$ rpki-client -vvf rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft File: fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft (raw, json) Hash identifier: xXeDzngunO267H0B+QDZFjNkdhIS9DJkifayTk1HdzM= Subject key identifier: 7F:B9:A6:88:A9:37:F6:BC:51:B3:A2:92:15:CC:B1:75:BD:6D:E5:41 Authority key identifier: 7E:65:C5:8F:A3:43:A1:0C:53:43:50:AB:49:7F:D0:90:CE:EF:BF:BB Certificate issuer: /CN=A91380B5/serialNumber=7E65C58FA343A10C534350AB497FD090CEEFBFBB Certificate serial: 034B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft Manifest number: 033D Signing time: Thu 03 Jul 2025 01:26:43 +0000 Manifest this update: Thu 03 Jul 2025 01:26:43 +0000 Manifest next update: Thu 10 Jul 2025 01:26:43 +0000 Files and hashes: 1: fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl (hash: aQA0CcVs4LGdJ/KZUpPUx5qRprgdCzl7vXRyD/WrrLI=) 2: 121437B45ABB11EF8C696E58C4F9AE02.roa (hash: Sr1dJPYf4TMlmdyHmkZ3DvPV6/M5+cUFUvIXCjxQ2mk=) 3: 245B417CADD411EE95FF6C6DC4F9AE02.roa (hash: bivJnwcabrf/iwZuZLc+oQKC0osH7DqM8uD5h0VU2hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 843 (0x34b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91380B5, serialNumber=7E65C58FA343A10C534350AB497FD090CEEFBFBB Validity Not Before: Jul 3 01:26:43 2025 GMT Not After : Jul 10 01:26:43 2025 GMT Subject: CN=6865dc53-a940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:57:d8:6e:8c:48:7d:0b:b0:f4:a9:ff:db:5f: dc:a4:c6:31:f8:b5:58:49:b1:4b:54:2d:f6:1b:8d: 47:c1:b6:e4:63:9d:0b:f2:25:f3:43:39:87:5f:5e: 4e:35:5c:51:9b:0d:bb:e4:15:0e:7d:64:f3:54:7d: 5a:43:0f:01:49:2e:e5:b3:98:74:b3:40:b7:4f:81: 6c:3a:dc:b3:e6:c4:5f:d7:49:60:eb:d3:40:87:b5: bb:21:28:b4:ad:29:5a:c6:e6:fe:d0:3a:ad:ba:48: fd:20:46:ae:4c:c0:1e:b3:d8:7e:8a:d9:8a:82:30: ef:18:f8:fe:97:5a:0d:94:f4:2c:75:99:36:cd:0a: b8:f8:ef:33:34:0c:ad:6c:10:8e:99:be:38:39:ec: 88:a3:5d:a3:05:4b:87:68:9c:ae:b9:bb:51:92:7c: 0d:4a:ae:7f:68:94:b5:d0:9c:cb:cb:3a:a7:5b:c8: 37:07:f0:32:88:12:8b:33:54:a2:05:4a:1b:63:70: b7:2e:fd:db:ec:41:28:4d:23:15:ad:2d:e6:51:4a: 27:99:15:28:60:61:11:48:e4:56:7f:45:24:8a:7f: c3:a9:2b:a0:6c:48:7b:33:b8:e1:fc:9c:44:38:26: 2c:12:4c:c4:55:d0:da:03:eb:ca:d4:f4:06:24:1c: 23:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:B9:A6:88:A9:37:F6:BC:51:B3:A2:92:15:CC:B1:75:BD:6D:E5:41 X509v3 Authority Key Identifier: