$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: DowMZmN+SXNNSwmb2aB5iFe8Cn/eK7ioP+CdxjTYCAc= Subject key identifier: 13:5E:7B:3C:A2:E7:90:FD:68:28:7B:5C:31:F4:3E:60:BC:DB:F9:21 Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 0681 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 0677 Signing time: Wed 02 Jul 2025 22:38:43 +0000 Manifest this update: Wed 02 Jul 2025 22:38:42 +0000 Manifest next update: Wed 09 Jul 2025 22:38:42 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: tW0pLiH2dP1Fr0BWOT5+5xihl5VCJt/dB6RlOnc4u7M=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Jul 2 22:38:42 2025 GMT Not After : Jul 9 22:38:42 2025 GMT Subject: CN=6865b4f3-13fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2f:17:0a:a0:60:26:7f:55:dd:39:ea:f1:26: 99:70:b5:4a:8c:3a:66:78:a0:2b:e6:ba:ad:29:a9: 89:e4:9d:8d:50:09:35:6b:00:4c:f4:8c:0a:c7:5a: b9:5f:ed:c0:49:f6:88:3b:85:d2:bd:aa:84:01:97: 92:a2:ae:73:8d:c9:f1:17:fd:0f:ff:5e:a2:94:ef: 48:05:69:7c:b6:e5:f4:95:5d:1a:3c:4c:1e:39:72: 7d:3c:2a:c3:ae:0d:00:85:32:78:d3:cc:5d:a1:88: 67:78:d3:e8:e4:75:ab:fd:42:5f:ea:ea:ff:8c:6d: f6:ff:35:2f:01:7e:e0:4d:5d:30:8a:8f:ec:44:ac: 7e:f2:ea:dd:12:e6:7a:c7:d7:16:49:6f:92:0c:e5: a2:5b:d5:80:0c:53:6f:11:11:5d:29:1b:68:2e:5b: 82:cd:9b:26:15:f5:de:19:63:78:75:0e:c6:5e:87: fc:89:bf:09:7e:ac:c5:69:48:e3:2e:a9:ae:42:a3: fa:66:3c:2b:75:a3:e2:bb:b7:91:49:aa:04:3e:95: e2:e9:8c:43:40:59:b0:1d:0c:31:39:3b:53:23:a5: c1:ac:d1:e4:e3:88:88:2c:68:ff:21:df:e8:f2:33: c9:75:cf:23:f1:95:e7:3b:c6:37:63:3f:78:86:ef: 20:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:5E:7B:3C:A2:E7:90:FD:68:28:7B:5C:31:F4:3E:60:BC:DB:F9:21 X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:7e:f4:21:52:99:5b:9f:13:83:a7:f5:0d:de:c3:fd:05:9b: 1b:2c:d6:cf:46:f0:21:48:60:a3:09:fd:61:11:9e:e3:1c:14: d6:32:bd:8b:db:8d:20:8f:81:53:fc:59:5c:38:1b:a5:f8:19: 6d:1b:2c:d2:68:3b:22:4a:a5:68:bf:0b:0d:ae:dc:cd:aa:9d: bc:04:b8:a1:05:b6:24:ba:9d:1f:73:54:bc:dd:09:8f:d2:40: 92:ad:64:93:2d:8a:f4:36:26:ae:a4:60:cd:0f:2e:3b:d8:16: df:62:70:7e:2d:46:ab:05:64:9b:5a:59:72:da:9f:77:51:a1: 43:c7:c5:2d:5a:79:ee:03:97:d1:0e:ce:4b:84:37:02:6d:44: 00:3c:69:db:80:e6:b9:84:e4:36:cf:22:35:25:ca:73:3c:06: 77:2c:0e:7f:b3:bf:84:11:d2:bb:5e:23:ea:0b:79:91:13:a4: de:1b:61:11:bf:68:97:10:fd:1c:87:e4:0b:f3:c6:55:8a:ea: 1a:fa:6a:49:3b:5e:cf:25:fa:ba:0b:a6:4a:cf:68:5b:d8:0a: 2b:e3:d6:be:80:be:35:bb:e1:56:0e:03:51:6a:97:5c:94:60: b3:08:fe:e3:80:76:80:dd:d1:4d:3a:98:09:75:dd:39:5f:49: e7:78:ee:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUwNzAyMjIzODQyWhcNMjUwNzA5MjIzODQyWjAYMRYwFAYD VQQDEw02ODY1YjRmMy0xM2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1y8XCqBgJn9V3Tnq8SaZcLVKjDpmeKAr5rqtKamJ5J2NUAk1awBM9IwKx1q5 X+3ASfaIO4XSvaqEAZeSoq5zjcnxF/0P/16ilO9IBWl8tuX0lV0aPEweOXJ9PCrD rg0AhTJ408xdoYhneNPo5HWr/UJf6ur/jG32/zUvAX7gTV0wio/sRKx+8urdEuZ6 x9cWSW+SDOWiW9WADFNvERFdKRtoLluCzZsmFfXeGWN4dQ7GXof8ib8JfqzFaUjj LqmuQqP6ZjwrdaPiu7eRSaoEPpXi6YxDQFmwHQwxOTtTI6XBrNHk44iILGj/Id/o 8jPJdc8j8ZXnO8Y3Yz94hu8gXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNeezyi 55D9aCh7XDH0PmC82/khMB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJfvQhUplbnxODp/UN3sP9BZsbLNbPRvAhSGCjCf1hEZ7jHBTWMr2L 240gj4FT/FlcOBul+BltGyzSaDsiSqVovwsNrtzNqp28BLihBbYkup0fc1S83QmP 0kCSrWSTLYr0NiaupGDNDy472BbfYnB+LUarBWSbWlly2p93UaFDx8UtWnnuA5fR Ds5LhDcCbUQAPGnbgOa5hOQ2zyI1JcpzPAZ3LA5/s7+EEdK7XiPqC3mRE6TeG2ER v2iXEP0ch+QL88ZViuoa+mpJO17PJfq6C6ZKz2hb2Aor49a+gL41u+FWDgNRapdc lGCzCP7jgHaA3dFNOpgJdd05X0nneO7/ -----END CERTIFICATE-----Generated at Fri Jul 4 10:21:13 2025 by rpki-client