$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: u0/SLC/3KeHIBdsaYTKDSRA4xnVYnYyeLzDR4aOJH/8= Subject key identifier: 74:67:11:42:63:0A:FA:BC:6B:16:20:93:64:98:B7:52:3F:35:37:73 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 0936 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 092D Signing time: Fri 22 Aug 2025 20:24:02 +0000 Manifest this update: Fri 22 Aug 2025 20:24:01 +0000 Manifest next update: Fri 29 Aug 2025 20:24:01 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: QjBqtQaGVuNPvYqUwpyjPym2NeeO2b5UvxNxVhME3lc=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:24:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2358 (0x936) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Aug 22 20:24:01 2025 GMT Not After : Aug 29 20:24:01 2025 GMT Subject: CN=68a8d1e1-3f86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a5:f7:29:ac:78:da:61:a1:57:05:ff:92:df: d4:fd:bf:02:ce:7f:41:2e:7a:29:ec:53:a3:d0:0e: 5f:7c:ea:1b:1f:88:8c:ac:0a:5c:a5:94:ce:75:f6: ce:6d:2f:2c:30:35:2c:a1:d1:4d:43:7c:bc:1d:e7: c6:4b:a1:6b:3d:d0:01:ea:65:f9:77:7a:48:04:1b: 1e:15:5f:fa:d8:17:e7:cb:36:9d:35:6f:ea:83:d1: 73:b9:bf:a4:2d:6b:47:8d:8a:7b:cd:f9:76:7a:20: 0c:c6:fa:d5:c7:a3:62:f0:c9:50:36:15:d9:fb:d3: ee:5a:8f:34:5d:62:7e:7c:f0:9b:4c:ea:74:9b:87: 5e:a9:46:73:71:dd:67:59:34:4c:8a:45:64:22:0a: 03:95:86:60:84:f7:c0:01:5d:66:22:a3:49:9b:3b: cd:0e:17:9b:8c:da:86:20:19:a9:5c:93:27:cc:4e: e0:22:27:e0:07:ea:24:db:33:35:61:e9:78:01:b1: 34:ef:1e:aa:b0:01:70:3b:83:2a:d2:06:71:c2:36: a6:ae:36:07:51:22:54:14:b9:30:fd:38:53:61:44: 8b:f1:6b:7c:e3:47:94:3c:9e:df:ca:c1:34:04:f5: 3b:0d:b9:b5:17:39:28:52:d1:e3:ed:27:ec:1a:ed: 3c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:67:11:42:63:0A:FA:BC:6B:16:20:93:64:98:B7:52:3F:35:37:73 X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:e5:a6:60:fa:9d:01:b9:98:e8:f3:fc:5b:9f:71:a4:eb:09: 92:98:28:b2:de:4d:4a:35:42:0d:8f:fc:f1:58:85:5f:5c:04: 83:d1:a2:87:f3:a4:d5:59:2e:a6:f1:82:f4:08:0e:50:63:03: d2:d3:5b:82:34:bd:f3:49:d7:02:10:2c:a8:50:85:af:fa:71: 4a:a3:5c:72:7f:13:a2:4a:d8:eb:01:d9:2e:89:cc:a5:23:af: 1a:fa:0d:ef:4b:6c:0b:c8:ef:a6:7b:ec:10:30:5d:a3:ec:4a: 79:de:bc:4e:10:52:09:97:5b:8c:f3:b5:ee:92:d1:8e:c2:09: f1:c4:51:36:dd:91:7f:5f:6c:43:b5:8b:d1:e7:9c:df:9f:3b: 50:10:e9:fc:69:cb:0d:f7:6f:70:fe:5f:f8:33:7e:7f:7a:cb: 68:45:2d:51:8b:f7:99:9a:d2:c3:fb:50:4e:1d:53:29:9b:62: 29:73:e6:3a:d6:71:0f:49:84:9e:93:f9:e7:35:0b:af:88:b4: 7c:19:16:25:84:4b:2d:ec:79:8b:43:5b:5d:b7:95:e4:b6:94: a6:96:f1:2e:4c:cc:ab:3b:46:79:47:30:f7:05:48:53:df:dd: aa:0a:8a:85:08:7e:63:80:22:96:61:cf:a4:90:f5:be:2d:9e: 39:b0:24:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUwODIyMjAyNDAxWhcNMjUwODI5MjAyNDAxWjAYMRYwFAYD VQQDEw02OGE4ZDFlMS0zZjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26X3Kax42mGhVwX/kt/U/b8Czn9BLnop7FOj0A5ffOobH4iMrApcpZTOdfbO bS8sMDUsodFNQ3y8HefGS6FrPdAB6mX5d3pIBBseFV/62BfnyzadNW/qg9Fzub+k LWtHjYp7zfl2eiAMxvrVx6Ni8MlQNhXZ+9PuWo80XWJ+fPCbTOp0m4deqUZzcd1n WTRMikVkIgoDlYZghPfAAV1mIqNJmzvNDhebjNqGIBmpXJMnzE7gIifgB+ok2zM1 Yel4AbE07x6qsAFwO4Mq0gZxwjamrjYHUSJUFLkw/ThTYUSL8Wt840eUPJ7fysE0 BPU7Dbm1FzkoUtHj7SfsGu08oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRnEUJj Cvq8axYgk2SYt1I/NTdzMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA65aZg+p0BuZjo8/xbn3Gk6wmSmCiy3k1KNUINj/zxWIVfXASD0aKH 86TVWS6m8YL0CA5QYwPS01uCNL3zSdcCECyoUIWv+nFKo1xyfxOiStjrAdkuicyl I68a+g3vS2wLyO+me+wQMF2j7Ep53rxOEFIJl1uM87XuktGOwgnxxFE23ZF/X2xD tYvR55zfnztQEOn8acsN929w/l/4M35/estoRS1Ri/eZmtLD+1BOHVMpm2Ipc+Y6 1nEPSYSek/nnNQuviLR8GRYlhEst7HmLQ1tdt5XktpSmlvEuTMyrO0Z5RzD3BUhT 392qCoqFCH5jgCKWYc+kkPW+LZ45sCTU -----END CERTIFICATE-----Generated at Sun Aug 24 00:18:42 2025 by rpki-client