$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: JbkkCE8E1rpGlrOplnM3w+OXfcf8I07oKSlCLBNZi7Y= Subject key identifier: DC:31:B3:1D:CE:01:46:AC:14:33:49:E5:34:55:99:A6:4A:37:F8:70 Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0B36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0B21 Signing time: Wed 02 Jul 2025 19:26:30 +0000 Manifest this update: Wed 02 Jul 2025 19:26:29 +0000 Manifest next update: Wed 09 Jul 2025 19:26:29 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: 0uNK8uGr/co1My5MzOx9jHEA0vdq7ppZG3jwYWyXaXw=) 2: B7BC4714BEF011ED9634C070C4F9AE02.roa (hash: hCJDcBpZnY511Q8RFEjySoDwZo6yKwsip9nLzCPAimM=) 3: DCA05C0E419A11EAA5E2BA6EC4F9AE02.roa (hash: PF9MEJvH0IR25ZTC0vJ/AU9NL74Mubr8N6aNLLIh+tY=) 4: DC06CBC0419A11EAA5E2BA6EC4F9AE02.roa (hash: jb+NbLPJbNRFrpXKly3k3uaY8m7AD5q86vW7O0jvGcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2870 (0xb36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Jul 2 19:26:29 2025 GMT Not After : Jul 9 19:26:29 2025 GMT Subject: CN=686587e6-d0cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b5:91:08:d6:07:b9:67:db:5c:d9:51:63:fd: 05:1a:18:2c:d3:8a:ea:8d:ff:33:47:29:f9:e6:04: dc:15:34:df:b1:0b:09:ac:8b:9d:f3:d0:3c:2b:bf: 82:d8:94:3e:15:93:21:a6:37:4c:e2:46:6a:28:45: 55:b4:93:91:14:e8:30:5a:19:c6:64:aa:bf:d2:66: ab:df:62:af:69:ee:e1:df:41:90:3e:6d:21:0f:ef: 37:8c:14:af:61:93:59:62:2d:6b:d5:51:6a:84:83: a6:f0:ae:36:57:f0:38:6e:dc:32:c4:71:1c:7e:13: 80:e6:21:79:2e:90:4c:a8:74:77:af:4f:21:52:73: 1f:46:47:24:60:88:bc:c8:62:52:90:11:e2:56:8b: 7f:7a:7f:ee:af:db:1a:3a:8b:dd:0a:cb:b5:4b:70: 6c:50:68:e7:91:90:7f:2f:b5:35:75:e8:5e:d6:dc: 96:9f:ee:cb:1f:c3:c1:98:07:9d:ff:3d:b4:30:df: f9:f5:de:de:76:88:66:30:d5:52:7f:f7:67:a5:72: 4a:2e:8d:00:63:6e:69:2d:da:d0:0d:a6:93:8b:1d: 24:b7:16:43:22:22:4c:7a:99:fb:4d:04:c0:1c:81: 66:d9:76:bc:05:10:1c:33:77:2f:f9:6c:39:44:27: 88:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:31:B3:1D:CE:01:46:AC:14:33:49:E5:34:55:99:A6:4A:37:F8:70 X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:35:1f:9f:c9:5d:e1:50:86:d7:e3:07:b4:a5:be:74:4b:d2: 65:58:6b:72:4c:28:59:8c:28:7a:fc:84:05:c9:21:9b:8f:16: bd:1f:ee:7d:47:61:73:54:db:e0:c4:70:ce:e8:e6:8d:f3:97: aa:c0:7d:a9:cb:43:36:67:ac:cf:46:1a:b7:91:b7:7c:7c:2e: 47:00:1e:44:db:bc:c0:54:62:5a:c5:f5:2d:18:f8:ac:a5:8a: 0f:49:ba:ea:2f:38:10:71:b4:60:f3:19:19:72:70:77:b2:3a: 85:f3:a4:10:33:71:82:9c:9c:6e:f7:2b:3b:d1:a3:a4:21:76: ca:57:e1:0f:fd:26:4a:fd:d7:22:ba:9b:25:65:e9:e0:66:60: b5:a7:86:33:52:d7:4c:6d:d6:d6:75:33:25:3e:73:28:3e:0e: b6:7e:ab:f9:cc:c0:2a:f6:f7:9c:5d:9d:4f:6e:3c:41:83:b3: 22:c4:28:3b:b8:2f:c0:d6:2d:7e:b4:ad:b8:a5:ef:1a:98:2f: 1c:f0:e6:86:9a:e3:cd:95:45:35:e7:c2:f3:33:f8:7d:fe:46: cb:be:91:16:5b:9f:fb:8c:90:ea:10:3c:a7:e1:11:16:f5:a2: b5:6d:7e:61:d4:e8:20:d4:53:2b:1d:34:97:b1:b8:83:e3:7e: b9:f5:0e:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjUwNzAyMTkyNjI5WhcNMjUwNzA5MTkyNjI5WjAYMRYwFAYD VQQDEw02ODY1ODdlNi1kMGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LWRCNYHuWfbXNlRY/0FGhgs04rqjf8zRyn55gTcFTTfsQsJrIud89A8K7+C 2JQ+FZMhpjdM4kZqKEVVtJORFOgwWhnGZKq/0mar32Kvae7h30GQPm0hD+83jBSv YZNZYi1r1VFqhIOm8K42V/A4btwyxHEcfhOA5iF5LpBMqHR3r08hUnMfRkckYIi8 yGJSkBHiVot/en/ur9saOovdCsu1S3BsUGjnkZB/L7U1dehe1tyWn+7LH8PBmAed /z20MN/59d7edohmMNVSf/dnpXJKLo0AY25pLdrQDaaTix0ktxZDIiJMepn7TQTA HIFm2Xa8BRAcM3cv+Ww5RCeIXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwxsx3O AUasFDNJ5TRVmaZKN/hwMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmNR+fyV3hUIbX4we0pb50S9JlWGtyTChZjCh6/IQFySGbjxa9H+59 R2FzVNvgxHDO6OaN85eqwH2py0M2Z6zPRhq3kbd8fC5HAB5E27zAVGJaxfUtGPis pYoPSbrqLzgQcbRg8xkZcnB3sjqF86QQM3GCnJxu9ys70aOkIXbKV+EP/SZK/dci upslZengZmC1p4YzUtdMbdbWdTMlPnMoPg62fqv5zMAq9vecXZ1PbjxBg7MixCg7 uC/A1i1+tK24pe8amC8c8OaGmuPNlUU158LzM/h9/kbLvpEWW5/7jJDqEDyn4REW 9aK1bX5h1Ogg1FMrHTSXsbiD43659Q6S -----END CERTIFICATE-----Generated at Thu Jul 3 10:38:34 2025 by rpki-client