$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: okM4I0Mt8dhVw+FSPjr+PH1tDCJiARIyvHk63Fbe+BA= Subject key identifier: 51:DC:AB:49:B5:5E:A6:8B:1D:F9:F8:B8:1B:5E:BB:10:99:5B:DC:B5 Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 0905 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 08FF Signing time: Fri 22 Aug 2025 20:27:56 +0000 Manifest this update: Fri 22 Aug 2025 20:27:56 +0000 Manifest next update: Fri 29 Aug 2025 20:27:56 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: /bQbbKSnbI+LQU/dw+IdiDEJiI5mvYnIGx7pMjJb6VM=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: uh8Xk70gWxRTmNYaCNUAB+Hh9CL9zqsYHo9ULlX8dpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:27:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2309 (0x905) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23, serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Aug 22 20:27:56 2025 GMT Not After : Aug 29 20:27:56 2025 GMT Subject: CN=68a8d2cc-37ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0d:28:e3:39:1c:f5:e3:7e:a3:75:d9:93:c3: a3:e6:db:96:a8:33:fe:10:fb:ad:19:37:16:1f:b1: 71:01:fd:7e:fe:c7:46:f7:d0:05:9d:fd:58:49:52: 29:27:84:4f:d7:22:31:a3:9d:a3:aa:7d:d7:4a:74: 62:81:ac:50:18:1d:6e:7e:1c:51:af:d3:73:a6:7b: 57:ea:21:81:68:9c:a6:d7:ee:cf:29:a7:e0:8a:fb: 18:a1:90:88:86:6d:14:1e:a2:60:bf:e6:70:67:e0: 1b:f5:28:aa:59:45:79:d0:21:86:43:ce:68:0d:8f: e8:c8:a9:90:d3:3e:0f:02:d6:78:1e:c7:13:37:78: d4:04:b8:b6:03:62:62:16:c9:3b:fe:4a:c8:ed:33: 77:9b:cd:47:55:30:ea:da:7f:48:31:8c:23:02:aa: 7d:b1:4b:a5:62:84:30:3b:b5:49:2e:00:bb:2b:b9: 1b:35:1e:de:48:90:07:d4:c4:e5:4a:a8:5c:cc:7a: a6:e2:5c:7f:99:88:ce:07:c3:4d:17:06:80:d8:20: 92:77:e1:e7:80:1e:0c:9b:ad:e3:d3:01:ed:a7:1b: 45:1a:59:85:f5:1e:b4:5b:ee:ed:29:9b:b8:65:83: 0c:61:ca:f0:43:fb:8e:c0:da:7d:e3:d6:49:2f:10: d8:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:DC:AB:49:B5:5E:A6:8B:1D:F9:F8:B8:1B:5E:BB:10:99:5B:DC:B5 X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:85:44:e6:3c:ec:8e:9d:67:8f:a1:d5:4a:e7:19:c1:82:df: c4:15:9c:b0:29:19:18:ee:b7:64:93:fe:b4:66:56:97:ab:e5: c3:12:67:50:db:8d:82:5a:b7:17:62:0a:19:9b:da:88:5b:95: 6a:3b:ff:18:b3:0b:9f:c2:c2:be:4a:24:52:c3:3c:b0:0a:18: f0:e1:79:ac:22:e6:59:d5:10:65:4a:d8:30:21:bd:93:c7:f5: bc:e7:fb:54:c5:95:55:ab:48:18:0f:b7:ea:3f:5a:cc:dc:1a: 0c:11:ba:25:ac:49:c5:66:c5:a2:8f:0f:a9:e7:5e:1b:00:42: 04:3f:88:0b:87:64:f7:8f:f7:c7:14:40:bf:6c:5c:18:db:0f: 07:d5:18:b4:30:31:77:92:3d:ae:78:9a:91:ae:2b:42:0e:17: 07:f1:08:c7:b6:44:5e:e2:41:d3:60:5f:f5:a1:31:40:7f:65: ff:f4:e6:f5:07:07:77:f1:b6:e6:78:39:88:da:10:e1:3b:15: ec:95:36:04:52:a2:e8:d0:16:b3:5a:99:16:75:ab:c0:87:45: 47:90:b0:fb:b4:a5:e2:76:e0:09:54:a5:21:ff:fc:0f:05:e5: 28:d1:e3:81:cb:af:f8:c6:40:b9:df:5e:a7:5d:c8:45:23:96: f6:f8:ae:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjUwODIyMjAyNzU2WhcNMjUwODI5MjAyNzU2WjAYMRYwFAYD VQQDEw02OGE4ZDJjYy0zN2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Q0o4zkc9eN+o3XZk8Oj5tuWqDP+EPutGTcWH7FxAf1+/sdG99AFnf1YSVIp J4RP1yIxo52jqn3XSnRigaxQGB1ufhxRr9NzpntX6iGBaJym1+7PKafgivsYoZCI hm0UHqJgv+ZwZ+Ab9SiqWUV50CGGQ85oDY/oyKmQ0z4PAtZ4HscTN3jUBLi2A2Ji Fsk7/krI7TN3m81HVTDq2n9IMYwjAqp9sUulYoQwO7VJLgC7K7kbNR7eSJAH1MTl SqhczHqm4lx/mYjOB8NNFwaA2CCSd+HngB4Mm63j0wHtpxtFGlmF9R60W+7tKZu4 ZYMMYcrwQ/uOwNp949ZJLxDY1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHcq0m1 XqaLHfn4uBteuxCZW9y1MB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuhUTmPOyOnWePodVK5xnBgt/EFZywKRkY7rdkk/60ZlaXq+XDEmdQ 242CWrcXYgoZm9qIW5VqO/8YswufwsK+SiRSwzywChjw4XmsIuZZ1RBlStgwIb2T x/W85/tUxZVVq0gYD7fqP1rM3BoMEbolrEnFZsWijw+p514bAEIEP4gLh2T3j/fH FEC/bFwY2w8H1Ri0MDF3kj2ueJqRritCDhcH8QjHtkRe4kHTYF/1oTFAf2X/9Ob1 Bwd38bbmeDmI2hDhOxXslTYEUqLo0BazWpkWdavAh0VHkLD7tKXiduAJVKUh//wP BeUo0eOBy6/4xkC5316nXchFI5b2+K6B -----END CERTIFICATE-----Generated at Sat Aug 23 18:01:27 2025 by rpki-client