$ rpki-client -vvf rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft File: -0iFaOdSC8eCoRmJdikDDtBpXNs.mft (raw, json) Hash identifier: wNL/3M3eXnEPouOtxT0grkDKMj08EmebNlMw5PGgUCU= Subject key identifier: BE:A2:75:14:A7:B0:9F:81:AA:D3:5B:92:18:19:67:9C:E2:8D:2A:6C Authority key identifier: FB:48:85:68:E7:52:0B:C7:82:A1:19:89:76:29:03:0E:D0:69:5C:DB Certificate issuer: /CN=A914459D/serialNumber=FB488568E7520BC782A119897629030ED0695CDB Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft Manifest number: 6A Signing time: Sat 09 Aug 2025 07:27:48 +0000 Manifest this update: Sat 09 Aug 2025 07:27:48 +0000 Manifest next update: Sat 16 Aug 2025 07:27:48 +0000 Files and hashes: 1: -0iFaOdSC8eCoRmJdikDDtBpXNs.crl (hash: ZB9gvInBO/azPKr48r0bHi5NrnpQhkRA9h5P8z+khoE=) 2: 4720EB9ED60F11EFA2510540C4F9AE02.roa (hash: Q8ipP3E5cVxqpK+wwh4P32pECYgAwVU6B1+eB8QC8yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.crl rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914459D, serialNumber=FB488568E7520BC782A119897629030ED0695CDB Validity Not Before: Aug 9 07:27:48 2025 GMT Not After : Aug 16 07:27:48 2025 GMT Subject: CN=6896f874-afbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:a5:d1:74:d1:12:aa:f5:8a:30:33:01:8c: 51:15:e2:f7:a2:a9:a7:72:eb:77:91:73:4d:d3:2a: 14:4c:94:67:21:2d:55:08:d3:72:f2:1f:ce:e7:6a: fe:08:ae:ef:30:eb:24:53:2f:31:86:0d:55:33:c0: d7:9e:76:97:14:93:c7:25:92:8d:8f:79:d3:35:0e: 5d:23:7b:e1:8d:a1:43:8c:65:d2:12:9f:3f:dd:89: b5:86:89:96:86:03:7c:23:85:c1:9d:50:e4:72:40: 75:b8:9b:b0:b6:49:88:e0:d8:a9:fe:9c:65:77:16: 77:41:83:56:c4:a5:5f:f6:f4:fd:04:ab:d1:e5:1d: e0:5f:45:28:a8:4b:c0:82:bd:95:c4:a9:bc:fc:6a: 42:92:4e:3f:f8:2f:6a:9d:ab:f7:cf:3f:c9:0a:3d: 03:bb:c4:ef:64:f5:cb:a3:09:65:9d:de:ce:e7:39: 9c:d1:40:ee:ef:43:7f:5b:fa:50:08:7c:5d:cd:cc: 42:d3:26:67:ce:8e:6b:93:c4:b1:d3:3c:04:bf:8a: d8:08:d5:20:75:86:03:7b:39:73:6f:95:dc:c4:b0: 6f:c8:fe:ed:d2:5d:07:b9:34:fb:67:05:71:f2:59: 9d:5a:97:75:4f:20:3e:76:44:0b:3b:ba:84:c6:91: bf:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A2:75:14:A7:B0:9F:81:AA:D3:5B:92:18:19:67:9C:E2:8D:2A:6C X509v3 Authority Key Identifier: keyid:FB:48:85:68:E7:52:0B:C7:82:A1:19:89:76:29:03:0E:D0:69:5C:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:37:4d:a0:96:47:75:78:2e:60:e5:3b:f5:a3:e4:2d:15:9f: 