$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft File: FF-_nuMXN-kcPNSE7AFq48jzgDw.mft (raw, json) Hash identifier: HYamY3PbnV4ROi6ikYGNlyiNKNVKywIz2rD9BXki00k= Subject key identifier: 16:7D:56:6D:9D:0C:D8:BE:19:C6:31:BE:6A:D3:B2:EF:27:44:BB:E4 Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 02E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft Manifest number: 02E3 Signing time: Fri 19 Sep 2025 01:44:08 +0000 Manifest this update: Fri 19 Sep 2025 01:44:08 +0000 Manifest next update: Fri 26 Sep 2025 01:44:08 +0000 Files and hashes: 1: FF-_nuMXN-kcPNSE7AFq48jzgDw.crl (hash: 8Hm+pePDZ9+XBciIF7el/P5RPe4IQR9oWu4fSaI6aAQ=) 2: D5D64BB0FB6811EC863B8150C4F9AE02.roa (hash: QqynXUFn2t2DwRQgssbkvYUHxaAcBlMuvOzz1OFVxaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 01:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D, serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: Sep 19 01:44:08 2025 GMT Not After : Sep 26 01:44:08 2025 GMT Subject: CN=68ccb568-cee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:bf:7b:bb:e2:e5:3a:c8:32:67:54:0b:6a:78: 08:ae:8c:e1:05:7b:36:9f:2b:a8:53:12:48:d0:b1: 80:91:ca:ec:59:4d:cf:86:ff:6f:a3:3f:9b:b6:45: 7d:c6:35:ce:af:c2:4d:b0:9b:bd:d4:96:8e:0a:c3: c8:70:72:9b:6c:aa:02:1b:ce:70:6f:9b:a3:1c:82: 20:e6:8a:81:85:0c:ee:78:37:ea:32:f7:dc:fd:e4: 07:31:e3:d6:3e:68:0d:7f:8a:9d:88:41:fd:d1:75: 9f:79:56:b4:6b:9f:68:9d:8c:79:15:8e:95:e8:83: a4:c2:2a:13:07:86:ab:5e:48:cd:2b:a2:76:f6:b8: 39:69:22:2c:5d:b1:cc:25:12:88:de:1b:6e:b2:b6: 7a:d0:60:e1:4a:ae:5c:75:86:dd:9a:5b:ff:15:7e: 05:75:48:c4:2e:89:98:41:8b:6a:28:0b:de:14:88: f0:69:68:67:11:06:3b:38:5e:c8:e2:9a:27:5d:05: 5f:f0:a7:c6:1a:c9:7f:e9:ae:5e:26:3f:42:f8:bc: 6d:5e:f7:06:4e:b0:e3:d2:3c:17:c7:2c:2b:7e:a9: 47:5e:28:8a:88:4b:ce:08:76:be:69:79:ae:6d:ad: f4:d3:26:e1:69:b0:ef:40:20:d6:18:e6:9e:44:f9: 52:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7D:56:6D:9D:0C:D8:BE:19:C6:31:BE:6A:D3:B2:EF:27:44:BB:E4 X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:58:ba:4e:d5:f0:e3:47:df:d8:29:7d:7e:e3:3b:a6:b1:53: 6c:99:05:e3:9a:d8:e1:31:00:33:0a:ce:c6:62:d2:01:9c:f7: bf:dd:3d:54:fd:5e:a5:29:4c:18:29:41:9c:95:26:74:2d:49: ed:0a:65:d7:c1:bd:46:c0:cd:50:a8:c2:b7:cf:43:00:86:27: ae:1a:30:82:0a:bc:4e:06:bd:ca:b2:cd:43:f9:d6:75:af:3f: 88:c1:f0:67:7c:ca:7a:82:29:21:2f:31:2e:38:25:01:84:be: bd:8a:a0:40:d3:d4:f9:62:ea:97:bc:25:7f:1a:07:0e:15:4d: 14:21:fb:a5:64:ea:54:a2:d3:7e:24:ba:79:20:3c:78:d0:1c: 53:23:41:ce:11:04:b7:8f:b9:b5:db:44:77:16:46:8f:16:76: 0a:c8:a5:32:cc:f0:56:7a:f4:ab:f9:d5:2c:be:31:91:ad:bd: 09:af:d0:73:9e:f0:62:88:a3:e3:c7:e3:b4:93:fe:c4:89:09: 8a:d0:f3:51:6b:f5:26:62:ba:24:19:1c:e8:10:4d:bb:5c:80: 30:10:71:ed:13:84:71:f0:aa:9f:e0:fc:d2:b9:2d:7a:43:1c: 32:1d:a6:4e:8b:e9:29:2b:86:ce:d2:16:55:ec:60:13:6b:cc: e4:60:ff:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjUwOTE5MDE0NDA4WhcNMjUwOTI2MDE0NDA4WjAYMRYwFAYD VQQDEw02OGNjYjU2OC1jZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7797u+LlOsgyZ1QLangIrozhBXs2nyuoUxJI0LGAkcrsWU3Phv9voz+btkV9 xjXOr8JNsJu91JaOCsPIcHKbbKoCG85wb5ujHIIg5oqBhQzueDfqMvfc/eQHMePW PmgNf4qdiEH90XWfeVa0a59onYx5FY6V6IOkwioTB4arXkjNK6J29rg5aSIsXbHM JRKI3htusrZ60GDhSq5cdYbdmlv/FX4FdUjELomYQYtqKAveFIjwaWhnEQY7OF7I 4ponXQVf8KfGGsl/6a5eJj9C+LxtXvcGTrDj0jwXxywrfqlHXiiKiEvOCHa+aXmu ba300ybhabDvQCDWGOaeRPlSQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZ9Vm2d DNi+GcYxvmrTsu8nRLvkMB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc4RC82N0I0NDgyOEZCNjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4t a2NQTlNFN0FGcTQ4anpnRHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAWLpO1fDjR9/YKX1+4zumsVNsmQXjmtjhMQAzCs7GYtIBnPe/3T1U /V6lKUwYKUGclSZ0LUntCmXXwb1GwM1QqMK3z0MAhieuGjCCCrxOBr3Kss1D+dZ1 rz+IwfBnfMp6gikhLzEuOCUBhL69iqBA09T5YuqXvCV/GgcOFU0UIfulZOpUotN+ JLp5IDx40BxTI0HOEQS3j7m120R3FkaPFnYKyKUyzPBWevSr+dUsvjGRrb0Jr9Bz nvBiiKPjx+O0k/7EiQmK0PNRa/UmYrokGRzoEE27XIAwEHHtE4Rx8Kqf4PzSuS16 QxwyHaZOi+kpK4bO0hZV7GATa8zkYP/f -----END CERTIFICATE-----Generated at Fri Sep 19 10:40:20 2025 by rpki-client