$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: K8jE5Xwdi2LZJcA2MkiMj46KUI3pk/ULDGORkaxd7vE= Subject key identifier: DE:40:22:D8:93:1C:19:FC:27:20:C2:88:B1:94:BB:CA:BD:BE:A0:5F Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 0944 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 093B Signing time: Thu 18 Sep 2025 20:29:06 +0000 Manifest this update: Thu 18 Sep 2025 20:29:06 +0000 Manifest next update: Thu 25 Sep 2025 20:29:06 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: Hhk4mWZ3V8SnTAkGDH52YS7DXwiLPUY8PKyxpUqovQI=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Sep 18 20:29:06 2025 GMT Not After : Sep 25 20:29:06 2025 GMT Subject: CN=68cc6b92-73f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:9c:9c:0f:d6:39:0d:1b:9b:08:0c:a9:ef: fc:1d:9a:52:37:29:d7:1f:dd:5a:0d:ef:3e:6f:9a: 58:59:01:a0:96:4a:e5:43:5f:aa:e5:d9:80:d2:9b: 1d:50:cb:cd:45:52:4a:6e:f2:35:91:62:67:4f:d7: ab:b7:4b:32:4a:8e:00:65:40:61:48:77:2d:93:09: d1:f8:7b:81:07:bb:5d:5a:b6:8f:de:54:17:5a:1b: 09:4f:dc:94:65:b3:79:c0:50:f9:68:2f:2b:80:33: 30:fe:c7:20:fd:34:6f:ff:bc:2b:3c:96:36:6f:8b: 2e:0d:0a:f1:8e:2f:33:b0:c6:96:88:2f:80:bc:46: ef:ea:d5:0f:5f:70:85:21:f0:a1:40:73:f2:19:55: 5e:f3:66:d0:14:9d:39:dd:9b:6b:4b:5c:41:60:97: d3:01:82:1f:a3:66:39:35:1d:a0:21:0b:30:b4:d3: 90:86:cf:f0:0b:9a:a0:d1:dc:8a:8b:13:dd:db:38: e4:b2:ca:00:74:8c:74:6f:bf:1f:52:ac:93:54:7b: 38:b6:6f:ac:28:3c:76:b8:d7:55:10:c7:55:cf:11: 29:1f:12:a5:c8:8b:c8:c6:ae:6f:67:31:f0:2b:c4: d9:22:fb:9b:5d:09:17:3a:0b:40:4c:80:b0:9c:d8: 71:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:40:22:D8:93:1C:19:FC:27:20:C2:88:B1:94:BB:CA:BD:BE:A0:5F X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:9a:a3:de:8f:26:4a:be:52:9b:50:59:9b:43:cd:34:e6:78: 25:ca:2f:55:d9:d7:bf:04:a2:f7:b8:51:25:6e:14:1c:97:b1: 09:fb:65:ae:10:98:eb:27:f2:24:c3:42:ef:2a:5f:b4:9b:32: 35:a4:d2:ca:d5:98:40:1e:61:bf:76:37:e5:7d:88:39:c6:e9: d1:00:39:26:14:2d:81:eb:f7:69:54:76:87:13:1e:38:d1:5c: 8c:03:55:b5:9e:4b:06:de:5f:1a:d1:e9:6a:c1:58:42:3c:f4: c2:f0:89:e9:03:5c:24:29:a1:d7:48:17:64:06:87:a8:e8:98: 66:ed:95:bf:5a:ec:00:17:61:e4:66:ff:1a:13:cb:b5:94:ab: 30:03:79:50:b2:28:58:62:a2:9a:89:0c:75:31:af:62:73:cb: 19:c5:9c:fe:7f:33:2c:68:14:4b:0d:69:6d:dd:92:6d:c1:b5: b0:04:a8:37:86:57:2f:f6:74:a2:98:57:ac:16:c8:dd:76:1b: dc:de:26:b3:9f:98:8f:13:28:b8:38:5c:60:6f:ec:6c:a4:e7: e6:33:81:64:6e:79:f7:46:0b:a3:da:a5:d1:c6:8d:0c:d8:57: c1:52:5e:53:e6:3d:b5:98:c2:dd:2d:e2:2f:69:d5:82:be:a6: 7d:8a:58:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUwOTE4MjAyOTA2WhcNMjUwOTI1MjAyOTA2WjAYMRYwFAYD VQQDEw02OGNjNmI5Mi03M2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4ucnA/WOQ0bmwgMqe/8HZpSNynXH91aDe8+b5pYWQGglkrlQ1+q5dmA0psd UMvNRVJKbvI1kWJnT9ert0sySo4AZUBhSHctkwnR+HuBB7tdWraP3lQXWhsJT9yU ZbN5wFD5aC8rgDMw/scg/TRv/7wrPJY2b4suDQrxji8zsMaWiC+AvEbv6tUPX3CF IfChQHPyGVVe82bQFJ053ZtrS1xBYJfTAYIfo2Y5NR2gIQswtNOQhs/wC5qg0dyK ixPd2zjkssoAdIx0b78fUqyTVHs4tm+sKDx2uNdVEMdVzxEpHxKlyIvIxq5vZzHw K8TZIvubXQkXOgtATICwnNhx4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5AItiT HBn8JyDCiLGUu8q9vqBfMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTmqPejyZKvlKbUFmbQ8005nglyi9V2de/BKL3uFElbhQcl7EJ+2Wu EJjrJ/Ikw0LvKl+0mzI1pNLK1ZhAHmG/djflfYg5xunRADkmFC2B6/dpVHaHEx44 0VyMA1W1nksG3l8a0elqwVhCPPTC8InpA1wkKaHXSBdkBoeo6Jhm7ZW/WuwAF2Hk Zv8aE8u1lKswA3lQsihYYqKaiQx1Ma9ic8sZxZz+fzMsaBRLDWlt3ZJtwbWwBKg3 hlcv9nSimFesFsjddhvc3iazn5iPEyi4OFxgb+xspOfmM4Fkbnn3Rguj2qXRxo0M 2FfBUl5T5j21mMLdLeIvadWCvqZ9ilip -----END CERTIFICATE-----Generated at Fri Sep 19 09:15:14 2025 by rpki-client