$ rpki-client -vvf rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.mft File: FSze4Zs7fRcbTKrQNbUymFTTbcI.mft (raw, json) Hash identifier: 7lXX6CFW5j1Tronj4XKKy5Z/+Tj3HDVzxAuu5f1WsCQ= Subject key identifier: 3F:A5:56:9E:55:B5:88:2D:3C:26:8A:2E:6C:68:76:62:33:E1:3A:41 Authority key identifier: 15:2C:DE:E1:9B:3B:7D:17:1B:4C:AA:D0:35:B5:32:98:54:D3:6D:C2 Certificate issuer: /CN=A91627F3/serialNumber=152CDEE19B3B7D171B4CAAD035B5329854D36DC2 Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSze4Zs7fRcbTKrQNbUymFTTbcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.mft Manifest number: 0409 Signing time: Sat 23 Aug 2025 00:41:13 +0000 Manifest this update: Sat 23 Aug 2025 00:41:12 +0000 Manifest next update: Sat 30 Aug 2025 00:41:12 +0000 Files and hashes: 1: FSze4Zs7fRcbTKrQNbUymFTTbcI.crl (hash: EwOoO7HTU2GgPnce+UaRMzDFdrrMUSHsMW1y/zzoMWw=) 2: FF9D74D8735F11F093707251C4F9AE02.roa (hash: x+4V7MgRD99pCQ1H4NPILV8k6b/KjY/7SvzSzH6UBOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.crl rsync://rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSze4Zs7fRcbTKrQNbUymFTTbcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627F3, serialNumber=152CDEE19B3B7D171B4CAAD035B5329854D36DC2 Validity Not Before: Aug 23 00:41:12 2025 GMT Not After : Aug 30 00:41:12 2025 GMT Subject: CN=68a90e29-73c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:64:4d:54:58:12:9b:a8:7e:a8:de:9e:31:f7: b9:6e:a3:a5:8d:b1:f0:ec:fa:f7:a5:79:d9:69:78: 35:8c:13:0a:5e:96:ec:f5:7c:ce:f0:5b:99:c9:33: c9:a6:d5:7e:5d:dd:e7:30:1a:c8:43:2d:11:19:dc: 59:a8:e3:ea:60:9a:f4:bb:15:ef:c5:df:59:3e:19: 6b:e6:a9:cb:bf:be:5b:fc:80:7d:2d:c2:cf:b4:c4: 05:84:45:83:ca:e2:3d:65:90:18:10:74:6e:6f:a1: a5:9e:d2:56:9a:d6:46:6b:ef:79:5b:95:75:27:ee: 59:89:a1:3a:8b:59:2b:83:9f:0d:d1:27:58:de:ac: 53:76:ae:13:9a:cd:09:3a:5b:4f:da:e1:ff:74:63: 71:9b:3b:09:00:81:0b:07:f7:96:64:8c:09:0b:e1: 1b:98:12:80:38:25:bc:00:e9:80:13:36:a9:7a:67: 99:40:2d:36:66:d9:f4:1e:b2:1f:ce:50:6c:00:3b: 23:da:98:81:52:f6:4e:48:90:67:63:45:12:58:13: 4d:3f:eb:f0:db:90:7d:67:26:b4:35:5a:7e:52:60: d5:24:d0:cb:e2:0b:d6:7b:b1:da:8a:ca:09:06:48: 5e:5c:25:25:31:3d:c4:02:bd:06:e9:66:16:52:8e: 44:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A5:56:9E:55:B5:88:2D:3C:26:8A:2E:6C:68:76:62:33:E1:3A:41 X509v3 Authority Key Identifier: