$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft File: FDeI0jX9adsvJbd3Il96t2naNQs.mft (raw, json) Hash identifier: h5nxGGp2Sy2P3swmrpc+D+MiDIcgh0HCYBW/nuy/qTg= Subject key identifier: 34:30:3D:55:B6:2E:8A:31:9E:9A:9D:AE:8A:F3:52:E6:DD:55:A9:AC Authority key identifier: 14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B Certificate issuer: /CN=A91C5323/serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Certificate serial: 0584 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft Manifest number: 057C Signing time: Wed 02 Jul 2025 23:38:14 +0000 Manifest this update: Wed 02 Jul 2025 23:38:14 +0000 Manifest next update: Wed 09 Jul 2025 23:38:14 +0000 Files and hashes: 1: FDeI0jX9adsvJbd3Il96t2naNQs.crl (hash: b7zwvRv3uihG6xzQufw2B4bk4XjI023n434wPoYK7EQ=) 2: 2A52AB54138811F0BA2C056DC4F9AE02.roa (hash: 0AvanG6lwhnjCogGu+WtHXRuTCMKYEBdG6vznbvbdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5323, serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Validity Not Before: Jul 2 23:38:14 2025 GMT Not After : Jul 9 23:38:14 2025 GMT Subject: CN=6865c2e6-1227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:08:23:f6:70:c3:2f:90:8d:84:dc:10:b5:18: e4:60:0a:c5:2f:12:26:78:38:85:5d:1f:c7:35:a2: a7:0a:14:30:e9:58:8e:3d:f4:fa:91:5a:c6:1a:d5: 3d:63:18:60:44:bc:bc:60:35:62:8f:ef:9f:29:56: f5:6c:90:2a:3c:81:3b:30:c5:8a:b0:d7:bf:dc:27: 1b:1f:ba:aa:5e:70:92:5a:35:79:eb:a4:48:46:db: d5:ba:58:22:0d:db:7e:d8:b2:96:5e:ba:25:30:7f: f7:70:3e:77:7b:40:5b:53:0a:a9:09:b1:12:c0:f5: 22:c5:58:22:86:46:e9:1b:75:73:3b:73:a3:fa:a2: c3:9c:df:1c:e9:ed:96:c3:6a:bb:71:8a:be:e6:91: 30:3b:51:4e:56:80:f2:67:dd:17:65:c5:fe:45:ce: 9a:f6:56:9f:ba:73:a3:ee:49:e9:1e:37:5e:48:a7: 30:25:68:8c:7d:35:fc:20:c6:36:4b:46:a1:b2:97: 94:c2:df:8d:ac:55:47:17:fb:3e:31:d6:d3:a7:9e: 99:2d:2c:24:ff:fa:79:d6:68:97:4c:2f:25:7b:93: 73:46:55:c1:ee:68:b4:44:f8:e2:4e:11:8e:84:7a: e5:98:c4:43:9c:cf:1a:7f:38:56:d5:a5:cb:de:45: bf:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:30:3D:55:B6:2E:8A:31:9E:9A:9D:AE:8A:F3:52:E6:DD:55:A9:AC X509v3 Authority Key Identifier: keyid:14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:b4:68:a6:09:4f:45:a7:be:f8:6a:6f:d0:b6:55:73:8b:e5: 42:3e:61:09:6d:07:c5:5b:2a:8a:1f:8d:40:78:02:ce:3f:34: 2a:71:9a:a5:1d:d2:a6:d6:b0:a8:ce:1d:ad:b3:ab:3e:ba:76: 7a:31:b5:cc:e5:d8:52:6c:46:ae:4d:44:ef:c0:2e:14:16:ec: fc:fb:90:a2:a9:9e:a8:9d:ab:ed:f6:e8:3f:c5:74:72:18:9c: 9b:9f:da:af:d0:9c:76:7c:b2:c1:ef:df:c2:7f:1e:56:06:77: 45:52:1d:cb:0e:14:ed:4a:db:e5:f3:ca:60:22:9d:19:f9:32: 8a:07:25:25:15:b5:96:90:b6:70:17:2b:cc:bf:5c:92:40:eb: 04:5a:b4:b2:d6:d2:45:6a:ec:f5:c9:7b:87:fc:6f:84:62:ec: 54:7d:12:9a:97:c1:41:1b:84:44:f1:9a:f0:b5:4e:84:67:f7: cd:8a:55:6b:7e:e0:e4:16:3b:23:ae:a3:5e:98:b1:46:13:13: da:b6:43:d0:db:57:42:f3:d7:38:ff:3d:0b:ed:96:06:7c:a2: f3:72:a6:dc:25:8c:c1:d5:8f:d5:d6:28:7a:8b:1b:a9:85:7d: 68:56:73:45:58:f7:0f:b7:16:41:4b:ce:b9:3a:65:c5:0b:a9: d1:07:a7:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMjMxMTAvBgNVBAUTKDE0Mzc4OEQyMzVGRDY5REIyRjI1Qjc3NzIyNUY3QUI3 NjlEQTM1MEIwHhcNMjUwNzAyMjMzODE0WhcNMjUwNzA5MjMzODE0WjAYMRYwFAYD VQQDEw02ODY1YzJlNi0xMjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wgj9nDDL5CNhNwQtRjkYArFLxImeDiFXR/HNaKnChQw6ViOPfT6kVrGGtU9 YxhgRLy8YDVij++fKVb1bJAqPIE7MMWKsNe/3CcbH7qqXnCSWjV566RIRtvVulgi Ddt+2LKWXrolMH/3cD53e0BbUwqpCbESwPUixVgihkbpG3VzO3Oj+qLDnN8c6e2W w2q7cYq+5pEwO1FOVoDyZ90XZcX+Rc6a9lafunOj7knpHjdeSKcwJWiMfTX8IMY2 S0ahspeUwt+NrFVHF/s+MdbTp56ZLSwk//p51miXTC8le5NzRlXB7mi0RPjiThGO hHrlmMRDnM8afzhW1aXL3kW/iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQwPVW2 LooxnpqdrorzUubdVamsMB8GA1UdIwQYMBaAFBQ3iNI1/WnbLyW3dyJferdp2jUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMyMy9ERjY2REUyNEU1 NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFkc3ZKYmQzSWw5NnQybmFO UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZEZUkwalg5YWRzdkpiZDNJbDk2dDJuYU5Rcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTMyMy9ERjY2REUyNEU1NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFk c3ZKYmQzSWw5NnQybmFOUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWtGimCU9Fp774am/QtlVzi+VCPmEJbQfFWyqKH41AeALOPzQqcZql HdKm1rCozh2ts6s+unZ6MbXM5dhSbEauTUTvwC4UFuz8+5CiqZ6onavt9ug/xXRy GJybn9qv0Jx2fLLB79/Cfx5WBndFUh3LDhTtStvl88pgIp0Z+TKKByUlFbWWkLZw FyvMv1ySQOsEWrSy1tJFauz1yXuH/G+EYuxUfRKal8FBG4RE8ZrwtU6EZ/fNilVr fuDkFjsjrqNemLFGExPatkPQ21dC89c4/z0L7ZYGfKLzcqbcJYzB1Y/V1ih6ixup hX1oVnNFWPcPtxZBS865OmXFC6nRB6e0 -----END CERTIFICATE-----Generated at Thu Jul 3 08:05:25 2025 by rpki-client