$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: 8pvl+myQeOIKfWUGEkAlrEFBXp4hqYuDWdLosPGHkxY= Subject key identifier: A2:81:59:3F:73:65:76:02:5E:61:BF:83:65:3C:2E:FC:BB:47:03:63 Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A0D Signing time: Wed 20 Aug 2025 19:56:23 +0000 Manifest this update: Wed 20 Aug 2025 19:56:22 +0000 Manifest next update: Wed 27 Aug 2025 19:56:22 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: XtNfRFRHijKeWHjkS3ImkjnnD39zQDFK6Xt9xmp5sFw=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 19:56:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2599 (0xa27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Aug 20 19:56:22 2025 GMT Not After : Aug 27 19:56:22 2025 GMT Subject: CN=68a62867-11ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:81:14:c2:38:82:13:23:58:fb:66:f2:28:15: 46:98:c4:27:b5:e4:5d:a2:2f:ff:ba:9c:d7:77:9e: e0:c8:f7:3d:c1:83:72:55:b5:c9:39:c4:a7:39:13: 07:01:b6:2e:7c:69:90:d1:18:e6:d9:3c:22:27:f3: e6:78:8d:e9:d9:3b:bf:4f:82:da:5b:26:f9:06:5b: 61:3a:bc:24:5d:2e:bd:4a:30:d7:07:7c:93:45:a1: 80:75:41:fd:35:7d:91:c2:64:c4:af:43:74:0d:62: b5:39:ad:3b:9a:45:04:61:d5:d4:01:33:30:fb:dc: 1e:76:d4:d5:14:f9:6a:8a:a0:45:22:8c:d0:c1:84: 75:ed:d3:2d:e4:44:a6:2e:4f:50:dc:3b:02:87:9b: 54:f1:ac:44:99:a9:eb:6c:98:c7:e2:e9:5b:e8:c6: 97:28:00:2b:c3:9c:c0:c1:1d:81:55:a5:7b:3f:86: 95:18:a9:64:d2:a0:9e:3e:39:c2:e1:8e:ec:76:79: 0e:0e:34:9d:b2:dd:a8:e8:9f:13:08:1f:34:0f:ec: 59:30:a1:97:e7:c7:c0:0d:5e:1a:5f:f1:2b:63:04: 9c:6b:cb:e6:4b:79:02:61:42:47:92:bf:8f:fa:d8: 8b:3b:b6:88:a2:d4:1e:7e:1f:85:6f:db:80:e0:df: c0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:81:59:3F:73:65:76:02:5E:61:BF:83:65:3C:2E:FC:BB:47:03:63 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:a2:61:fb:08:60:51:58:a0:79:84:76:5e:0c:4a:d0:84:e5: c5:7d:e2:41:46:6a:3d:6a:49:fb:71:85:02:29:75:e5:b9:77: 7f:5c:d8:3a:97:e6:37:b6:0c:62:61:7a:65:93:7e:20:28:d4: 5e:b7:c9:b0:52:70:22:2a:bc:43:8e:9f:7f:c8:43:9a:df:b1: ec:a1:9a:8c:84:d3:dc:1f:5d:35:6b:78:36:5f:82:ea:b4:78: 75:1c:bd:1c:71:32:73:ca:ff:eb:b7:c0:bc:67:18:2b:62:30: d4:21:68:89:37:71:37:04:d4:3a:b9:a0:11:58:1a:dd:c3:39: 08:b0:2e:a2:5b:39:b3:ed:68:e1:c8:e2:6e:ea:03:58:4f:a3: ac:c5:dc:cf:f5:fa:27:b7:db:a8:b2:0e:90:c7:0f:2b:db:62: 24:5e:78:2d:51:a6:69:38:a3:7c:1d:42:07:1a:c3:15:0b:25: db:7f:66:da:88:46:38:41:dc:f3:c9:55:31:cb:a2:38:00:84: 2b:04:75:fb:ec:1e:4c:9c:58:e2:9a:c8:7d:6d:a1:fb:d2:fa: 00:da:53:d3:88:a0:45:c2:9f:cc:c1:a4:9b:41:d3:51:ea:29: fa:cc:fe:6f:f8:96:b3:3b:6f:f1:7d:a3:fb:f1:2f:5b:95:bc: 3e:1a:6e:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUwODIwMTk1NjIyWhcNMjUwODI3MTk1NjIyWjAYMRYwFAYD VQQDEw02OGE2Mjg2Ny0xMWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoEUwjiCEyNY+2byKBVGmMQnteRdoi//upzXd57gyPc9wYNyVbXJOcSnORMH AbYufGmQ0Rjm2TwiJ/PmeI3p2Tu/T4LaWyb5BlthOrwkXS69SjDXB3yTRaGAdUH9 NX2RwmTEr0N0DWK1Oa07mkUEYdXUATMw+9wedtTVFPlqiqBFIozQwYR17dMt5ESm Lk9Q3DsCh5tU8axEmanrbJjH4ulb6MaXKAArw5zAwR2BVaV7P4aVGKlk0qCePjnC 4Y7sdnkODjSdst2o6J8TCB80D+xZMKGX58fADV4aX/ErYwSca8vmS3kCYUJHkr+P +tiLO7aIotQefh+Fb9uA4N/ANwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKBWT9z ZXYCXmG/g2U8Lvy7RwNjMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMomH7CGBRWKB5hHZeDErQhOXFfeJBRmo9akn7cYUCKXXluXd/XNg6 l+Y3tgxiYXplk34gKNRet8mwUnAiKrxDjp9/yEOa37HsoZqMhNPcH101a3g2X4Lq tHh1HL0ccTJzyv/rt8C8ZxgrYjDUIWiJN3E3BNQ6uaARWBrdwzkIsC6iWzmz7Wjh yOJu6gNYT6OsxdzP9font9uosg6Qxw8r22IkXngtUaZpOKN8HUIHGsMVCyXbf2ba iEY4QdzzyVUxy6I4AIQrBHX77B5MnFjimsh9baH70voA2lPTiKBFwp/MwaSbQdNR 6in6zP5v+JazO2/xfaP78S9blbw+Gm4X -----END CERTIFICATE-----Generated at Fri Aug 22 16:31:41 2025 by rpki-client