$ rpki-client -vvf rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft File: FN2GhClPGzOjE6-48OuhyKADeAk.mft (raw, json) Hash identifier: IZCmrcVMFC4i+FP+kJlb4jq7KIW3kFfVAkMJGti1Aaw= Subject key identifier: 8E:5D:A1:D1:68:1F:23:B4:21:28:52:C4:1D:15:E3:15:29:38:FE:E0 Authority key identifier: 14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 Certificate issuer: /CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft Manifest number: B5 Signing time: Wed 03 Sep 2025 06:41:25 +0000 Manifest this update: Wed 03 Sep 2025 06:41:25 +0000 Manifest next update: Wed 10 Sep 2025 06:41:25 +0000 Files and hashes: 1: FN2GhClPGzOjE6-48OuhyKADeAk.crl (hash: DKhK/WZNcmCB2YmGEZY86eZaSmFJ9D0w9B9TLxuKEgw=) 2: F7981812F38811EFAC05053AC4F9AE02.roa (hash: 5lT3BqV6fkCasuiMvgjtWS+QEDtMQ2WoJeVX5lRFOMY=) 3: E9B0903AF38811EF81B8CE39C4F9AE02.roa (hash: fdQ7jvoBEvlEALSb2JWdt2czQvJjt/S2kzFg/FmzHag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 06:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160A05, serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Validity Not Before: Sep 3 06:41:25 2025 GMT Not After : Sep 10 06:41:25 2025 GMT Subject: CN=68b7e315-5cc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5c:77:58:69:6b:63:08:5f:79:84:c3:09:65: a9:9f:65:67:8a:8f:d5:4c:d1:db:a7:93:5f:fe:35: 92:50:2b:4a:42:68:5a:24:f0:d7:b9:5a:9f:3e:7e: 97:53:0f:f5:cb:58:a7:9f:94:e5:76:34:ee:6b:65: 92:22:e7:dd:27:e7:ed:2b:de:5d:e8:46:67:fd:96: da:77:3b:7d:12:3a:ac:b5:b9:84:0a:99:e1:16:f4: 85:16:66:8b:ae:a8:c4:5a:d4:03:d1:4b:66:1b:31: 22:3f:8c:0d:34:93:f0:30:d0:38:60:67:24:1f:7f: 44:e6:e6:d9:fa:31:81:4d:92:99:e2:12:54:19:1c: 7e:bb:bd:77:a4:2f:3b:45:d2:a2:be:0c:20:d7:6e: f8:9a:3a:13:7b:04:9f:94:5d:4a:0e:6c:6e:ff:3c: ea:dc:63:91:b8:bc:94:19:24:c2:e1:25:31:ac:de: 65:6e:0b:ee:b5:8a:bd:f3:3f:97:b0:26:d5:c8:d4: 93:86:70:2d:25:f5:99:a1:70:c8:b7:3a:3b:a9:f6: d0:af:79:be:96:f4:02:97:bf:f4:4f:b2:80:4a:dc: 7d:f6:56:9f:0a:ad:87:37:75:7d:5f:10:1a:bf:80: 20:26:1d:c7:3d:1a:1f:32:1f:db:f7:ac:35:d1:6d: 06:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:5D:A1:D1:68:1F:23:B4:21:28:52:C4:1D:15:E3:15:29:38:FE:E0 X509v3 Authority Key Identifier: keyid:14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:96:d8:bd:4d:ab:42:fe:c7:4d:bb:fb:de:8d:32:19:2f:fa: 