$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft File: FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json) Hash identifier: 7OUy+PpHxyt9FPb/5+2xoYw++3T41gdcSdcf5WBfCzc= Subject key identifier: CF:CE:E6:56:5B:22:CF:CB:1B:F3:12:4A:93:BD:B1:3F:D9:72:A6:BD Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft Manifest number: 4C Signing time: Mon 11 Aug 2025 07:37:07 +0000 Manifest this update: Mon 11 Aug 2025 07:37:06 +0000 Manifest next update: Mon 18 Aug 2025 07:37:06 +0000 Files and hashes: 1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: xIKNJ6rNShjt7u3kU6jT0ma6aGPRgWT0WWwIpDk0QRY=) 2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: IboM73984syJmuqfIfDKvmHL/HfnKXEhHqhYyaPXIGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Validity Not Before: Aug 11 07:37:06 2025 GMT Not After : Aug 18 07:37:06 2025 GMT Subject: CN=68999da2-b15b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9a:93:8a:09:00:40:dc:6a:ac:fc:71:15:2d: 4d:1e:50:4b:f9:45:9c:dc:9d:e8:cf:dd:c7:14:33: a8:ae:a8:e0:6f:69:49:c9:59:68:83:73:25:cd:2a: 5b:c4:ec:bd:ef:54:26:18:25:48:0f:d8:2e:84:c5: be:3c:fc:8b:cc:49:b7:51:1c:74:30:f7:15:29:62: 66:a0:96:9c:24:e2:0d:6b:2a:5b:fa:ee:20:97:c9: 98:9f:5a:74:11:d3:88:25:02:8e:a8:24:ee:1f:8d: 53:13:3a:78:36:49:3c:41:8a:2d:4f:21:70:5a:0a: 70:76:8f:b5:ff:f3:ff:70:aa:26:01:3a:fb:cc:87: 02:79:cb:0a:d1:9c:4c:57:8f:f2:81:cd:50:7b:83: 82:4b:2c:18:9a:ae:e1:1d:13:40:b1:97:a8:39:a5: 3e:65:85:7a:96:c8:df:95:cd:58:ee:13:09:50:b2: 89:0c:a9:0d:05:e5:bd:42:15:f2:7d:d4:7b:bb:c3: 86:31:34:e2:a4:10:2f:f3:fc:41:66:b6:6b:d0:0f: 2e:f5:fe:71:14:79:f3:5a:21:09:47:e2:4d:b9:8e: 36:74:b1:a4:1e:2b:dc:78:52:7a:46:e6:5c:bb:f1: 06:c9:ed:b6:75:41:17:0e:b3:2a:5b:3b:01:05:91: fb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:CE:E6:56:5B:22:CF:CB:1B:F3:12:4A:93:BD:B1:3F:D9:72:A6:BD X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:c8:a5:cd:17:e5:eb:39:71:15:0f:bb:ee:60:7e:d5:31:f2: 7b:e4:82:79:c2:d5:fb:34:db:84:c7:f0:02:9a:1b:da:d6:58: 5c:7f:73:c2:7a:73:ab:a8:04:93:21:38:7a:43:aa:cc:ce:4f: 35:54:7c:49:19:97:44:77:00:94:01:f0:2f:fb:65:53:aa:80: 2c:13:ec:a9:bc:1c:1c:68:16:2b:39:e1:22:b7:b4:78:c6:86: 17:bd:58:fe:23:df:c6:b1:72:8e:1b:0d:ef:e5:53:6f:a2:14: d2:d6:65:92:bb:e7:7c:66:c1:16:00:bb:cb:61:54:6d:ae:54: d5:b9:b9:e2:51:64:bc:5f:b9:03:42:ad:c9:37:49:eb:92:73: a7:ad:3e:76:ef:5e:50:d4:78:9d:46:f8:0e:8a:a8:7e:b6:67: 6b:a6:92:b4:fc:8f:81:51:ec:50:fe:ba:50:b9:57:ec:07:cb: 1f:7c:67:62:73:e4:10:20:78:99:b6:37:24:82:ec:57:d4:39: d6:5c:54:fd:07:1c:56:82:73:29:b4:87:79:42:13:e0:3c:b9: 52:81:f7:56:d1:4f:00:37:1d:f9:f2:54:09:8d:4b:99:ff:7d: 67:a4:2d:60:93:94:91:fa:47:6c:f7:f1:d6:d9:f7:ff:ea:18: 3c:cf:53:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoMTUzQzk4RDMzMTNDQzY0RURCOUFFMTVBQkEzQjU0M0U0 ODA0NTk5MDAeFw0yNTA4MTEwNzM3MDZaFw0yNTA4MTgwNzM3MDZaMBgxFjAUBgNV BAMTDTY4OTk5ZGEyLWIxNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwmpOKCQBA3Gqs/HEVLU0eUEv5RZzcnejP3ccUM6iuqOBvaUnJWWiDcyXNKlvE 7L3vVCYYJUgP2C6Exb48/IvMSbdRHHQw9xUpYmaglpwk4g1rKlv67iCXyZifWnQR 04glAo6oJO4fjVMTOng2STxBii1PIXBaCnB2j7X/8/9wqiYBOvvMhwJ5ywrRnExX j/KBzVB7g4JLLBiaruEdE0Cxl6g5pT5lhXqWyN+VzVjuEwlQsokMqQ0F5b1CFfJ9 1Hu7w4YxNOKkEC/z/EFmtmvQDy71/nEUefNaIQlH4k25jjZ0saQeK9x4UnpG5ly7 8QbJ7bZ1QRcOsypbOwEFkfu3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz87mVlsi z8sb8xJKk72xP9lypr0wHwYDVR0jBBgwFoAUFTyY0zE8xk7bmuFaujtUPkgEWZAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzRCNkUwMEZDMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVda QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlR5WTB6RTh4azdibXVGYXVqdFVQa2dFV1pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzRCNkUwMEZDMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3 Ym11RmF1anRVUGtnRVdaQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACPIpc0X5es5cRUPu+5gftUx8nvkgnnC1fs024TH8AKaG9rWWFx/c8J6 c6uoBJMhOHpDqszOTzVUfEkZl0R3AJQB8C/7ZVOqgCwT7Km8HBxoFis54SK3tHjG hhe9WP4j38axco4bDe/lU2+iFNLWZZK753xmwRYAu8thVG2uVNW5ueJRZLxfuQNC rck3SeuSc6etPnbvXlDUeJ1G+A6KqH62Z2umkrT8j4FR7FD+ulC5V+wHyx98Z2Jz 5BAgeJm2NySC7FfUOdZcVP0HHFaCcym0h3lCE+A8uVKB91bRTwA3HfnyVAmNS5n/ fWekLWCTlJH6R2z38dbZ9//qGDzPU7g= -----END CERTIFICATE-----Generated at Mon Aug 11 13:01:18 2025 by rpki-client