$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: +4y/WN3JjUPU/P3oaL7Wo6PbAcqHINf/F81QX3IIchM= Subject key identifier: 5C:54:05:E6:AC:ED:A0:CE:DD:5F:43:5C:EE:94:B7:8A:E1:98:2F:15 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 091D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 0914 Signing time: Fri 04 Jul 2025 20:41:34 +0000 Manifest this update: Fri 04 Jul 2025 20:41:34 +0000 Manifest next update: Fri 11 Jul 2025 20:41:34 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: DsfcvAhfDXDHM1XY7fxeahxpWwDf0N1JXlHRi1A6Pdk=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2333 (0x91d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Jul 4 20:41:34 2025 GMT Not After : Jul 11 20:41:34 2025 GMT Subject: CN=68683c7e-3547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:67:e2:f4:c0:f8:39:fe:e2:9f:84:5f:ce:5c: de:ff:20:f0:e8:36:f7:d3:97:bd:57:b3:ef:04:ba: 33:ec:a0:e9:85:1f:69:9c:69:d6:30:82:14:64:84: 87:53:07:7b:52:ed:5e:5f:25:86:99:c5:58:5c:c6: 7f:08:e0:55:70:73:e7:93:62:63:96:ac:2c:b6:c6: 0c:47:01:bb:13:d6:8e:58:df:ec:a7:d0:3f:f2:bc: e0:7c:9f:b1:ff:97:a9:ed:fc:83:66:31:6e:a0:2c: 81:da:be:29:d0:ae:ad:6b:b7:ec:6a:31:b8:ad:15: 4c:f4:be:bd:7b:2f:c0:39:e2:e1:7b:08:ba:61:2c: c4:55:98:6d:3b:d9:a3:1e:ae:81:0b:f1:3f:b8:2d: 1a:23:89:21:78:41:68:ab:33:1f:13:41:af:00:25: 82:78:6e:d4:60:a6:ca:4f:96:69:0f:4f:83:32:ff: c6:4f:1b:31:9f:ef:e2:86:1e:10:34:95:99:4f:8a: ec:64:e2:21:f3:d0:17:32:83:22:7e:69:bc:37:2e: c4:78:87:13:df:7d:80:72:4d:de:a0:65:db:7d:18: 02:7f:86:fe:92:13:2b:9d:eb:e2:bd:7d:8c:b4:0d: 09:73:eb:18:3f:85:ad:d6:3d:c8:73:15:dd:fb:76: 6d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:54:05:E6:AC:ED:A0:CE:DD:5F:43:5C:EE:94:B7:8A:E1:98:2F:15 X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:f4:d4:c3:72:98:42:f0:8b:96:91:53:93:6f:88:cf:9c:c0: 0e:eb:b2:fa:21:a2:f8:60:61:41:82:57:3d:80:f7:16:e5:4e: ed:11:12:9e:dc:dd:7e:22:86:95:b5:71:bf:10:00:8e:2b:2b: e3:e2:e3:0e:bd:69:ee:52:b7:ac:90:38:d3:18:86:25:54:95: 31:07:bc:b0:3a:b3:63:cc:ed:f8:19:15:f8:40:09:7b:21:37: bb:37:45:28:fd:c6:6d:81:3d:f7:f4:d2:98:2f:f2:97:f8:d5: 68:1a:7c:90:d1:c6:29:12:d0:29:fd:e1:30:6e:6d:3b:70:a2: bb:e4:9e:a8:9c:40:70:a2:c9:4c:96:4d:03:c5:80:ae:61:3d: f2:c9:36:b5:08:9f:e0:12:e2:c6:fa:16:98:b1:71:d0:0d:9e: 18:62:1b:2d:ea:d9:e6:e0:bc:1a:b7:cf:5e:58:08:78:85:1e: 28:5c:e7:62:cb:0c:1b:7e:50:49:c0:b7:1f:4f:7e:2e:8b:75: 6f:7f:b0:c0:37:82:63:c7:d9:ff:e6:c5:32:c5:f0:89:fb:38: d1:78:ba:0f:65:fa:26:b8:56:87:e7:51:49:e4:4a:9b:68:29: 93:c0:a7:c1:fb:df:28:e7:05:22:63:f3:88:87:a6:15:87:d6: 83:0d:87:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUwNzA0MjA0MTM0WhcNMjUwNzExMjA0MTM0WjAYMRYwFAYD VQQDEw02ODY4M2M3ZS0zNTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02fi9MD4Of7in4Rfzlze/yDw6Db305e9V7PvBLoz7KDphR9pnGnWMIIUZISH Uwd7Uu1eXyWGmcVYXMZ/COBVcHPnk2JjlqwstsYMRwG7E9aOWN/sp9A/8rzgfJ+x /5ep7fyDZjFuoCyB2r4p0K6ta7fsajG4rRVM9L69ey/AOeLhewi6YSzEVZhtO9mj Hq6BC/E/uC0aI4kheEFoqzMfE0GvACWCeG7UYKbKT5ZpD0+DMv/GTxsxn+/ihh4Q NJWZT4rsZOIh89AXMoMifmm8Ny7EeIcT332Ack3eoGXbfRgCf4b+khMrnevivX2M tA0Jc+sYP4Wt1j3IcxXd+3ZtfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxUBeas 7aDO3V9DXO6Ut4rhmC8VMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK9NTDcphC8IuWkVOTb4jPnMAO67L6IaL4YGFBglc9gPcW5U7tERKe 3N1+IoaVtXG/EACOKyvj4uMOvWnuUreskDjTGIYlVJUxB7ywOrNjzO34GRX4QAl7 ITe7N0Uo/cZtgT339NKYL/KX+NVoGnyQ0cYpEtAp/eEwbm07cKK75J6onEBwoslM lk0DxYCuYT3yyTa1CJ/gEuLG+haYsXHQDZ4YYhst6tnm4Lwat89eWAh4hR4oXOdi ywwbflBJwLcfT34ui3Vvf7DAN4Jjx9n/5sUyxfCJ+zjReLoPZfomuFaH51FJ5Eqb aCmTwKfB+98o5wUiY/OIh6YVh9aDDYfu -----END CERTIFICATE-----Generated at Sat Jul 5 05:32:35 2025 by rpki-client