keyid:15:2C:DE:E1:9B:3B:7D:17:1B:4C:AA:D0:35:B5:32:98:54:D3:6D:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSze4Zs7fRcbTKrQNbUymFTTbcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627F3/779F6E9283F811EC816B0367C4F9AE02/FSze4Zs7fRcbTKrQNbUymFTTbcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:f5:99:64:fd:1c:83:f3:c9:e2:d3:88:80:a7:40:37:ba:d6: bb:e0:02:f8:c4:0b:7e:7b:c9:17:c7:28:51:fc:35:ca:a3:fa: ad:38:cc:8b:c3:dd:a5:7e:42:53:ed:14:ab:08:22:ec:13:6c: 67:2a:90:7c:60:cc:f1:aa:34:63:35:fd:d6:f7:04:d9:0e:bf: d0:52:f7:44:c5:1f:8a:70:56:d1:16:f9:35:f7:ec:a3:b4:fe: 8a:4e:72:80:67:be:db:14:db:4a:d6:43:f3:7e:ea:23:46:28: 84:79:d8:90:bf:86:3a:62:87:ab:ba:5c:91:a5:94:79:3b:a5: 7d:50:01:0b:5c:64:62:df:93:86:57:da:43:26:00:6e:dd:08: 07:cf:22:e2:59:09:e3:30:f7:d2:b1:a9:8e:d0:af:df:2b:e1: 41:4c:8a:af:f2:b6:9d:00:19:97:09:b9:8b:c5:25:fa:e4:96: 1a:96:47:36:87:64:6f:71:5f:d0:0d:e2:d4:88:9a:bd:cb:55: 9b:6d:29:06:f7:47:a0:24:bb:29:03:e4:8a:dc:68:48:4d:a0: 1a:66:9a:32:1f:02:bf:04:b2:dc:ae:23:98:db:60:7a:b3:70: 11:3b:4b:1a:d5:f6:6d:35:24:20:5d:d7:35:86:52:5e:f0:c1: 45:f9:31:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3RjMxMTAvBgNVBAUTKDE1MkNERUUxOUIzQjdEMTcxQjRDQUFEMDM1QjUzMjk4 NTREMzZEQzIwHhcNMjUwODIzMDA0MTEyWhcNMjUwODMwMDA0MTEyWjAYMRYwFAYD VQQDEw02OGE5MGUyOS03M2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmRNVFgSm6h+qN6eMfe5bqOljbHw7Pr3pXnZaXg1jBMKXpbs9XzO8FuZyTPJ ptV+Xd3nMBrIQy0RGdxZqOPqYJr0uxXvxd9ZPhlr5qnLv75b/IB9LcLPtMQFhEWD yuI9ZZAYEHRub6GlntJWmtZGa+95W5V1J+5ZiaE6i1krg58N0SdY3qxTdq4Tms0J OltP2uH/dGNxmzsJAIELB/eWZIwJC+EbmBKAOCW8AOmAEzapemeZQC02Ztn0HrIf zlBsADsj2piBUvZOSJBnY0USWBNNP+vw25B9Zya0NVp+UmDVJNDL4gvWe7HaisoJ BkheXCUlMT3EAr0G6WYWUo5EbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+lVp5V tYgtPCaKLmxodmIz4TpBMB8GA1UdIwQYMBaAFBUs3uGbO30XG0yq0DW1MphU023C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdGMy83NzlGNkU5Mjgz RjgxMUVDODE2QjAzNjdDNEY5QUUwMi9GU3plNFpzN2ZSY2JUS3JRTmJVeW1GVFRi Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZTemU0WnM3ZlJjYlRLclFOYlV5bUZUVGJjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdGMy83NzlGNkU5MjgzRjgxMUVDODE2QjAzNjdDNEY5QUUwMi9GU3plNFpzN2ZS Y2JUS3JRTmJVeW1GVFRiY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD9Zlk/RyD88ni04iAp0A3uta74AL4xAt+e8kXxyhR/DXKo/qtOMyL w92lfkJT7RSrCCLsE2xnKpB8YMzxqjRjNf3W9wTZDr/QUvdExR+KcFbRFvk19+yj tP6KTnKAZ77bFNtK1kPzfuojRiiEediQv4Y6YoerulyRpZR5O6V9UAELXGRi35OG V9pDJgBu3QgHzyLiWQnjMPfSsamO0K/fK+FBTIqv8radABmXCbmLxSX65JYalkc2 h2RvcV/QDeLUiJq9y1WbbSkG90egJLspA+SK3GhITaAaZpoyHwK/BLLcriOY22B6 s3ARO0sa1fZtNSQgXdc1hlJe8MFF+THR -----END CERTIFICATE-----Generated at Sun Aug 24 11:02:59 2025 by rpki-client