$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft File: FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft (raw, json) Hash identifier: fcxxIkRd/kpuNgiAZjzsyTON78/JMaBnw2n5Nfcg/XQ= Subject key identifier: F7:7D:61:D5:8B:AE:EA:44:23:B3:CC:5B:0D:E7:C0:F1:70:5D:DF:FA Authority key identifier: 14:47:D4:4B:49:F7:90:6D:C6:37:31:A5:D9:8D:85:2E:C1:0B:77:45 Certificate issuer: /CN=A9173CF2/serialNumber=1447D44B49F7906DC63731A5D98D852EC10B7745 Certificate serial: 0693 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft Manifest number: 068D Signing time: Fri 22 Aug 2025 22:28:48 +0000 Manifest this update: Fri 22 Aug 2025 22:28:48 +0000 Manifest next update: Fri 29 Aug 2025 22:28:48 +0000 Files and hashes: 1: FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl (hash: 7Uas1ADb3bIof6JWTszIc1xxqx/wG7mrG1ih+QG2yD0=) 2: D9E7CFF681EF11EBAEE9D17AC4F9AE02.roa (hash: c9M9mRbjF0BZcSk0yGj1HQe17Ih56nG/Gq+RFkDxc6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CF2, serialNumber=1447D44B49F7906DC63731A5D98D852EC10B7745 Validity Not Before: Aug 22 22:28:48 2025 GMT Not After : Aug 29 22:28:48 2025 GMT Subject: CN=68a8ef20-81c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3a:5f:40:75:90:ec:5a:42:dc:34:a1:27:db: 5f:70:98:6f:99:53:0f:84:57:18:8c:28:d3:b3:df: a5:c3:00:b2:67:37:00:37:1c:1c:13:90:d9:6f:0f: 48:57:2d:bb:c0:4d:53:9f:d9:ae:c7:cd:a3:5d:1c: 34:c9:97:1a:fb:ee:62:78:ee:07:3f:47:b0:c4:c4: d4:21:86:0f:14:3d:d8:d1:16:b3:10:79:39:c2:ed: 9b:38:6c:80:80:02:7e:2e:31:6b:be:fb:34:ff:6a: 8f:dc:01:ca:49:3b:c1:3a:d9:2d:c2:2a:3e:1c:b9: 11:6c:39:62:31:9f:ea:05:2c:64:a3:e5:ed:76:32: e1:72:69:59:83:72:d2:e2:f7:55:34:68:2b:ab:bf: 37:a5:a5:26:cf:93:3e:82:00:b2:52:1c:2d:fa:f9: 6c:5d:b6:1f:33:33:02:bf:25:c0:cb:a6:61:da:71: d1:60:27:e8:eb:d3:97:a1:b1:7c:cc:4f:2e:3b:3e: 4b:ce:69:08:ba:dc:13:5c:ac:b4:0f:a0:d2:30:1f: 29:65:c8:c9:da:26:2b:53:fb:04:c5:93:52:44:e5: 8b:b3:95:85:77:18:eb:b4:81:d9:45:62:96:a1:99: f5:67:79:70:f4:25:d8:53:d8:86:0f:19:f5:15:0f: 40:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7D:61:D5:8B:AE:EA:44:23:B3:CC:5B:0D:E7:C0:F1:70:5D:DF:FA X509v3 Authority Key Identifier: keyid:14:47:D4:4B:49:F7:90:6D:C6:37:31:A5:D9:8D:85:2E:C1:0B:77:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEfUS0n3kG3GNzGl2Y2FLsELd0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CF2/1AE9034681EE11EBBE35495FC4F9AE02/FEfUS0n3kG3GNzGl2Y2FLsELd0U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:aa:7d:dc:1a:96:d6:0a:79:41:ef:10:51:3c:25:3e:d8:ad: 