$ rpki-client -vvf rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft File: FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft (raw, json) Hash identifier: WhUmSb+Ybt50t93QJtnZCTwTJmP+qIi044BOEyT6NCk= Subject key identifier: 3E:FA:B6:4F:19:2E:B3:61:0F:1B:E0:E3:9C:5A:B5:10:CB:25:4C:DE Authority key identifier: 14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D Certificate issuer: /CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft Manifest number: 0130 Signing time: Fri 05 Sep 2025 04:03:35 +0000 Manifest this update: Fri 05 Sep 2025 04:03:34 +0000 Manifest next update: Fri 12 Sep 2025 04:03:34 +0000 Files and hashes: 1: FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl (hash: 8FpWjvYkZ/EtO+Y3gZgtWbmnDrkeA/HftnMScPqCgmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:03:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E343, serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Validity Not Before: Sep 5 04:03:34 2025 GMT Not After : Sep 12 04:03:34 2025 GMT Subject: CN=68ba6116-b48b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b0:4d:9a:29:b4:a7:3d:fc:fa:d1:78:42:c9: f6:b3:ca:f4:8e:17:c1:8f:fd:d9:6b:c2:06:54:a2: 46:ea:dc:07:d8:c2:54:68:4c:b1:66:f7:f8:8d:a4: 0c:fe:3b:3e:6f:56:75:9c:81:d2:d4:ae:e3:3b:bc: 12:32:e7:de:12:cc:0f:3f:82:9c:44:55:38:7d:4c: 8b:74:1e:ea:cd:f4:54:75:44:3e:3b:a2:f5:9e:9a: 7e:aa:05:aa:11:b6:ee:aa:cc:f5:1e:5f:b9:c3:06: 7c:6d:ad:ed:74:0b:72:e0:0f:b8:ae:d8:15:07:15: 94:46:49:37:89:d1:a2:1e:45:f4:f4:7e:94:b7:bd: a5:77:87:18:22:e9:1e:48:30:ba:d2:7c:72:94:86: 7a:79:ac:a9:7c:41:e7:85:7c:7a:b2:57:6f:cb:4b: c5:08:25:b7:bd:6f:5d:a1:8e:87:67:5d:6b:6f:ab: cb:68:c5:03:af:e5:35:39:35:75:b4:3c:b8:46:31: 61:73:89:ac:f9:bf:22:d4:91:11:b5:36:e9:20:cb: b0:1e:71:27:24:4f:33:bb:97:09:06:00:96:88:85: 7c:b8:5b:03:e4:5c:6b:a2:ec:86:31:76:03:91:43: 6e:3d:b2:92:78:0e:01:07:99:ed:73:fd:2d:07:5c: 4a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:FA:B6:4F:19:2E:B3:61:0F:1B:E0:E3:9C:5A:B5:10:CB:25:4C:DE X509v3 Authority Key Identifier: keyid:14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:90:9b:a3:ac:97:11:8e:13:bf:f9:f2:29:4c:4f:2c:bb:5b: 95:de:3c:a8:44:6b:c0:68:96:4e:8e:77:15:7d:63:92:b6:86: 68:fa:63:33:c6:98:37:54:62:b0:85:1b:59:38:cd:96:55:bf: 9c:f5:ca:6b:84:f9:79:07:3a:03:01:2b:13:cd:3b:4e:f6:18: 1d:ae:05:14:7a:0c:c3:bc:01:32:1e:54:dc:68:72:4a:90:54: d5:9d:a5:b5:2f:e7:2a:5c:af:9f:80:61:fe:26:5d:c6:89:c4: 32:ab:d8:72:94:37:09:81:91:38:d5:ae:97:41:39:f8:0f:a4: 7b:74:c8:fa:e3:97:f0:e9:89:c2:5b:66:92:10:a9:ab:53:a9: 87:af:0d:a2:68:03:8a:31:5e:92:51:d3:83:7c:7b:e5:73:2b: 5e:5d:69:60:ee:a3:6e:25:cb:7b:8d:14:1c:42:bd:17:90:1d: f7:e9:a4:35:91:2c:85:a5:63:f6:09:83:89:52:ab:27:1a:a3: b9:c2:11:b9:7a:c9:31:14:fc:2e:2e:0b:d0:ea:69:c2:16:8b: 62:c9:80:42:61:ea:38:50:f9:08:da:6f:06:fc:ec:e9:ec:09: 99:ac:ae:d2:cb:e9:b4:41:0a:dd:77:9b:e1:eb:4d:30:85:76: c1:18:d2:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkUzNDMxMTAvBgNVBAUTKDE0RTU1RUMzNDI4RTNEMkJBNERDNzFDMTU5RTVGNjA2 MUYxNjNDNkQwHhcNMjUwOTA1MDQwMzM0WhcNMjUwOTEyMDQwMzM0WjAYMRYwFAYD VQQDEw02OGJhNjExNi1iNDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rBNmim0pz38+tF4Qsn2s8r0jhfBj/3Za8IGVKJG6twH2MJUaEyxZvf4jaQM /js+b1Z1nIHS1K7jO7wSMufeEswPP4KcRFU4fUyLdB7qzfRUdUQ+O6L1npp+qgWq Ebbuqsz1Hl+5wwZ8ba3tdAty4A+4rtgVBxWURkk3idGiHkX09H6Ut72ld4cYIuke SDC60nxylIZ6eaypfEHnhXx6sldvy0vFCCW3vW9doY6HZ11rb6vLaMUDr+U1OTV1 tDy4RjFhc4ms+b8i1JERtTbpIMuwHnEnJE8zu5cJBgCWiIV8uFsD5FxrouyGMXYD kUNuPbKSeA4BB5ntc/0tB1xK8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD76tk8Z LrNhDxvg45xatRDLJUzeMB8GA1UdIwQYMBaAFBTlXsNCjj0rpNxxwVnl9gYfFjxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTM0My8zQUU3MzlBRUI5 N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BTdWszSEhCV2VYMkJoOFdQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZPVmV3MEtPUFN1azNISEJXZVgyQmg4V1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTM0My8zQUU3MzlBRUI5N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BT dWszSEhCV2VYMkJoOFdQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvkJujrJcRjhO/+fIpTE8su1uV3jyoRGvAaJZOjncVfWOStoZo+mMz xpg3VGKwhRtZOM2WVb+c9cprhPl5BzoDASsTzTtO9hgdrgUUegzDvAEyHlTcaHJK kFTVnaW1L+cqXK+fgGH+Jl3GicQyq9hylDcJgZE41a6XQTn4D6R7dMj645fw6YnC W2aSEKmrU6mHrw2iaAOKMV6SUdODfHvlcyteXWlg7qNuJct7jRQcQr0XkB336aQ1 kSyFpWP2CYOJUqsnGqO5whG5eskxFPwuLgvQ6mnCFotiyYBCYeo4UPkI2m8G/Ozp 7AmZrK7Sy+m0QQrdd5vh600whXbBGNIR -----END CERTIFICATE-----Generated at Sat Sep 6 21:04:38 2025 by rpki-client