$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: 7QbBusvnDm5MwKuGak2S17S8AIgCM4A4W5lhznt6Uok= Subject key identifier: 37:8F:6F:16:57:BC:D5:AA:F0:C9:7C:32:86:85:7B:CD:11:E0:7C:1E Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: 01B1 Signing time: Thu 03 Jul 2025 03:13:58 +0000 Manifest this update: Thu 03 Jul 2025 03:13:58 +0000 Manifest next update: Thu 10 Jul 2025 03:13:58 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: aNiyFZyvry4TzBANhqa5dDRbNFlWO2FfK3bO+9x6B3I=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: pRhFi90u5iaLYPX6g3PP+55Ior11n+chfHkyJHcRUKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:13:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: Jul 3 03:13:58 2025 GMT Not After : Jul 10 03:13:58 2025 GMT Subject: CN=6865f576-924b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2d:4e:c5:ae:0f:21:fb:f0:34:5e:7c:20:fa: 3b:f8:5d:ea:b7:87:65:8d:0f:d4:e4:91:c9:8b:e0: 77:d5:df:79:cc:63:86:d3:b6:c3:f7:47:1a:96:ee: be:88:05:9e:0a:1a:3b:17:10:f6:ce:d3:9a:8b:32: 12:b2:30:ad:91:6f:be:fb:a2:30:41:f8:9a:1c:6a: c8:78:6a:ac:4f:78:cb:5d:8d:5d:33:2d:ef:59:39: 9f:f4:23:8a:2c:04:e8:b8:78:77:7d:48:8e:db:64: b8:a8:ff:ca:d6:1d:35:7e:49:5c:fd:43:92:1f:17: 03:f9:ef:11:f8:19:f9:95:ba:e1:e8:73:e6:e7:8d: 1f:f2:13:83:c3:01:3d:17:84:0e:53:0f:1c:b0:46: 5b:15:42:a4:df:d8:17:08:bc:49:2e:12:dc:8d:62: 50:ea:4e:be:76:c5:99:73:c4:18:be:0b:0e:0a:99: 6b:db:58:13:48:30:2e:cf:70:a3:ad:3c:fb:fe:65: 72:64:af:29:cc:b4:69:cf:85:8b:11:6e:e6:91:79: 1c:b4:f9:5c:f0:2d:73:eb:b8:64:51:c9:8f:98:f4: da:a6:58:5a:6a:e5:8d:3d:29:39:57:6d:f5:09:ef: e2:24:4f:5c:a6:a1:1b:97:b2:15:80:51:e8:97:64: 9b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8F:6F:16:57:BC:D5:AA:F0:C9:7C:32:86:85:7B:CD:11:E0:7C:1E X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:59:11:29:8a:42:7c:b7:d8:c9:a6:e7:ea:ca:c0:da:0f:9b: 84:39:18:a0:af:4f:53:09:db:83:37:25:a4:5c:8f:ef:36:ed: 03:0c:be:e4:48:c1:f0:47:41:ad:57:54:63:03:08:b5:e7:0a: c9:d8:be:f9:51:22:81:94:1d:12:31:0c:64:29:80:6d:0a:1d: 75:ea:24:53:62:d9:99:1e:43:c3:ed:c9:76:84:b7:9c:f3:a4: ab:19:55:36:d5:ce:ec:91:14:b6:12:3a:d3:32:af:18:78:e8: 4a:d0:ee:4b:34:83:1d:79:58:be:0e:c2:c9:0f:58:fd:ba:2e: 7b:57:1a:18:68:f4:33:03:b7:c4:24:28:0a:0f:c5:e0:a3:3c: 15:81:af:74:db:2a:7d:20:01:8f:ff:d5:e4:64:ed:11:e8:a8: cc:5a:f8:c4:35:d2:d6:bc:2a:91:fa:c8:f4:2a:b4:3b:f0:ea: 09:40:49:a0:33:d8:71:f2:72:0d:45:da:66:a9:3b:20:2e:54: 53:6c:9f:6b:b5:5c:a8:fa:bc:df:ba:3c:6b:d9:02:a4:49:db: 0d:cb:29:3e:af:95:33:34:88:71:32:4b:c7:5b:1f:74:44:9b: 80:6f:ba:c1:12:4f:a3:91:7c:c0:b5:96:4d:6f:a4:66:48:da: 4e:f1:d4:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUwNzAzMDMxMzU4WhcNMjUwNzEwMDMxMzU4WjAYMRYwFAYD VQQDEw02ODY1ZjU3Ni05MjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2S1Oxa4PIfvwNF58IPo7+F3qt4dljQ/U5JHJi+B31d95zGOG07bD90calu6+ iAWeCho7FxD2ztOaizISsjCtkW+++6IwQfiaHGrIeGqsT3jLXY1dMy3vWTmf9COK LATouHh3fUiO22S4qP/K1h01fklc/UOSHxcD+e8R+Bn5lbrh6HPm540f8hODwwE9 F4QOUw8csEZbFUKk39gXCLxJLhLcjWJQ6k6+dsWZc8QYvgsOCplr21gTSDAuz3Cj rTz7/mVyZK8pzLRpz4WLEW7mkXkctPlc8C1z67hkUcmPmPTaplhaauWNPSk5V231 Ce/iJE9cpqEbl7IVgFHol2SbJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDePbxZX vNWq8Ml8MoaFe80R4HweMB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFWREpikJ8t9jJpufqysDaD5uEORigr09TCduDNyWkXI/vNu0DDL7k SMHwR0GtV1RjAwi15wrJ2L75USKBlB0SMQxkKYBtCh116iRTYtmZHkPD7cl2hLec 86SrGVU21c7skRS2EjrTMq8YeOhK0O5LNIMdeVi+DsLJD1j9ui57VxoYaPQzA7fE JCgKD8XgozwVga902yp9IAGP/9XkZO0R6KjMWvjENdLWvCqR+sj0KrQ78OoJQEmg M9hx8nINRdpmqTsgLlRTbJ9rtVyo+rzfujxr2QKkSdsNyyk+r5UzNIhxMkvHWx90 RJuAb7rBEk+jkXzAtZZNb6RmSNpO8dSF -----END CERTIFICATE-----Generated at Sat Jul 5 01:19:33 2025 by rpki-client