$ rpki-client -vvf rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft File: FTtjqTdzsliYghhmVd7zBEbdhg0.mft (raw, json) Hash identifier: 6Ei7GRJ7Rz/0OCOdWs2kl4LETYmucQra6AkhISNp1nk= Subject key identifier: 11:F4:8F:D8:AF:7C:BF:C8:DA:50:45:C6:47:89:7E:0F:2C:6A:8B:79 Authority key identifier: 15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D Certificate issuer: /CN=A91810B4/serialNumber=153B63A93773B2589882186655DEF30446DD860D Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft Manifest number: 028B Signing time: Sat 23 Aug 2025 01:53:30 +0000 Manifest this update: Sat 23 Aug 2025 01:53:30 +0000 Manifest next update: Sat 30 Aug 2025 01:53:30 +0000 Files and hashes: 1: FTtjqTdzsliYghhmVd7zBEbdhg0.crl (hash: aFFw8yl1dSPWb7ix5YCwJoCM9uuMnWmiCpZ8DUk5c2U=) 2: 27A32D7A16BA11EDB0E9E464C4F9AE02.roa (hash: uux+o2sOdsirWh/aoHrxCjsCKmrUczbEHaZJtHyFOgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91810B4, serialNumber=153B63A93773B2589882186655DEF30446DD860D Validity Not Before: Aug 23 01:53:30 2025 GMT Not After : Aug 30 01:53:30 2025 GMT Subject: CN=68a91f1a-b50e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:32:bf:08:34:b7:9b:92:4f:4f:a1:57:b8:c4: 3b:b1:45:c5:d3:52:f7:15:fe:46:c9:04:9a:c7:90: 23:08:7e:47:62:ba:3b:e1:7e:17:2f:88:d4:03:8f: 2a:8d:0b:db:b9:0c:ee:2e:ca:ee:99:7b:52:57:c7: 36:8c:83:fd:68:f4:a0:26:5c:8e:09:93:56:3b:8e: df:20:92:2c:8c:82:6a:86:21:9d:3a:2d:0c:fa:36: a4:a7:03:da:ef:3d:06:6c:5c:45:8e:42:63:c3:28: 42:3f:8d:39:7c:07:e2:2b:ca:04:16:7c:9e:fe:f2: 5f:81:66:5b:d1:22:19:98:d0:11:16:ca:80:ac:8b: 6a:ad:25:f9:f3:ab:79:80:cf:b4:25:86:d1:8c:ad: ab:a0:13:97:00:66:7b:42:e1:57:12:dc:df:14:de: c3:84:3f:db:8e:9e:cb:75:e2:b3:53:12:8d:89:3a: de:76:e8:ae:83:ca:a9:98:be:01:02:c6:12:40:e8: df:69:fd:e2:df:af:3c:bc:f0:9f:cc:58:77:00:56: 70:1f:c3:f8:da:a0:b0:9f:17:62:74:c9:2d:68:9d: d5:b7:90:6e:54:95:01:86:f0:4b:27:bd:c9:33:73: c7:43:74:67:48:44:d7:e0:f4:5f:3b:56:ce:98:b6: 66:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:F4:8F:D8:AF:7C:BF:C8:DA:50:45:C6:47:89:7E:0F:2C:6A:8B:79 X509v3 Authority Key Identifier: keyid:15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:0c:ed:71:dc:34:3d:fe:5a:c3:e5:52:b3:46:a2:b5:08:6a: 87:bb:38:2a:dc:03:70:8b:e1:63:f2:63:61:fa:47:2c:b8:38: 39:6d:40:c7:86:ff:87:b1:68:5f:d4:53:6f:41:7c:a4:55:6c: b3:d2:1b:cf:9b:0f:b7:aa:bb:f1:ce:40:be:f1:ba:e3:b1:44: 47:b6:71:cb:75:72:22:93:8a:41:fd:f0:0d:1b:6d:5b:9f:4e: a8:09:ce:62:77:eb:b8:2d:75:1c:93:0e:ff:9d:a5:79:0a:cf: 2f:2b:c1:db:06:28:c5:60:42:74:05:1c:b8:63:af:60:1f:e6: 2d:85:03:01:64:0e:cf:1f:46:ca:2b:f1:35:a5:cb:0f:8b:4d: ac:bc:27:14:c4:69:82:f7:31:89:cc:a7:ee:29:2a:08:17:2d: 32:89:c8:3c:8d:f2:37:c4:85:74:f8:9c:ba:e2:35:d4:ea:0f: 4c:59:8a:c6:c4:28:bf:0d:59:68:80:31:15:75:81:24:97:95: 94:4e:5e:84:53:7c:ed:12:72:c8:56:f6:e7:01:65:95:be:77: 31:5a:51:87:77:5d:13:37:95:2b:24:f2:d1:41:87:d5:a7:6d: 44:3e:75:f7:3c:bf:fb:a6:4c:6f:b3:ad:6a:51:f4:1a:e1:f2: df:08:a6:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEwQjQxMTAvBgNVBAUTKDE1M0I2M0E5Mzc3M0IyNTg5ODgyMTg2NjU1REVGMzA0 NDZERDg2MEQwHhcNMjUwODIzMDE1MzMwWhcNMjUwODMwMDE1MzMwWjAYMRYwFAYD VQQDEw02OGE5MWYxYS1iNTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszK/CDS3m5JPT6FXuMQ7sUXF01L3Ff5GyQSax5AjCH5HYro74X4XL4jUA48q jQvbuQzuLsrumXtSV8c2jIP9aPSgJlyOCZNWO47fIJIsjIJqhiGdOi0M+jakpwPa 7z0GbFxFjkJjwyhCP405fAfiK8oEFnye/vJfgWZb0SIZmNARFsqArItqrSX586t5 gM+0JYbRjK2roBOXAGZ7QuFXEtzfFN7DhD/bjp7LdeKzUxKNiTreduiug8qpmL4B AsYSQOjfaf3i3688vPCfzFh3AFZwH8P42qCwnxdidMktaJ3Vt5BuVJUBhvBLJ73J M3PHQ3RnSETX4PRfO1bOmLZmSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBH0j9iv fL/I2lBFxkeJfg8saot5MB8GA1UdIwQYMBaAFBU7Y6k3c7JYmIIYZlXe8wRG3YYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTBCNC83N0Q1MkFBMDE2 QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNsaVlnaGhtVmQ3ekJFYmRo ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZUdGpxVGR6c2xpWWdoaG1WZDd6QkViZGhnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTBCNC83N0Q1MkFBMDE2QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNs aVlnaGhtVmQ3ekJFYmRoZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsDO1x3DQ9/lrD5VKzRqK1CGqHuzgq3ANwi+Fj8mNh+kcsuDg5bUDH hv+HsWhf1FNvQXykVWyz0hvPmw+3qrvxzkC+8brjsURHtnHLdXIik4pB/fANG21b n06oCc5id+u4LXUckw7/naV5Cs8vK8HbBijFYEJ0BRy4Y69gH+YthQMBZA7PH0bK K/E1pcsPi02svCcUxGmC9zGJzKfuKSoIFy0yicg8jfI3xIV0+Jy64jXU6g9MWYrG xCi/DVlogDEVdYEkl5WUTl6EU3ztEnLIVvbnAWWVvncxWlGHd10TN5UrJPLRQYfV p21EPnX3PL/7pkxvs61qUfQa4fLfCKZ/ -----END CERTIFICATE-----Generated at Sat Aug 23 17:08:09 2025 by rpki-client