$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: egbXZfuRrICfX5MT+SSrPZD6NjK4XPSguc+fjmATakI= Subject key identifier: 87:C6:BF:0B:0A:21:46:60:CD:5B:1D:F3:6B:C4:E6:6B:9E:4B:B6:DB Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 08E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 08E3 Signing time: Sat 28 Jun 2025 20:05:27 +0000 Manifest this update: Sat 28 Jun 2025 20:05:26 +0000 Manifest next update: Sat 05 Jul 2025 20:05:26 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: o0O2VcpWQXCOlxDZkG/Rql5WnJpa3P5PbsFTmk4cBQg=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: uh8Xk70gWxRTmNYaCNUAB+Hh9CL9zqsYHo9ULlX8dpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:05:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2281 (0x8e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23, serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Jun 28 20:05:26 2025 GMT Not After : Jul 5 20:05:26 2025 GMT Subject: CN=68604b07-6a0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1f:65:b2:b8:af:f5:8d:f7:0d:2c:ce:8b:c4: dc:60:7e:a2:0d:ae:72:6d:78:7a:07:1b:9f:33:12: ba:49:01:51:54:08:93:de:ae:20:cd:09:9f:f4:ad: 0b:4d:40:f1:e5:30:e8:af:f4:f3:9d:12:87:1b:fa: 4e:a3:81:6a:30:8a:11:f6:61:b5:b3:8a:97:40:c2: 60:b3:e6:45:9c:bd:69:15:30:04:9e:ec:43:24:08: b0:28:3c:4b:de:8f:cf:7f:a1:8d:fd:fa:6f:61:12: c9:c3:8f:27:93:b2:ec:2b:3a:5f:a2:3c:08:75:3a: 64:08:18:db:05:2c:12:cb:65:0b:fe:ce:5c:12:41: 0b:e2:6e:d0:4d:ac:f4:9c:0b:bd:94:0d:97:82:93: eb:cd:3b:88:73:8f:4d:b7:29:94:7e:ca:81:b1:dd: 50:20:5d:e9:1c:d2:42:dd:8b:c1:80:8c:c1:53:db: 45:67:8f:8c:2c:f2:5a:83:c4:0b:09:a6:c5:68:49: df:a6:c5:5a:3f:6c:f6:27:4c:3d:b6:6e:c9:b4:37: c2:95:ce:92:3a:71:c7:8b:c7:d2:55:5d:0c:57:de: 43:04:a5:eb:23:e7:12:c8:fc:4a:d1:33:4e:5b:4a: 06:71:0f:ed:29:c5:11:80:93:67:6b:b7:63:42:5e: a0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C6:BF:0B:0A:21:46:60:CD:5B:1D:F3:6B:C4:E6:6B:9E:4B:B6:DB X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:a3:bf:9b:24:b3:78:f1:d2:1c:19:dd:c6:b4:62:49:bb:6b: 35:68:12:ae:48:d5:f8:4e:d1:0b:cc:2b:2e:6a:a6:31:3a:6c: 86:68:54:f9:bb:6c:88:8d:5f:61:d7:1f:01:12:f2:85:fa:4d: 31:e1:0e:f3:77:16:8c:22:9b:1e:e3:3e:56:96:f9:71:85:9e: b5:a9:86:4a:ea:b6:e3:12:07:aa:9b:db:10:eb:63:d3:26:2d: f6:95:e6:ed:6f:05:74:c5:f7:e7:8f:3f:ba:0e:1d:38:68:b0: 11:42:28:0b:32:6c:89:9d:b0:4e:bd:fb:3b:6f:ee:8c:be:dc: 2c:77:a6:c9:17:c0:f5:a5:bb:44:e0:32:d3:8a:e8:a8:a7:21: c7:93:b4:10:54:67:43:b4:76:e4:54:f2:ac:82:ee:ff:90:1f: 04:90:51:f0:d8:4a:a4:82:66:75:b2:77:80:c9:ca:23:98:46: ca:7c:d8:f5:59:93:f4:7b:b9:1f:02:26:97:bd:c9:6d:b9:8f: 72:13:61:a3:29:6c:5f:ca:e3:d1:a8:f0:0d:4b:bc:d3:11:82: ee:d2:16:0a:f2:05:36:3f:25:0e:b5:12:37:ee:21:9c:cf:58: 21:54:c1:38:14:52:e5:51:2b:7f:4f:37:a9:5e:a8:89:3b:be: 40:b8:b2:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjUwNjI4MjAwNTI2WhcNMjUwNzA1MjAwNTI2WjAYMRYwFAYD VQQDEw02ODYwNGIwNy02YTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqB9lsriv9Y33DSzOi8TcYH6iDa5ybXh6BxufMxK6SQFRVAiT3q4gzQmf9K0L TUDx5TDor/TznRKHG/pOo4FqMIoR9mG1s4qXQMJgs+ZFnL1pFTAEnuxDJAiwKDxL 3o/Pf6GN/fpvYRLJw48nk7LsKzpfojwIdTpkCBjbBSwSy2UL/s5cEkEL4m7QTaz0 nAu9lA2XgpPrzTuIc49NtymUfsqBsd1QIF3pHNJC3YvBgIzBU9tFZ4+MLPJag8QL CabFaEnfpsVaP2z2J0w9tm7JtDfClc6SOnHHi8fSVV0MV95DBKXrI+cSyPxK0TNO W0oGcQ/tKcURgJNna7djQl6gPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfGvwsK IUZgzVsd82vE5mueS7bbMB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCo7+bJLN48dIcGd3GtGJJu2s1aBKuSNX4TtELzCsuaqYxOmyGaFT5 u2yIjV9h1x8BEvKF+k0x4Q7zdxaMIpse4z5WlvlxhZ61qYZK6rbjEgeqm9sQ62PT Ji32lebtbwV0xffnjz+6Dh04aLARQigLMmyJnbBOvfs7b+6Mvtwsd6bJF8D1pbtE 4DLTiuiopyHHk7QQVGdDtHbkVPKsgu7/kB8EkFHw2EqkgmZ1sneAycojmEbKfNj1 WZP0e7kfAiaXvcltuY9yE2GjKWxfyuPRqPANS7zTEYLu0hYK8gU2PyUOtRI37iGc z1ghVME4FFLlUSt/TzepXqiJO75AuLLa -----END CERTIFICATE-----Generated at Mon Jun 30 11:41:05 2025 by rpki-client