$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft File: FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft (raw, json) Hash identifier: QYO6JwsMN9zvImmHdhbDkbdjOn+4s17QrzAJCSZVzwE= Subject key identifier: FE:6A:41:D6:B3:C8:A8:C5:AA:CC:13:87:FC:CA:A5:28:74:9E:F1:E2 Authority key identifier: 14:47:D4:4B:49:F7:90:6D:C6:37:31:A5:D9:8D:85:2E:C1:0B:77:45 Certificate issuer: /CN=A9173CF2/serialNumber=1447D44B49F7906DC63731A5D98D852EC10B7745 Certificate serial: 0676 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft Manifest number: 0671 Signing time: Wed 02 Jul 2025 22:41:38 +0000 Manifest this update: Wed 02 Jul 2025 22:41:38 +0000 Manifest next update: Wed 09 Jul 2025 22:41:38 +0000 Files and hashes: 1: FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl (hash: CtLQvjBHjvqN/f11sQ2N3ysOGbq/6/CUoZP3dOtmXSo=) 2: D9E7CFF681EF11EBAEE9D17AC4F9AE02.roa (hash: ZbglDjurwe6qJhjv9yc/alHsSUDwI/+N2E8sYgdY/Mk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1654 (0x676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CF2, serialNumber=1447D44B49F7906DC63731A5D98D852EC10B7745 Validity Not Before: Jul 2 22:41:38 2025 GMT Not After : Jul 9 22:41:38 2025 GMT Subject: CN=6865b5a2-6319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a5:1d:73:b4:d3:53:c6:67:0f:90:17:f4:59: 91:2b:eb:6b:dd:dc:4e:a7:f6:2d:4f:e6:bc:14:c3: b8:d0:4c:f5:a7:0e:c8:2d:35:45:6e:fd:65:7a:ea: dc:4b:54:e0:64:b7:81:dd:9e:87:e8:34:f5:3b:8e: 60:c6:10:85:54:da:82:c0:ad:1b:63:1c:3a:58:da: e4:08:42:13:2e:80:27:41:d5:bb:85:61:c3:41:35: fe:aa:34:fb:73:a7:97:21:39:7d:17:36:a2:e7:57: b0:0d:54:86:ff:a0:d2:3a:01:f5:e8:bc:db:d3:b7: 6b:c0:89:62:ba:6f:53:ed:89:82:8d:6d:72:a0:81: 6f:6b:d5:09:70:b9:11:ea:37:5b:12:f3:ab:8a:b0: 57:7d:cd:42:99:68:d8:d3:01:b6:45:20:e9:44:11: fa:d2:56:93:04:21:f6:b4:38:09:be:4e:cf:45:bf: 00:69:35:7a:3a:53:27:cd:fc:76:54:78:70:da:cc: bb:0a:10:8c:46:41:b7:04:93:ae:d7:13:12:d6:85: f2:6c:91:88:96:f9:ea:4e:54:63:01:21:eb:1e:39: d3:84:36:04:10:c9:24:54:0e:6f:6c:c2:87:b2:02: 1a:17:78:05:6c:6a:38:b8:2f:6d:17:cb:45:f3:af: 3c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6A:41:D6:B3:C8:A8:C5:AA:CC:13:87:FC:CA:A5:28:74:9E:F1:E2 X509v3 Authority Key Identifier: keyid:14:47:D4:4B:49:F7:90:6D:C6:37:31:A5:D9:8D:85:2E:C1:0B:77:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:24:74:ab:d8:3d:fc:a5:f0:de:00:60:5f:f5:e9:76:de:ba: