$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft File: FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json) Hash identifier: 5W0zam5bOnrY2/DVOENRCJv208r9x0QITYz4tiSW+oY= Subject key identifier: BF:2E:D1:E2:58:16:E6:41:2E:5E:5F:1A:49:1E:E6:2D:B1:7B:C5:DB Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft Manifest number: 77 Signing time: Wed 05 Nov 2025 07:01:44 +0000 Manifest this update: Wed 05 Nov 2025 07:01:44 +0000 Manifest next update: Wed 12 Nov 2025 07:01:44 +0000 Files and hashes: 1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: MoRFgDCfJRecEc8ydoxQwx7De+FpBwQ3vVM9OqhliA8=) 2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: IboM73984syJmuqfIfDKvmHL/HfnKXEhHqhYyaPXIGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Validity Not Before: Nov 5 07:01:44 2025 GMT Not After : Nov 12 07:01:44 2025 GMT Subject: CN=690af658-3bf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5b:cb:7f:0e:00:e8:e6:ef:c4:3a:08:b8:5e: 4d:04:6e:d8:62:60:71:a8:c1:4a:83:d6:9f:b6:52: f4:e6:b2:a3:4f:6f:0a:ce:cd:82:13:fd:0f:f0:49: 91:8f:b2:e6:75:70:0c:12:62:00:0a:be:0d:2f:20: 1c:2d:62:0e:20:e6:9d:9a:f6:dc:60:50:1c:f1:de: aa:64:0e:f2:fc:19:63:36:fd:b1:9e:6f:f7:ea:8c: de:75:03:b6:95:22:ce:86:37:43:97:54:46:40:09: 7c:85:29:e9:9b:86:e2:db:92:82:bb:db:f0:71:ed: 29:4e:13:2b:5f:3f:b7:2f:12:3f:3a:6c:f3:a0:c4: 34:46:88:24:b3:a8:b4:98:69:63:10:62:93:3c:46: 25:58:df:7f:45:c1:22:d6:e7:98:0e:aa:86:42:91: d1:3f:9d:8f:f6:05:80:c9:6c:ac:ce:2b:e1:6b:69: 08:98:f7:1d:b8:0b:69:0d:05:d5:81:07:19:51:25: c3:51:ae:fd:c5:d0:ee:3b:f6:fc:90:c6:ea:44:57: c6:2b:1f:1f:0d:ca:af:00:de:a6:c6:a6:07:4f:e3: 3b:8d:5e:e7:03:e3:3d:18:c5:c7:36:44:97:01:f0: f5:71:64:4d:40:fc:ae:6a:29:ea:1f:dc:84:db:f8: 42:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:2E:D1:E2:58:16:E6:41:2E:5E:5F:1A:49:1E:E6:2D:B1:7B:C5:DB X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:e1:a8:d6:bc:0c:b9:97:d3:a1:59:2b:47:27:2c:7a:9a:ba: d5:d7:cf:a4:6d:92:94:49:d9:6c:77:32:43:24:cf:c1:13:f3: e9:ea:3a:6a:8b:29:ed:5f:5f:5e:68:c0:ff:d1:25:f8:45:7d: b8:11:e9:d9:4f:2e:ef:75:81:56:19:be:93:12:e9:9b:ee:bd: 47:f7:6d:6d:5c:c9:fb:2b:fb:e2:e6:81:e6:a7:c2:26:07:9d: 53:68:db:26:a9:5f:82:8f:dc:5b:a8:4d:be:1e:46:8f:52:74: 1c:1e:c6:36:f8:ef:e4:76:60:d7:4a:99:a9:41:b9:2a:d0:0b: b9:f9:8a:4a:54:2f:f7:6d:e9:cf:7e:fe:94:27:55:17:33:6e: 78:a4:0a:f4:ca:bc:b9:4e:31:65:4a:0c:6a:ca:52:bb:c0:58: 09:fc:c2:fe:6e:86:4d:04:0c:d1:85:ae:60:27:6e:fb:5f:e0: d4:af:25:6f:5f:58:70:0e:67:94:d5:e8:a7:f4:2d:2f:e9:b3: 27:ef:9b:54:10:24:31:b2:c9:83:73:ab:40:eb:fc:ca:93:c5: 1f:ee:12:71:ba:29:e1:f3:3d:26:7e:fe:65:47:e2:89:3e:2f: 33:09:8a:be:ff:02:99:47:75:41:1f:95:cb:4a:99:45:66:f0: 11:ea:6e:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoMTUzQzk4RDMzMTNDQzY0RURCOUFFMTVBQkEzQjU0M0U0 ODA0NTk5MDAeFw0yNTExMDUwNzAxNDRaFw0yNTExMTIwNzAxNDRaMBgxFjAUBgNV BAMTDTY5MGFmNjU4LTNiZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVW8t/DgDo5u/EOgi4Xk0EbthiYHGowUqD1p+2UvTmsqNPbwrOzYIT/Q/wSZGP suZ1cAwSYgAKvg0vIBwtYg4g5p2a9txgUBzx3qpkDvL8GWM2/bGeb/fqjN51A7aV Is6GN0OXVEZACXyFKembhuLbkoK72/Bx7SlOEytfP7cvEj86bPOgxDRGiCSzqLSY aWMQYpM8RiVY339FwSLW55gOqoZCkdE/nY/2BYDJbKzOK+FraQiY9x24C2kNBdWB BxlRJcNRrv3F0O479vyQxupEV8YrHx8Nyq8A3qbGpgdP4zuNXucD4z0Yxcc2RJcB 8PVxZE1A/K5qKeof3ITb+EJRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvy7R4lgW 5kEuXl8aSR7mLbF7xdswHwYDVR0jBBgwFoAUFTyY0zE8xk7bmuFaujtUPkgEWZAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzRCNkUwMEZDMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVda QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlR5WTB6RTh4azdibXVGYXVqdFVQa2dFV1pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzRCNkUwMEZDMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3 Ym11RmF1anRVUGtnRVdaQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADThqNa8DLmX06FZK0cnLHqautXXz6RtkpRJ2Wx3MkMkz8ET8+nqOmqL Ke1fX15owP/RJfhFfbgR6dlPLu91gVYZvpMS6ZvuvUf3bW1cyfsr++LmgeanwiYH nVNo2yapX4KP3FuoTb4eRo9SdBwexjb47+R2YNdKmalBuSrQC7n5ikpUL/dt6c9+ /pQnVRczbnikCvTKvLlOMWVKDGrKUrvAWAn8wv5uhk0EDNGFrmAnbvtf4NSvJW9f WHAOZ5TV6Kf0LS/psyfvm1QQJDGyyYNzq0Dr/MqTxR/uEnG6KeHzPSZ+/mVH4ok+ LzMJir7/AplHdUEflctKmUVm8BHqboY= -----END CERTIFICATE-----Generated at Wed Nov 5 15:44:09 2025 by rpki-client