$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: 4TSk8pekIc6AlMAmedv5nSKe4ZjJi4ASaEIfTLYtQEw= Subject key identifier: 1C:D8:1C:A2:CB:3C:74:5C:2E:C9:D9:7E:76:82:87:B5:55:58:A0:32 Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0B5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0B44 Signing time: Thu 04 Sep 2025 19:21:41 +0000 Manifest this update: Thu 04 Sep 2025 19:21:41 +0000 Manifest next update: Thu 11 Sep 2025 19:21:41 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: i9wardzOkl4hVGFPecKIdOSkN6jXaN5suL8O6jnwvHo=) 2: 9D999E187CA811F0AE15ED6EC4F9AE02.roa (hash: J/Y6p2/yKRXDBc4lXrVgkXTkn/NmrMfJzbfX/5O/hQo=) 3: B285AC807CA911F09D442F15C4F9AE02.roa (hash: UX2zMGfv+WxZ0voK+QDzKZn1ZKk782a4iAXgqqE0IQo=) 4: DC06CBC0419A11EAA5E2BA6EC4F9AE02.roa (hash: jb+NbLPJbNRFrpXKly3k3uaY8m7AD5q86vW7O0jvGcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 19:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Sep 4 19:21:41 2025 GMT Not After : Sep 11 19:21:41 2025 GMT Subject: CN=68b9e6c5-ff1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c3:59:5a:37:11:6b:9e:f4:1c:f9:f2:52:64: 35:c4:25:a0:50:a2:23:36:f8:4b:b2:9e:62:59:16: 83:fe:c1:f1:ae:7d:2e:89:f8:55:b9:59:8e:0a:6d: 20:ad:3a:08:69:4b:19:42:43:7f:b8:f3:e9:c1:e3: 62:33:b7:54:59:cc:7f:51:af:2d:43:0e:f1:df:7d: e1:5c:e2:22:17:e2:1e:50:94:8c:01:21:c3:02:c0: 15:6f:b5:54:6d:ff:02:19:d3:76:2a:f9:e3:1f:84: ff:86:67:6d:42:bc:4f:d6:cf:c0:b1:3e:ab:bf:15: 6f:91:26:34:50:d1:3f:82:2c:32:09:71:14:fd:76: b4:9e:c6:2f:ad:90:5c:e2:f1:64:d1:cd:99:27:ef: 9c:3c:d8:32:15:5c:d1:c6:56:c5:f3:08:36:63:46: 67:95:6e:5e:eb:b3:60:16:4c:9e:1c:7d:ea:4a:4e: 4a:79:45:9f:a6:9f:9b:71:4c:00:9c:2b:84:74:e9: d3:af:a0:49:ab:c7:5a:ed:b7:25:55:7e:19:c7:b5: 4a:cb:79:31:dc:ce:94:75:51:3f:6b:14:a0:ca:1a: e0:56:91:f2:df:c1:d7:61:76:8d:83:cb:6c:6f:00: ee:9c:12:70:b3:7e:48:87:7d:cb:c4:e3:88:4f:f6: 76:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D8:1C:A2:CB:3C:74:5C:2E:C9:D9:7E:76:82:87:B5:55:58:A0:32 X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:fa:73:3d:b7:2a:af:de:a2:3b:69:28:46:42:d0:2a:68:d1: b9:c2:ce:ac:41:4e:5e:7d:87:72:76:1e:6c:67:8d:d0:1d:ab: 3a:7f:15:e7:b0:4c:0f:7d:c8:c7:38:91:ee:68:62:a7:3a:2b: 21:cf:da:35:d4:11:e8:6f:58:a1:f0:7f:e4:1a:76:a3:2c:bc: aa:05:03:8b:b6:12:0b:c8:9e:4e:b9:32:15:2a:c8:68:d5:84: 07:b6:04:ff:40:82:15:89:ab:5d:a7:10:13:70:8c:e6:c9:77: a8:7c:42:2e:db:a9:5d:73:05:1e:67:61:87:c0:d1:35:44:7e: 45:3b:f4:44:ca:f0:24:1f:52:d6:13:71:0f:af:be:e1:76:42: 8d:37:a1:85:e7:42:cb:ff:27:4f:17:37:e8:9a:66:bb:bd:15: 27:0d:1e:01:b8:69:bb:75:64:f2:e4:4f:6b:89:97:1f:58:78: f1:51:4f:8f:e2:be:16:32:f4:3b:99:6f:9f:2f:56:8f:0c:15: cb:2b:91:1e:00:bf:24:73:de:d4:56:d3:f9:62:cb:41:66:30: 70:36:43:86:df:c3:40:71:d4:39:7d:2b:38:a2:7f:02:39:78: 23:60:25:87:c9:90:b6:1d:af:cf:d7:1a:50:c4:bf:82:aa:2e: b6:c8:be:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjUwOTA0MTkyMTQxWhcNMjUwOTExMTkyMTQxWjAYMRYwFAYD VQQDEw02OGI5ZTZjNS1mZjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MNZWjcRa570HPnyUmQ1xCWgUKIjNvhLsp5iWRaD/sHxrn0uifhVuVmOCm0g rToIaUsZQkN/uPPpweNiM7dUWcx/Ua8tQw7x333hXOIiF+IeUJSMASHDAsAVb7VU bf8CGdN2KvnjH4T/hmdtQrxP1s/AsT6rvxVvkSY0UNE/giwyCXEU/Xa0nsYvrZBc 4vFk0c2ZJ++cPNgyFVzRxlbF8wg2Y0ZnlW5e67NgFkyeHH3qSk5KeUWfpp+bcUwA nCuEdOnTr6BJq8da7bclVX4Zx7VKy3kx3M6UdVE/axSgyhrgVpHy38HXYXaNg8ts bwDunBJws35Ih33LxOOIT/Z2fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzYHKLL PHRcLsnZfnaCh7VVWKAyMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi+nM9tyqv3qI7aShGQtAqaNG5ws6sQU5efYdydh5sZ43QHas6fxXn sEwPfcjHOJHuaGKnOishz9o11BHob1ih8H/kGnajLLyqBQOLthILyJ5OuTIVKsho 1YQHtgT/QIIViatdpxATcIzmyXeofEIu26ldcwUeZ2GHwNE1RH5FO/REyvAkH1LW E3EPr77hdkKNN6GF50LL/ydPFzfomma7vRUnDR4BuGm7dWTy5E9riZcfWHjxUU+P 4r4WMvQ7mW+fL1aPDBXLK5EeAL8kc97UVtP5YstBZjBwNkOG38NAcdQ5fSs4on8C OXgjYCWHyZC2Ha/P1xpQxL+Cqi62yL7M -----END CERTIFICATE-----Generated at Sat Sep 6 16:03:26 2025 by rpki-client