$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: NizNUZTaabaKZAzrRDu8hJAiV7nNz5LcYNq32HJavuA= Subject key identifier: FC:37:F6:0D:37:E5:F0:EF:93:B7:D5:E5:0C:FA:F1:D4:BB:DC:1E:37 Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 0666 Signing time: Fri 30 May 2025 22:36:51 +0000 Manifest this update: Fri 30 May 2025 22:36:51 +0000 Manifest next update: Fri 06 Jun 2025 22:36:51 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: nPvtA2gM6uZY3ZADNpF3ghfol6HA8EnVg0zbRKjj6Pg=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: May 30 22:36:51 2025 GMT Not After : Jun 6 22:36:51 2025 GMT Subject: CN=683a3303-b875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:98:d2:15:43:c6:7f:96:88:69:03:58:d4:9b: f4:96:cd:5d:9d:9b:ea:31:8b:82:4d:13:86:54:1d: c5:0d:34:57:fb:20:d9:ba:a1:d2:58:84:03:c3:3a: b8:6e:16:2a:69:6a:86:2d:ce:76:40:19:95:3f:9e: 14:17:88:dd:a4:bc:b5:06:43:25:6a:cb:6f:c4:80: d2:6c:03:b1:68:ad:c5:ba:ab:49:2d:7d:98:76:94: 6c:a7:a2:2a:21:67:4f:8d:89:a9:ee:9c:67:47:fc: 34:77:8b:26:d2:1e:d8:69:9a:43:60:79:15:b8:1b: 1e:bb:90:83:93:c2:04:41:b3:a1:7d:ce:0c:78:d5: fb:2f:40:65:52:06:66:d7:14:50:f5:86:94:ba:33: da:bf:04:ab:a2:e4:f0:70:2f:3d:25:96:e4:06:49: 14:37:12:2e:5b:08:ee:8f:af:58:93:49:9f:ed:d3: 3d:79:f8:ec:0b:3c:6a:81:bb:87:ef:49:e4:07:16: e5:f4:3a:b5:2f:4b:ff:cd:39:8e:4f:f5:c5:45:57: 3b:53:21:14:a6:3d:eb:b0:55:2f:8e:0d:3d:9c:ad: 01:ef:00:39:86:aa:4d:9d:aa:26:1b:46:8e:ed:24: 50:63:1f:1e:9e:1b:9f:e3:d8:60:19:13:6a:5d:fd: a2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:37:F6:0D:37:E5:F0:EF:93:B7:D5:E5:0C:FA:F1:D4:BB:DC:1E:37 X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:02:d6:2c:69:b4:f9:c1:88:b4:64:3d:6d:fd:2e:27:69:b4: 23:7a:e9:b6:dd:36:b7:c2:d4:df:be:4e:84:49:38:fb:7e:57: 75:dd:85:6b:35:fb:30:80:25:c6:43:95:a3:92:3a:0b:52:ee: ca:a4:ad:41:30:20:59:dd:88:52:4f:b2:5b:48:35:a8:03:e3: 6d:8b:4a:d4:01:6e:c5:eb:60:78:69:13:cc:07:0e:ed:73:32: 05:7e:ed:22:7f:2c:6e:90:c8:b4:c3:b1:77:49:4b:ad:ef:c5: 03:35:d9:14:56:78:eb:61:0f:a5:e1:4d:d1:e3:96:dc:6d:17: f7:8a:70:e1:82:c3:1f:9f:88:82:97:ed:a4:9d:c7:2c:2d:1b: fb:b9:ce:9b:06:80:d0:c6:13:39:da:41:4f:62:2f:e7:5c:b2: 40:c6:8f:44:fa:f7:61:8a:1c:6e:fa:fe:08:a1:e3:fb:63:ae: e4:3a:45:74:96:62:94:97:34:1c:90:ac:d7:30:2c:d6:33:a3: d5:6b:6c:1d:f4:e2:8f:3d:8f:75:9f:ba:42:8b:91:31:e1:52: ec:c4:b7:f8:80:30:84:9d:fc:af:fa:63:81:4c:e3:50:e6:dd: a3:dd:bf:ed:1a:80:d4:0c:78:c3:dd:cf:29:c9:51:7c:09:63: a3:ea:7d:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUwNTMwMjIzNjUxWhcNMjUwNjA2MjIzNjUxWjAYMRYwFAYD VQQDEw02ODNhMzMwMy1iODc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZjSFUPGf5aIaQNY1Jv0ls1dnZvqMYuCTROGVB3FDTRX+yDZuqHSWIQDwzq4 bhYqaWqGLc52QBmVP54UF4jdpLy1BkMlastvxIDSbAOxaK3FuqtJLX2YdpRsp6Iq IWdPjYmp7pxnR/w0d4sm0h7YaZpDYHkVuBseu5CDk8IEQbOhfc4MeNX7L0BlUgZm 1xRQ9YaUujPavwSrouTwcC89JZbkBkkUNxIuWwjuj69Yk0mf7dM9efjsCzxqgbuH 70nkBxbl9Dq1L0v/zTmOT/XFRVc7UyEUpj3rsFUvjg09nK0B7wA5hqpNnaomG0aO 7SRQYx8enhuf49hgGRNqXf2iZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPw39g03 5fDvk7fV5Qz68dS73B43MB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnAtYsabT5wYi0ZD1t/S4nabQjeum23Ta3wtTfvk6ESTj7fld13YVr NfswgCXGQ5WjkjoLUu7KpK1BMCBZ3YhST7JbSDWoA+Nti0rUAW7F62B4aRPMBw7t czIFfu0ifyxukMi0w7F3SUut78UDNdkUVnjrYQ+l4U3R45bcbRf3inDhgsMfn4iC l+2knccsLRv7uc6bBoDQxhM52kFPYi/nXLJAxo9E+vdhihxu+v4IoeP7Y67kOkV0 lmKUlzQckKzXMCzWM6PVa2wd9OKPPY91n7pCi5Ex4VLsxLf4gDCEnfyv+mOBTONQ 5t2j3b/tGoDUDHjD3c8pyVF8CWOj6n2/ -----END CERTIFICATE-----Generated at Sat May 31 16:46:54 2025 by rpki-client