$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft File: FPn_SiOnILc7r-YDNT8R65c5Jxk.mft (raw, json) Hash identifier: S2uiWcVzpE1TXI1bNyaizL/bfYmbnINV8WuMdHlof9Y= Subject key identifier: C4:1F:1D:6E:04:A4:07:42:CF:DD:B3:92:0D:CB:25:7A:B3:39:B6:EF Authority key identifier: 14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 Certificate issuer: /CN=A91BF8F4/serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft Manifest number: 0238 Signing time: Sat 23 Aug 2025 02:07:13 +0000 Manifest this update: Sat 23 Aug 2025 02:07:13 +0000 Manifest next update: Sat 30 Aug 2025 02:07:13 +0000 Files and hashes: 1: FPn_SiOnILc7r-YDNT8R65c5Jxk.crl (hash: hdT2HNjDON+B/q4BLUeb7QczHkcVA0UGl13JmtUf9tE=) 2: 9B3244E038A411EDB5C86A28C4F9AE02.roa (hash: z3vMrh+MfifC7nf/d8HWXEmLlkM4nBll9m3BXQVcSyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8F4, serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Validity Not Before: Aug 23 02:07:13 2025 GMT Not After : Aug 30 02:07:13 2025 GMT Subject: CN=68a92251-7110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fe:61:05:5c:57:e4:09:01:9a:23:07:66:81: f0:d5:32:7e:ec:ba:da:9f:af:3e:48:df:46:df:d2: 56:c6:d0:ef:c2:de:ac:ac:ad:df:67:eb:06:a3:b5: 7a:4b:fc:8a:69:56:af:0f:22:d4:b8:ba:80:ce:36: 2f:35:98:a1:8f:86:0c:98:23:ff:e7:d1:8b:0b:90: 25:0a:99:34:7f:0e:f6:c1:9c:40:23:7a:77:89:3d: 54:dd:8b:67:3a:7e:1a:7f:64:82:dc:56:79:99:82: a4:ab:ba:68:2e:9f:2a:2e:07:99:d6:2a:f4:bb:da: 7c:b7:e2:81:fd:c5:6c:6a:33:dc:ad:1b:d7:6d:4f: cb:31:bf:98:de:95:38:c4:32:d1:c1:3a:57:ae:90: ff:9d:54:16:fe:0e:37:9a:c5:5f:8e:d7:68:ce:4f: 37:b7:d1:50:7f:6b:05:24:30:8a:63:11:e5:d7:13: df:d1:00:12:de:70:5a:ca:8c:67:d7:aa:bd:8f:52: 61:8b:b9:19:92:dc:62:e7:f1:be:c1:f7:6b:74:15: ad:18:f5:d1:8d:47:73:8b:c5:79:c3:86:bd:b0:e0: 06:2f:46:32:66:dd:a2:3b:17:99:c0:ef:9b:10:9c: ff:40:4d:a6:3e:38:1d:60:08:2e:92:e2:3a:71:3a: 30:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:1F:1D:6E:04:A4:07:42:CF:DD:B3:92:0D:CB:25:7A:B3:39:B6:EF X509v3 Authority Key Identifier: keyid:14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b8:75:8b:97:68:5c:33:52:c5:2e:59:c1:52:ea:26:4a:c8: 43:6a:8c:cf:86:dc:3d:7d:2b:f6:84:8a:25:5a:18:d5:47:1f: 4b:a6:2b:49:91:2e:4e:8e:d7:7b:42:7b:17:75:2b:1d:b2:2d: f1:cf:03:03:7d:da:0e:b4:15:55:33:98:26:ac:53:13:57:8d: ce:13:ee:82:d0:32:2a:f8:46:d0:f3:6c:1f:a1:66:a7:b7:43: 55:41:53:6e:94:20:b7:91:7d:1b:ce:3c:bc:e8:e2:22:d4:35: 80:9f:32:7a:e2:ee:b0:f1:2c:75:99:f1:83:1e:c9:8a:e4:b5: 36:3c:28:b3:ca:18:c0:1a:5b:36:b3:6d:4f:b2:8f:4c:09:06: 1f:58:8a:b3:15:38:46:bc:8c:2b:fd:c5:97:3a:b3:da:c0:4c: 9b:e3:21:ec:5f:f2:f4:a7:45:2f:f2:1e:e9:f5:6d:b2:f2:a7: b4:e5:0c:3a:a7:e5:a0:70:d4:37:eb:d2:a6:ed:b7:7d:15:b1: 4e:3b:d9:95:3f:ad:13:95:c3:e2:a0:a5:aa:a2:bf:2f:fd:eb: 60:c2:40:ae:37:7b:4d:8b:2c:3b:a5:da:e7:36:53:84:8d:f7: 87:3a:e8:d4:d6:fb:5e:ca:4f:7c:04:82:b0:e2:79:90:b9:a8: 21:c5:85:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RjQxMTAvBgNVBAUTKDE0RjlGRjRBMjNBNzIwQjczQkFGRTYwMzM1M0YxMUVC OTczOTI3MTkwHhcNMjUwODIzMDIwNzEzWhcNMjUwODMwMDIwNzEzWjAYMRYwFAYD VQQDEw02OGE5MjI1MS03MTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2v5hBVxX5AkBmiMHZoHw1TJ+7Lran68+SN9G39JWxtDvwt6srK3fZ+sGo7V6 S/yKaVavDyLUuLqAzjYvNZihj4YMmCP/59GLC5AlCpk0fw72wZxAI3p3iT1U3Ytn On4af2SC3FZ5mYKkq7poLp8qLgeZ1ir0u9p8t+KB/cVsajPcrRvXbU/LMb+Y3pU4 xDLRwTpXrpD/nVQW/g43msVfjtdozk83t9FQf2sFJDCKYxHl1xPf0QAS3nBayoxn 16q9j1Jhi7kZktxi5/G+wfdrdBWtGPXRjUdzi8V5w4a9sOAGL0YyZt2iOxeZwO+b EJz/QE2mPjgdYAgukuI6cTowywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQfHW4E pAdCz92zkg3LJXqzObbvMB8GA1UdIwQYMBaAFBT5/0ojpyC3O6/mAzU/EeuXOScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhGNC83MDc3NjVBODM4 QTExMUVEOUYzQzBDODJDNEY5QUUwMi9GUG5fU2lPbklMYzdyLVlETlQ4UjY1YzVK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZQbl9TaU9uSUxjN3ItWUROVDhSNjVjNUp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhGNC83MDc3NjVBODM4QTExMUVEOUYzQzBDODJDNEY5QUUwMi9GUG5fU2lPbklM YzdyLVlETlQ4UjY1YzVKeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNuHWLl2hcM1LFLlnBUuomSshDaozPhtw9fSv2hIolWhjVRx9LpitJ kS5Ojtd7QnsXdSsdsi3xzwMDfdoOtBVVM5gmrFMTV43OE+6C0DIq+EbQ82wfoWan t0NVQVNulCC3kX0bzjy86OIi1DWAnzJ64u6w8Sx1mfGDHsmK5LU2PCizyhjAGls2 s21Pso9MCQYfWIqzFThGvIwr/cWXOrPawEyb4yHsX/L0p0Uv8h7p9W2y8qe05Qw6 p+WgcNQ369Km7bd9FbFOO9mVP60TlcPioKWqor8v/etgwkCuN3tNiyw7pdrnNlOE jfeHOujU1vteyk98BIKw4nmQuaghxYWt -----END CERTIFICATE-----Generated at Sat Aug 23 16:06:35 2025 by rpki-client