$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft File: Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft (raw, json) Hash identifier: sH80r7YgNNxU1OrhNBuTERp8PJZS2rANgT9Pgr+aU7M= Subject key identifier: 77:01:53:34:B5:45:D0:34:2A:05:F9:C1:4B:81:E8:32:C5:2E:FA:71 Authority key identifier: 17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A Certificate issuer: /CN=A917EFB8/serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Certificate serial: 34B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft Manifest number: 34B0 Signing time: Tue 12 Aug 2025 14:50:59 +0000 Manifest this update: Tue 12 Aug 2025 14:50:58 +0000 Manifest next update: Tue 19 Aug 2025 14:50:58 +0000 Files and hashes: 1: Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl (hash: d/t9UG6mJ3+UJ1YWPUzHl/L7P7CSK0u/SoGFqJXv2OI=) 2: E68E0FD4077B11EB98CA5D1CC4F9AE02.roa (hash: uVTYtUHXjzvA/dK6fjacM7pKV07g+NehzxqIMydfuDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 14:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13494 (0x34b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EFB8, serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Validity Not Before: Aug 12 14:50:58 2025 GMT Not After : Aug 19 14:50:58 2025 GMT Subject: CN=689b54d2-0a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:57:01:6d:8e:8a:ca:71:57:e4:2e:9e:49:fc: cc:f5:91:a7:e4:8c:eb:6e:e2:c7:fb:22:cc:14:e4: 76:03:9c:8b:50:8b:d8:4e:92:ac:ba:e7:f4:b8:cd: a3:40:0c:1a:82:70:8b:e3:01:e6:9c:5a:24:a0:ef: d9:1a:f8:c5:7d:42:89:74:11:05:c4:78:ac:19:34: 1e:ea:19:b8:8f:54:37:ee:5d:0e:9a:36:20:35:bd: d1:3a:42:a8:85:b6:57:f9:e0:ef:fe:01:8c:bc:2d: 50:6b:e4:67:46:47:74:7d:03:d3:d9:24:6f:83:dc: f5:1f:9a:6d:af:3a:a3:fa:45:af:33:d6:27:91:2f: 24:36:9f:19:7b:ed:a1:d1:8b:a6:49:f9:a3:22:c9: 6b:85:b6:ba:26:43:28:69:28:8e:57:aa:21:ca:e9: a3:63:5a:35:fe:7c:48:47:52:ef:94:89:39:71:31: 22:10:64:c4:4e:3e:9d:d0:d7:c0:85:de:0b:e4:f2: 19:5c:01:a8:fa:a4:95:ae:38:83:16:c2:e7:f2:3c: f2:3f:7e:38:9a:7b:19:9a:70:a2:21:fc:1e:14:df: f8:8e:7b:cc:4f:bf:05:f7:bf:a8:91:f0:2f:7d:52: 9b:8c:dd:1f:59:ec:e9:50:27:8d:51:be:fd:e2:25: 13:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:01:53:34:B5:45:D0:34:2A:05:F9:C1:4B:81:E8:32:C5:2E:FA:71 X509v3 Authority Key Identifier: keyid:17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:a9:0c:84:09:d0:ab:d7:47:1f:86:99:ba:0d:df:a8:eb:c8: 4f:99:f0:e7:a0:67:b5:32:c2:3c:20:82:b0:52:6b:dd:80:6e: 80:86:71:1b:3a:eb:e9:03:07:d7:28:ce:d7:88:f6:ea:92:b2: 0a:b8:20:2e:5d:92:a8:b1:65:28:64:5b:78:63:22:db:6c:59: 7c:b6:3b:7b:f4:47:5a:f5:8b:29:02:f1:4f:d6:2d:db:1e:4a: 94:ce:87:d7:3d:d1:ee:55:36:b7:85:ba:cb:00:ef:73:75:05: 67:93:b1:7b:a4:1b:17:99:c2:88:c9:55:74:3e:01:ef:36:a7: 51:73:19:4c:ce:c0:c4:9b:5b:ab:f1:4c:1c:8c:81:c7:90:55: d8:b1:d5:ea:a7:11:46:ba:79:64:cc:cf:c7:5d:84:00:e6:a5: 87:e7:95:1d:2a:d5:12:ab:41:27:7c:81:a5:84:86:f4:c0:0b: ca:14:f0:6f:37:b3:ce:ce:09:5a:f4:c3:bd:ce:de:6c:19:dd: d9:11:1f:54:66:3a:bd:09:f9:2f:79:7d:6d:aa:ce:56:a5:63: 3e:fb:92:72:4c:2d:f8:2c:4c:cd:e9:05:e4:55:d3:b8:28:69: a5:8f:b1:d1:80:21:84:9a:92:5e:78:14:da:6c:2e:e6:c1:a5: 37:c9:9f:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VGQjgxMTAvBgNVBAUTKDE3MEU5Qzc2NzY0M0MzQzFGNjA1Nzk0MDg2NDhBM0Yw REE4NDA0NUEwHhcNMjUwODEyMTQ1MDU4WhcNMjUwODE5MTQ1MDU4WjAYMRYwFAYD VQQDEw02ODliNTRkMi0wYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FcBbY6KynFX5C6eSfzM9ZGn5IzrbuLH+yLMFOR2A5yLUIvYTpKsuuf0uM2j QAwagnCL4wHmnFokoO/ZGvjFfUKJdBEFxHisGTQe6hm4j1Q37l0OmjYgNb3ROkKo hbZX+eDv/gGMvC1Qa+RnRkd0fQPT2SRvg9z1H5ptrzqj+kWvM9YnkS8kNp8Ze+2h 0YumSfmjIslrhba6JkMoaSiOV6ohyumjY1o1/nxIR1LvlIk5cTEiEGTETj6d0NfA hd4L5PIZXAGo+qSVrjiDFsLn8jzyP344mnsZmnCiIfweFN/4jnvMT78F97+okfAv fVKbjN0fWezpUCeNUb794iUTbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcBUzS1 RdA0KgX5wUuB6DLFLvpxMB8GA1UdIwQYMBaAFBcOnHZ2Q8PB9gV5QIZIo/DahARa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUZCOC9EOTgwQTE3MjFE OTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4SDJCWGxBaGtpajhOcUVC Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z3NmNkblpEdzhIMkJYbEFoa2lqOE5xRUJGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUZCOC9EOTgwQTE3MjFEOTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4 SDJCWGxBaGtpajhOcUVCRm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByqQyECdCr10cfhpm6Dd+o68hPmfDnoGe1MsI8IIKwUmvdgG6AhnEb OuvpAwfXKM7XiPbqkrIKuCAuXZKosWUoZFt4YyLbbFl8tjt79Eda9YspAvFP1i3b HkqUzofXPdHuVTa3hbrLAO9zdQVnk7F7pBsXmcKIyVV0PgHvNqdRcxlMzsDEm1ur 8UwcjIHHkFXYsdXqpxFGunlkzM/HXYQA5qWH55UdKtUSq0EnfIGlhIb0wAvKFPBv N7POzgla9MO9zt5sGd3ZER9UZjq9CfkveX1tqs5WpWM++5JyTC34LEzN6QXkVdO4 KGmlj7HRgCGEmpJeeBTabC7mwaU3yZ8H -----END CERTIFICATE-----Generated at Tue Aug 12 18:55:44 2025 by rpki-client