keyid:7E:65:C5:8F:A3:43:A1:0C:53:43:50:AB:49:7F:D0:90:CE:EF:BF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:26:b4:e2:9a:e8:55:35:40:c6:1e:ca:9b:54:79:80:2a:93: d2:9b:d7:6b:77:ae:e1:89:48:fb:54:4e:a9:3d:8b:e1:71:42: 8d:aa:80:30:0d:59:e0:70:b2:39:9e:20:a6:0e:f1:34:f7:c3: 03:c3:aa:47:15:e6:45:ee:9d:9e:73:eb:1f:96:7b:55:f1:7a: 4a:b1:f9:71:c5:91:0e:d4:39:02:05:7c:95:5f:43:88:d5:91: 76:1b:8f:30:03:a8:55:63:e5:47:67:d2:99:f0:a4:03:ea:e3: 82:be:cb:0f:14:06:de:4d:1d:2b:12:c2:fc:e2:f7:fb:d7:b9: 5e:05:d3:8c:87:1b:e4:c9:3d:e2:de:cb:1c:97:f6:15:de:f0: e8:6d:b2:fa:d5:7f:8b:8f:70:01:04:7e:60:6d:7c:4c:8f:ba: 4b:1a:14:7f:aa:67:51:e0:95:8e:b2:73:d5:b5:2a:83:c3:21: d6:a3:95:76:ec:66:c7:99:f6:63:ac:f5:25:04:3e:d7:48:f6: 4b:30:e1:fe:18:db:45:29:af:7b:82:20:0a:c2:b3:6b:b1:c3: ea:b3:32:f4:39:bd:c4:a2:45:fb:e6:38:46:df:b6:a0:33:b0: 4b:09:6a:f5:83:7e:ba:8e:4a:cc:cf:8a:59:b3:8c:5d:48:1e: 8b:83:c6:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgwQjUxMTAvBgNVBAUTKDdFNjVDNThGQTM0M0ExMEM1MzQzNTBBQjQ5N0ZEMDkw Q0VFRkJGQkIwHhcNMjUwNzAzMDEyNjQzWhcNMjUwNzEwMDEyNjQzWjAYMRYwFAYD VQQDEw02ODY1ZGM1My1hOTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVfYboxIfQuw9Kn/21/cpMYx+LVYSbFLVC32G41HwbbkY50L8iXzQzmHX15O NVxRmw275BUOfWTzVH1aQw8BSS7ls5h0s0C3T4FsOtyz5sRf10lg69NAh7W7ISi0 rSlaxub+0Dqtukj9IEauTMAes9h+itmKgjDvGPj+l1oNlPQsdZk2zQq4+O8zNAyt bBCOmb44OeyIo12jBUuHaJyuubtRknwNSq5/aJS10JzLyzqnW8g3B/AyiBKLM1Si BUobY3C3Lv3b7EEoTSMVrS3mUUonmRUoYGERSORWf0Ukin/DqSugbEh7M7jh/JxE OCYsEkzEVdDaA+vK1PQGJBwjBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+5poip N/a8UbOikhXMsXW9beVBMB8GA1UdIwQYMBaAFH5lxY+jQ6EMU0NQq0l/0JDO77+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODBCNS82OTQ2M0QwNENB M0QxMUVDOTFBQzQyNkRDNEY5QUUwMi9mbVhGajZORG9ReFRRMUNyU1hfUWtNN3Z2 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZtWEZqNk5Eb1F4VFExQ3JTWF9Ra003dnY3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODBCNS82OTQ2M0QwNENBM0QxMUVDOTFBQzQyNkRDNEY5QUUwMi9mbVhGajZORG9R eFRRMUNyU1hfUWtNN3Z2N3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHJrTimuhVNUDGHsqbVHmAKpPSm9drd67hiUj7VE6pPYvhcUKNqoAw DVngcLI5niCmDvE098MDw6pHFeZF7p2ec+sflntV8XpKsflxxZEO1DkCBXyVX0OI 1ZF2G48wA6hVY+VHZ9KZ8KQD6uOCvssPFAbeTR0rEsL84vf717leBdOMhxvkyT3i 3sscl/YV3vDobbL61X+Lj3ABBH5gbXxMj7pLGhR/qmdR4JWOsnPVtSqDwyHWo5V2 7GbHmfZjrPUlBD7XSPZLMOH+GNtFKa97giAKwrNrscPqszL0Ob3EokX75jhG37ag M7BLCWr1g366jkrMz4pZs4xdSB6Lg8bv -----END CERTIFICATE-----Generated at Thu Jul 3 10:14:22 2025 by rpki-client