$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: W7VL9fkVgYH/s76JnuaTZGBaj7bsl3sC2Q8jsjREKa4= Subject key identifier: 2B:52:D3:77:93:97:CA:5F:91:AB:FD:18:06:BA:CC:90:59:7E:91:F7 Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 08DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 08D8 Signing time: Fri 06 Jun 2025 20:29:48 +0000 Manifest this update: Fri 06 Jun 2025 20:29:48 +0000 Manifest next update: Fri 13 Jun 2025 20:29:48 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: Oo5UprCwO5udQynew8U36324ZH1Qn5YuglM9UUCsHaM=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: uh8Xk70gWxRTmNYaCNUAB+Hh9CL9zqsYHo9ULlX8dpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 20:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2270 (0x8de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23, serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Jun 6 20:29:48 2025 GMT Not After : Jun 13 20:29:48 2025 GMT Subject: CN=68434fbc-a79b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6b:49:15:e9:97:fe:79:2d:73:3b:e6:ae:30: 5c:bb:9a:22:ff:5a:2b:11:d6:78:31:f0:5e:0f:a2: 8b:23:b0:d1:b8:55:4d:22:73:09:72:e4:f4:63:af: 76:63:a7:36:c7:ad:2d:80:68:17:b7:41:fc:3d:d9: 56:be:13:cf:90:d5:2f:16:db:7d:47:29:12:df:c6: 67:7a:70:50:ee:e0:b1:c0:93:51:ce:99:08:46:b0: be:0f:1b:91:a3:75:bc:00:06:9c:2b:ad:c8:92:2a: 81:f7:82:83:d8:e3:d3:6a:cc:3b:f7:94:17:0d:7d: 1c:b0:f7:d1:bb:b3:88:90:5a:14:57:92:7a:c0:d4: 05:2b:47:30:6a:33:41:2c:87:3c:23:5c:e2:94:b7: b7:9f:e0:98:f7:d0:51:41:b3:dd:18:71:ef:ca:60: f9:17:b2:4f:ba:f7:27:03:ea:50:cc:cb:8a:d5:65: 7d:c9:55:ec:40:18:6f:42:6b:2e:5d:3e:39:7b:03: ba:53:e8:2b:47:6a:4c:0c:54:05:52:04:4f:db:9c: e0:0f:68:4b:5f:80:0b:b2:db:0d:85:0b:80:b2:9f: 43:77:ac:d2:15:9f:55:44:8b:de:ea:ac:76:de:30: 57:6f:d7:bf:71:d0:91:5b:f3:d8:41:99:05:61:36: 54:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:52:D3:77:93:97:CA:5F:91:AB:FD:18:06:BA:CC:90:59:7E:91:F7 X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a9:61:34:bb:11:0b:37:12:38:48:13:01:a1:a1:62:0b:47: 32:f2:e5:31:0a:31:59:5d:d7:c8:6c:0c:ee:57:50:2a:ff:a4: 6c:ae:3c:b3:4c:b7:fd:cc:bc:4f:70:9e:43:6f:43:d6:26:a2: 1c:33:85:20:69:8c:34:8a:b2:b2:68:43:25:b4:b4:22:8d:96: 4f:1e:cb:07:25:e3:10:5f:ef:b4:e9:39:4d:71:7d:e2:58:98: c1:96:f8:52:60:9a:7a:52:fa:d4:3a:1f:49:e7:f7:d3:27:69: 36:eb:fc:3b:0c:69:e2:ff:43:db:92:f5:aa:bc:24:68:30:c0: 24:3d:c9:b6:59:84:7e:f4:a9:9f:34:de:f3:5b:fc:39:49:55: cc:be:87:4c:8d:27:0d:bb:74:e2:e8:cb:06:dc:66:34:d5:f0: 06:35:c6:92:56:75:07:0b:45:34:56:02:c7:59:f3:c9:56:5a: 9a:c0:32:71:43:d1:bd:ed:d8:7d:c8:c8:a9:eb:94:44:0e:6d: 7e:c9:7f:13:b7:c3:46:e4:22:59:d4:6e:c4:72:de:4a:24:51: f8:38:8b:4c:cf:b5:0e:2e:89:15:f6:d6:ef:28:96:02:41:95: 5f:b3:67:13:02:6f:df:92:bf:1a:be:70:42:6c:0b:c2:a9:1b: e5:bf:00:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjUwNjA2MjAyOTQ4WhcNMjUwNjEzMjAyOTQ4WjAYMRYwFAYD VQQDEw02ODQzNGZiYy1hNzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmtJFemX/nktczvmrjBcu5oi/1orEdZ4MfBeD6KLI7DRuFVNInMJcuT0Y692 Y6c2x60tgGgXt0H8PdlWvhPPkNUvFtt9RykS38ZnenBQ7uCxwJNRzpkIRrC+DxuR o3W8AAacK63IkiqB94KD2OPTasw795QXDX0csPfRu7OIkFoUV5J6wNQFK0cwajNB LIc8I1zilLe3n+CY99BRQbPdGHHvymD5F7JPuvcnA+pQzMuK1WV9yVXsQBhvQmsu XT45ewO6U+grR2pMDFQFUgRP25zgD2hLX4ALstsNhQuAsp9Dd6zSFZ9VRIve6qx2 3jBXb9e/cdCRW/PYQZkFYTZU0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtS03eT l8pfkav9GAa6zJBZfpH3MB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfqWE0uxELNxI4SBMBoaFiC0cy8uUxCjFZXdfIbAzuV1Aq/6Rsrjyz TLf9zLxPcJ5Db0PWJqIcM4UgaYw0irKyaEMltLQijZZPHssHJeMQX++06TlNcX3i WJjBlvhSYJp6UvrUOh9J5/fTJ2k26/w7DGni/0PbkvWqvCRoMMAkPcm2WYR+9Kmf NN7zW/w5SVXMvodMjScNu3Ti6MsG3GY01fAGNcaSVnUHC0U0VgLHWfPJVlqawDJx Q9G97dh9yMip65REDm1+yX8Tt8NG5CJZ1G7Ect5KJFH4OItMz7UOLokV9tbvKJYC QZVfs2cTAm/fkr8avnBCbAvCqRvlvwCV -----END CERTIFICATE-----Generated at Sun Jun 8 05:59:44 2025 by rpki-client