$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft File: fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft (raw, json) Hash identifier: A/JEexN88oosrb+LF6Xp/gADzkKQUReEXT1W/fzDvC4= Subject key identifier: 68:6B:30:9A:7E:AA:7D:46:DF:CA:D2:B6:60:B0:F6:43:79:A8:0E:00 Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 08B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft Manifest number: 08AD Signing time: Wed 02 Jul 2025 20:47:37 +0000 Manifest this update: Wed 02 Jul 2025 20:47:37 +0000 Manifest next update: Wed 09 Jul 2025 20:47:37 +0000 Files and hashes: 1: fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl (hash: jKr0zcSCR7/xd955n+/5K2tmm8cZOJKCEOYDws+tzYA=) 2: 10A6E062B70A11EDB851464EC4F9AE02.roa (hash: FH1SU9GKJvbucv0gXmHk6Vc7dPieI2aucBrxBlxHAdE=) 3: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (hash: KcabN84FuC1RCZKB2biZEnUyMb0N5RBlFWlu2grfP8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:47:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2232 (0x8b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F, serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: Jul 2 20:47:37 2025 GMT Not After : Jul 9 20:47:37 2025 GMT Subject: CN=68659ae9-33cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cf:75:04:6a:fd:ea:96:81:d0:d8:f1:5b:03: b0:d8:1f:ea:3e:21:6a:06:bf:61:f0:d5:4c:65:c2: 34:6d:fb:fa:b1:22:aa:80:d0:ca:39:f4:c2:41:2f: 72:df:00:23:57:e0:8a:fe:39:60:de:ef:4f:55:77: c5:d0:05:79:57:67:1f:c8:ea:35:8c:3a:5a:c1:c1: 12:17:8a:f8:c8:3e:c0:90:81:e3:90:1f:df:16:54: f4:b3:59:75:ef:13:96:0c:42:c3:77:e3:4a:3b:c7: cf:da:bb:04:ad:ad:f4:64:08:ef:10:7a:f7:a6:33: e5:0c:56:5c:b5:79:78:bf:44:d5:d6:d5:c1:27:e9: 0c:91:d6:d9:93:79:5d:e5:c0:d3:d2:3d:26:96:b0: c3:5f:77:f1:dd:bb:94:3c:02:f9:c7:1a:5e:84:21: 20:c7:18:c5:f6:c5:65:84:75:cb:1d:7e:a1:ae:e1: 56:d4:61:9e:b5:68:f2:3f:22:55:b0:9b:48:ae:e0: 57:ae:b2:1a:45:5f:2b:25:0d:2c:82:bf:ff:00:71: 35:ee:4d:ee:89:6b:0d:75:b5:76:d0:13:b2:7c:78: 45:70:7b:a2:0c:60:2d:ce:96:6a:4a:53:bb:5c:8b: d0:4c:41:a4:cb:c0:a6:49:96:cb:df:78:c2:12:8d: 8c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:6B:30:9A:7E:AA:7D:46:DF:CA:D2:B6:60:B0:F6:43:79:A8:0E:00 X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ff:91:d2:8b:8b:23:7e:99:ab:a0:2a:c0:b4:09:77:e9:d9: d5:e5:b1:79:4a:8b:f0:2d:d5:55:89:75:06:2e:f4:51:bd:93: f2:e3:67:f9:de:73:6d:8f:d8:f3:61:68:e8:f6:7d:42:19:13: 02:fe:fd:0e:9c:bb:2f:27:d3:75:bb:59:86:9f:a0:a5:bd:35: 11:a2:fb:40:23:7e:5b:e2:81:27:f6:a3:29:fc:ae:ee:16:36: f9:7d:d3:98:ac:c2:91:6f:6b:50:fa:68:ec:01:c1:5a:6a:fe: 7d:e5:27:c0:11:df:83:a6:eb:66:ad:68:03:3b:a0:c0:8c:51: c8:06:1f:98:6a:94:ff:92:d6:f3:ae:68:4f:21:a3:29:e2:83: 59:02:a7:00:af:23:9b:0a:15:bf:ce:56:93:ac:fd:ba:e3:b3: 2e:3c:b5:78:ef:5c:d9:f8:ba:b4:2f:7c:e0:8d:f9:b0:d6:62: f4:e1:6f:ba:dd:85:25:78:40:64:26:f7:1b:63:e8:37:a7:f7: 80:db:3c:2a:7c:60:ba:2f:28:62:cb:07:9e:7e:d5:a0:ae:09: e3:12:e5:b2:2d:f3:b6:b6:8d:17:ba:a3:08:f3:59:2c:c4:b9: 74:9d:f9:d2:de:17:d1:18:06:3d:28:e5:71:de:09:97:e5:38: fc:db:d2:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjUwNzAyMjA0NzM3WhcNMjUwNzA5MjA0NzM3WjAYMRYwFAYD VQQDEw02ODY1OWFlOS0zM2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2c91BGr96paB0NjxWwOw2B/qPiFqBr9h8NVMZcI0bfv6sSKqgNDKOfTCQS9y 3wAjV+CK/jlg3u9PVXfF0AV5V2cfyOo1jDpawcESF4r4yD7AkIHjkB/fFlT0s1l1 7xOWDELDd+NKO8fP2rsEra30ZAjvEHr3pjPlDFZctXl4v0TV1tXBJ+kMkdbZk3ld 5cDT0j0mlrDDX3fx3buUPAL5xxpehCEgxxjF9sVlhHXLHX6hruFW1GGetWjyPyJV sJtIruBXrrIaRV8rJQ0sgr//AHE17k3uiWsNdbV20BOyfHhFcHuiDGAtzpZqSlO7 XIvQTEGky8CmSZbL33jCEo2M4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhrMJp+ qn1G38rStmCw9kN5qA4AMB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzUzRi9CREE1N0ZGRUJDMTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2Nx dExBM2JoTEpWQkpLcmtQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ/5HSi4sjfpmroCrAtAl36dnV5bF5SovwLdVViXUGLvRRvZPy42f5 3nNtj9jzYWjo9n1CGRMC/v0OnLsvJ9N1u1mGn6ClvTURovtAI35b4oEn9qMp/K7u Fjb5fdOYrMKRb2tQ+mjsAcFaav595SfAEd+DputmrWgDO6DAjFHIBh+YapT/ktbz rmhPIaMp4oNZAqcAryObChW/zlaTrP2647MuPLV471zZ+Lq0L3zgjfmw1mL04W+6 3YUleEBkJvcbY+g3p/eA2zwqfGC6LyhiyweeftWgrgnjEuWyLfO2to0XuqMI81ks xLl0nfnS3hfRGAY9KOVx3gmX5Tj829KL -----END CERTIFICATE-----Generated at Thu Jul 3 06:03:35 2025 by rpki-client