c1:a7:1f:73:94:42:3e:e7:cc:5b:ce:d9:72:41:94:c5:2b:bb: 5a:47:0f:62:a7:aa:f5:ab:aa:bf:d3:90:9e:18:46:48:6e:2b: 77:69:9e:23:69:e0:11:c1:da:c8:c2:c9:d7:0b:a8:c5:f6:f3: 36:70:dc:7d:22:c3:00:ba:5d:3a:c2:ff:91:7c:36:9a:82:68: 46:e1:4f:d3:01:ed:c5:20:af:27:4e:94:4c:3d:bf:60:8f:f6: fa:d2:48:20:f1:bc:57:e1:27:a0:74:5d:58:96:d6:9e:60:4e: e3:6f:96:11:ea:48:e8:47:c0:d2:3a:1d:ef:bc:3d:96:01:78: 45:47:bd:fc:45:cd:63:36:91:70:d7:3e:ba:c1:b6:65:c7:5f: 91:64:11:52:04:43:fa:a1:39:bc:ba:9e:86:a9:01:8e:53:a6: d5:b0:0c:92:01:34:02:b3:8b:f4:41:78:04:16:7e:7d:e9:65: 72:1a:dc:f7:18:43:f8:f4:6b:75:97:54:f5:b9:ad:b8:e5:37: 65:bd:7d:68:69:d5:e2:2e:e1:8d:25:37:5b:de:e5:ff:25:96: 93:3e:3d:81:c1:71:bb:21:a7:91:84:d8:2e:df:4d:6e:9e:1a: 37:3f:b3:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRjIxMTAvBgNVBAUTKDE0NDdENDRCNDlGNzkwNkRDNjM3MzFBNUQ5OEQ4NTJF QzEwQjc3NDUwHhcNMjUwNzAyMjI0MTM4WhcNMjUwNzA5MjI0MTM4WjAYMRYwFAYD VQQDEw02ODY1YjVhMi02MzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6Udc7TTU8ZnD5AX9FmRK+tr3dxOp/YtT+a8FMO40Ez1pw7ILTVFbv1leurc S1TgZLeB3Z6H6DT1O45gxhCFVNqCwK0bYxw6WNrkCEITLoAnQdW7hWHDQTX+qjT7 c6eXITl9Fzai51ewDVSG/6DSOgH16Lzb07drwIlium9T7YmCjW1yoIFva9UJcLkR 6jdbEvOrirBXfc1CmWjY0wG2RSDpRBH60laTBCH2tDgJvk7PRb8AaTV6OlMnzfx2 VHhw2sy7ChCMRkG3BJOu1xMS1oXybJGIlvnqTlRjASHrHjnThDYEEMkkVA5vbMKH sgIaF3gFbGo4uC9tF8tF8688SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5qQdaz yKjFqswTh/zKpSh0nvHiMB8GA1UdIwQYMBaAFBRH1EtJ95BtxjcxpdmNhS7BC3dF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NGMi8xQUU5MDM0Njgx RUUxMUVCQkUzNTQ5NUZDNEY5QUUwMi9GRWZVUzBuM2tHM0dOekdsMlkyRkxzRUxk MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZFZlVTMG4za0czR056R2wyWTJGTHNFTGQwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NGMi8xQUU5MDM0NjgxRUUxMUVCQkUzNTQ5NUZDNEY5QUUwMi9GRWZVUzBuM2tH M0dOekdsMlkyRkxzRUxkMFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+JHSr2D38pfDeAGBf9el23rrBpx9zlEI+58xbztlyQZTFK7taRw9i p6r1q6q/05CeGEZIbit3aZ4jaeARwdrIwsnXC6jF9vM2cNx9IsMAul06wv+RfDaa gmhG4U/TAe3FIK8nTpRMPb9gj/b60kgg8bxX4SegdF1YltaeYE7jb5YR6kjoR8DS Oh3vvD2WAXhFR738Rc1jNpFw1z66wbZlx1+RZBFSBEP6oTm8up6GqQGOU6bVsAyS ATQCs4v0QXgEFn596WVyGtz3GEP49Gt1l1T1ua245TdlvX1oadXiLuGNJTdb3uX/ JZaTPj2BwXG7IaeRhNgu301unho3P7P+ -----END CERTIFICATE-----Generated at Thu Jul 3 03:48:56 2025 by rpki-client