$ rpki-client -vvf rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.mft File: FSze4Zs7fRcbTKrQNbUymFTTbcI.mft (raw, json) Hash identifier: SXbGnm4l8YRPBQqvHIm1wAd8TAQ15UmOwgWMh8H18u0= Subject key identifier: 6E:3F:7E:F3:B3:9A:EC:0A:B4:5D:E4:46:42:8F:8C:44:7B:97:9B:43 Authority key identifier: 15:2C:DE:E1:9B:3B:7D:17:1B:4C:AA:D0:35:B5:32:98:54:D3:6D:C2 Certificate issuer: /CN=A91627F3/serialNumber=152CDEE19B3B7D171B4CAAD035B5329854D36DC2 Certificate serial: 03ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSze4Zs7fRcbTKrQNbUymFTTbcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.mft Manifest number: 03E8 Signing time: Tue 01 Jul 2025 01:07:08 +0000 Manifest this update: Tue 01 Jul 2025 01:07:08 +0000 Manifest next update: Tue 08 Jul 2025 01:07:08 +0000 Files and hashes: 1: FSze4Zs7fRcbTKrQNbUymFTTbcI.crl (hash: q5ZkDe40yvJw78aRxI+yKZAA7+XbD/5b00BD9Fdhldo=) 2: 6F51887283FA11EC9C033067C4F9AE02.roa (hash: XwBfTGBdHYip+l3Cww7cDDqUdig6aiSXjJ7XX34v/4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.crl rsync://rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSze4Zs7fRcbTKrQNbUymFTTbcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1005 (0x3ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627F3, serialNumber=152CDEE19B3B7D171B4CAAD035B5329854D36DC2 Validity Not Before: Jul 1 01:07:08 2025 GMT Not After : Jul 8 01:07:08 2025 GMT Subject: CN=686334bc-05a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b2:b5:22:b6:3e:a4:2f:18:8c:a0:66:6d:d7: d1:af:00:81:48:cd:d2:cc:c0:5b:84:19:45:09:4a: 2c:42:ba:45:fc:d7:2d:a5:53:5a:04:c1:bf:2b:33: 5c:e6:36:71:45:78:47:a3:c4:57:e3:b3:a2:91:63: a4:36:1d:21:45:0e:93:25:d6:1c:ed:21:48:ca:47: 7d:6e:45:7d:7a:2c:5a:3d:1c:a3:06:2a:26:85:98: 8f:27:57:61:59:25:43:93:af:05:d5:3b:a6:3e:c1: 1c:32:68:33:e7:f7:45:0b:fd:63:9e:bc:05:91:85: f5:ec:3c:02:ac:c0:32:fb:f7:93:19:2b:16:91:16: 35:9d:37:51:61:a8:f1:dc:da:d1:8d:15:35:5b:4c: 54:ba:11:08:84:5d:c3:e2:fd:92:35:2b:1e:e5:ca: f1:eb:41:38:f7:af:46:77:72:90:c9:8e:7f:c6:27: 80:b4:e1:15:0a:05:ed:48:4c:fe:27:27:05:39:b6: 6c:af:41:36:20:53:58:88:e9:43:7d:75:2c:82:7c: 9a:2a:f9:70:6e:96:d1:3f:8b:2b:15:38:2c:49:a7: 6c:3e:2c:4c:57:c0:93:aa:21:d4:64:9b:10:00:dc: ce:8a:20:ab:52:e9:c3:18:24:ef:98:06:e9:0d:6e: 2f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:3F:7E:F3:B3:9A:EC:0A:B4:5D:E4:46:42:8F:8C:44:7B:97:9B:43 X509v3 Authority Key Identifier: