$ rpki-client -vvf rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft File: FTtjqTdzsliYghhmVd7zBEbdhg0.mft (raw, json) Hash identifier: 8zbZvydJj1zLWb2G3p4AWlJJAjDxOT4HygBW/Ev4+MY= Subject key identifier: DC:35:93:F4:8F:B1:AB:8C:55:FA:FE:A5:E7:B5:E5:5A:88:51:20:42 Authority key identifier: 15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D Certificate issuer: /CN=A91810B4/serialNumber=153B63A93773B2589882186655DEF30446DD860D Certificate serial: 0274 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft Manifest number: 0270 Signing time: Tue 01 Jul 2025 02:26:12 +0000 Manifest this update: Tue 01 Jul 2025 02:26:12 +0000 Manifest next update: Tue 08 Jul 2025 02:26:12 +0000 Files and hashes: 1: FTtjqTdzsliYghhmVd7zBEbdhg0.crl (hash: lYh0PC08Zea6gFyPvZKXDFkcz8nMyqW7P/h24cAG4kw=) 2: 27A32D7A16BA11EDB0E9E464C4F9AE02.roa (hash: uux+o2sOdsirWh/aoHrxCjsCKmrUczbEHaZJtHyFOgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91810B4, serialNumber=153B63A93773B2589882186655DEF30446DD860D Validity Not Before: Jul 1 02:26:12 2025 GMT Not After : Jul 8 02:26:12 2025 GMT Subject: CN=68634744-f129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:03:a6:44:fd:93:2a:9a:2e:f8:eb:72:c1:be: 4e:fe:0c:1e:39:4d:66:62:db:d1:d7:b9:82:26:51: 5a:f8:41:06:21:ea:64:42:18:1b:0b:e3:e9:e2:ea: 13:af:8d:22:51:9e:30:6d:52:50:e4:c4:bc:ce:94: 22:79:59:31:ca:df:91:09:00:de:92:09:89:e2:e8: a2:c7:16:a2:21:f2:20:d6:3a:aa:8c:d6:f4:a6:db: e6:81:5e:ef:3e:0e:f1:70:6e:88:03:85:66:27:86: e3:3b:db:22:a0:45:25:da:86:3a:c3:68:aa:fe:0a: f6:de:c5:66:d7:ca:11:60:3c:55:ba:25:4a:47:22: f7:cf:76:64:df:37:be:dd:c0:9f:30:3b:88:d0:6a: 74:48:15:2f:17:d7:23:70:6e:74:db:7e:47:3d:1b: c3:48:61:41:e0:de:b7:a4:77:70:8e:32:29:90:98: f3:5e:f6:57:9d:f0:8c:03:2f:f9:c2:e7:77:46:81: a9:d7:16:e5:26:83:c6:8d:31:7a:d5:4f:07:b9:ee: 19:be:72:19:23:8d:e2:8d:08:70:ea:7c:8c:f3:5f: ca:d5:77:7c:ba:fe:c1:d0:ef:34:17:0d:6a:98:05: dd:f8:9a:ce:88:45:2c:51:81:19:00:af:5e:e6:68: 1f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:35:93:F4:8F:B1:AB:8C:55:FA:FE:A5:E7:B5:E5:5A:88:51:20:42 X509v3 Authority Key Identifier: keyid:15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:2b:66:e6:b2:c8:55:d0:a9:40:01:94:7d:53:2f:e6:bb:1a: e5:20:2b:ff:5f:18:a9:ca:f7:98:27:28:86:67:09:97:3c:0d: aa:ac:be:49:f1:9b:9e:9e:0d:bc:97:3f:0d:91:0e:c9:3a:40: b2:b8:6d:4a:ab:9b:28:b3:dc:2d:ec:ed:11:e2:d0:f2:a7:e7: 3d:c8:46:e1:eb:48:69:3a:ea:aa:96:41:e6:24:4c:74:4e:db: 1e:2b:b6:56:75:e2:9f:72:27:60:91:36:2f:cd:20:e3:d7:bf: 5e:17:1e:70:b9:14:14:14:ba:83:1e:c3:90:e3:81:75:c3:3e: 00:7c:10:86:c3:28:90:13:99:8b:ef:f0:4b:ab:b7:5b:df:9a: f1:86:c1:c6:2d:c0:99:e5:31:1a:21:f4:46:7c:97:94:13:2b: f7:39:6a:d0:c2:7b:49:dd:1c:b4:a6:0f:a4:a3:1d:7a:a7:ef: ef:3d:98:21:f8:5a:a0:ce:fb:bf:bf:c8:52:44:03:4a:ed:fd: e5:3b:95:0a:f1:00:7c:38:a4:92:12:e0:28:9a:11:28:e4:1c: ba:8e:e0:e0:2d:e1:b1:6c:1e:fc:50:a3:b9:c4:d0:31:17:cf: c3:2c:7c:2b:fe:27:4a:ac:c0:f7:ba:5e:b4:18:a1:de:72:36: 08:49:ac:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEwQjQxMTAvBgNVBAUTKDE1M0I2M0E5Mzc3M0IyNTg5ODgyMTg2NjU1REVGMzA0 NDZERDg2MEQwHhcNMjUwNzAxMDIyNjEyWhcNMjUwNzA4MDIyNjEyWjAYMRYwFAYD VQQDEw02ODYzNDc0NC1mMTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQOmRP2TKpou+Otywb5O/gweOU1mYtvR17mCJlFa+EEGIepkQhgbC+Pp4uoT r40iUZ4wbVJQ5MS8zpQieVkxyt+RCQDekgmJ4uiixxaiIfIg1jqqjNb0ptvmgV7v Pg7xcG6IA4VmJ4bjO9sioEUl2oY6w2iq/gr23sVm18oRYDxVuiVKRyL3z3Zk3ze+ 3cCfMDuI0Gp0SBUvF9cjcG50235HPRvDSGFB4N63pHdwjjIpkJjzXvZXnfCMAy/5 wud3RoGp1xblJoPGjTF61U8Hue4ZvnIZI43ijQhw6nyM81/K1Xd8uv7B0O80Fw1q mAXd+JrOiEUsUYEZAK9e5mgfqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNw1k/SP sauMVfr+pee15VqIUSBCMB8GA1UdIwQYMBaAFBU7Y6k3c7JYmIIYZlXe8wRG3YYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTBCNC83N0Q1MkFBMDE2 QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNsaVlnaGhtVmQ3ekJFYmRo ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZUdGpxVGR6c2xpWWdoaG1WZDd6QkViZGhnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTBCNC83N0Q1MkFBMDE2QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNs aVlnaGhtVmQ3ekJFYmRoZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqK2bmsshV0KlAAZR9Uy/muxrlICv/XxipyveYJyiGZwmXPA2qrL5J 8Zueng28lz8NkQ7JOkCyuG1Kq5sos9wt7O0R4tDyp+c9yEbh60hpOuqqlkHmJEx0 TtseK7ZWdeKfcidgkTYvzSDj179eFx5wuRQUFLqDHsOQ44F1wz4AfBCGwyiQE5mL 7/BLq7db35rxhsHGLcCZ5TEaIfRGfJeUEyv3OWrQwntJ3Ry0pg+kox16p+/vPZgh +Fqgzvu/v8hSRANK7f3lO5UK8QB8OKSSEuAomhEo5By6juDgLeGxbB78UKO5xNAx F8/DLHwr/idKrMD3ul60GKHecjYISawB -----END CERTIFICATE-----Generated at Wed Jul 2 19:17:53 2025 by rpki-client