02:1d:8e:3f:28:27:41:b6:d7:d4:9c:18:e8:e8:b4:83:01:bf: bc:97:6b:dc:34:b9:58:49:79:82:91:65:2b:cf:61:50:1d:cc: 84:da:5e:5a:0d:4a:72:e3:18:ba:14:9b:2e:ec:62:1d:ee:38: 99:44:73:df:9a:78:e8:a1:ef:35:9d:fc:cd:92:bb:db:e3:07: 85:6f:9b:47:33:f3:0e:3d:b8:93:2f:a6:58:ac:5b:26:41:b9: c3:01:81:92:68:6a:90:1d:0f:71:84:e0:a0:90:58:4c:a6:3e: 86:31:fc:2f:86:7b:b4:40:7c:00:5b:1d:65:e4:dd:f1:ab:9e: b6:4c:f1:1d:2d:74:4b:d3:e8:9d:4c:a7:d1:21:1a:9d:08:41: a2:40:a0:9c:3c:8d:d3:35:37:b4:41:05:67:df:14:ea:a7:d9: b4:29:1a:63:e2:36:13:ae:0b:94:34:c5:3f:02:a0:bf:5f:e1: 1b:d4:1f:4c:e6:38:e7:5c:ea:f7:c3:a3:9b:58:29:c5:a9:3d: 66:76:60:7f:f6:2f:d1:52:2c:15:0c:7c:05:45:30:8f:60:ff: 9e:5c:9b:3f:30:d0:aa:fa:68:df:fb:dc:2f:a1:72:cc:1f:71: 5c:fe:10:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDU5RDExMC8GA1UEBRMoRkI0ODg1NjhFNzUyMEJDNzgyQTExOTg5NzYyOTAzMEVE MDY5NUNEQjAeFw0yNTA4MDkwNzI3NDhaFw0yNTA4MTYwNzI3NDhaMBgxFjAUBgNV BAMTDTY4OTZmODc0LWFmYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEE6XRdNESqvWKMDMBjFEV4veiqady63eRc03TKhRMlGchLVUI03LyH87nav4I ru8w6yRTLzGGDVUzwNeedpcUk8clko2PedM1Dl0je+GNoUOMZdISnz/dibWGiZaG A3wjhcGdUORyQHW4m7C2SYjg2Kn+nGV3FndBg1bEpV/29P0Eq9HlHeBfRSioS8CC vZXEqbz8akKSTj/4L2qdq/fPP8kKPQO7xO9k9cujCWWd3s7nOZzRQO7vQ39b+lAI fF3NzELTJmfOjmuTxLHTPAS/itgI1SB1hgN7OXNvldzEsG/I/u3SXQe5NPtnBXHy WZ1al3VPID52RAs7uoTGkb9zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvqJ1FKew n4Gq01uSGBlnnOKNKmwwHwYDVR0jBBgwFoAU+0iFaOdSC8eCoRmJdikDDtBpXNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0NTlELzBCM0Y2NjVBRDYw RjExRUZCMEZBNTMzRkM0RjlBRTAyLy0waUZhT2RTQzhlQ29SbUpkaWtERHRCcFhO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTBpRmFPZFNDOGVDb1JtSmRpa0REdEJwWE5zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 NTlELzBCM0Y2NjVBRDYwRjExRUZCMEZBNTMzRkM0RjlBRTAyLy0waUZhT2RTQzhl Q29SbUpkaWtERHRCcFhOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHA3TaCWR3V4LmDlO/Wj5C0VnwIdjj8oJ0G219ScGOjotIMBv7yXa9w0 uVhJeYKRZSvPYVAdzITaXloNSnLjGLoUmy7sYh3uOJlEc9+aeOih7zWd/M2Su9vj B4Vvm0cz8w49uJMvplisWyZBucMBgZJoapAdD3GE4KCQWEymPoYx/C+Ge7RAfABb HWXk3fGrnrZM8R0tdEvT6J1Mp9EhGp0IQaJAoJw8jdM1N7RBBWffFOqn2bQpGmPi NhOuC5Q0xT8CoL9f4RvUH0zmOOdc6vfDo5tYKcWpPWZ2YH/2L9FSLBUMfAVFMI9g /55cmz8w0Kr6aN/73C+hcswfcVz+EOo= -----END CERTIFICATE-----Generated at Sun Aug 10 20:00:59 2025 by rpki-client