$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft File: FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json) Hash identifier: N1nKm66juDRXZAsiz70WDx+TYbeeZuT87RMFooTtlBU= Subject key identifier: 6B:55:DF:21:D7:C1:7E:82:A9:57:BC:EF:6F:1D:6A:E0:60:56:67:7D Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft Manifest number: 41 Signing time: Mon 21 Jul 2025 07:41:10 +0000 Manifest this update: Mon 21 Jul 2025 07:41:09 +0000 Manifest next update: Mon 28 Jul 2025 07:41:09 +0000 Files and hashes: 1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: XTRXYKDRRUZWo3aELmVuXYfPFNmbMfpUCj7GaUFmhcI=) 2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: IboM73984syJmuqfIfDKvmHL/HfnKXEhHqhYyaPXIGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Validity Not Before: Jul 21 07:41:09 2025 GMT Not After : Jul 28 07:41:09 2025 GMT Subject: CN=687def15-9e3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dc:cb:68:a6:89:31:be:3f:f2:88:6a:eb:b5: d6:d3:df:f1:62:0b:f0:3b:1f:48:bc:5e:66:7b:ef: ac:bc:2e:60:97:51:a3:71:23:68:9d:41:e8:37:4d: 77:cd:d1:0a:52:3a:c0:18:89:b1:71:9d:12:6e:57: 99:3e:dc:d1:bf:c1:f1:d5:5c:4d:d1:5c:c7:4e:28: cd:a7:21:1e:1e:f1:c3:bd:23:73:7f:67:ce:1f:fd: 80:04:ba:15:9f:2b:cd:01:27:19:90:bd:5a:2e:59: 50:db:9b:3c:71:f0:5c:38:1e:62:85:0d:a7:f7:41: b4:15:64:dd:7f:83:e3:32:c4:35:81:02:0d:8d:7c: cb:9e:05:24:87:2d:7c:a0:0b:95:e6:83:3e:c4:ae: 9b:44:90:dd:d7:6b:3a:ea:af:65:da:f3:68:46:c4: a1:06:49:69:f1:8a:75:e0:91:76:88:f5:0b:4a:5a: b4:74:e7:39:43:13:f5:10:31:b4:36:62:2c:1e:14: 75:c5:e8:9b:a9:cf:88:27:6c:73:4e:21:82:43:35: 03:7d:46:de:f8:5f:f2:60:48:46:7e:0d:a9:7b:cb: 62:0c:72:c1:e5:fb:43:f6:9a:47:8b:b4:15:17:d5: d5:9e:48:b7:1b:0f:2e:b7:d0:19:bf:9a:c0:e2:73: 79:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:55:DF:21:D7:C1:7E:82:A9:57:BC:EF:6F:1D:6A:E0:60:56:67:7D X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:73:05:4c:ae:fb:27:ad:e7:73:18:01:16:f4:f0:48:24:1d: 1f:70:08:a8:b5:7a:b2:9a:89:f4:d6:3c:4a:07:ee:87:c2:b5: f5:b5:13:22:6d:71:61:73:93:1c:0b:d8:e0:1a:5a:ed:98:71: 33:e3:d0:ea:97:a2:4a:22:d1:1a:fb:45:35:2f:d0:84:b4:ec: a0:b2:97:cc:24:dc:84:68:97:7b:04:fa:8a:da:4a:7d:5b:a6: e3:cb:b2:17:de:7b:d8:3c:bf:2b:d0:4d:cb:23:e0:33:33:51: 56:a1:17:95:6c:24:f1:94:86:e3:26:e4:82:04:16:4f:88:c9: 7f:85:25:5b:34:da:ae:7f:32:2c:48:52:c8:52:71:f5:96:43: 00:92:80:01:85:c0:2a:9a:b2:5d:fd:2a:8b:70:ee:04:3d:3a: a6:21:b1:87:81:af:cb:82:73:8d:be:57:8a:cb:49:9f:2a:c0: 55:60:f6:18:3f:9e:31:a2:56:50:91:14:66:b7:2b:94:26:87: 48:de:cb:49:c2:29:e7:ef:82:22:02:c0:7f:7b:49:24:5c:01: 8e:89:f2:9f:f3:08:75:cf:2c:7a:43:0f:5f:9d:0d:d6:bf:78: bf:db:c2:12:a6:cb:00:77:86:75:f1:42:82:03:7f:a0:58:07: 29:d3:a6:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoMTUzQzk4RDMzMTNDQzY0RURCOUFFMTVBQkEzQjU0M0U0 ODA0NTk5MDAeFw0yNTA3MjEwNzQxMDlaFw0yNTA3MjgwNzQxMDlaMBgxFjAUBgNV BAMTDTY4N2RlZjE1LTllM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ3Mtopokxvj/yiGrrtdbT3/FiC/A7H0i8XmZ776y8LmCXUaNxI2idQeg3TXfN 0QpSOsAYibFxnRJuV5k+3NG/wfHVXE3RXMdOKM2nIR4e8cO9I3N/Z84f/YAEuhWf K80BJxmQvVouWVDbmzxx8Fw4HmKFDaf3QbQVZN1/g+MyxDWBAg2NfMueBSSHLXyg C5Xmgz7ErptEkN3Xazrqr2Xa82hGxKEGSWnxinXgkXaI9QtKWrR05zlDE/UQMbQ2 YiweFHXF6Jupz4gnbHNOIYJDNQN9Rt74X/JgSEZ+Dal7y2IMcsHl+0P2mkeLtBUX 1dWeSLcbDy630Bm/msDic3nhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUa1XfIdfB foKpV7zvbx1q4GBWZ30wHwYDVR0jBBgwFoAUFTyY0zE8xk7bmuFaujtUPkgEWZAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzRCNkUwMEZDMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVda QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlR5WTB6RTh4azdibXVGYXVqdFVQa2dFV1pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzRCNkUwMEZDMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3 Ym11RmF1anRVUGtnRVdaQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAxzBUyu+yet53MYARb08EgkHR9wCKi1erKaifTWPEoH7ofCtfW1EyJt cWFzkxwL2OAaWu2YcTPj0OqXokoi0Rr7RTUv0IS07KCyl8wk3IRol3sE+oraSn1b puPLshfee9g8vyvQTcsj4DMzUVahF5VsJPGUhuMm5IIEFk+IyX+FJVs02q5/MixI UshScfWWQwCSgAGFwCqasl39Kotw7gQ9OqYhsYeBr8uCc42+V4rLSZ8qwFVg9hg/ njGiVlCRFGa3K5Qmh0jey0nCKefvgiICwH97SSRcAY6J8p/zCHXPLHpDD1+dDda/ eL/bwhKmywB3hnXxQoIDf6BYBynTpmk= -----END CERTIFICATE-----Generated at Tue Jul 22 20:41:19 2025 by rpki-client