$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: eKva46xrKFRVA3VrMovzoTT/K8Jl/eZgmk977Mro0AY= Subject key identifier: CF:D3:F0:2E:A4:B8:46:A3:36:60:61:CD:0B:E6:12:0B:53:A9:A0:4D Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: 01CB Signing time: Sat 23 Aug 2025 02:59:14 +0000 Manifest this update: Sat 23 Aug 2025 02:59:14 +0000 Manifest next update: Sat 30 Aug 2025 02:59:14 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: g2+s0T1aP6LHLZ3fzs0PZkFwU3I6QuNhxZFuH1iW2b4=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: pRhFi90u5iaLYPX6g3PP+55Ior11n+chfHkyJHcRUKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: Aug 23 02:59:14 2025 GMT Not After : Aug 30 02:59:14 2025 GMT Subject: CN=68a92e82-1cac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:9f:2b:f3:64:69:c0:6f:59:2e:19:6e:54:07: fa:fb:cc:07:e0:11:9c:b9:56:fe:d3:7b:51:c6:5d: eb:68:d9:63:bd:d0:a4:e5:d4:85:f7:51:89:1a:dd: f4:4d:6f:b0:82:a9:6a:9d:01:b1:e1:e5:cc:4b:86: 04:2d:22:ed:4f:82:2b:b9:07:a2:08:ba:39:01:38: 8d:a1:7a:ff:47:92:e1:08:63:b7:f3:4c:0b:a3:2e: 20:61:9d:6e:82:f1:37:38:3c:9e:22:06:c1:c3:e3: 00:78:e6:6c:77:aa:c8:64:4e:52:6b:c2:c2:7b:5b: 17:67:f2:d1:f9:49:1b:bc:1a:18:00:63:23:4f:7a: bf:65:0c:2f:8d:6f:1b:db:16:be:51:95:c4:c0:dc: fc:e5:41:61:1b:af:2d:ff:5f:69:e6:48:23:be:59: 8f:c7:8e:9b:fb:1f:a7:cb:1f:70:d1:c9:4b:a3:20: c0:3e:53:64:20:3d:53:9c:4b:65:b6:95:7d:07:de: 4b:83:7a:0c:d7:93:0c:ee:c2:8a:c8:c8:0b:13:48: 3d:ae:b1:6b:9a:60:9c:d8:23:68:14:44:44:c2:0e: d3:b7:91:e3:52:1f:96:54:1b:0f:33:a4:d2:f1:28: fb:75:14:67:24:d4:83:f3:e1:fc:f9:f8:7c:08:4c: e4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D3:F0:2E:A4:B8:46:A3:36:60:61:CD:0B:E6:12:0B:53:A9:A0:4D X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:37:d0:7d:52:91:49:f3:2a:60:fa:34:2a:f1:80:ac:b3:21: 41:e1:7e:eb:1e:47:6f:fd:a5:73:bd:12:5f:c0:49:07:cd:fd: fb:f4:d2:73:b3:6e:7e:22:9d:a2:95:49:76:41:42:d1:89:1d: b2:f8:10:ff:43:3f:82:92:78:df:57:b8:56:6b:28:10:6a:3f: e0:73:ba:cb:14:78:44:fd:06:c1:35:38:c3:1b:6b:1c:b4:c5: 72:30:db:2d:2c:b6:62:00:bf:dc:c5:1e:b3:06:77:ad:8b:2f: 33:27:c4:c0:0b:18:f0:55:8f:2a:07:71:42:4a:bb:22:a3:3f: 5b:e7:b3:42:bd:91:4a:04:69:c6:1e:7a:e5:a4:bc:9c:46:97: cb:23:63:55:f5:83:57:4e:b9:27:86:6c:c1:72:b7:60:2c:d9: dc:19:3b:05:20:8c:bc:01:e8:7b:06:56:c3:a4:d6:ba:96:0c: 30:80:58:61:9f:be:d1:a1:00:69:2a:c1:28:73:86:53:dd:cc: 9b:1c:0d:de:ff:f4:61:aa:dd:aa:bd:57:fc:46:1f:7a:06:e2: 45:8a:27:44:7f:1c:7d:5f:7b:87:e5:5b:b1:38:f0:08:9d:d4: c6:ce:69:fe:b2:67:09:33:b2:23:ad:46:d8:2d:86:21:d9:e1: 2e:f4:80:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUwODIzMDI1OTE0WhcNMjUwODMwMDI1OTE0WjAYMRYwFAYD VQQDEw02OGE5MmU4Mi0xY2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Z8r82RpwG9ZLhluVAf6+8wH4BGcuVb+03tRxl3raNljvdCk5dSF91GJGt30 TW+wgqlqnQGx4eXMS4YELSLtT4IruQeiCLo5ATiNoXr/R5LhCGO380wLoy4gYZ1u gvE3ODyeIgbBw+MAeOZsd6rIZE5Sa8LCe1sXZ/LR+UkbvBoYAGMjT3q/ZQwvjW8b 2xa+UZXEwNz85UFhG68t/19p5kgjvlmPx46b+x+nyx9w0clLoyDAPlNkID1TnEtl tpV9B95Lg3oM15MM7sKKyMgLE0g9rrFrmmCc2CNoFEREwg7Tt5HjUh+WVBsPM6TS 8Sj7dRRnJNSD8+H8+fh8CEzknwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/T8C6k uEajNmBhzQvmEgtTqaBNMB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQN9B9UpFJ8ypg+jQq8YCssyFB4X7rHkdv/aVzvRJfwEkHzf379NJz s25+Ip2ilUl2QULRiR2y+BD/Qz+CknjfV7hWaygQaj/gc7rLFHhE/QbBNTjDG2sc tMVyMNstLLZiAL/cxR6zBnetiy8zJ8TACxjwVY8qB3FCSrsioz9b57NCvZFKBGnG HnrlpLycRpfLI2NV9YNXTrknhmzBcrdgLNncGTsFIIy8Aeh7BlbDpNa6lgwwgFhh n77RoQBpKsEoc4ZT3cybHA3e//Rhqt2qvVf8Rh96BuJFiidEfxx9X3uH5VuxOPAI ndTGzmn+smcJM7IjrUbYLYYh2eEu9IBq -----END CERTIFICATE-----Generated at Sat Aug 23 21:01:11 2025 by rpki-client