$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft File: FDeI0jX9adsvJbd3Il96t2naNQs.mft (raw, json) Hash identifier: 9+elsj1KJWgnYa7VtQ6DwYeAlqQXgOw0ywoViD7Fpas= Subject key identifier: CE:6B:3D:BD:06:DB:77:E8:E9:92:5C:6F:59:08:B9:74:D6:B6:1D:04 Authority key identifier: 14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B Certificate issuer: /CN=A91C5323/serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Certificate serial: 059F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft Manifest number: 0597 Signing time: Fri 22 Aug 2025 23:25:37 +0000 Manifest this update: Fri 22 Aug 2025 23:25:37 +0000 Manifest next update: Fri 29 Aug 2025 23:25:37 +0000 Files and hashes: 1: FDeI0jX9adsvJbd3Il96t2naNQs.crl (hash: Sw3MpTAiJML7NYmLwmoS8r2YStvuT/QfdNxu2femJGo=) 2: 2A52AB54138811F0BA2C056DC4F9AE02.roa (hash: 0AvanG6lwhnjCogGu+WtHXRuTCMKYEBdG6vznbvbdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:25:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1439 (0x59f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5323, serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Validity Not Before: Aug 22 23:25:37 2025 GMT Not After : Aug 29 23:25:37 2025 GMT Subject: CN=68a8fc71-df66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a1:69:58:65:d1:50:9a:25:41:84:1a:1a:8c: d5:d6:5d:c6:f7:5e:75:ce:0a:6b:ce:91:f9:84:35: 96:e9:19:d6:3d:f8:ec:26:c1:8b:07:6f:b9:c1:30: f9:a8:68:f6:5d:a8:cd:96:eb:20:d9:0f:47:a0:c4: 07:13:15:27:c7:af:6e:2d:17:14:aa:c9:af:1a:3a: 3a:31:e0:8c:ce:fb:f8:e5:81:8e:ea:00:24:27:98: bf:d5:9c:5f:d9:c0:dc:29:e8:04:1d:3b:cf:e4:4e: dc:05:64:42:be:4c:b1:fa:13:e5:9f:84:ed:35:1b: 89:4b:30:e1:ad:c7:ce:50:cf:b0:db:af:b3:8d:41: 1a:50:fe:63:94:ef:b3:d6:ca:65:e6:b9:d4:a9:78: bf:f1:f9:c1:d5:52:e8:b0:32:8b:3e:3f:5b:16:85: a8:ee:90:fe:34:c3:f7:ec:2d:a6:4f:4b:f5:8c:17: f8:75:42:60:35:bd:9d:67:e6:a4:1a:ea:bf:0d:b2: e3:ac:dc:c2:b0:8e:cf:e8:9a:a9:e6:39:8e:d6:81: 05:ff:54:3d:3b:ea:37:e7:e2:b0:ca:e9:0b:23:43: 82:ea:6a:b7:66:7b:6d:55:fd:a7:e3:0c:92:0f:2e: c5:44:d8:43:c9:5d:17:d9:e6:7e:96:5e:90:3f:33: 6a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:6B:3D:BD:06:DB:77:E8:E9:92:5C:6F:59:08:B9:74:D6:B6:1D:04 X509v3 Authority Key Identifier: keyid:14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:83:44:21:fc:dc:7d:88:57:76:6d:5f:95:7d:6a:5d:f6:be: e1:04:d3:3f:69:c9:e9:30:8a:79:0a:d6:6e:10:77:0d:53:6e: 2f:b2:fb:f2:f7:a4:1a:6b:71:da:77:c9:e0:5f:31:54:18:97: 21:7a:1a:52:60:90:c2:5b:6e:72:52:8a:38:36:5d:ac:2a:e3: 0b:89:68:40:ba:73:5b:e8:38:46:1d:c6:11:bc:cf:2e:ed:9b: dd:95:df:ba:e2:66:58:56:2a:2b:55:ca:10:03:b9:1e:09:98: 1b:26:3e:57:58:7b:81:f4:80:94:1d:d4:0f:f5:1f:4e:2c:b1: ac:12:03:24:38:45:8d:ba:6c:63:2a:89:ad:dc:f1:65:b8:6c: 3e:08:7b:62:a6:0c:ab:87:85:11:c6:8c:3f:1b:06:03:22:e6: 2e:ab:52:2c:6c:45:f9:cd:3f:f9:52:13:b8:59:82:8d:52:35: 35:a0:fb:c8:4c:f1:0b:80:32:30:71:d5:89:c6:f9:d2:83:90: 47:f6:cb:4f:83:f5:ed:08:88:73:3d:6f:d6:bd:cb:2a:e8:76: 2f:30:2d:c6:cf:6b:b6:53:1d:d6:64:8d:31:53:d2:f4:d4:5c: 5f:21:cd:ef:6e:0f:c5:aa:fe:52:87:b4:8d:38:f9:59:04:f0: 0f:8f:d5:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMjMxMTAvBgNVBAUTKDE0Mzc4OEQyMzVGRDY5REIyRjI1Qjc3NzIyNUY3QUI3 NjlEQTM1MEIwHhcNMjUwODIyMjMyNTM3WhcNMjUwODI5MjMyNTM3WjAYMRYwFAYD VQQDEw02OGE4ZmM3MS1kZjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16FpWGXRUJolQYQaGozV1l3G9151zgprzpH5hDWW6RnWPfjsJsGLB2+5wTD5 qGj2XajNlusg2Q9HoMQHExUnx69uLRcUqsmvGjo6MeCMzvv45YGO6gAkJ5i/1Zxf 2cDcKegEHTvP5E7cBWRCvkyx+hPln4TtNRuJSzDhrcfOUM+w26+zjUEaUP5jlO+z 1spl5rnUqXi/8fnB1VLosDKLPj9bFoWo7pD+NMP37C2mT0v1jBf4dUJgNb2dZ+ak Guq/DbLjrNzCsI7P6Jqp5jmO1oEF/1Q9O+o35+KwyukLI0OC6mq3ZnttVf2n4wyS Dy7FRNhDyV0X2eZ+ll6QPzNqnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM5rPb0G 23fo6ZJcb1kIuXTWth0EMB8GA1UdIwQYMBaAFBQ3iNI1/WnbLyW3dyJferdp2jUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMyMy9ERjY2REUyNEU1 NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFkc3ZKYmQzSWw5NnQybmFO UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZEZUkwalg5YWRzdkpiZDNJbDk2dDJuYU5Rcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTMyMy9ERjY2REUyNEU1NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFk c3ZKYmQzSWw5NnQybmFOUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQg0Qh/Nx9iFd2bV+VfWpd9r7hBNM/acnpMIp5CtZuEHcNU24vsvvy 96Qaa3Had8ngXzFUGJchehpSYJDCW25yUoo4Nl2sKuMLiWhAunNb6DhGHcYRvM8u 7Zvdld+64mZYViorVcoQA7keCZgbJj5XWHuB9ICUHdQP9R9OLLGsEgMkOEWNumxj Komt3PFluGw+CHtipgyrh4URxow/GwYDIuYuq1IsbEX5zT/5UhO4WYKNUjU1oPvI TPELgDIwcdWJxvnSg5BH9stPg/XtCIhzPW/Wvcsq6HYvMC3Gz2u2Ux3WZI0xU9L0 1FxfIc3vbg/Fqv5Sh7SNOPlZBPAPj9Wi -----END CERTIFICATE-----Generated at Sun Aug 24 06:44:18 2025 by rpki-client