$ rpki-client -vvf rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft File: FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft (raw, json) Hash identifier: Xdo7w1qjtdt2Yltn4qehgcVCLbk9RKRrvL/feKC6aOo= Subject key identifier: 69:1D:CC:A9:58:B7:34:8F:12:00:56:26:1E:5E:D9:7D:A1:26:C8:EA Authority key identifier: 14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D Certificate issuer: /CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft Manifest number: 0117 Signing time: Sat 19 Jul 2025 04:11:15 +0000 Manifest this update: Sat 19 Jul 2025 04:11:15 +0000 Manifest next update: Sat 26 Jul 2025 04:11:15 +0000 Files and hashes: 1: FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl (hash: iKBTsOVwyQOJpm/Ey28171ilS6CHfYlFTPyzEQOQ6s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E343, serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Validity Not Before: Jul 19 04:11:15 2025 GMT Not After : Jul 26 04:11:15 2025 GMT Subject: CN=687b1ae3-b59b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3d:af:d5:d3:45:ab:de:0b:4c:64:4f:9c:54: 6b:5b:a4:35:d0:e1:41:f4:27:60:32:8b:93:db:fc: cf:28:f8:ea:7c:e2:0a:ac:00:26:ac:00:08:7d:b5: f1:55:91:f6:02:25:1b:9e:e7:2d:1a:1b:11:c1:14: db:5a:5d:d1:ae:93:f7:ed:83:30:6d:9f:9a:73:3d: 38:90:4c:06:e8:80:c1:e9:18:76:a6:9c:f0:9b:0e: d3:c5:29:69:5f:61:4e:fd:08:8d:e9:fd:a0:69:3c: c4:c8:47:ae:fe:c6:93:e1:28:b5:8e:0e:4f:8f:27: d1:ce:a0:7d:13:ec:69:fa:40:74:d9:b8:86:97:a9: 8e:29:6d:29:f8:f6:87:ea:42:35:68:08:e7:13:a6: 31:eb:82:79:b3:b4:85:8b:89:6d:e2:38:09:39:fb: e7:0c:df:a0:a0:7b:78:cd:cc:41:74:6e:0e:cc:3d: 80:fc:eb:2d:9e:3b:44:5d:03:c0:09:96:48:c5:2b: b7:64:20:21:d7:b8:7b:08:81:1c:5f:03:c5:da:d4: 8c:d8:5f:53:6e:b5:6a:8c:78:4e:b3:7e:46:07:60: 8f:92:8e:ab:e3:95:43:81:10:16:b7:44:dc:3c:53: 54:9e:c3:23:34:32:d2:79:34:15:d7:a7:67:1a:87: 4c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:1D:CC:A9:58:B7:34:8F:12:00:56:26:1E:5E:D9:7D:A1:26:C8:EA X509v3 Authority Key Identifier: keyid:14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:84:9e:bc:3b:5c:a9:4c:bc:9c:63:e5:b0:67:28:52:f8:6e: c3:68:30:46:a9:17:67:e7:00:46:10:4f:78:5a:58:e4:b0:d8: 47:fe:76:1b:d1:4b:aa:fe:ca:90:6f:3c:04:d7:23:27:90:a0: 4e:1e:ef:af:33:5f:b0:5c:57:1a:96:20:a5:2e:45:58:e6:d8: ad:55:84:e5:0f:68:83:ef:8b:e8:dc:38:cb:a8:63:72:46:8c: 75:f8:42:72:66:8e:b9:9b:53:e0:62:70:ac:2e:da:33:c1:d9: 0c:8c:4b:07:ae:75:07:a7:e7:72:42:8e:5b:9f:b1:05:3d:50: 21:ba:cb:e4:81:37:60:d0:37:92:46:0b:77:08:a5:1b:ba:af: e9:28:68:da:5b:64:e0:ac:e0:9b:49:1d:8e:3b:ce:9d:3d:02: d7:55:c1:b3:4a:29:91:23:ae:6b:2a:95:0e:12:46:b7:d3:75: 96:87:6c:5f:85:25:f1:2e:c3:31:44:15:bf:4d:11:16:82:5d: c5:2a:cb:c2:0a:d0:1f:29:d5:45:18:b8:4a:b4:0c:c9:9c:bd: fc:59:1b:f4:6f:4f:0c:2a:8f:80:95:28:16:9d:f0:13:d1:d5: bb:d9:47:da:e6:bb:e5:fc:14:19:c8:73:03:77:1d:a1:35:b7: ce:0d:3c:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkUzNDMxMTAvBgNVBAUTKDE0RTU1RUMzNDI4RTNEMkJBNERDNzFDMTU5RTVGNjA2 MUYxNjNDNkQwHhcNMjUwNzE5MDQxMTE1WhcNMjUwNzI2MDQxMTE1WjAYMRYwFAYD VQQDEw02ODdiMWFlMy1iNTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvz2v1dNFq94LTGRPnFRrW6Q10OFB9CdgMouT2/zPKPjqfOIKrAAmrAAIfbXx VZH2AiUbnuctGhsRwRTbWl3RrpP37YMwbZ+acz04kEwG6IDB6Rh2ppzwmw7TxSlp X2FO/QiN6f2gaTzEyEeu/saT4Si1jg5PjyfRzqB9E+xp+kB02biGl6mOKW0p+PaH 6kI1aAjnE6Yx64J5s7SFi4lt4jgJOfvnDN+goHt4zcxBdG4OzD2A/OstnjtEXQPA CZZIxSu3ZCAh17h7CIEcXwPF2tSM2F9TbrVqjHhOs35GB2CPko6r45VDgRAWt0Tc PFNUnsMjNDLSeTQV16dnGodMAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkdzKlY tzSPEgBWJh5e2X2hJsjqMB8GA1UdIwQYMBaAFBTlXsNCjj0rpNxxwVnl9gYfFjxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTM0My8zQUU3MzlBRUI5 N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BTdWszSEhCV2VYMkJoOFdQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZPVmV3MEtPUFN1azNISEJXZVgyQmg4V1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTM0My8zQUU3MzlBRUI5N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BT dWszSEhCV2VYMkJoOFdQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUhJ68O1ypTLycY+WwZyhS+G7DaDBGqRdn5wBGEE94WljksNhH/nYb 0Uuq/sqQbzwE1yMnkKBOHu+vM1+wXFcaliClLkVY5titVYTlD2iD74vo3DjLqGNy Rox1+EJyZo65m1PgYnCsLtozwdkMjEsHrnUHp+dyQo5bn7EFPVAhusvkgTdg0DeS Rgt3CKUbuq/pKGjaW2TgrOCbSR2OO86dPQLXVcGzSimRI65rKpUOEka303WWh2xf hSXxLsMxRBW/TREWgl3FKsvCCtAfKdVFGLhKtAzJnL38WRv0b08MKo+AlSgWnfAT 0dW72Ufa5rvl/BQZyHMDdx2hNbfODTxF -----END CERTIFICATE-----Generated at Mon Jul 21 03:05:24 2025 by rpki-client