$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: d+hkKxS4/ctBcma/RFMIOU0P4VJ8YHlMWFZREiJmIV4= Subject key identifier: F7:55:40:BE:5D:00:91:84:A7:53:40:31:7F:BC:CC:DF:13:D0:6D:E1 Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 0699 Signing time: Sat 06 Sep 2025 22:32:21 +0000 Manifest this update: Sat 06 Sep 2025 22:32:21 +0000 Manifest next update: Sat 13 Sep 2025 22:32:21 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: K44CGkZJ4XvCpqz7VurXKHKwy3por2+L1gc3GcMpzzA=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 22:32:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Sep 6 22:32:21 2025 GMT Not After : Sep 13 22:32:21 2025 GMT Subject: CN=68bcb675-c024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:24:88:11:43:4d:d6:ce:63:5a:7a:b4:d1:38: bf:aa:7a:2d:00:44:1d:8b:38:8b:f9:65:01:ab:a2: 74:bf:fc:76:60:28:b5:8a:5f:f8:8e:50:16:c5:46: 09:8b:77:22:48:21:cb:e2:56:49:34:50:d3:87:49: 07:c4:29:43:47:87:5a:3a:28:43:93:1f:ee:f2:d9: 7c:d7:85:33:12:e5:40:47:08:59:53:71:bd:a0:7a: 3a:18:6b:74:ef:e5:c4:36:e2:a4:73:38:c1:3f:00: f8:12:61:32:3c:ab:7c:11:7c:13:ac:0a:e8:5e:19: b9:9b:0d:d6:8e:89:7f:7c:06:fe:5e:e9:1f:0b:5b: 40:ed:cd:b7:a5:54:22:a3:e6:67:25:72:fa:3c:3e: 6d:37:e2:28:ea:65:a6:32:9d:eb:27:9b:dd:f1:71: ab:cd:4e:91:9c:38:7b:99:fc:f5:fe:4b:41:f9:70: 27:d5:15:a6:2a:f9:dc:09:90:e5:34:fa:08:b8:4b: 29:a4:f6:c4:21:68:8e:6d:a5:3d:47:1c:d5:36:fa: e6:bc:fc:de:4a:48:e8:a4:40:84:f9:a7:5f:12:c8: f9:b3:b9:5f:75:68:03:c2:50:eb:6e:97:78:af:b8: 62:e1:a5:cd:9c:89:36:52:a3:40:1f:58:f7:21:27: 37:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:55:40:BE:5D:00:91:84:A7:53:40:31:7F:BC:CC:DF:13:D0:6D:E1 X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:03:4f:53:a7:e3:11:85:cc:5b:02:f4:23:01:4d:6b:80:28: 4a:46:15:01:ef:15:da:90:81:92:9b:e6:19:3d:b6:bc:ea:25: a0:a4:8b:ba:c6:4b:5e:07:11:bc:15:3f:42:2b:b8:38:1e:e6: e0:85:0e:1c:45:2a:30:06:6c:aa:31:5c:19:40:c1:42:34:1c: a9:9a:53:fb:c3:8c:3e:aa:1f:55:b5:28:f4:0f:d2:cd:1f:78: e8:a6:24:e9:58:a0:d0:8a:f5:ec:6d:a6:ba:0a:6f:c7:8e:4a: 09:3a:1d:c0:b3:f6:a5:dd:23:28:6f:c8:d5:c2:3d:b1:a6:e8: 68:ed:7a:c4:27:a5:4e:fc:12:64:88:08:8b:62:17:22:9b:a6: 98:e2:7a:f6:42:df:4c:c8:51:a6:83:39:27:71:a5:da:c1:3e: 7e:0c:6f:09:0c:66:e0:e7:f4:dd:43:98:86:b3:ba:fa:12:1d: b5:bb:2d:6a:e6:62:77:2d:38:ea:a7:81:09:0e:b6:a8:0b:4e: 6f:9c:2b:01:47:12:7b:3f:5c:45:de:b0:9b:24:ed:20:3b:4b: cc:9e:3e:da:4b:0d:75:fa:25:14:ba:50:49:4b:ba:d3:f6:ec: 14:a5:57:68:28:08:8e:1b:03:b2:19:1e:a6:f5:90:e1:03:02: c8:ff:0f:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUwOTA2MjIzMjIxWhcNMjUwOTEzMjIzMjIxWjAYMRYwFAYD VQQDEw02OGJjYjY3NS1jMDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CSIEUNN1s5jWnq00Ti/qnotAEQdiziL+WUBq6J0v/x2YCi1il/4jlAWxUYJ i3ciSCHL4lZJNFDTh0kHxClDR4daOihDkx/u8tl814UzEuVARwhZU3G9oHo6GGt0 7+XENuKkczjBPwD4EmEyPKt8EXwTrAroXhm5mw3Wjol/fAb+XukfC1tA7c23pVQi o+ZnJXL6PD5tN+Io6mWmMp3rJ5vd8XGrzU6RnDh7mfz1/ktB+XAn1RWmKvncCZDl NPoIuEsppPbEIWiObaU9RxzVNvrmvPzeSkjopECE+adfEsj5s7lfdWgDwlDrbpd4 r7hi4aXNnIk2UqNAH1j3ISc3qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdVQL5d AJGEp1NAMX+8zN8T0G3hMB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFA09Tp+MRhcxbAvQjAU1rgChKRhUB7xXakIGSm+YZPba86iWgpIu6 xkteBxG8FT9CK7g4HubghQ4cRSowBmyqMVwZQMFCNBypmlP7w4w+qh9VtSj0D9LN H3jopiTpWKDQivXsbaa6Cm/HjkoJOh3As/al3SMob8jVwj2xpuho7XrEJ6VO/BJk iAiLYhcim6aY4nr2Qt9MyFGmgzkncaXawT5+DG8JDGbg5/TdQ5iGs7r6Eh21uy1q 5mJ3LTjqp4EJDraoC05vnCsBRxJ7P1xF3rCbJO0gO0vMnj7aSw11+iUUulBJS7rT 9uwUpVdoKAiOGwOyGR6m9ZDhAwLI/w+Q -----END CERTIFICATE-----Generated at Mon Sep 8 04:17:29 2025 by rpki-client