$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: VVYzOlKtrJYt/74IKgL3JOj7coi+E0gUKHxPWzEzJqY= Subject key identifier: 98:7C:5B:3F:3A:37:4A:D1:AB:9B:99:5D:36:45:C1:F9:7E:E8:83:6E Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A07 Signing time: Fri 08 Aug 2025 20:12:17 +0000 Manifest this update: Fri 08 Aug 2025 20:12:17 +0000 Manifest next update: Fri 15 Aug 2025 20:12:17 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: y2v1Rl8nlk3OnyCAsriYdOBeLsHYgI3OwpiU57K8opU=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2593 (0xa21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Aug 8 20:12:17 2025 GMT Not After : Aug 15 20:12:17 2025 GMT Subject: CN=68965a21-8033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d6:73:ca:16:58:cc:56:47:bc:5c:94:cc:c9: b5:95:28:9f:ae:21:a6:65:f0:8b:d3:8e:c7:7e:6d: bb:c4:87:b1:34:77:d8:80:8a:d9:d8:68:26:c7:57: e4:00:d9:49:82:10:ce:87:50:cf:76:f0:cd:0a:74: 6c:c4:21:40:21:27:98:72:ba:55:90:18:a4:3a:af: d3:74:92:bd:2b:fa:a9:30:20:cc:b2:d1:fa:51:95: 4b:fb:bd:ac:c3:0f:d0:13:1c:84:43:33:0e:51:74: 16:51:20:46:2a:86:0b:68:2e:c4:7c:47:b0:c2:af: fa:82:a9:56:55:63:24:fc:64:44:1c:08:29:58:66: 8a:47:de:00:40:e9:c6:a5:4f:e0:2f:61:9a:08:74: 07:c1:81:18:2d:2b:08:35:da:0f:84:88:f6:6c:35: 3a:50:50:f9:68:88:13:d4:d1:f1:c1:36:c1:ee:87: e4:9f:44:31:8c:30:c5:13:68:88:f8:2b:99:8d:07: 00:06:6b:0f:44:b7:ea:90:bd:36:ac:42:f9:f0:b2: ba:f3:6c:9e:13:1f:11:9b:11:e4:06:97:df:d9:aa: f2:39:f4:ae:c1:c5:22:d2:e8:31:c6:f8:eb:14:8a: af:89:89:78:c1:c3:e9:99:b4:b1:50:95:01:61:f4: 4e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:7C:5B:3F:3A:37:4A:D1:AB:9B:99:5D:36:45:C1:F9:7E:E8:83:6E X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:04:bb:5f:01:39:24:aa:d0:ed:7d:1c:d9:e9:c3:fb:d6:cd: c7:b8:6e:aa:5c:30:39:3a:5b:d0:42:6b:7d:ca:fd:26:15:e7: 89:0f:99:68:d5:c5:e4:8d:7c:d0:22:cb:27:3f:26:13:ae:de: 3a:a6:f2:bc:f2:98:0f:10:47:5e:5f:78:53:7c:e9:91:05:0a: 3f:1e:75:92:8d:0c:81:e0:47:4d:98:e6:f2:82:69:3a:63:88: 5d:de:1d:c7:91:ac:dd:12:61:a9:b3:95:02:cf:41:f3:ab:37: 52:91:30:41:5a:2c:46:fc:6e:f1:88:64:51:e6:85:46:3b:a2: 5a:f1:9d:d9:56:9d:ca:7f:83:07:b0:e4:75:a3:07:92:23:a6: c9:dc:ec:56:b0:cc:a0:43:23:95:b8:43:cc:33:42:c4:1e:e3: ba:4c:12:b1:02:28:20:4e:ca:8d:02:0b:53:81:1c:43:a6:28: d1:30:e8:15:a5:39:30:ee:28:dc:b5:03:e3:04:88:b6:6b:36: eb:82:61:58:7f:4b:7a:23:dc:f9:d4:60:6b:59:06:95:c4:06: d5:f0:f3:d9:10:91:64:fd:9c:92:79:19:fd:11:c6:e2:93:e2: 5b:a2:06:30:46:4b:a2:e8:79:b7:37:a6:53:f0:b3:40:14:73: 5d:1e:7f:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUwODA4MjAxMjE3WhcNMjUwODE1MjAxMjE3WjAYMRYwFAYD VQQDEw02ODk2NWEyMS04MDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NZzyhZYzFZHvFyUzMm1lSifriGmZfCL047Hfm27xIexNHfYgIrZ2Ggmx1fk ANlJghDOh1DPdvDNCnRsxCFAISeYcrpVkBikOq/TdJK9K/qpMCDMstH6UZVL+72s ww/QExyEQzMOUXQWUSBGKoYLaC7EfEewwq/6gqlWVWMk/GREHAgpWGaKR94AQOnG pU/gL2GaCHQHwYEYLSsINdoPhIj2bDU6UFD5aIgT1NHxwTbB7ofkn0QxjDDFE2iI +CuZjQcABmsPRLfqkL02rEL58LK682yeEx8RmxHkBpff2aryOfSuwcUi0ugxxvjr FIqviYl4wcPpmbSxUJUBYfROAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJh8Wz86 N0rRq5uZXTZFwfl+6INuMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjBLtfATkkqtDtfRzZ6cP71s3HuG6qXDA5OlvQQmt9yv0mFeeJD5lo 1cXkjXzQIssnPyYTrt46pvK88pgPEEdeX3hTfOmRBQo/HnWSjQyB4EdNmObygmk6 Y4hd3h3HkazdEmGps5UCz0HzqzdSkTBBWixG/G7xiGRR5oVGO6Ja8Z3ZVp3Kf4MH sOR1oweSI6bJ3OxWsMygQyOVuEPMM0LEHuO6TBKxAiggTsqNAgtTgRxDpijRMOgV pTkw7ijctQPjBIi2azbrgmFYf0t6I9z51GBrWQaVxAbV8PPZEJFk/ZySeRn9Ecbi k+JbogYwRkui6Hm3N6ZT8LNAFHNdHn/Q -----END CERTIFICATE-----Generated at Sun Aug 10 16:07:30 2025 by rpki-client