$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft File: FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json) Hash identifier: PqT/wHa5QWNb9qZK1jjXiYGBB6jb1tOotiNbIHR8IGQ= Subject key identifier: DA:AF:ED:95:D6:D1:A6:B9:0D:13:F3:92:50:F7:3C:6B:E6:20:17:BE Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft Manifest number: 39 Signing time: Sat 05 Jul 2025 07:54:46 +0000 Manifest this update: Sat 05 Jul 2025 07:54:45 +0000 Manifest next update: Sat 12 Jul 2025 07:54:45 +0000 Files and hashes: 1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: 6rwZOou5XLpOYRfzPqMzjyvwAE8JWnqvjNFWB95v1rQ=) 2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: IboM73984syJmuqfIfDKvmHL/HfnKXEhHqhYyaPXIGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Validity Not Before: Jul 5 07:54:45 2025 GMT Not After : Jul 12 07:54:45 2025 GMT Subject: CN=6868da46-03d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:51:52:b8:61:50:3d:85:7d:70:2e:df:04:e0: 9d:07:33:43:f2:b3:4d:15:86:1e:14:6a:0c:a8:3e: c1:f0:db:a1:21:fe:d9:53:95:9d:e1:fe:9a:e5:0b: fe:7c:90:c3:eb:4d:0f:1c:01:75:28:3c:98:e4:a3: e6:b4:f0:4b:6c:2c:7d:1a:cd:2f:85:71:5d:3d:70: 8a:5f:04:aa:38:a0:ec:36:87:31:30:d9:21:a9:cd: 04:39:02:02:e1:e4:71:65:32:68:8f:04:7d:b8:18: 5a:83:7b:1a:d2:4d:0f:03:df:15:ba:bb:3a:63:54: e8:ee:f9:33:c4:6c:8d:9f:be:cd:19:28:15:51:16: f7:80:f2:86:40:d5:20:8e:d3:24:88:3a:85:3d:2b: 97:e0:94:67:e9:ac:ae:29:b9:0a:cf:ba:91:5d:94: bd:31:84:88:42:7c:37:ca:56:f6:22:d3:19:ee:22: 2f:3d:2e:be:a8:b2:b7:f0:6e:00:03:a1:da:5d:a2: 48:99:43:6c:7a:62:e8:7f:ab:8c:c4:88:77:a9:8f: ad:8e:13:2f:9a:da:92:46:d2:3f:3d:0d:84:26:ba: 0f:20:49:00:b6:06:78:6e:6f:d3:3a:47:14:06:23: bf:48:b3:36:22:88:19:21:93:a6:76:9a:65:2e:cb: 0c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AF:ED:95:D6:D1:A6:B9:0D:13:F3:92:50:F7:3C:6B:E6:20:17:BE X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:4d:22:86:c6:09:f0:46:57:25:49:73:94:38:49:ca:b9:bb: 01:33:eb:8c:5d:12:00:8f:18:8f:ab:c9:25:53:b5:f9:38:00: 68:38:45:25:87:5e:08:ff:69:1e:82:7c:f1:c8:e7:94:42:90: 01:84:cf:fb:e0:ce:ec:bc:0f:3a:7c:73:36:28:84:88:12:30: 81:e3:f5:b6:29:18:ca:8a:39:45:05:98:e8:95:a1:b6:fb:43: f1:9c:91:77:ba:df:a5:10:eb:c6:30:ef:b4:53:ed:ac:d4:de: 5f:53:b7:bb:dd:4b:39:a1:0b:29:84:f0:9e:fe:e3:e9:9b:44: 03:0a:b9:a2:72:aa:82:96:6f:46:27:aa:69:37:d1:d1:86:89: 63:3f:fb:9d:d8:a9:79:bb:db:84:f0:0c:e7:2d:b9:57:a8:89: 7a:9a:31:ad:b8:68:34:6b:e7:9b:cd:0e:b5:00:6d:33:10:7c: 87:19:c7:fe:30:37:db:41:8f:5b:6c:77:f3:47:aa:5f:2e:53: 87:6b:b0:fa:53:29:af:07:96:be:57:39:71:bd:a1:00:9e:4b: b2:68:88:8a:3a:59:96:14:75:c1:5a:7a:1c:24:59:34:1d:0b: 77:ca:fc:26:69:e7:a9:93:61:8c:65:99:bb:3e:a0:a8:28:b0: b5:c2:6d:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoMTUzQzk4RDMzMTNDQzY0RURCOUFFMTVBQkEzQjU0M0U0 ODA0NTk5MDAeFw0yNTA3MDUwNzU0NDVaFw0yNTA3MTIwNzU0NDVaMBgxFjAUBgNV BAMTDTY4NjhkYTQ2LTAzZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlUVK4YVA9hX1wLt8E4J0HM0Pys00Vhh4UagyoPsHw26Eh/tlTlZ3h/prlC/58 kMPrTQ8cAXUoPJjko+a08EtsLH0azS+FcV09cIpfBKo4oOw2hzEw2SGpzQQ5AgLh 5HFlMmiPBH24GFqDexrSTQ8D3xW6uzpjVOju+TPEbI2fvs0ZKBVRFveA8oZA1SCO 0ySIOoU9K5fglGfprK4puQrPupFdlL0xhIhCfDfKVvYi0xnuIi89Lr6osrfwbgAD odpdokiZQ2x6Yuh/q4zEiHepj62OEy+a2pJG0j89DYQmug8gSQC2Bnhub9M6RxQG I79IszYiiBkhk6Z2mmUuywxNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2q/tldbR prkNE/OSUPc8a+YgF74wHwYDVR0jBBgwFoAUFTyY0zE8xk7bmuFaujtUPkgEWZAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzRCNkUwMEZDMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVda QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlR5WTB6RTh4azdibXVGYXVqdFVQa2dFV1pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzRCNkUwMEZDMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3 Ym11RmF1anRVUGtnRVdaQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACdNIobGCfBGVyVJc5Q4Scq5uwEz64xdEgCPGI+rySVTtfk4AGg4RSWH Xgj/aR6CfPHI55RCkAGEz/vgzuy8Dzp8czYohIgSMIHj9bYpGMqKOUUFmOiVobb7 Q/GckXe636UQ68Yw77RT7azU3l9Tt7vdSzmhCymE8J7+4+mbRAMKuaJyqoKWb0Yn qmk30dGGiWM/+53YqXm724TwDOctuVeoiXqaMa24aDRr55vNDrUAbTMQfIcZx/4w N9tBj1tsd/NHql8uU4drsPpTKa8Hlr5XOXG9oQCeS7JoiIo6WZYUdcFaehwkWTQd C3fK/CZp56mTYYxlmbs+oKgosLXCbZ0= -----END CERTIFICATE-----Generated at Sun Jul 6 10:47:21 2025 by rpki-client