$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft File: fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft (raw, json) Hash identifier: dyGF9vyAT1N6o7hJz/th+bc6ccq4ujGgFRd0PaI5LTQ= Subject key identifier: E6:8D:6D:11:F6:A1:65:32:9E:CC:AB:0A:53:AD:7B:9E:DC:4D:FE:D0 Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 08CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft Manifest number: 08C1 Signing time: Sun 10 Aug 2025 20:28:58 +0000 Manifest this update: Sun 10 Aug 2025 20:28:57 +0000 Manifest next update: Sun 17 Aug 2025 20:28:57 +0000 Files and hashes: 1: fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl (hash: hYl6vpZ2dFd53t3E22vb949RBWxldX60Tj27B1Xxe9Q=) 2: 10A6E062B70A11EDB851464EC4F9AE02.roa (hash: FH1SU9GKJvbucv0gXmHk6Vc7dPieI2aucBrxBlxHAdE=) 3: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (hash: KcabN84FuC1RCZKB2biZEnUyMb0N5RBlFWlu2grfP8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2252 (0x8cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F, serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: Aug 10 20:28:57 2025 GMT Not After : Aug 17 20:28:57 2025 GMT Subject: CN=68990109-e421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:71:a8:ea:4b:df:b4:6d:8f:de:1e:ed:95:d3: ee:34:69:b5:44:93:05:3b:aa:23:cb:d2:f9:c7:a2: 5a:ff:f2:32:0d:31:46:51:47:c9:73:02:75:99:ac: c5:64:56:ce:31:d6:e4:5b:c2:44:5d:76:e6:dd:5e: 91:5f:34:7c:54:a8:8e:0f:6c:c3:5b:21:9d:7c:9e: ab:f4:c2:b5:6e:15:9b:b4:04:74:64:3b:93:b3:3f: 38:06:50:f9:29:cc:c0:03:cc:15:f1:1a:3d:f8:db: 9d:e6:da:7a:ed:39:c4:1b:0d:31:88:5d:36:b1:f2: c3:8b:38:99:2e:10:06:f1:75:12:14:c5:05:90:94: ce:95:61:5d:c9:24:73:ae:86:72:a2:29:7d:e4:cb: 84:e3:32:68:b8:c5:fc:87:82:a3:4b:64:d2:36:c4: 43:91:2a:5d:21:57:f4:2e:d3:a8:3a:1f:83:89:e6: a0:5b:7a:9e:aa:b1:d6:0a:31:f5:f0:f8:b9:8f:2f: 94:56:9c:de:56:3a:cb:48:1d:59:ef:9e:23:ed:f5: 66:91:49:e7:44:e6:d1:0d:91:45:1a:13:65:07:3f: 0f:39:98:31:5a:47:f3:a7:21:f7:8b:68:ef:e9:2d: e2:cb:29:84:6e:c1:bf:84:f8:d7:86:b6:73:b2:1e: eb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:8D:6D:11:F6:A1:65:32:9E:CC:AB:0A:53:AD:7B:9E:DC:4D:FE:D0 X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:5c:07:b1:8f:f2:87:b3:80:c6:f9:99:b5:3e:8f:90:39:56: 0d:0f:cb:6c:b1:88:09:34:da:f5:09:70:2d:d3:28:36:ff:bd: 57:79:a5:3a:d1:6a:4a:6c:94:3e:63:e5:65:94:75:f5:f1:cf: 73:c6:8b:06:62:aa:67:18:88:f5:fb:13:07:d3:00:61:15:55: cb:ec:b8:4d:77:ac:b1:68:6f:55:28:35:26:bd:53:95:a8:c3: 37:52:7d:74:bd:eb:3a:cc:f2:17:c9:f7:4f:a7:74:b6:7a:82: ad:e4:47:9e:fe:ab:45:4e:4e:6f:2c:87:c8:86:0e:4b:49:8f: a2:55:d6:16:78:f9:1b:07:e2:4b:67:28:1d:45:07:3a:61:9b: 54:15:63:0e:35:a6:5b:51:ec:52:60:6c:62:7d:77:c6:fb:3d: d1:24:98:57:fc:c5:4c:c9:96:a7:88:ac:76:f7:42:1b:b0:71: e4:e7:fa:58:7b:8a:3d:e1:62:62:ee:44:ba:c5:ec:0c:1c:e1: 54:f7:80:ef:8b:6d:fb:d7:6c:43:73:d2:fd:27:6c:70:c3:76: 56:b8:31:e7:ba:37:9c:cb:5d:0c:3c:81:f5:92:ea:2e:f2:77: d3:9a:30:08:b3:ea:33:21:bd:8c:ec:fb:73:66:95:ee:ca:21: 8d:b8:d3:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjUwODEwMjAyODU3WhcNMjUwODE3MjAyODU3WjAYMRYwFAYD VQQDEw02ODk5MDEwOS1lNDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXGo6kvftG2P3h7tldPuNGm1RJMFO6ojy9L5x6Ja//IyDTFGUUfJcwJ1mazF ZFbOMdbkW8JEXXbm3V6RXzR8VKiOD2zDWyGdfJ6r9MK1bhWbtAR0ZDuTsz84BlD5 KczAA8wV8Ro9+Nud5tp67TnEGw0xiF02sfLDiziZLhAG8XUSFMUFkJTOlWFdySRz roZyoil95MuE4zJouMX8h4KjS2TSNsRDkSpdIVf0LtOoOh+DieagW3qeqrHWCjH1 8Pi5jy+UVpzeVjrLSB1Z754j7fVmkUnnRObRDZFFGhNlBz8POZgxWkfzpyH3i2jv 6S3iyymEbsG/hPjXhrZzsh7rcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaNbRH2 oWUynsyrClOte57cTf7QMB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzUzRi9CREE1N0ZGRUJDMTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2Nx dExBM2JoTEpWQkpLcmtQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKXAexj/KHs4DG+Zm1Po+QOVYND8tssYgJNNr1CXAt0yg2/71XeaU6 0WpKbJQ+Y+VllHX18c9zxosGYqpnGIj1+xMH0wBhFVXL7LhNd6yxaG9VKDUmvVOV qMM3Un10ves6zPIXyfdPp3S2eoKt5Eee/qtFTk5vLIfIhg5LSY+iVdYWePkbB+JL ZygdRQc6YZtUFWMONaZbUexSYGxifXfG+z3RJJhX/MVMyZaniKx290IbsHHk5/pY e4o94WJi7kS6xewMHOFU94Dvi23712xDc9L9J2xww3ZWuDHnujecy10MPIH1kuou 8nfTmjAIs+ozIb2M7PtzZpXuyiGNuNMu -----END CERTIFICATE-----Generated at Mon Aug 11 04:11:58 2025 by rpki-client