06:78:5d:18:15:ea:b0:78:89:db:b5:dd:85:98:e3:9c:7b:d5: f5:ab:bc:8f:76:c7:c9:66:30:e0:6f:8d:46:54:cf:12:c5:88: 4f:e1:03:b4:49:db:9f:88:6c:f4:a7:06:c8:a2:b9:af:6f:3a: 67:59:13:11:9a:f3:b9:43:b1:2f:a6:2e:97:97:b8:00:07:27: 1d:6a:38:3e:19:50:ce:b3:55:83:c4:18:c0:1a:c9:28:c8:86: 97:b1:26:05:2a:67:9d:03:21:2f:7d:3c:84:38:e8:07:e1:0c: 4f:7a:40:0e:67:cc:38:40:f8:0a:fa:56:b6:78:72:ce:a6:1e: a3:6f:88:64:af:3e:57:fa:f0:4a:a8:58:5c:90:ea:18:9a:ef: 49:96:9f:1b:5e:4e:6b:5d:d3:d3:67:7b:2e:a8:46:45:e8:8a: 02:06:bc:cf:ae:a8:9b:c7:ae:fd:2b:44:70:af:67:50:40:69: e4:b8:f7:3d:71:b9:91:78:6d:6c:f6:e4:91:84:f6:f9:92:62: 83:6b:d0:75:f8:83:d7:f3:28:cf:af:32:3b:ba:78:aa:7d:17: 66:f6:bb:7c:a2:54:21:d0:bc:24:05:57:8c:6d:a8:32:75:10: 18:6a:41:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRjIxMTAvBgNVBAUTKDE0NDdENDRCNDlGNzkwNkRDNjM3MzFBNUQ5OEQ4NTJF QzEwQjc3NDUwHhcNMjUwODIyMjIyODQ4WhcNMjUwODI5MjIyODQ4WjAYMRYwFAYD VQQDEw02OGE4ZWYyMC04MWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTpfQHWQ7FpC3DShJ9tfcJhvmVMPhFcYjCjTs9+lwwCyZzcANxwcE5DZbw9I Vy27wE1Tn9mux82jXRw0yZca++5ieO4HP0ewxMTUIYYPFD3Y0RazEHk5wu2bOGyA gAJ+LjFrvvs0/2qP3AHKSTvBOtktwio+HLkRbDliMZ/qBSxko+XtdjLhcmlZg3LS 4vdVNGgrq783paUmz5M+ggCyUhwt+vlsXbYfMzMCvyXAy6Zh2nHRYCfo69OXobF8 zE8uOz5LzmkIutwTXKy0D6DSMB8pZcjJ2iYrU/sExZNSROWLs5WFdxjrtIHZRWKW oZn1Z3lw9CXYU9iGDxn1FQ9A8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPd9YdWL rupEI7PMWw3nwPFwXd/6MB8GA1UdIwQYMBaAFBRH1EtJ95BtxjcxpdmNhS7BC3dF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NGMi8xQUU5MDM0Njgx RUUxMUVCQkUzNTQ5NUZDNEY5QUUwMi9GRWZVUzBuM2tHM0dOekdsMlkyRkxzRUxk MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZFZlVTMG4za0czR056R2wyWTJGTHNFTGQwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NGMi8xQUU5MDM0NjgxRUUxMUVCQkUzNTQ5NUZDNEY5QUUwMi9GRWZVUzBuM2tH M0dOekdsMlkyRkxzRUxkMFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgqn3cGpbWCnlB7xBRPCU+2K0GeF0YFeqweInbtd2FmOOce9X1q7yP dsfJZjDgb41GVM8SxYhP4QO0SdufiGz0pwbIormvbzpnWRMRmvO5Q7Evpi6Xl7gA Bycdajg+GVDOs1WDxBjAGskoyIaXsSYFKmedAyEvfTyEOOgH4QxPekAOZ8w4QPgK +la2eHLOph6jb4hkrz5X+vBKqFhckOoYmu9Jlp8bXk5rXdPTZ3suqEZF6IoCBrzP rqibx679K0Rwr2dQQGnkuPc9cbmReG1s9uSRhPb5kmKDa9B1+IPX8yjPrzI7uniq fRdm9rt8olQh0LwkBVeMbagydRAYakF4 -----END CERTIFICATE-----Generated at Sat Aug 23 16:43:28 2025 by rpki-client