$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft File: FKbKvDAuwePc503pi_VYoEK-rFY.mft (raw, json) Hash identifier: 5+HH5cCJX6AmAKVJxxQBsd6vwJISpnq3+8kXrrxP0fg= Subject key identifier: FA:8B:8A:9B:FA:9A:8F:04:65:DC:94:F2:EB:A6:C2:06:BB:4B:A3:88 Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 0876 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft Manifest number: 149D Signing time: Fri 04 Jul 2025 18:51:28 +0000 Manifest this update: Fri 04 Jul 2025 18:51:28 +0000 Manifest next update: Fri 11 Jul 2025 18:51:28 +0000 Files and hashes: 1: FKbKvDAuwePc503pi_VYoEK-rFY.crl (hash: hPpRCID2ICukwxcwCo5qMIJwkQmZ7xtT6H6HuIeGZKQ=) 2: DB78B2684BCD11EE8F976B7EC4F9AE02.roa (hash: LJOeHyhGq5PPmm1YdhMXahy2BlMK+uuqLBs6e3cOua4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2166 (0x876) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC, serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: Jul 4 18:51:28 2025 GMT Not After : Jul 11 18:51:28 2025 GMT Subject: CN=686822b0-708b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8c:d1:0b:11:87:e0:a5:65:70:1a:fe:77:e9: e1:d8:57:7e:80:9e:9d:5a:3c:1f:23:08:2c:76:05: 64:ad:a7:2b:0f:61:80:79:43:da:cb:db:32:e7:53: c0:f5:21:a7:36:44:ea:58:bb:11:e3:1b:2a:48:e5: a8:54:27:29:a9:a6:9d:5a:0f:62:ca:cb:2b:9b:6c: 96:83:78:9b:13:8d:4a:99:76:e8:ce:37:aa:98:2b: 48:e4:d3:00:5a:0d:8e:0c:19:1c:3a:9f:fa:27:13: ed:9a:bb:c0:00:93:d4:22:fa:08:96:28:e9:04:0f: 6f:46:b4:41:b7:97:e2:26:9f:ea:c8:30:26:f9:e5: ba:e0:11:41:29:af:94:5b:3d:3d:d1:6c:cb:f3:c5: 0f:c5:2c:8e:85:f3:be:7b:ed:b7:5d:9e:50:19:0d: a7:db:50:da:15:ce:1e:b1:8a:78:8f:de:28:ea:08: 1a:40:59:21:f6:ba:33:34:ba:22:49:1b:85:4c:81: 82:fe:77:89:b9:6e:2f:40:6a:a1:b2:ae:91:3f:a3: 8f:95:fe:b6:ec:3e:6e:8a:3d:4d:68:87:e7:6b:dc: 92:f2:d7:ae:78:13:cf:76:9c:88:32:de:fd:34:ee: a8:0e:bf:3a:75:6f:ce:44:76:38:6f:0d:8c:72:8b: f5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:8B:8A:9B:FA:9A:8F:04:65:DC:94:F2:EB:A6:C2:06:BB:4B:A3:88 X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:df:02:0b:0f:40:75:11:55:de:8a:de:08:77:49:16:92:b0: 11:d8:2d:64:04:9c:43:2b:29:a1:cc:c1:46:c4:3f:25:46:31: c1:e4:b9:c1:3c:c5:5e:8b:cb:b3:aa:30:a6:40:4d:e6:c2:9a: c1:42:2e:d7:fc:bf:90:f3:86:4b:d3:57:f2:e2:fe:f4:84:5d: 85:ba:51:2e:5f:d9:1c:db:5b:e5:59:48:f2:f2:b9:d0:e4:e9: f4:f0:79:af:f8:45:8c:10:0d:eb:6c:53:9e:9c:64:6a:6b:05: 1e:93:ed:0c:94:e7:80:21:55:5d:76:f1:8f:01:a1:c6:c9:89: 7e:e0:03:fc:e2:6d:ef:25:15:f9:e0:0e:d4:ae:93:48:9f:99: 78:90:9c:ac:d5:01:fa:ed:ed:36:52:4c:2d:04:48:76:6b:4e: 68:51:56:1c:ac:d4:34:29:e1:f0:ba:d6:cd:29:ed:1d:26:11: 8c:01:9e:01:6e:b9:0d:0a:81:71:d2:ef:6d:91:8f:b6:24:35: cb:04:95:bf:5b:ae:73:d5:8b:af:a6:51:4e:a7:62:4b:a0:e3: 4c:31:37:22:30:0c:05:39:65:cb:f1:b5:fa:11:0e:ee:bd:01: 86:0d:f0:ca:47:7f:45:89:f9:f4:31:4f:dc:95:ac:12:b8:f7: e5:f3:44:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjUwNzA0MTg1MTI4WhcNMjUwNzExMTg1MTI4WjAYMRYwFAYD VQQDEw02ODY4MjJiMC03MDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4zRCxGH4KVlcBr+d+nh2Fd+gJ6dWjwfIwgsdgVkracrD2GAeUPay9sy51PA 9SGnNkTqWLsR4xsqSOWoVCcpqaadWg9iyssrm2yWg3ibE41KmXbozjeqmCtI5NMA Wg2ODBkcOp/6JxPtmrvAAJPUIvoIlijpBA9vRrRBt5fiJp/qyDAm+eW64BFBKa+U Wz090WzL88UPxSyOhfO+e+23XZ5QGQ2n21DaFc4esYp4j94o6ggaQFkh9rozNLoi SRuFTIGC/neJuW4vQGqhsq6RP6OPlf627D5uij1NaIfna9yS8teueBPPdpyIMt79 NO6oDr86dW/ORHY4bw2Mcov16wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqLipv6 mo8EZdyU8uumwga7S6OIMB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDlEQy9BNUJCRkFBNjA5MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdl UGM1MDNwaV9WWW9FSy1yRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk3wILD0B1EVXeit4Id0kWkrAR2C1kBJxDKymhzMFGxD8lRjHB5LnB PMVei8uzqjCmQE3mwprBQi7X/L+Q84ZL01fy4v70hF2FulEuX9kc21vlWUjy8rnQ 5On08Hmv+EWMEA3rbFOenGRqawUek+0MlOeAIVVddvGPAaHGyYl+4AP84m3vJRX5 4A7UrpNIn5l4kJys1QH67e02UkwtBEh2a05oUVYcrNQ0KeHwutbNKe0dJhGMAZ4B brkNCoFx0u9tkY+2JDXLBJW/W65z1YuvplFOp2JLoONMMTciMAwFOWXL8bX6EQ7u vQGGDfDKR39Fifn0MU/clawSuPfl80T8 -----END CERTIFICATE-----Generated at Sat Jul 5 22:23:21 2025 by rpki-client