$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: 7S1/jGp+P0jcGjthqJN18qDAp1pwacZJsdlQbvGl3lU= Subject key identifier: FC:A6:07:DC:3C:35:88:E5:C7:DA:8D:A2:22:1E:FB:F0:2D:34:7D:4D Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 069B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 0691 Signing time: Fri 22 Aug 2025 22:25:58 +0000 Manifest this update: Fri 22 Aug 2025 22:25:58 +0000 Manifest next update: Fri 29 Aug 2025 22:25:58 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: 6l5Wn1IEq6dmrn83BrKJ8A+HfPbdkUF1280taD/3RZk=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1691 (0x69b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Aug 22 22:25:58 2025 GMT Not After : Aug 29 22:25:58 2025 GMT Subject: CN=68a8ee76-fb4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d6:e8:8a:08:9e:6e:e0:d7:21:11:bf:ab:db: 39:77:e7:73:a7:82:36:52:d4:7d:f7:38:74:36:d2: 7b:b7:1c:f6:79:24:8d:15:b0:42:18:08:44:65:18: ef:3d:6b:8c:c2:03:ce:7b:43:9c:77:29:a7:09:fa: b8:f6:aa:80:1e:36:a8:c2:84:3a:01:52:7b:a3:5f: 6d:e1:a3:8c:57:92:7a:b1:bd:f8:69:a6:fc:6e:84: b0:b8:46:78:ea:a0:fc:88:01:aa:ac:6e:dd:b7:1f: 6c:c3:8a:a1:ca:a4:17:81:e1:0c:0e:ac:80:a9:5f: 75:3b:ff:b3:fd:a0:75:ab:0d:a0:62:b7:a7:f9:a7: 56:a2:c1:f3:2a:0d:19:1e:f0:8a:99:ba:a3:5b:ff: b3:d1:f4:99:a6:89:de:f4:06:3a:be:46:3c:20:a1: da:5d:3b:16:41:59:90:86:9a:f2:2a:c3:92:e2:61: 0e:8d:7c:2a:8f:8d:f4:53:df:c1:a5:42:0f:53:35: dd:a4:1c:9e:bb:43:e3:54:35:05:48:67:ae:ff:56: ff:0f:fe:05:a5:93:04:bb:f4:79:a7:41:bd:02:97: a3:c8:29:70:7e:f9:c3:8f:26:ad:db:97:8f:93:a0: 09:cd:b3:94:4f:5a:8c:c2:7a:40:d9:10:e0:8f:3f: 4f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A6:07:DC:3C:35:88:E5:C7:DA:8D:A2:22:1E:FB:F0:2D:34:7D:4D X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d2:28:d5:b7:81:bc:b3:82:42:9d:cc:8a:1e:8d:f2:17:0c: 6e:a6:0a:e0:58:4c:9e:f9:f6:33:ba:b1:f9:2b:ae:fe:3c:ae: 0b:c4:31:ea:f5:05:92:61:95:48:53:e1:27:be:c3:78:9a:db: 6d:65:fa:79:3d:79:57:9d:da:dc:5a:9b:ae:34:43:ca:8b:e8: 96:4b:66:00:ec:4c:eb:db:65:21:b7:1c:f8:7d:11:73:3c:70: a9:1a:35:b0:96:e1:5d:88:1f:c4:b8:48:d9:78:92:ff:d8:31: b4:cf:c3:21:ef:2b:de:89:d5:85:95:14:ed:22:7e:ca:25:20: db:bf:3c:64:6e:cc:7f:51:68:e1:e2:47:21:4f:7a:9c:ba:d4: 99:d8:43:4a:cd:1b:fc:c2:2a:3c:a9:9d:fc:93:1c:3e:0e:da: 85:3a:f6:e6:41:3b:7a:51:52:c8:2f:de:c1:2e:51:19:da:7f: 83:c3:6c:3d:2f:2b:9d:49:2f:b2:39:9e:2d:3a:26:00:9e:cc: b2:b2:20:24:ba:fe:e3:4d:be:d7:58:8a:8d:5c:b3:f7:5a:85: 4e:ea:95:96:98:cd:18:30:55:c8:d2:2b:23:74:6e:e1:21:7f: cc:7b:a2:f9:ba:1f:c8:db:d8:8a:a3:3d:97:92:37:fd:43:8a: d8:82:0a:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUwODIyMjIyNTU4WhcNMjUwODI5MjIyNTU4WjAYMRYwFAYD VQQDEw02OGE4ZWU3Ni1mYjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNboigiebuDXIRG/q9s5d+dzp4I2UtR99zh0NtJ7txz2eSSNFbBCGAhEZRjv PWuMwgPOe0OcdymnCfq49qqAHjaowoQ6AVJ7o19t4aOMV5J6sb34aab8boSwuEZ4 6qD8iAGqrG7dtx9sw4qhyqQXgeEMDqyAqV91O/+z/aB1qw2gYren+adWosHzKg0Z HvCKmbqjW/+z0fSZpone9AY6vkY8IKHaXTsWQVmQhpryKsOS4mEOjXwqj430U9/B pUIPUzXdpByeu0PjVDUFSGeu/1b/D/4FpZMEu/R5p0G9ApejyClwfvnDjyat25eP k6AJzbOUT1qMwnpA2RDgjz9PQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPymB9w8 NYjlx9qNoiIe+/AtNH1NMB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl0ijVt4G8s4JCncyKHo3yFwxupgrgWEye+fYzurH5K67+PK4LxDHq 9QWSYZVIU+EnvsN4mtttZfp5PXlXndrcWpuuNEPKi+iWS2YA7Ezr22Uhtxz4fRFz PHCpGjWwluFdiB/EuEjZeJL/2DG0z8Mh7yveidWFlRTtIn7KJSDbvzxkbsx/UWjh 4kchT3qcutSZ2ENKzRv8wio8qZ38kxw+DtqFOvbmQTt6UVLIL97BLlEZ2n+Dw2w9 LyudSS+yOZ4tOiYAnsyysiAkuv7jTb7XWIqNXLP3WoVO6pWWmM0YMFXI0isjdG7h IX/Me6L5uh/I29iKoz2Xkjf9Q4rYggpf -----END CERTIFICATE-----Generated at Sat Aug 23 16:44:25 2025 by rpki-client