$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: 7sfD26h3epb7umWo0BccfbVjf7QZhkOLhm2FCr0rd9s= Subject key identifier: 27:3A:D7:E4:8D:4C:2E:8A:C5:E2:39:65:84:2E:2A:C4:83:3B:03:5B Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0B54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0B3D Signing time: Fri 22 Aug 2025 19:18:24 +0000 Manifest this update: Fri 22 Aug 2025 19:18:24 +0000 Manifest next update: Fri 29 Aug 2025 19:18:24 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: chEuIBA6ErDnnqC59RQazyBxZ5mblCDIv2UignTu5/E=) 2: 9D999E187CA811F0AE15ED6EC4F9AE02.roa (hash: J/Y6p2/yKRXDBc4lXrVgkXTkn/NmrMfJzbfX/5O/hQo=) 3: B285AC807CA911F09D442F15C4F9AE02.roa (hash: UX2zMGfv+WxZ0voK+QDzKZn1ZKk782a4iAXgqqE0IQo=) 4: DC06CBC0419A11EAA5E2BA6EC4F9AE02.roa (hash: jb+NbLPJbNRFrpXKly3k3uaY8m7AD5q86vW7O0jvGcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2900 (0xb54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Aug 22 19:18:24 2025 GMT Not After : Aug 29 19:18:24 2025 GMT Subject: CN=68a8c280-7b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a3:a7:aa:5d:10:bc:00:1c:01:10:fd:df:85: 19:55:a2:39:4e:fb:ac:5a:6a:e0:34:79:4d:46:dd: e1:b4:58:99:4b:cc:b1:52:1d:89:97:87:f2:06:eb: 61:ba:47:be:d4:61:90:32:d3:9d:50:7c:e3:88:32: 1b:7c:64:8f:29:f9:d1:f3:4c:46:f1:25:e7:16:2b: 9b:98:d4:df:cd:ab:aa:80:77:40:a9:da:cf:80:8c: 2d:15:9f:b0:4b:26:79:0a:65:cd:5b:e9:d9:50:9b: 48:c1:75:9c:ec:00:9d:08:30:5e:6e:1d:a7:b8:56: 47:a4:22:1f:c2:ef:4b:76:45:99:85:a7:01:4c:66: ef:06:c9:a3:5a:54:bb:11:66:30:25:42:d7:d3:ba: 9b:ce:41:d7:b6:3d:7d:d8:e8:03:94:82:a2:7e:6f: 34:7e:6b:35:e6:36:a9:07:52:eb:94:85:55:3a:d7: c8:4a:fd:95:68:af:c2:39:04:d3:c8:6b:4d:b8:ba: fa:50:37:ec:57:d9:3a:29:eb:12:4e:ee:11:fb:c9: c0:f4:7d:ab:c6:c5:5e:c3:d8:1a:70:fd:9c:f7:fe: fa:ba:81:a3:ec:aa:fd:cc:19:f5:2d:04:68:6e:1b: 06:d5:f7:2e:0c:f0:b2:e4:65:cc:2d:f3:cd:67:7b: 75:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:3A:D7:E4:8D:4C:2E:8A:C5:E2:39:65:84:2E:2A:C4:83:3B:03:5B X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:a2:4a:29:ae:69:17:59:f7:49:4d:cc:b5:a8:8e:9a:76:b8: 2e:f3:9f:76:a4:a7:9f:4b:dc:e7:43:70:a7:c6:06:62:48:f8: d2:f3:0d:dd:fd:2b:ef:64:b6:c7:93:48:2b:a9:6f:21:30:ef: d7:65:a6:cc:7d:64:cf:3e:33:48:42:be:d2:4f:1a:a6:61:6c: 4c:f7:0a:09:14:11:80:9a:50:7f:19:2d:58:76:67:c0:01:ca: ec:9a:a2:9f:8d:5e:9a:34:f7:84:ce:34:55:ae:2c:7f:5a:79: bb:c8:be:05:b2:6b:24:03:b9:29:13:6d:24:85:9b:a0:cb:ca: 96:6e:f5:ed:9f:a0:ba:2b:c6:5f:7c:a6:05:30:63:97:7c:f7: 13:90:e3:1e:8b:93:69:79:d0:c9:1a:67:e0:22:13:bd:41:74: 06:72:da:eb:c1:d6:6f:f4:1e:d5:56:85:5e:a0:87:5b:17:4c: d2:e9:31:3e:a1:3a:67:3b:de:c9:3b:f3:7a:6b:73:7a:06:e3: 6a:57:e9:1b:e4:67:ff:f2:37:4c:ae:8d:b7:33:bd:2b:a5:6f: e3:da:62:40:7b:76:cb:ba:a0:39:94:1a:66:0f:57:7e:82:b0: 86:eb:4e:a3:7b:36:82:21:be:0d:6e:62:47:99:08:c7:67:b2: 43:ae:54:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjUwODIyMTkxODI0WhcNMjUwODI5MTkxODI0WjAYMRYwFAYD VQQDEw02OGE4YzI4MC03Yjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKOnql0QvAAcARD934UZVaI5TvusWmrgNHlNRt3htFiZS8yxUh2Jl4fyButh uke+1GGQMtOdUHzjiDIbfGSPKfnR80xG8SXnFiubmNTfzauqgHdAqdrPgIwtFZ+w SyZ5CmXNW+nZUJtIwXWc7ACdCDBebh2nuFZHpCIfwu9LdkWZhacBTGbvBsmjWlS7 EWYwJULX07qbzkHXtj192OgDlIKifm80fms15japB1LrlIVVOtfISv2VaK/COQTT yGtNuLr6UDfsV9k6KesSTu4R+8nA9H2rxsVew9gacP2c9/76uoGj7Kr9zBn1LQRo bhsG1fcuDPCy5GXMLfPNZ3t1/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCc61+SN TC6KxeI5ZYQuKsSDOwNbMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeokoprmkXWfdJTcy1qI6adrgu8592pKefS9znQ3CnxgZiSPjS8w3d /SvvZLbHk0grqW8hMO/XZabMfWTPPjNIQr7STxqmYWxM9woJFBGAmlB/GS1YdmfA AcrsmqKfjV6aNPeEzjRVrix/Wnm7yL4FsmskA7kpE20khZugy8qWbvXtn6C6K8Zf fKYFMGOXfPcTkOMei5NpedDJGmfgIhO9QXQGctrrwdZv9B7VVoVeoIdbF0zS6TE+ oTpnO97JO/N6a3N6BuNqV+kb5Gf/8jdMro23M70rpW/j2mJAe3bLuqA5lBpmD1d+ grCG606jezaCIb4NbmJHmQjHZ7JDrlRw -----END CERTIFICATE-----Generated at Sat Aug 23 22:37:03 2025 by rpki-client