$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: RbYppjIkQrLjhem5bLFTD9qD4D3Xz1fj3R8wD+1/A7A= Subject key identifier: 44:00:17:45:1A:32:17:8B:6C:7C:F0:DE:85:53:6D:BD:B3:6E:5F:C8 Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A0E Signing time: Fri 22 Aug 2025 20:00:17 +0000 Manifest this update: Fri 22 Aug 2025 20:00:17 +0000 Manifest next update: Fri 29 Aug 2025 20:00:17 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: AjBkmuqVFPwKW+u5QfK3YVq8YiKF04Ma/3bcfHvVl3w=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2600 (0xa28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Aug 22 20:00:17 2025 GMT Not After : Aug 29 20:00:17 2025 GMT Subject: CN=68a8cc51-56ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:5b:40:af:17:93:d0:57:74:03:67:83:a9:15: 82:46:f0:ea:2b:79:ce:1e:dd:f6:84:4b:3a:9d:3d: 1a:36:2b:a9:24:ac:de:89:fe:f1:14:b4:3d:8d:6b: dd:ba:43:ae:e8:06:e6:09:dd:e2:ef:bb:cc:05:99: b8:94:73:41:fd:b4:06:ad:ee:39:3c:9f:80:42:b6: c1:44:be:1d:5b:0a:8e:6e:8d:7f:4e:73:58:30:af: 52:a7:06:0b:f1:46:4f:d9:ea:6a:12:d7:ad:c7:57: d3:a9:04:bd:63:29:c0:2d:4b:74:ce:91:cb:10:c5: 0b:69:87:9e:ab:07:cb:29:f9:2e:79:03:cd:3d:8f: 5b:f9:20:96:ab:7e:ee:16:20:ee:7a:72:ae:92:5f: 3b:ba:ea:e1:9f:9b:97:e1:31:e1:e0:17:55:ae:61: 96:35:5a:be:29:65:04:96:08:da:74:c1:d8:eb:62: bf:0e:79:b8:3f:c9:cf:2d:0d:fd:78:53:65:29:57: 12:37:d5:ec:66:c6:1a:de:63:b6:d8:15:04:c7:00: 5d:34:ba:a7:0e:d0:9f:52:fe:7e:78:4f:5b:54:77: 09:c1:2c:fd:71:6f:cd:55:af:97:c8:95:e4:e0:20: 92:a6:c0:35:56:af:1d:4d:06:73:f1:d7:a3:db:ba: 7f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:00:17:45:1A:32:17:8B:6C:7C:F0:DE:85:53:6D:BD:B3:6E:5F:C8 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:93:3a:2b:fa:9d:33:48:09:ba:d3:08:31:f1:a8:d4:ba:3d: 55:79:cd:15:f8:37:ab:94:d4:84:8b:ce:28:17:66:db:83:ea: 42:b3:cf:09:27:5c:07:ff:43:e1:c4:bf:6f:46:1c:16:e4:55: e6:b5:1a:5c:06:91:e5:42:86:af:74:02:c0:da:05:07:4e:90: 16:e8:04:8f:de:03:61:39:de:89:83:81:e1:be:aa:96:74:98: 87:81:ef:cf:02:88:2c:2b:d6:db:3e:d3:29:31:d2:93:e3:86: 14:a6:21:3c:95:3a:6a:49:86:8d:12:fd:02:5f:2d:1b:35:5f: 22:b4:00:89:b4:65:4f:00:fa:a7:03:10:54:9c:df:c9:f0:4f: dd:e8:54:3e:43:8a:06:94:e4:7e:22:b6:cf:f4:1a:84:ca:1a: ab:94:27:ef:66:d2:46:eb:8c:09:a6:91:78:c9:fb:1f:36:d9: 83:f7:a4:d5:b0:01:ef:33:46:77:56:a7:f7:6a:9d:e6:f0:c9: af:f0:a8:ba:06:e2:58:f0:4d:cc:2f:48:af:0d:3d:b8:c1:24: a4:01:93:cf:61:0a:e0:f2:64:8a:ed:4b:c8:7d:28:fa:d5:99: c5:40:9f:f1:f9:6e:f3:b4:b8:b0:7e:53:31:6a:5e:a6:c9:d9: 66:22:52:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUwODIyMjAwMDE3WhcNMjUwODI5MjAwMDE3WjAYMRYwFAYD VQQDEw02OGE4Y2M1MS01NmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ltArxeT0Fd0A2eDqRWCRvDqK3nOHt32hEs6nT0aNiupJKzeif7xFLQ9jWvd ukOu6AbmCd3i77vMBZm4lHNB/bQGre45PJ+AQrbBRL4dWwqObo1/TnNYMK9SpwYL 8UZP2epqEtetx1fTqQS9YynALUt0zpHLEMULaYeeqwfLKfkueQPNPY9b+SCWq37u FiDuenKukl87uurhn5uX4THh4BdVrmGWNVq+KWUElgjadMHY62K/Dnm4P8nPLQ39 eFNlKVcSN9XsZsYa3mO22BUExwBdNLqnDtCfUv5+eE9bVHcJwSz9cW/NVa+XyJXk 4CCSpsA1Vq8dTQZz8dej27p/uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQAF0Ua MheLbHzw3oVTbb2zbl/IMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAukzor+p0zSAm60wgx8ajUuj1Vec0V+DerlNSEi84oF2bbg+pCs88J J1wH/0PhxL9vRhwW5FXmtRpcBpHlQoavdALA2gUHTpAW6ASP3gNhOd6Jg4HhvqqW dJiHge/PAogsK9bbPtMpMdKT44YUpiE8lTpqSYaNEv0CXy0bNV8itACJtGVPAPqn AxBUnN/J8E/d6FQ+Q4oGlOR+IrbP9BqEyhqrlCfvZtJG64wJppF4yfsfNtmD96TV sAHvM0Z3Vqf3ap3m8Mmv8Ki6BuJY8E3ML0ivDT24wSSkAZPPYQrg8mSK7UvIfSj6 1ZnFQJ/x+W7ztLiwflMxal6mydlmIlLD -----END CERTIFICATE-----Generated at Sat Aug 23 21:32:30 2025 by rpki-client