$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft File: FPn_SiOnILc7r-YDNT8R65c5Jxk.mft (raw, json) Hash identifier: wAlOvcq1gGKiOlYlVwB2x1/s0KUXbc3Fyp3jCJlxauI= Subject key identifier: B1:2D:80:0F:74:D9:2D:F3:E0:22:B4:65:74:6C:37:1B:2D:48:E0:7D Authority key identifier: 14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 Certificate issuer: /CN=A91BF8F4/serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft Manifest number: 021C Signing time: Sun 29 Jun 2025 01:29:29 +0000 Manifest this update: Sun 29 Jun 2025 01:29:28 +0000 Manifest next update: Sun 06 Jul 2025 01:29:28 +0000 Files and hashes: 1: FPn_SiOnILc7r-YDNT8R65c5Jxk.crl (hash: gRxSTCsvnMrejh0RAX1ufRtJ+1bG1NhlaRpRxt4rz7k=) 2: 9B3244E038A411EDB5C86A28C4F9AE02.roa (hash: z3vMrh+MfifC7nf/d8HWXEmLlkM4nBll9m3BXQVcSyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 01:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8F4, serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Validity Not Before: Jun 29 01:29:28 2025 GMT Not After : Jul 6 01:29:28 2025 GMT Subject: CN=686096f9-cc0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:da:88:58:b4:d8:7b:1e:af:fa:9f:00:7c:06: 4d:41:a4:69:22:ff:7a:a9:92:88:b3:80:0c:77:2c: 61:a5:45:de:ee:6c:8d:7e:b0:fe:0d:8b:24:26:b9: 05:0c:fd:18:8d:29:1d:91:f0:7d:fb:0c:aa:ea:3a: 4f:87:3f:e1:ca:fa:e2:28:93:f4:c0:48:a7:89:a6: 8e:c7:fd:0a:96:cf:51:d0:ec:17:4f:84:32:92:38: 8c:eb:24:37:4e:1d:71:5b:76:72:31:96:9d:3f:e7: ff:55:cf:30:ca:5f:eb:e5:8b:4e:cf:08:31:04:ef: 18:93:13:5f:d0:d1:31:ae:c2:a3:03:d1:5e:df:40: 4d:6e:96:19:f2:bd:08:f6:b5:e9:ce:19:64:0b:79: 9f:34:c0:61:19:e8:92:14:a4:81:5c:aa:d4:ce:6e: 10:a2:57:96:4d:25:bb:a2:5c:f5:62:3c:85:53:59: f9:9b:65:c2:8c:49:b9:96:00:8f:99:35:55:ba:64: c8:e6:8d:a1:78:ee:d5:f1:dd:ab:37:d9:58:d6:02: e6:14:5b:09:9d:5c:45:c6:73:d6:69:a9:90:04:84: fc:e4:79:44:dc:96:9a:0b:2e:6c:8b:f0:a0:a9:4e: 07:46:a8:06:75:62:c6:6a:67:59:c5:0a:b5:37:a1: 49:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:2D:80:0F:74:D9:2D:F3:E0:22:B4:65:74:6C:37:1B:2D:48:E0:7D X509v3 Authority Key Identifier: keyid:14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:57:22:de:e3:7b:cc:5e:53:12:49:68:59:39:21:29:80:9a: 86:95:24:26:44:92:6a:94:cb:ab:98:8e:58:8e:8f:dc:1f:16: 3a:ef:f6:c1:71:47:ce:41:80:3a:22:51:9b:4c:b7:7c:01:db: 2d:db:40:85:c8:eb:26:ae:71:27:58:43:2b:dd:1b:54:d4:07: 53:df:20:24:90:83:0b:a2:73:3d:1c:dd:07:f4:c1:40:62:78: 9f:62:37:4e:7f:5e:0d:a3:cd:f4:9e:ce:42:a5:e7:da:a8:6b: 7a:da:de:89:88:2d:32:cb:8a:39:ca:84:58:74:23:1f:14:21: 62:ee:ce:62:d3:df:96:26:3a:3e:96:d9:98:00:cc:59:f1:3b: 65:c6:5b:d2:7a:52:2d:33:3e:95:1d:36:75:c5:2b:db:1c:43: 4f:d4:e0:d2:68:d4:f7:12:29:2e:d9:8f:14:b8:57:9e:0a:76: b2:e4:49:3b:cf:05:be:f2:c4:80:c6:e8:7e:f5:ee:04:33:96: 2a:39:29:45:37:38:2d:04:1d:63:7e:f7:d1:b2:2b:01:3a:bb: 69:8b:9e:20:67:66:51:47:e2:d1:6e:d8:09:a4:f1:f5:5e:e8: c2:36:81:0a:23:46:ba:e3:11:1e:fa:9b:05:07:13:77:2f:67: b6:45:b2:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RjQxMTAvBgNVBAUTKDE0RjlGRjRBMjNBNzIwQjczQkFGRTYwMzM1M0YxMUVC OTczOTI3MTkwHhcNMjUwNjI5MDEyOTI4WhcNMjUwNzA2MDEyOTI4WjAYMRYwFAYD VQQDEw02ODYwOTZmOS1jYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNqIWLTYex6v+p8AfAZNQaRpIv96qZKIs4AMdyxhpUXe7myNfrD+DYskJrkF DP0YjSkdkfB9+wyq6jpPhz/hyvriKJP0wEiniaaOx/0Kls9R0OwXT4QykjiM6yQ3 Th1xW3ZyMZadP+f/Vc8wyl/r5YtOzwgxBO8YkxNf0NExrsKjA9Fe30BNbpYZ8r0I 9rXpzhlkC3mfNMBhGeiSFKSBXKrUzm4QoleWTSW7olz1YjyFU1n5m2XCjEm5lgCP mTVVumTI5o2heO7V8d2rN9lY1gLmFFsJnVxFxnPWaamQBIT85HlE3JaaCy5si/Cg qU4HRqgGdWLGamdZxQq1N6FJpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEtgA90 2S3z4CK0ZXRsNxstSOB9MB8GA1UdIwQYMBaAFBT5/0ojpyC3O6/mAzU/EeuXOScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhGNC83MDc3NjVBODM4 QTExMUVEOUYzQzBDODJDNEY5QUUwMi9GUG5fU2lPbklMYzdyLVlETlQ4UjY1YzVK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZQbl9TaU9uSUxjN3ItWUROVDhSNjVjNUp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhGNC83MDc3NjVBODM4QTExMUVEOUYzQzBDODJDNEY5QUUwMi9GUG5fU2lPbklM YzdyLVlETlQ4UjY1YzVKeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbVyLe43vMXlMSSWhZOSEpgJqGlSQmRJJqlMurmI5Yjo/cHxY67/bB cUfOQYA6IlGbTLd8Adst20CFyOsmrnEnWEMr3RtU1AdT3yAkkIMLonM9HN0H9MFA YnifYjdOf14No830ns5CpefaqGt62t6JiC0yy4o5yoRYdCMfFCFi7s5i09+WJjo+ ltmYAMxZ8TtlxlvSelItMz6VHTZ1xSvbHENP1ODSaNT3Eiku2Y8UuFeeCnay5Ek7 zwW+8sSAxuh+9e4EM5YqOSlFNzgtBB1jfvfRsisBOrtpi54gZ2ZRR+LRbtgJpPH1 XujCNoEKI0a64xEe+psFBxN3L2e2RbJ3 -----END CERTIFICATE-----Generated at Sun Jun 29 13:11:02 2025 by rpki-client