$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft File: fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft (raw, json) Hash identifier: dyLkVuucm7bzzsmCh1S6GGaVuhHo1+1ajMxmi9n4nqA= Subject key identifier: B4:8C:D0:77:F6:79:8F:80:F2:A4:4E:55:99:AB:B6:56:26:96:BB:91 Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 08D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft Manifest number: 08C7 Signing time: Fri 22 Aug 2025 20:35:22 +0000 Manifest this update: Fri 22 Aug 2025 20:35:21 +0000 Manifest next update: Fri 29 Aug 2025 20:35:21 +0000 Files and hashes: 1: fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl (hash: WtyKAGvqOHCK6CjYvh1M5NuZc7lp24oGCeFvbD0t+fY=) 2: 10A6E062B70A11EDB851464EC4F9AE02.roa (hash: FH1SU9GKJvbucv0gXmHk6Vc7dPieI2aucBrxBlxHAdE=) 3: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (hash: KcabN84FuC1RCZKB2biZEnUyMb0N5RBlFWlu2grfP8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2258 (0x8d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F, serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: Aug 22 20:35:21 2025 GMT Not After : Aug 29 20:35:21 2025 GMT Subject: CN=68a8d489-9aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:61:b7:be:5a:1b:e5:dd:52:3e:84:44:3d:5a: 81:ca:f0:77:56:eb:f2:e3:77:59:27:4a:e7:c0:c5: 6a:65:ae:2a:07:1e:2d:bf:68:35:80:06:34:6d:fd: 3e:bb:b1:72:d3:f4:f1:2b:89:37:f0:bc:96:f9:c9: 1f:89:c0:78:3e:9c:34:d3:46:7f:ed:25:f0:a6:66: 16:14:07:d6:ab:1b:1d:04:66:3c:17:39:a2:f6:6f: 8f:20:e2:93:4a:7b:e1:c4:03:44:f0:f3:c5:50:0a: 22:50:84:07:e6:ed:05:60:1c:08:9a:37:e5:2d:cc: 6f:93:e1:eb:23:22:24:5f:ab:8d:13:9b:83:34:3b: 6b:5f:23:52:a6:5c:e0:df:82:c0:0f:34:34:13:27: f5:b5:2b:d8:0b:a9:a4:57:d5:48:d8:14:62:a5:16: 58:59:9b:0f:33:8f:f3:11:51:5d:dc:cb:cf:2e:7d: 40:cd:66:d6:0e:67:7e:fc:b5:2f:e9:6b:da:68:72: 35:f0:f7:61:ca:33:83:9f:d2:91:df:46:d8:0d:a7: 76:90:04:1d:f4:6d:c8:7b:b0:90:e2:cd:ee:34:28: da:6d:29:ab:a2:07:33:31:95:4d:fe:c2:ea:f0:0e: ec:8e:e9:76:33:cd:30:1f:49:59:ef:c4:39:78:b6: 9e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:8C:D0:77:F6:79:8F:80:F2:A4:4E:55:99:AB:B6:56:26:96:BB:91 X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:42:f2:11:0c:78:05:f9:e1:ff:c3:c6:55:b7:0b:6d:37:d0: 71:5a:c6:e3:a4:21:7a:06:d9:d5:9b:3c:67:1f:fd:f5:78:8c: 1e:23:ef:8f:6e:54:50:54:2b:d7:9c:a1:c1:c8:e8:5d:cf:58: 24:0f:ce:b0:9e:87:0f:1f:e6:30:07:c7:9a:fa:72:15:cb:a2: de:dc:dc:f1:81:52:02:56:2c:5f:e5:cf:16:4f:df:86:9b:22: 41:e4:7a:9d:d2:d3:b9:87:51:45:dd:55:f8:9e:e8:8f:9c:9c: 2e:4a:73:25:cf:d6:86:f4:93:cb:f9:54:36:7e:aa:49:1b:a2: bd:1c:bc:5f:d5:15:9c:15:18:a0:8a:2e:09:e9:c2:00:0b:04: ba:6c:3b:c6:d4:fc:f0:e2:ca:47:81:2a:9a:55:e2:5a:cd:27: 0d:9c:26:4a:79:a7:12:9d:99:0b:6c:76:b4:f7:4f:a6:1a:95: a3:bf:c2:cf:bb:19:40:61:39:d6:c0:ee:b8:f9:fa:89:42:24: 55:f8:b5:c5:ad:71:c3:76:79:bd:ba:9b:7f:95:82:c3:68:94: c4:cf:f5:db:3d:5c:70:e9:68:17:2b:54:40:41:54:7a:95:5f: 9d:1a:ed:60:d5:ec:bd:6b:ec:e5:f6:a2:d0:66:28:59:63:e0: d2:a1:f5:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjUwODIyMjAzNTIxWhcNMjUwODI5MjAzNTIxWjAYMRYwFAYD VQQDEw02OGE4ZDQ4OS05YWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGG3vlob5d1SPoREPVqByvB3Vuvy43dZJ0rnwMVqZa4qBx4tv2g1gAY0bf0+ u7Fy0/TxK4k38LyW+ckficB4Ppw000Z/7SXwpmYWFAfWqxsdBGY8Fzmi9m+PIOKT SnvhxANE8PPFUAoiUIQH5u0FYBwImjflLcxvk+HrIyIkX6uNE5uDNDtrXyNSplzg 34LADzQ0Eyf1tSvYC6mkV9VI2BRipRZYWZsPM4/zEVFd3MvPLn1AzWbWDmd+/LUv 6WvaaHI18PdhyjODn9KR30bYDad2kAQd9G3Ie7CQ4s3uNCjabSmrogczMZVN/sLq 8A7sjul2M80wH0lZ78Q5eLaegwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSM0Hf2 eY+A8qROVZmrtlYmlruRMB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzUzRi9CREE1N0ZGRUJDMTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2Nx dExBM2JoTEpWQkpLcmtQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdQvIRDHgF+eH/w8ZVtwttN9BxWsbjpCF6BtnVmzxnH/31eIweI++P blRQVCvXnKHByOhdz1gkD86wnocPH+YwB8ea+nIVy6Le3NzxgVICVixf5c8WT9+G myJB5Hqd0tO5h1FF3VX4nuiPnJwuSnMlz9aG9JPL+VQ2fqpJG6K9HLxf1RWcFRig ii4J6cIACwS6bDvG1Pzw4spHgSqaVeJazScNnCZKeacSnZkLbHa090+mGpWjv8LP uxlAYTnWwO64+fqJQiRV+LXFrXHDdnm9upt/lYLDaJTEz/XbPVxw6WgXK1RAQVR6 lV+dGu1g1ey9a+zl9qLQZihZY+DSofXD -----END CERTIFICATE-----Generated at Sat Aug 23 21:32:53 2025 by rpki-client