$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft File: FPn_SiOnILc7r-YDNT8R65c5Jxk.mft (raw, json) Hash identifier: gC9YAiaeYmcR8GIfdkBZhakjjfLfHKLhh4lUSFj7rB0= Subject key identifier: 83:75:81:B3:13:7B:26:17:F9:A9:82:C3:07:A1:DE:1D:D0:80:AC:93 Authority key identifier: 14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 Certificate issuer: /CN=A91BF8F4/serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft Manifest number: 0255 Signing time: Sun 19 Oct 2025 03:58:49 +0000 Manifest this update: Sun 19 Oct 2025 03:58:48 +0000 Manifest next update: Sun 26 Oct 2025 03:58:48 +0000 Files and hashes: 1: FPn_SiOnILc7r-YDNT8R65c5Jxk.crl (hash: xjWst9TN0Yf8GaJsojcBEYH8PH9C2vsQFCafxuo4RKo=) 2: 9B3244E038A411EDB5C86A28C4F9AE02.roa (hash: z3vMrh+MfifC7nf/d8HWXEmLlkM4nBll9m3BXQVcSyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8F4, serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Validity Not Before: Oct 19 03:58:48 2025 GMT Not After : Oct 26 03:58:48 2025 GMT Subject: CN=68f461f8-1ac6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:79:24:02:e4:18:e4:7e:10:a0:ac:54:3b:0b: 98:3d:0e:63:b3:9a:4a:08:6f:01:72:fc:ff:2f:7b: b2:cd:ce:25:48:ba:14:a2:d2:cc:bb:2d:2a:2e:f1: e2:ff:37:6d:86:f8:5f:01:fd:e8:63:b7:2d:74:91: 31:ba:d3:e4:6b:81:e7:8a:da:21:2b:4a:e3:6a:60: 43:e9:3f:c9:eb:6e:7e:4a:0e:76:57:57:cf:1a:61: b8:c7:2d:6e:b7:d8:27:58:f2:c2:f9:e4:d9:de:f1: b6:c2:c1:ce:75:60:54:15:23:1b:34:24:72:20:e9: 18:7d:bc:83:51:bc:41:2c:37:0e:9f:b7:6d:a8:81: 29:99:f7:0d:5c:73:72:f3:f3:80:f7:2b:41:f9:37: 0b:43:49:3c:00:18:2a:df:29:76:9f:5e:ba:43:2d: 72:47:1e:40:d1:51:9a:ce:b8:12:96:9e:50:83:ae: ff:2e:ce:ca:d2:92:06:a2:d0:70:eb:68:59:62:2b: 38:d2:2b:e8:e2:ec:61:ae:ad:78:af:a0:3f:92:e9: 8f:a1:5f:50:21:c5:5a:55:06:bf:8e:4a:59:24:42: 6a:b3:ef:56:8c:d9:22:fd:be:fa:9f:6a:6c:71:6d: e8:3e:4e:7b:38:a2:72:02:f7:fc:8e:f1:69:c1:82: 5c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:75:81:B3:13:7B:26:17:F9:A9:82:C3:07:A1:DE:1D:D0:80:AC:93 X509v3 Authority Key Identifier: keyid:14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:94:c3:fc:da:90:2a:ce:0a:df:cf:42:b9:f4:0e:4e:72:64: be:22:ee:68:ce:53:2f:c1:1f:90:5c:e4:1b:cf:cc:f5:d0:12: e1:5b:03:54:e9:c2:b1:72:68:a5:1c:2a:82:00:c3:76:a8:1c: 2c:2c:62:34:93:9b:50:97:9f:09:ed:ed:52:60:0d:5c:44:7b: f3:b2:66:62:c9:c6:c8:d8:4c:4d:7b:c4:65:45:0e:ef:0d:0c: 0b:95:43:73:8b:bf:e6:75:b0:03:62:80:ff:77:b2:76:5f:da: 07:52:9c:ef:e4:08:ad:2f:ed:7e:dd:04:d9:50:14:47:0b:b6: 3c:e6:04:6d:81:7f:bd:16:0e:dc:d0:f8:90:bb:84:b6:80:e4: 48:fc:b7:44:12:11:4b:97:69:9e:d6:18:8a:ee:61:68:22:4d: 44:4e:27:39:0e:54:86:99:fc:89:4f:d3:49:64:dc:a7:82:2e: 6f:96:48:56:24:d7:83:52:62:43:83:f4:cb:74:92:1c:e0:db: 88:d6:05:b1:2b:18:be:0d:93:95:bf:ac:61:5f:34:b8:d5:91: 67:b3:88:fa:e3:65:b9:1b:2d:df:97:d4:1e:d3:e8:47:0e:fc: 8c:95:ac:f8:d8:0e:5f:65:bb:f6:3f:4b:7c:8c:b6:95:79:de: 37:a6:11:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RjQxMTAvBgNVBAUTKDE0RjlGRjRBMjNBNzIwQjczQkFGRTYwMzM1M0YxMUVC OTczOTI3MTkwHhcNMjUxMDE5MDM1ODQ4WhcNMjUxMDI2MDM1ODQ4WjAYMRYwFAYD VQQDEw02OGY0NjFmOC0xYWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HkkAuQY5H4QoKxUOwuYPQ5js5pKCG8Bcvz/L3uyzc4lSLoUotLMuy0qLvHi /zdthvhfAf3oY7ctdJExutPka4HnitohK0rjamBD6T/J625+Sg52V1fPGmG4xy1u t9gnWPLC+eTZ3vG2wsHOdWBUFSMbNCRyIOkYfbyDUbxBLDcOn7dtqIEpmfcNXHNy 8/OA9ytB+TcLQ0k8ABgq3yl2n166Qy1yRx5A0VGazrgSlp5Qg67/Ls7K0pIGotBw 62hZYis40ivo4uxhrq14r6A/kumPoV9QIcVaVQa/jkpZJEJqs+9WjNki/b76n2ps cW3oPk57OKJyAvf8jvFpwYJcKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIN1gbMT eyYX+amCwweh3h3QgKyTMB8GA1UdIwQYMBaAFBT5/0ojpyC3O6/mAzU/EeuXOScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhGNC83MDc3NjVBODM4 QTExMUVEOUYzQzBDODJDNEY5QUUwMi9GUG5fU2lPbklMYzdyLVlETlQ4UjY1YzVK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZQbl9TaU9uSUxjN3ItWUROVDhSNjVjNUp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhGNC83MDc3NjVBODM4QTExMUVEOUYzQzBDODJDNEY5QUUwMi9GUG5fU2lPbklM YzdyLVlETlQ4UjY1YzVKeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAelMP82pAqzgrfz0K59A5OcmS+Iu5ozlMvwR+QXOQbz8z10BLhWwNU 6cKxcmilHCqCAMN2qBwsLGI0k5tQl58J7e1SYA1cRHvzsmZiycbI2ExNe8RlRQ7v DQwLlUNzi7/mdbADYoD/d7J2X9oHUpzv5AitL+1+3QTZUBRHC7Y85gRtgX+9Fg7c 0PiQu4S2gORI/LdEEhFLl2me1hiK7mFoIk1ETic5DlSGmfyJT9NJZNyngi5vlkhW JNeDUmJDg/TLdJIc4NuI1gWxKxi+DZOVv6xhXzS41ZFns4j642W5Gy3fl9Qe0+hH DvyMlaz42A5fZbv2P0t8jLaVed43phGu -----END CERTIFICATE-----Generated at Mon Oct 20 22:41:51 2025 by rpki-client