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFI9SmH2 xBM7RRsAy4E/iJjt4gW1MB8GA1UdIwQYMBaAFBa4A9s5ONyxXcWaKMl3Gdof8gpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUUwRC85MDRFNzQ3RTM5 MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNMRmR4Wm9veVhjWjJoX3lD bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyZ0Qyems0M0xGZHhab295WGNaMmhfeUNsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUUwRC85MDRFNzQ3RTM5MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNM RmR4Wm9veVhjWjJoX3lDbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOpzAp3XidoNatjYdMxryWjCcw6cDLXci4QmCDkqYS94/qW+qtCsHG XBTM0oVwcvnKVqt7sT998eQyDQtOnIbsUdqb+UtvQKAA5JUlKa0g0FtemK1RrQ1M CzabDsuezJOU6xDq5S9aD1Q2oYjTtzNzx51UZV0guATqfSnt6liLsziJAF2FC5dY vgqQrIQyBx5s9TDj9rpQhgVB8QlFzFLeEkU+6JnQBd47B7ZHeXdvzoExQfqlo38T yV3/UqLe8u/v140OBMRtmiELZumqAjrUf7DyIp9qW9zRh60T7CQZRYgc4s8hZelW C8AGNvwHIQs9hcGWMoAjKZI2FbuoUBDZ -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:10 2025 by rpki-client