$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: pketB/BEghNRfMoykzKYxH9joWXFHSHLBSWrYyexjAI= Subject key identifier: C6:BB:D1:AA:A8:F1:9D:09:CF:45:77:08:13:FE:EC:17:93:D7:2D:9C Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 0904 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 08FE Signing time: Wed 20 Aug 2025 20:23:59 +0000 Manifest this update: Wed 20 Aug 2025 20:23:58 +0000 Manifest next update: Wed 27 Aug 2025 20:23:58 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: nJsUXXEcy8ayHJQoIpVfr6C2XY12NCPsJl5XFURbj9g=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: uh8Xk70gWxRTmNYaCNUAB+Hh9CL9zqsYHo9ULlX8dpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 20:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2308 (0x904) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23, serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Aug 20 20:23:58 2025 GMT Not After : Aug 27 20:23:58 2025 GMT Subject: CN=68a62edf-7b57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1c:a2:06:31:34:d5:50:f6:62:57:54:9a:14: 79:2e:0c:9b:ab:fc:92:b8:2a:26:6b:11:b1:fd:6a: c3:11:de:4f:b8:75:61:e7:3e:5b:6e:a1:cb:d5:07: 99:58:dc:40:53:9f:b6:97:b7:a2:6b:5a:e1:2d:83: 1b:d5:f4:8f:bf:42:5c:11:f3:92:c4:11:de:42:91: 88:25:2a:e8:ef:cc:13:8f:43:20:0e:f1:3b:98:85: 87:7e:cc:d3:2a:9d:9a:65:69:fb:2c:82:1c:0e:e3: 30:14:66:85:fe:fc:c2:e5:19:11:1f:b2:70:d1:f1: c8:de:51:9a:39:e7:9b:fc:b7:5d:e3:be:59:80:dd: 5a:26:88:49:bf:9d:bb:69:77:f3:d5:bf:2d:1e:28: 5a:2c:4c:9d:6d:9a:a4:bb:f2:cb:d6:8c:8b:1e:20: ad:4b:3e:71:a3:c4:9c:9b:69:06:93:45:bb:fa:e2: d3:b7:d3:cb:44:46:f4:11:0b:5e:30:b3:f1:f7:7a: bf:f1:ab:08:64:16:1e:a8:63:b9:45:b1:1c:b7:09: 09:19:44:47:3a:eb:c4:74:a5:06:87:13:06:d0:6a: c5:a6:de:dc:10:23:51:d1:5f:97:21:b2:67:80:be: 11:cd:71:ba:b5:e5:57:3e:c0:f0:74:ce:5b:60:07: 0d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:BB:D1:AA:A8:F1:9D:09:CF:45:77:08:13:FE:EC:17:93:D7:2D:9C X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:9b:e2:b0:7c:95:de:e0:af:a7:13:b5:81:0a:7d:83:2a:8e: 9f:d1:d5:ff:63:cb:a3:31:94:c5:61:ab:f3:29:12:1a:0c:0e: f0:3e:a8:a1:03:2b:e5:ca:e6:ce:a7:54:72:fb:dc:fa:fa:69: 15:be:0c:61:33:78:2b:c4:ae:c2:87:18:8d:bc:38:56:a4:25: 45:9a:51:13:5a:ce:ce:3d:54:1c:0d:f2:21:72:a2:b2:7d:79: e8:47:11:4b:bc:66:8a:54:04:89:06:0c:a5:18:c7:5e:90:4a: 99:31:b5:19:83:3f:dc:27:93:90:c5:ec:54:19:d5:7b:51:2c: 0b:46:eb:cf:a3:e0:19:8a:72:30:06:ac:05:a3:29:88:09:da: 1a:34:a7:97:fc:0e:a8:98:a8:6f:49:79:65:c1:15:d4:fc:a5: f7:df:86:8d:2f:69:9e:63:81:02:fc:1c:e9:f7:f3:d2:cc:82: a2:11:8b:b3:45:66:8c:c2:a8:0b:f3:5c:9e:51:5d:96:db:7a: 36:4e:69:c1:6c:74:d0:36:9c:e5:98:37:a5:73:37:fe:df:a9: 4b:c0:58:fc:19:23:8f:2c:2a:ce:49:61:b7:66:f7:ea:b4:35: 9a:d2:f6:b8:77:10:17:9a:94:c6:49:12:0b:56:5d:0c:93:54: 55:3a:c3:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjUwODIwMjAyMzU4WhcNMjUwODI3MjAyMzU4WjAYMRYwFAYD VQQDEw02OGE2MmVkZi03YjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ByiBjE01VD2YldUmhR5Lgybq/ySuComaxGx/WrDEd5PuHVh5z5bbqHL1QeZ WNxAU5+2l7eia1rhLYMb1fSPv0JcEfOSxBHeQpGIJSro78wTj0MgDvE7mIWHfszT Kp2aZWn7LIIcDuMwFGaF/vzC5RkRH7Jw0fHI3lGaOeeb/Ldd475ZgN1aJohJv527 aXfz1b8tHihaLEydbZqku/LL1oyLHiCtSz5xo8Scm2kGk0W7+uLTt9PLREb0EQte MLPx93q/8asIZBYeqGO5RbEctwkJGURHOuvEdKUGhxMG0GrFpt7cECNR0V+XIbJn gL4RzXG6teVXPsDwdM5bYAcNSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMa70aqo 8Z0Jz0V3CBP+7BeT1y2cMB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWm+KwfJXe4K+nE7WBCn2DKo6f0dX/Y8ujMZTFYavzKRIaDA7wPqih AyvlyubOp1Ry+9z6+mkVvgxhM3grxK7ChxiNvDhWpCVFmlETWs7OPVQcDfIhcqKy fXnoRxFLvGaKVASJBgylGMdekEqZMbUZgz/cJ5OQxexUGdV7USwLRuvPo+AZinIw BqwFoymICdoaNKeX/A6omKhvSXllwRXU/KX334aNL2meY4EC/Bzp9/PSzIKiEYuz RWaMwqgL81yeUV2W23o2TmnBbHTQNpzlmDelczf+36lLwFj8GSOPLCrOSWG3Zvfq tDWa0va4dxAXmpTGSRILVl0Mk1RVOsNM -----END CERTIFICATE-----Generated at Fri Aug 22 16:25:09 2025 by rpki-client