$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft File: FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft (raw, json) Hash identifier: z+ScUdqx6YjWN5QQx64HhwEOonNmQQXRKiE3S3Vphuc= Subject key identifier: 76:62:07:7E:4C:14:1B:9C:88:CE:46:1E:2D:57:AA:2D:5B:F3:63:CA Authority key identifier: 16:D1:4A:A5:13:4D:41:12:46:4D:79:92:DB:F1:C4:52:F7:FA:29:A0 Certificate issuer: /CN=A91A29DA/serialNumber=16D14AA5134D4112464D7992DBF1C452F7FA29A0 Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft Manifest number: 010B Signing time: Sat 09 Aug 2025 05:22:48 +0000 Manifest this update: Sat 09 Aug 2025 05:22:48 +0000 Manifest next update: Sat 16 Aug 2025 05:22:48 +0000 Files and hashes: 1: FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl (hash: Kvlid4pzAAOLhroJ4Dv7IRHMU+c9rWeDyhXKIwnM6DQ=) 2: C1F74E665C1611F0B0B40A35C4F9AE02.roa (hash: cyzmbSkuoaF4EDWEAACeoUMvRNItS2PdfJUezyi8Vms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=16D14AA5134D4112464D7992DBF1C452F7FA29A0 Validity Not Before: Aug 9 05:22:48 2025 GMT Not After : Aug 16 05:22:48 2025 GMT Subject: CN=6896db28-cf6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:9e:73:0b:45:bf:4a:e1:cd:bd:82:f2:d2: 07:93:9f:cd:54:c5:f3:57:c8:e8:e7:36:65:e3:85: e7:1a:57:86:ca:a5:03:52:7e:45:07:ce:a9:91:96: ae:01:c0:dc:c0:7e:e6:16:79:1d:d8:2a:4c:7a:f6: a1:62:65:07:61:95:ea:40:07:c8:d3:25:77:e4:2f: 8c:9e:c2:5a:f4:ab:7e:6b:49:09:c5:ef:ce:08:f9: 5c:ca:be:8d:d7:bb:a3:f6:16:9c:05:e0:b9:fa:e5: 6b:ea:7b:07:1b:ee:65:1e:f0:2b:61:e6:c4:e1:17: 74:73:28:4c:35:54:9a:18:73:5b:61:da:45:fd:1d: 17:f4:0d:c7:2e:2d:0a:8a:06:1c:19:c4:9c:f4:69: c4:94:8f:80:f4:66:46:16:88:4e:ed:de:4a:0b:93: ac:d1:e0:ef:6d:13:33:0f:5a:4c:63:ad:6a:81:16: a6:f4:85:60:f1:9a:0b:5a:86:1d:09:9a:59:a4:23: 17:1a:3d:98:e5:4e:06:91:bd:e1:2d:6f:a2:b4:74: fa:8b:b9:c8:29:41:02:09:0f:79:d9:d0:e5:77:7d: c9:0b:30:70:b0:f8:c0:f8:61:72:39:2e:3a:ae:6b: 21:4d:94:9b:5d:73:09:94:75:15:49:d4:71:94:fb: 34:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:62:07:7E:4C:14:1B:9C:88:CE:46:1E:2D:57:AA:2D:5B:F3:63:CA X509v3 Authority Key Identifier: keyid:16:D1:4A:A5:13:4D:41:12:46:4D:79:92:DB:F1:C4:52:F7:FA:29:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:4f:1b:63:9a:a8:10:a5:60:22:0a:32:f8:ca:42:b5:58:08: 97:e8:04:6f:c6:e6:e3:64:de:e4:bc:66:b4:4d:cb:02:24:5d: 60:e9:bb:6e:72:85:91:88:b2:ef:8d:3b:00:f4:23:50:44:fa: e4:d5:61:76:21:fc:50:36:04:94:08:c5:3b:70:b7:13:cb:34: 00:f8:8c:b5:34:05:1d:97:29:73:53:79:e6:0b:b4:1d:bb:65: 8b:b7:13:4f:7e:79:62:90:4f:26:f2:6e:9b:af:f2:46:a3:02: e8:ee:2e:61:b4:32:ca:5a:73:65:9b:f3:2d:d6:bc:b6:e4:1e: 93:e1:cf:c7:e1:68:4f:f3:f8:b5:7f:d7:f2:9d:ff:1f:04:2f: 48:d2:da:ee:6a:0c:cc:52:2b:dd:82:66:d0:c6:17:43:19:52: a0:b2:94:1a:7f:22:46:8f:1f:3e:2d:b0:7b:d7:0b:1c:6c:d2: b2:33:0b:17:65:13:b6:6c:33:4d:67:f5:d8:3c:d2:2c:5e:4d: 14:8f:08:17:08:fe:f7:a3:a0:9f:52:02:2b:07:98:8a:6d:2f: 0b:4a:be:6d:5e:e6:cc:2b:83:b0:04:29:6a:da:b7:9c:f3:04: e5:0e:b9:24:b3:f3:35:31:de:4d:bf:3f:aa:ab:52:84:d9:03: d7:89:0a:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDE2RDE0QUE1MTM0RDQxMTI0NjRENzk5MkRCRjFDNDUy RjdGQTI5QTAwHhcNMjUwODA5MDUyMjQ4WhcNMjUwODE2MDUyMjQ4WjAYMRYwFAYD VQQDEw02ODk2ZGIyOC1jZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFKecwtFv0rhzb2C8tIHk5/NVMXzV8jo5zZl44XnGleGyqUDUn5FB86pkZau AcDcwH7mFnkd2CpMevahYmUHYZXqQAfI0yV35C+MnsJa9Kt+a0kJxe/OCPlcyr6N 17uj9hacBeC5+uVr6nsHG+5lHvArYebE4Rd0cyhMNVSaGHNbYdpF/R0X9A3HLi0K igYcGcSc9GnElI+A9GZGFohO7d5KC5Os0eDvbRMzD1pMY61qgRam9IVg8ZoLWoYd CZpZpCMXGj2Y5U4Gkb3hLW+itHT6i7nIKUECCQ952dDld33JCzBwsPjA+GFyOS46 rmshTZSbXXMJlHUVSdRxlPs0hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZiB35M FBuciM5GHi1Xqi1b82PKMB8GA1UdIwQYMBaAFBbRSqUTTUESRk15ktvxxFL3+img MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zRTYyNEJBRURB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9GdEZLcFJOTlFSSkdUWG1TMl9IRVV2ZjZL YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z0RktwUk5OUVJKR1RYbVMyX0hFVXZmNkthQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zRTYyNEJBRURBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9GdEZLcFJOTlFS SkdUWG1TMl9IRVV2ZjZLYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUTxtjmqgQpWAiCjL4ykK1WAiX6ARvxubjZN7kvGa0TcsCJF1g6btu coWRiLLvjTsA9CNQRPrk1WF2IfxQNgSUCMU7cLcTyzQA+Iy1NAUdlylzU3nmC7Qd u2WLtxNPfnlikE8m8m6br/JGowLo7i5htDLKWnNlm/Mt1ry25B6T4c/H4WhP8/i1 f9fynf8fBC9I0truagzMUivdgmbQxhdDGVKgspQafyJGjx8+LbB71wscbNKyMwsX ZRO2bDNNZ/XYPNIsXk0UjwgXCP73o6CfUgIrB5iKbS8LSr5tXubMK4OwBClq2rec 8wTlDrkks/M1Md5Nvz+qq1KE2QPXiQpE -----END CERTIFICATE-----Generated at Mon Aug 11 05:54:24 2025 by rpki-client