$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft File: fT3bIK_-cUyPNUllHB7oD1VgEbg.mft (raw, json) Hash identifier: HN1O2fRt0MPg0yX5b5/mhqmxMJ58Hz0ttP+JV9vEanY= Subject key identifier: F7:D2:7B:FB:65:C1:D2:94:7A:60:46:11:23:39:EE:EC:48:37:4A:8D Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 02D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft Manifest number: 02CF Signing time: Mon 11 Aug 2025 01:35:01 +0000 Manifest this update: Mon 11 Aug 2025 01:35:00 +0000 Manifest next update: Mon 18 Aug 2025 01:35:00 +0000 Files and hashes: 1: fT3bIK_-cUyPNUllHB7oD1VgEbg.crl (hash: z8HWNatoIIyXfJM638AuIAsSoS1OCapztrWTVpQaLaM=) 2: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (hash: 81tZME9FAwzO2UIk/WDugs2sSYBMwRpnwSHq/X3xc/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 01:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA, serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Validity Not Before: Aug 11 01:35:00 2025 GMT Not After : Aug 18 01:35:00 2025 GMT Subject: CN=689948c5-eb3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:72:2d:d0:cc:6b:93:7c:db:45:ec:33:c8:ef: d4:2d:15:a8:18:29:0a:98:6f:9b:49:a8:20:f4:a6: 53:cd:dd:19:a9:9c:dc:cf:2f:4e:01:c1:29:9f:c9: d2:82:88:e2:2d:ff:16:63:de:9c:41:ca:0b:41:e5: ef:21:d7:b9:42:27:c5:7d:1e:5a:3f:10:e4:5e:19: f6:68:56:73:12:36:19:07:16:68:28:46:64:e8:ad: 04:4b:13:28:4b:a1:4d:c7:2c:8a:61:28:79:4e:e1: 0f:58:04:07:e0:b9:bc:aa:a6:6d:5e:37:7d:da:eb: cb:72:94:0f:c4:09:77:0b:44:ff:21:2f:0b:11:de: 9f:13:4e:f6:5d:9f:11:b9:db:ff:47:e9:8b:03:89: 50:9d:dc:22:53:5c:57:14:c0:a9:f8:39:62:c0:51: 01:2a:12:5a:14:b9:13:77:62:64:4a:c2:bf:78:df: e9:b6:61:ad:a6:b8:5b:3e:c8:f0:7b:c2:b7:48:2f: a4:2b:3c:dc:c4:21:1c:dd:8c:b4:90:9a:e1:ca:6e: 8b:41:47:e1:68:73:9c:e0:6f:2b:ab:58:3a:b2:4a: 18:9a:d5:b5:e4:46:26:e0:17:65:3a:d0:e5:0c:24: 17:13:cc:a3:23:c9:10:45:51:1e:38:6d:38:ff:4a: 13:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D2:7B:FB:65:C1:D2:94:7A:60:46:11:23:39:EE:EC:48:37:4A:8D X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:2d:aa:f2:2d:67:54:8b:4b:65:bd:6d:0f:de:fc:3c:e4:ca: 66:80:a5:70:ac:e1:df:11:6a:54:3b:1c:20:ff:23:7c:b6:01: 3b:20:df:0a:28:ec:d9:ee:19:9f:33:4d:5d:f3:52:85:34:7b: f1:67:a1:71:3e:28:cb:68:27:d7:19:47:a3:85:6b:8a:bb:a5: 81:96:73:72:9b:e1:70:91:2c:6e:5c:40:9a:8e:62:5d:96:74: 0b:c8:b9:50:14:82:18:35:dc:a9:2e:9f:01:5f:14:80:3e:1e: 10:23:02:c1:f3:85:d9:0e:f4:02:a1:d7:a3:b7:15:9c:f6:8e: a0:6c:e6:03:1d:3b:7a:ef:82:2c:41:20:f5:1b:45:b7:be:9f: 89:70:1b:31:87:28:82:b4:04:e6:5b:f0:99:7e:d7:81:bd:3f: 14:c2:93:7a:f0:ab:61:4c:6d:f7:5c:61:6f:f1:53:98:6b:d1: 45:12:4f:12:6f:ec:85:9c:19:81:4f:cc:81:2d:b5:55:63:92: f9:97:58:aa:71:26:d8:b6:64:63:24:f5:53:b9:62:cd:d9:8f: a3:c3:1f:81:eb:20:81:71:c7:7b:e6:de:00:a5:82:ac:db:95: 35:59:61:07:ff:8e:65:cf:d3:83:47:fe:00:1d:9f:38:43:1d: 86:59:1c:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjUwODExMDEzNTAwWhcNMjUwODE4MDEzNTAwWjAYMRYwFAYD VQQDEw02ODk5NDhjNS1lYjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHIt0Mxrk3zbRewzyO/ULRWoGCkKmG+bSagg9KZTzd0ZqZzczy9OAcEpn8nS gojiLf8WY96cQcoLQeXvIde5QifFfR5aPxDkXhn2aFZzEjYZBxZoKEZk6K0ESxMo S6FNxyyKYSh5TuEPWAQH4Lm8qqZtXjd92uvLcpQPxAl3C0T/IS8LEd6fE072XZ8R udv/R+mLA4lQndwiU1xXFMCp+DliwFEBKhJaFLkTd2JkSsK/eN/ptmGtprhbPsjw e8K3SC+kKzzcxCEc3Yy0kJrhym6LQUfhaHOc4G8rq1g6skoYmtW15EYm4BdlOtDl DCQXE8yjI8kQRVEeOG04/0oTsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfSe/tl wdKUemBGESM57uxIN0qNMB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTlFQS9EMjZDNDEyOEY4RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNV eVBOVWxsSEI3b0QxVmdFYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKLaryLWdUi0tlvW0P3vw85MpmgKVwrOHfEWpUOxwg/yN8tgE7IN8K KOzZ7hmfM01d81KFNHvxZ6FxPijLaCfXGUejhWuKu6WBlnNym+FwkSxuXECajmJd lnQLyLlQFIIYNdypLp8BXxSAPh4QIwLB84XZDvQCodejtxWc9o6gbOYDHTt674Is QSD1G0W3vp+JcBsxhyiCtATmW/CZfteBvT8UwpN68KthTG33XGFv8VOYa9FFEk8S b+yFnBmBT8yBLbVVY5L5l1iqcSbYtmRjJPVTuWLN2Y+jwx+B6yCBccd75t4ApYKs 25U1WWEH/45lz9ODR/4AHZ84Qx2GWRx/ -----END CERTIFICATE-----Generated at Wed Aug 13 00:35:33 2025 by rpki-client