$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft File: FION2NTh_gMXFCZnF24W4KW2hlE.mft (raw, json) Hash identifier: 74s6kvqD8MODo3U7HWtfYh986a1ttS6qoJ4Orq9vklQ= Subject key identifier: B5:04:C6:48:90:02:47:C8:A0:9C:E1:FB:07:3F:C0:F0:E5:B7:F9:9A Authority key identifier: 14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 Certificate issuer: /CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Certificate serial: 0E30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft Manifest number: 0E28 Signing time: Sat 18 Oct 2025 18:28:27 +0000 Manifest this update: Sat 18 Oct 2025 18:28:26 +0000 Manifest next update: Sat 25 Oct 2025 18:28:26 +0000 Files and hashes: 1: FION2NTh_gMXFCZnF24W4KW2hlE.crl (hash: nF8KUVL4U0fZyLQtoqglYTEBM8J/JxePG4aDFAH2hyo=) 2: 14E68648B42D11E9A44FF25BC4F9AE02.roa (hash: aOcvKXW2OwUSyFzRq5Kiuga5ndEep1PmMp0UDb+8XIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3632 (0xe30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D9, serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Validity Not Before: Oct 18 18:28:26 2025 GMT Not After : Oct 25 18:28:26 2025 GMT Subject: CN=68f3dc4a-d9b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5e:19:be:f4:ad:b1:67:5e:79:1a:71:46:55: 26:44:de:2f:b3:50:20:ff:0f:aa:c7:f9:00:fe:da: 85:3f:49:ae:4f:67:55:46:e2:7c:cd:79:5b:c3:a9: 48:e5:5c:5d:85:3f:cc:20:80:84:74:d1:6e:71:95: b2:2b:ee:22:10:60:e1:a7:5f:56:55:7c:ec:99:13: 64:65:88:12:70:9d:0a:d6:ff:d5:67:bf:82:88:af: 3e:18:6a:33:70:20:ce:93:a3:f8:6e:99:0a:85:58: e8:4b:dd:82:26:d1:a8:40:15:a4:a5:46:c0:23:a9: d7:c4:81:be:75:0d:8c:87:b0:5a:10:5e:2e:41:9d: 24:0d:75:a5:ec:1b:3c:02:c7:42:11:fc:94:23:71: b3:56:6b:a6:c1:cc:03:86:e2:c7:07:c2:dc:ce:69: 41:98:c4:fc:a6:ad:0b:d1:e8:8e:22:3f:9f:e6:bb: a3:6b:44:97:dc:af:50:c8:a9:cd:fd:46:72:71:ee: 79:6a:42:a5:17:47:ec:65:37:94:11:7b:7e:18:e5: 88:6d:a9:a7:6b:87:87:be:ef:2b:e8:73:0e:51:e6: f8:69:e5:f0:33:4b:52:94:99:b2:a4:fd:b4:78:d9: 46:a5:ac:02:4c:1a:ec:c3:fd:d3:1b:3d:93:45:d6: d4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:04:C6:48:90:02:47:C8:A0:9C:E1:FB:07:3F:C0:F0:E5:B7:F9:9A X509v3 Authority Key Identifier: keyid:14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:05:aa:f7:66:23:68:77:74:59:71:2d:eb:63:ce:24:57:88: 7b:b8:a0:32:0f:23:f4:5b:09:dd:e9:c2:07:86:fa:8c:d4:07: 11:a4:4c:20:60:d3:bc:df:c0:8d:5c:22:b1:c9:f5:21:76:d2: 43:b6:50:45:87:71:a6:b6:21:da:c6:c0:a4:d6:4f:80:61:99: b3:35:06:65:ca:53:de:92:68:33:27:a6:57:96:aa:85:88:57: 48:0a:41:9d:ac:bc:d6:0f:91:39:6d:58:06:f9:bd:b2:d9:83: 88:d2:84:f7:11:87:df:d2:dd:c2:59:3a:d9:55:ab:0a:c4:15: e1:c0:a0:c7:51:d3:43:8c:f1:f8:bf:2e:35:10:d4:5b:58:e9: 37:e7:52:b7:c3:d8:b1:7b:89:92:1c:13:56:49:e3:0a:7f:31: ef:e3:9b:36:b3:f9:55:b9:48:46:e0:1f:86:c7:b9:bc:81:2e: c5:fc:b9:44:91:82:b9:12:ce:5d:e8:c8:3c:1e:90:11:7d:9d: f1:b3:87:0c:bc:fc:09:36:5d:a9:de:a6:1d:41:9c:a4:57:ce: 4e:10:3e:ce:e3:22:0d:a0:e6:bd:ef:33:92:e1:d6:dd:35:78: e9:55:bf:6e:69:9c:8e:7a:b5:7a:5f:28:91:4a:5a:76:0f:90: bd:8e:9c:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDkxMTAvBgNVBAUTKDE0ODM4REQ4RDRFMUZFMDMxNzE0MjY2NzE3NkUxNkUw QTVCNjg2NTEwHhcNMjUxMDE4MTgyODI2WhcNMjUxMDI1MTgyODI2WjAYMRYwFAYD VQQDEw02OGYzZGM0YS1kOWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA014ZvvStsWdeeRpxRlUmRN4vs1Ag/w+qx/kA/tqFP0muT2dVRuJ8zXlbw6lI 5VxdhT/MIICEdNFucZWyK+4iEGDhp19WVXzsmRNkZYgScJ0K1v/VZ7+CiK8+GGoz cCDOk6P4bpkKhVjoS92CJtGoQBWkpUbAI6nXxIG+dQ2Mh7BaEF4uQZ0kDXWl7Bs8 AsdCEfyUI3GzVmumwcwDhuLHB8LczmlBmMT8pq0L0eiOIj+f5ruja0SX3K9QyKnN /UZyce55akKlF0fsZTeUEXt+GOWIbamna4eHvu8r6HMOUeb4aeXwM0tSlJmypP20 eNlGpawCTBrsw/3TGz2TRdbUpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUExkiQ AkfIoJzh+wc/wPDlt/maMB8GA1UdIwQYMBaAFBSDjdjU4f4DFxQmZxduFuCltoZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEOS8xQzNERDk2NkI0 MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9nTVhGQ1puRjI0VzRLVzJo bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZJT04yTlRoX2dNWEZDWm5GMjRXNEtXMmhsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEOS8xQzNERDk2NkI0MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9n TVhGQ1puRjI0VzRLVzJobEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4Bar3ZiNod3RZcS3rY84kV4h7uKAyDyP0Wwnd6cIHhvqM1AcRpEwg YNO838CNXCKxyfUhdtJDtlBFh3GmtiHaxsCk1k+AYZmzNQZlylPekmgzJ6ZXlqqF iFdICkGdrLzWD5E5bVgG+b2y2YOI0oT3EYff0t3CWTrZVasKxBXhwKDHUdNDjPH4 vy41ENRbWOk351K3w9ixe4mSHBNWSeMKfzHv45s2s/lVuUhG4B+Gx7m8gS7F/LlE kYK5Es5d6Mg8HpARfZ3xs4cMvPwJNl2p3qYdQZykV85OED7O4yINoOa97zOS4dbd NXjpVb9uaZyOerV6XyiRSlp2D5C9jpwm -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:05 2025 by rpki-client