$ rpki-client -vvf rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft File: FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft (raw, json) Hash identifier: 5o8KKEzp+6BtLliBOQB1CZ9fFHabxbCgujTdLbzErUg= Subject key identifier: 1B:A3:8F:61:DC:7D:DC:66:87:48:5F:95:3D:2E:B7:63:E5:13:DA:E5 Authority key identifier: 14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D Certificate issuer: /CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft Manifest number: 0129 Signing time: Sat 23 Aug 2025 03:55:40 +0000 Manifest this update: Sat 23 Aug 2025 03:55:40 +0000 Manifest next update: Sat 30 Aug 2025 03:55:40 +0000 Files and hashes: 1: FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl (hash: FvwnrQa+8LrE58dXNo2N7B6axH+EHzjvclErsjjW2jU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E343, serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Validity Not Before: Aug 23 03:55:40 2025 GMT Not After : Aug 30 03:55:40 2025 GMT Subject: CN=68a93bbc-9a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e9:33:35:65:ce:3b:50:db:ec:f5:10:c8:26: a7:7b:64:66:81:62:a1:c4:8f:bb:c7:9b:c8:f4:11: 4b:f1:eb:66:ab:b5:57:27:92:14:91:98:ad:f9:af: 56:e2:6f:3d:76:f6:c5:77:45:21:10:df:bc:61:14: c3:5b:88:96:f8:02:ef:ca:b7:e1:86:2a:64:1e:d2: 95:4e:0e:62:15:bc:43:8f:70:9d:51:20:ca:42:bb: 86:1f:53:cf:d4:90:ac:f9:1a:66:a3:cc:df:19:7d: 01:6f:94:b3:d7:08:8a:46:fb:91:14:3c:16:e2:cd: 24:85:04:5e:61:ea:50:33:a1:12:8b:1e:2d:52:e5: f6:3a:e1:14:fe:bf:92:ae:d4:14:34:95:6b:aa:7e: be:35:0b:5d:ba:bb:2a:b7:05:ac:36:dc:65:52:3d: f2:95:75:92:99:03:05:fd:d0:fd:11:95:d5:48:7f: 28:74:f5:68:00:99:50:bc:d7:fe:95:ca:85:89:48: ea:ad:4c:23:2f:4b:6c:53:a1:71:cc:b5:31:05:12: 5f:2b:66:85:3c:21:ef:ce:a6:29:75:a6:29:6d:36: c5:93:be:ca:46:d2:2e:dd:99:ef:08:39:fd:3d:a3: 6c:a7:58:6f:1e:98:db:43:b9:61:ac:c0:bc:55:19: 9c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A3:8F:61:DC:7D:DC:66:87:48:5F:95:3D:2E:B7:63:E5:13:DA:E5 X509v3 Authority Key Identifier: keyid:14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:8c:bd:44:68:5d:81:b5:8c:49:4f:3a:48:63:e9:ba:f7:99: ca:6f:77:15:d2:84:ac:3b:1e:d7:92:88:54:53:5d:54:6a:10: b5:8f:3c:8a:af:67:83:34:7b:2b:7e:42:bc:68:97:73:4e:b7: 3a:19:44:80:47:fc:82:7a:31:8d:52:3f:b2:0a:e2:fd:ce:0b: 7d:e2:7a:3a:ce:2c:6d:92:05:3c:ba:27:6c:08:96:0f:da:c9: 67:dc:2c:65:3e:05:e4:7f:e5:29:52:4a:a0:49:3d:85:79:a6: fc:d4:20:71:5a:49:a8:bd:79:40:65:f2:d9:cb:84:a0:de:fd: 50:be:53:e9:46:f4:94:85:e5:4e:70:9d:a6:a3:98:d4:65:d1: d1:df:d7:14:fc:19:ee:b9:33:7b:22:fa:a4:29:16:2e:92:bd: e6:d9:26:db:b5:21:fd:6c:0e:f9:d2:f5:3a:3a:89:2f:40:cc: d1:a1:6f:b7:16:b7:8e:24:d4:7b:fc:a7:15:ad:92:39:1d:d9: 8c:09:94:f4:e6:4d:86:34:2f:71:f1:96:15:12:ae:99:5b:43: 86:c6:75:50:1f:96:6d:f7:52:98:e0:ec:41:e7:91:5e:f4:6f: 61:7a:96:39:7f:70:f9:bf:52:01:f2:5d:a7:5e:55:22:72:97: 76:7b:97:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkUzNDMxMTAvBgNVBAUTKDE0RTU1RUMzNDI4RTNEMkJBNERDNzFDMTU5RTVGNjA2 MUYxNjNDNkQwHhcNMjUwODIzMDM1NTQwWhcNMjUwODMwMDM1NTQwWjAYMRYwFAYD VQQDEw02OGE5M2JiYy05YTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+kzNWXOO1Db7PUQyCane2RmgWKhxI+7x5vI9BFL8etmq7VXJ5IUkZit+a9W 4m89dvbFd0UhEN+8YRTDW4iW+ALvyrfhhipkHtKVTg5iFbxDj3CdUSDKQruGH1PP 1JCs+Rpmo8zfGX0Bb5Sz1wiKRvuRFDwW4s0khQReYepQM6ESix4tUuX2OuEU/r+S rtQUNJVrqn6+NQtdursqtwWsNtxlUj3ylXWSmQMF/dD9EZXVSH8odPVoAJlQvNf+ lcqFiUjqrUwjL0tsU6FxzLUxBRJfK2aFPCHvzqYpdaYpbTbFk77KRtIu3ZnvCDn9 PaNsp1hvHpjbQ7lhrMC8VRmcuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBujj2Hc fdxmh0hflT0ut2PlE9rlMB8GA1UdIwQYMBaAFBTlXsNCjj0rpNxxwVnl9gYfFjxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTM0My8zQUU3MzlBRUI5 N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BTdWszSEhCV2VYMkJoOFdQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZPVmV3MEtPUFN1azNISEJXZVgyQmg4V1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTM0My8zQUU3MzlBRUI5N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BT dWszSEhCV2VYMkJoOFdQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6jL1EaF2BtYxJTzpIY+m695nKb3cV0oSsOx7XkohUU11UahC1jzyK r2eDNHsrfkK8aJdzTrc6GUSAR/yCejGNUj+yCuL9zgt94no6zixtkgU8uidsCJYP 2sln3CxlPgXkf+UpUkqgST2Feab81CBxWkmovXlAZfLZy4Sg3v1QvlPpRvSUheVO cJ2mo5jUZdHR39cU/BnuuTN7IvqkKRYukr3m2SbbtSH9bA750vU6OokvQMzRoW+3 FreOJNR7/KcVrZI5HdmMCZT05k2GNC9x8ZYVEq6ZW0OGxnVQH5Zt91KY4OxB55Fe 9G9hepY5f3D5v1IB8l2nXlUicpd2e5f/ -----END CERTIFICATE-----Generated at Sat Aug 23 10:30:36 2025 by rpki-client