keyid:15:2C:DE:E1:9B:3B:7D:17:1B:4C:AA:D0:35:B5:32:98:54:D3:6D:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSze4Zs7fRcbTKrQNbUymFTTbcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:23:59:2f:92:eb:f8:c1:28:82:77:ee:59:c6:19:34:a2:c2: b6:df:89:be:8a:ca:25:e7:d5:b9:82:6f:46:c7:2c:df:1f:69: a5:2b:d8:40:ed:ba:56:29:a9:b0:18:78:a7:ca:f0:a4:c8:2f: ae:e7:9c:17:dd:70:2e:46:29:2f:79:84:40:68:6e:94:4d:c6: 01:a3:b8:df:1b:6c:dd:e2:78:b0:85:26:ec:27:dc:24:a3:26: 4d:ef:df:ea:dc:e7:e5:9b:26:4d:10:61:09:a3:cb:d1:1d:9e: 44:4c:59:53:a7:da:e9:b5:61:d0:e3:7d:26:70:cb:58:7e:4d: 8c:8d:60:9f:6f:7a:0a:ac:b4:d8:da:be:46:a1:e1:39:0c:f1: 14:a3:7d:33:45:11:00:d1:0a:7e:53:3b:c4:c3:51:74:51:91: b8:5e:29:bc:6b:11:a6:11:f4:44:83:a1:cb:ce:b0:86:dc:58: 78:b7:45:9a:fd:f0:fe:fb:97:b6:26:49:c0:74:93:10:76:da: 49:0c:9c:56:64:c7:d2:85:27:d0:d7:12:87:2c:aa:84:df:b9: 00:c5:2d:2e:1a:bb:37:52:b3:de:0b:70:99:d4:17:e2:c4:ed: d4:14:48:6f:09:f9:95:37:d3:86:67:d4:dd:51:3f:24:44:4e: d1:e5:f0:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3RjMxMTAvBgNVBAUTKDE1MkNERUUxOUIzQjdEMTcxQjRDQUFEMDM1QjUzMjk4 NTREMzZEQzIwHhcNMjUwNzAxMDEwNzA4WhcNMjUwNzA4MDEwNzA4WjAYMRYwFAYD VQQDEw02ODYzMzRiYy0wNWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7K1IrY+pC8YjKBmbdfRrwCBSM3SzMBbhBlFCUosQrpF/NctpVNaBMG/KzNc 5jZxRXhHo8RX47OikWOkNh0hRQ6TJdYc7SFIykd9bkV9eixaPRyjBiomhZiPJ1dh WSVDk68F1TumPsEcMmgz5/dFC/1jnrwFkYX17DwCrMAy+/eTGSsWkRY1nTdRYajx 3NrRjRU1W0xUuhEIhF3D4v2SNSse5crx60E4969Gd3KQyY5/xieAtOEVCgXtSEz+ JycFObZsr0E2IFNYiOlDfXUsgnyaKvlwbpbRP4srFTgsSadsPixMV8CTqiHUZJsQ ANzOiiCrUunDGCTvmAbpDW4vowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4/fvOz muwKtF3kRkKPjER7l5tDMB8GA1UdIwQYMBaAFBUs3uGbO30XG0yq0DW1MphU023C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdGMy83NzlGNkU5Mjgz RjgxMUVDODE2QjAzNjdDNEY5QUUwMi9GU3plNFpzN2ZSY2JUS3JRTmJVeW1GVFRi Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZTemU0WnM3ZlJjYlRLclFOYlV5bUZUVGJjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdGMy83NzlGNkU5MjgzRjgxMUVDODE2QjAzNjdDNEY5QUUwMi9GU3plNFpzN2ZS Y2JUS3JRTmJVeW1GVFRiY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADI1kvkuv4wSiCd+5Zxhk0osK234m+isol59W5gm9GxyzfH2mlK9hA 7bpWKamwGHinyvCkyC+u55wX3XAuRikveYRAaG6UTcYBo7jfG2zd4niwhSbsJ9wk oyZN79/q3OflmyZNEGEJo8vRHZ5ETFlTp9rptWHQ430mcMtYfk2MjWCfb3oKrLTY 2r5GoeE5DPEUo30zRREA0Qp+UzvEw1F0UZG4Xim8axGmEfREg6HLzrCG3Fh4t0Wa /fD++5e2JknAdJMQdtpJDJxWZMfShSfQ1xKHLKqE37kAxS0uGrs3UrPeC3CZ1Bfi xO3UFEhvCfmVN9OGZ9TdUT8kRE7R5fCU -----END CERTIFICATE-----Generated at Thu Jul 3 00:34:38 2025 by rpki-client