$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft File: FKbKvDAuwePc503pi_VYoEK-rFY.mft (raw, json) Hash identifier: cJAjbe2k3xjaDb9C9dKkcM0VIyOO0wLJBgfPBH6e4UA= Subject key identifier: 5A:5E:A8:A3:A2:C5:73:2A:9A:6C:64:E4:D3:F7:A6:D9:CE:DA:DB:46 Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 088F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft Manifest number: 14CF Signing time: Fri 22 Aug 2025 18:37:15 +0000 Manifest this update: Fri 22 Aug 2025 18:37:14 +0000 Manifest next update: Fri 29 Aug 2025 18:37:14 +0000 Files and hashes: 1: FKbKvDAuwePc503pi_VYoEK-rFY.crl (hash: QaQ8jTq3tL5TdHtANSmSi10dcfMgB0Taihf/K/HXtTc=) 2: DB78B2684BCD11EE8F976B7EC4F9AE02.roa (hash: LJOeHyhGq5PPmm1YdhMXahy2BlMK+uuqLBs6e3cOua4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2191 (0x88f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC, serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: Aug 22 18:37:14 2025 GMT Not After : Aug 29 18:37:14 2025 GMT Subject: CN=68a8b8db-4d1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:34:0c:8a:8a:b8:e1:e9:c1:fe:01:06:72: a1:27:d0:73:02:6d:ee:a1:79:fc:a6:60:6b:d0:4a: 20:33:30:9f:0d:84:ae:e8:45:2b:f6:7c:ba:28:77: a7:ff:e2:84:a8:0a:31:98:89:73:29:27:50:65:54: 27:d5:7a:d9:d2:a4:a5:64:94:50:e1:0b:b7:28:b4: 90:a4:1d:a1:7e:67:5e:54:5c:08:0d:10:92:1f:8a: fe:98:c7:82:f7:74:75:62:0c:03:16:32:f4:ab:6a: 45:94:18:1a:e2:e8:dc:30:51:ad:0d:c4:fb:8f:f5: 10:b2:35:a2:06:f9:79:e9:57:3a:c2:9f:63:77:79: 7f:28:ac:65:db:fc:3a:56:06:d4:58:c5:7e:da:1f: ca:d7:a7:88:9b:1c:d4:1e:ea:9d:da:08:70:5e:b7: c2:a6:2b:d3:9f:62:b0:95:ef:94:a7:db:df:71:90: 1e:d2:6e:1c:30:b3:f4:5f:cb:5a:ab:91:47:d9:dc: a6:0f:72:a0:fa:48:33:11:b5:e6:2d:f0:3a:9b:b4: f4:a2:00:48:1e:0c:ff:2b:ae:e5:14:d8:56:9b:a0: 66:f9:ec:3e:53:cf:66:f3:e0:8d:6c:6e:ca:06:48: ad:30:bb:2a:49:bb:a1:55:8d:da:4e:25:4f:81:59: 14:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:5E:A8:A3:A2:C5:73:2A:9A:6C:64:E4:D3:F7:A6:D9:CE:DA:DB:46 X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:4d:73:60:b4:65:6c:3f:98:c7:d7:33:a1:6c:6f:e7:f8:ab: de:05:6f:ae:55:41:50:45:13:d7:8d:32:3f:80:f7:a8:e3:d8: b2:eb:47:8d:57:5c:4c:ed:7e:ef:e6:ac:e1:e4:48:33:f0:e0: 6f:cb:17:95:a0:08:91:3d:f2:b4:bc:d2:a6:d2:2a:5a:06:05: b0:85:d7:4f:45:96:44:f4:fc:03:ac:f5:5d:e1:bb:41:ba:89: 60:6e:f5:0e:e2:40:38:7d:ab:e9:36:34:58:e4:47:59:48:56: 86:6f:51:e1:58:f4:fb:e7:3f:fa:5d:a4:b2:dc:40:6f:01:51: e6:04:bc:2b:e3:56:ba:7e:bf:cd:b2:3a:c0:87:bb:55:fa:f6: 58:7d:0a:44:c1:6a:52:89:5e:52:41:9c:73:6a:c2:ae:37:f6: 67:92:02:85:f5:78:f5:e5:d7:e8:79:59:bf:7e:a0:32:ff:76: 77:c4:07:7c:08:16:e7:86:b8:78:d3:f4:4e:12:80:a9:2d:0b: 32:57:79:cd:71:b4:78:2b:34:34:3c:8c:b5:f8:e4:6f:37:ef: 31:a1:a7:dc:ee:ce:18:13:90:c5:8f:d7:e2:df:4f:e8:73:a3: 91:4c:ca:d1:c1:b5:66:eb:27:65:50:df:c8:3e:0a:12:b4:5b: 26:62:5f:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjUwODIyMTgzNzE0WhcNMjUwODI5MTgzNzE0WjAYMRYwFAYD VQQDEw02OGE4YjhkYi00ZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyu40DIqKuOHpwf4BBnKhJ9BzAm3uoXn8pmBr0EogMzCfDYSu6EUr9ny6KHen /+KEqAoxmIlzKSdQZVQn1XrZ0qSlZJRQ4Qu3KLSQpB2hfmdeVFwIDRCSH4r+mMeC 93R1YgwDFjL0q2pFlBga4ujcMFGtDcT7j/UQsjWiBvl56Vc6wp9jd3l/KKxl2/w6 VgbUWMV+2h/K16eImxzUHuqd2ghwXrfCpivTn2Kwle+Up9vfcZAe0m4cMLP0X8ta q5FH2dymD3Kg+kgzEbXmLfA6m7T0ogBIHgz/K67lFNhWm6Bm+ew+U89m8+CNbG7K BkitMLsqSbuhVY3aTiVPgVkU1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpeqKOi xXMqmmxk5NP3ptnO2ttGMB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDlEQy9BNUJCRkFBNjA5MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdl UGM1MDNwaV9WWW9FSy1yRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQTXNgtGVsP5jH1zOhbG/n+KveBW+uVUFQRRPXjTI/gPeo49iy60eN V1xM7X7v5qzh5Egz8OBvyxeVoAiRPfK0vNKm0ipaBgWwhddPRZZE9PwDrPVd4btB uolgbvUO4kA4favpNjRY5EdZSFaGb1HhWPT75z/6XaSy3EBvAVHmBLwr41a6fr/N sjrAh7tV+vZYfQpEwWpSiV5SQZxzasKuN/ZnkgKF9Xj15dfoeVm/fqAy/3Z3xAd8 CBbnhrh40/ROEoCpLQsyV3nNcbR4KzQ0PIy1+ORvN+8xoafc7s4YE5DFj9fi30/o c6ORTMrRwbVm6ydlUN/IPgoStFsmYl/0 -----END CERTIFICATE-----Generated at Sat Aug 23 19:41:48 2025 by rpki-client