$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft File: fNlYoAf08OVuSo0kV2aIYiurciE.mft (raw, json) Hash identifier: jMbygVg7VfJxAtNL7tQ4sglrfPOIQq4pNfJyQnxXibg= Subject key identifier: F3:26:8D:76:A6:3F:73:7F:C5:CB:84:C4:8B:6F:D2:1E:B4:C6:FB:E9 Authority key identifier: 7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 Certificate issuer: /CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft Manifest number: 0135 Signing time: Sat 05 Jul 2025 04:48:37 +0000 Manifest this update: Sat 05 Jul 2025 04:48:36 +0000 Manifest next update: Sat 12 Jul 2025 04:48:36 +0000 Files and hashes: 1: fNlYoAf08OVuSo0kV2aIYiurciE.crl (hash: VEwUSVafrzSYROOqkivqmqQOZvC2iPhdczRzxMOTQdQ=) 2: E7021416B54B11EE86895416C4F9AE02.roa (hash: vzHahXAFIekcStIbFKvBTMDftL9nSsfmNUK1qbKIERQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF2, serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Validity Not Before: Jul 5 04:48:36 2025 GMT Not After : Jul 12 04:48:36 2025 GMT Subject: CN=6868aea5-0d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4f:c3:98:99:01:e0:1b:24:12:13:d4:c7:2b: a9:a1:9b:59:3f:3a:93:10:aa:17:b3:16:e3:fc:24: 75:db:90:80:50:f9:ae:70:0c:dd:15:48:1f:ee:d4: 73:8b:cf:be:1b:6b:7d:2e:7d:89:61:89:a7:12:6c: 67:14:fd:83:18:63:1c:7a:49:d0:c1:54:d6:80:8b: 1d:83:de:6d:7a:39:96:ef:b4:ba:e5:8d:72:27:52: de:ee:08:f7:56:b7:91:36:35:70:db:76:50:9c:54: d9:44:e0:01:98:f6:c6:79:a6:de:44:a3:92:bd:2b: 48:a6:9c:26:5c:1b:d8:3d:d6:a2:3f:47:19:97:9e: 2d:78:7f:69:d4:c0:52:df:c7:54:0a:67:c3:e3:00: 2c:97:01:b0:ea:73:71:44:00:1b:f7:81:6c:03:ac: 72:1d:14:29:b4:fe:09:70:68:58:1e:bc:29:c4:e4: e9:2f:d4:30:c8:b0:79:ae:23:73:41:18:99:c1:6b: a6:30:e8:e5:98:6d:09:78:28:4a:73:99:a6:60:45: d9:f4:1a:44:d8:81:96:c4:3a:22:b0:4d:29:84:96: 1e:c4:dd:d3:c0:ec:9f:e1:12:65:c9:71:51:af:9f: 84:fd:2a:1c:a5:52:23:7f:4e:04:2d:19:15:cd:f8: 3d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:26:8D:76:A6:3F:73:7F:C5:CB:84:C4:8B:6F:D2:1E:B4:C6:FB:E9 X509v3 Authority Key Identifier: keyid:7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:10:c6:24:38:c8:68:d9:20:45:50:29:28:a5:2d:50:e9:88: a9:f2:d1:53:c2:01:93:4f:3c:82:97:ba:46:6d:bd:ea:e1:45: 0d:a0:e0:66:40:60:0a:b7:14:88:5e:36:88:c5:8c:31:21:6d: 04:cb:7f:51:71:15:67:14:99:88:49:42:76:4c:4b:5d:f6:ff: 6f:c7:62:9b:aa:e4:87:7f:aa:ca:d1:39:7a:dd:2d:f7:76:4c: c7:e8:de:b5:08:ef:81:84:76:74:1f:0e:7f:33:e0:88:97:13: 2f:a4:48:c2:31:16:23:1f:3e:11:68:28:6d:99:58:1a:cc:94: 20:bc:c3:a5:65:0d:a7:5d:48:bf:17:42:07:b4:09:0e:d0:11: 0c:04:f8:2d:af:c9:98:b6:4b:e8:c2:e7:0a:7f:27:49:8c:c6: 80:a8:e0:c5:19:b2:57:0f:c7:30:49:5c:f5:9f:64:2c:c0:c5: 42:77:aa:60:7a:b6:a9:01:e3:43:9e:2e:fa:31:6a:ff:a7:4b: e3:e0:f8:9e:0c:71:14:26:c1:b5:9c:15:b5:84:17:bd:46:48: c6:a8:f7:7d:57:5e:32:f1:3b:7a:79:cf:77:3f:12:e2:89:c7: 5e:da:c6:44:34:10:c9:ec:fd:e1:31:96:82:a5:22:41:9b:30: 7e:bf:48:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjIxMTAvBgNVBAUTKDdDRDk1OEEwMDdGNEYwRTU2RTRBOEQyNDU3NjY4ODYy MkJBQjcyMjEwHhcNMjUwNzA1MDQ0ODM2WhcNMjUwNzEyMDQ0ODM2WjAYMRYwFAYD VQQDEw02ODY4YWVhNS0wZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxk/DmJkB4BskEhPUxyupoZtZPzqTEKoXsxbj/CR125CAUPmucAzdFUgf7tRz i8++G2t9Ln2JYYmnEmxnFP2DGGMceknQwVTWgIsdg95tejmW77S65Y1yJ1Le7gj3 VreRNjVw23ZQnFTZROABmPbGeabeRKOSvStIppwmXBvYPdaiP0cZl54teH9p1MBS 38dUCmfD4wAslwGw6nNxRAAb94FsA6xyHRQptP4JcGhYHrwpxOTpL9QwyLB5riNz QRiZwWumMOjlmG0JeChKc5mmYEXZ9BpE2IGWxDoisE0phJYexN3TwOyf4RJlyXFR r5+E/SocpVIjf04ELRkVzfg9zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMmjXam P3N/xcuExItv0h60xvvpMB8GA1UdIwQYMBaAFHzZWKAH9PDlbkqNJFdmiGIrq3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGMi81NzMyQzgzODg0 NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhPVnVTbzBrVjJhSVlpdXJj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZObFlvQWYwOE9WdVNvMGtWMmFJWWl1cmNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGMi81NzMyQzgzODg0NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhP VnVTbzBrVjJhSVlpdXJjaUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFEMYkOMho2SBFUCkopS1Q6Yip8tFTwgGTTzyCl7pGbb3q4UUNoOBm QGAKtxSIXjaIxYwxIW0Ey39RcRVnFJmISUJ2TEtd9v9vx2KbquSHf6rK0Tl63S33 dkzH6N61CO+BhHZ0Hw5/M+CIlxMvpEjCMRYjHz4RaChtmVgazJQgvMOlZQ2nXUi/ F0IHtAkO0BEMBPgtr8mYtkvowucKfydJjMaAqODFGbJXD8cwSVz1n2QswMVCd6pg erapAeNDni76MWr/p0vj4PieDHEUJsG1nBW1hBe9RkjGqPd9V14y8Tt6ec93PxLi icde2sZENBDJ7P3hMZaCpSJBmzB+v0gD -----END CERTIFICATE-----Generated at Sat Jul 5 22:09:09 2025 by rpki-client