3c:79:6f:49:18:40:ca:cf:33:f5:f4:d9:8b:4a:20:4e:ff:88: bf:95:39:34:ae:42:c6:a5:71:22:1b:af:62:5f:07:4b:47:28: 14:75:87:f1:64:cb:81:9b:63:a6:29:19:c9:71:79:14:40:f2: 9c:02:32:ee:9b:c4:12:14:a4:6a:47:06:87:68:91:3b:bf:16: aa:d1:a1:f6:3d:d6:e6:17:1d:61:03:5f:3f:99:d6:5e:19:15: c4:4f:51:92:fa:fa:be:f5:14:97:ab:5a:f0:ca:2a:9b:88:77: 7b:e7:f7:b2:94:c9:6e:a3:35:22:ce:79:58:8e:a3:38:6d:79: 50:3f:00:39:71:58:09:31:80:ba:08:53:fb:aa:b4:28:bc:ea: 0e:af:34:95:16:a1:a8:eb:11:2b:3f:28:6b:9a:25:78:22:b5: 1d:79:7f:4e:14:d5:55:10:2e:ee:b8:00:0b:51:e6:1d:13:6a: 5d:40:9b:dd:de:4f:e5:d6:7a:10:b7:3a:1e:12:e7:6a:7e:42: 2e:24:1b:62:a1:4f:3a:e2:7e:ba:ce:db:29:df:bd:f4:0d:c3: 62:2f:d3:ff:a4:f3:bd:81:43:af:bc:81:aa:dd:b1:e2:2c:1a: 04:51:bb:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBBMDUxMTAvBgNVBAUTKDE0REQ4Njg0Mjk0RjFCMzNBMzEzQUZCOEYwRUJBMUM4 QTAwMzc4MDkwHhcNMjUwOTAzMDY0MTI1WhcNMjUwOTEwMDY0MTI1WjAYMRYwFAYD VQQDEw02OGI3ZTMxNS01Y2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1x3WGlrYwhfeYTDCWWpn2Vnio/VTNHbp5Nf/jWSUCtKQmhaJPDXuVqfPn6X Uw/1y1inn5TldjTua2WSIufdJ+ftK95d6EZn/Zbadzt9EjqstbmECpnhFvSFFmaL rqjEWtQD0UtmGzEiP4wNNJPwMNA4YGckH39E5ubZ+jGBTZKZ4hJUGRx+u713pC87 RdKivgwg1274mjoTewSflF1KDmxu/zzq3GORuLyUGSTC4SUxrN5lbgvutYq98z+X sCbVyNSThnAtJfWZoXDItzo7qfbQr3m+lvQCl7/0T7KAStx99lafCq2HN3V9XxAa v4AgJh3HPRofMh/b96w10W0GDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5dodFo HyO0IShSxB0V4xUpOP7gMB8GA1UdIwQYMBaAFBTdhoQpTxszoxOvuPDrocigA3gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEEwNS9EMTdDODg2ODdD OEExMUVGOEZBQjY5MDlDNEY5QUUwMi9GTjJHaENsUEd6T2pFNi00OE91aHlLQURl QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZOMkdoQ2xQR3pPakU2LTQ4T3VoeUtBRGVBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEEwNS9EMTdDODg2ODdDOEExMUVGOEZBQjY5MDlDNEY5QUUwMi9GTjJHaENsUEd6 T2pFNi00OE91aHlLQURlQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWlti9TatC/sdNu/vejTIZL/o8eW9JGEDKzzP19NmLSiBO/4i/lTk0 rkLGpXEiG69iXwdLRygUdYfxZMuBm2OmKRnJcXkUQPKcAjLum8QSFKRqRwaHaJE7 vxaq0aH2PdbmFx1hA18/mdZeGRXET1GS+vq+9RSXq1rwyiqbiHd75/eylMluozUi znlYjqM4bXlQPwA5cVgJMYC6CFP7qrQovOoOrzSVFqGo6xErPyhrmiV4IrUdeX9O FNVVEC7uuAALUeYdE2pdQJvd3k/l1noQtzoeEudqfkIuJBtioU864n66ztsp3730 DcNiL9P/pPO9gUOvvIGq3bHiLBoEUbuT -----END CERTIFICATE-----Generated at Thu Sep 4 14:06:17 2025 by rpki-client