$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: iRke0tkN3XxDyxNRLkfn2yBjyNwe+w6xJuMXu4hyeyg= Subject key identifier: F2:EE:DC:91:03:38:21:02:26:28:7D:94:8F:36:97:B0:B5:F4:71:6E Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 09EB Signing time: Sat 14 Jun 2025 19:45:36 +0000 Manifest this update: Sat 14 Jun 2025 19:45:36 +0000 Manifest next update: Sat 21 Jun 2025 19:45:36 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: 0yvOqsqwEkm0vICUBsxUXjAnrh/9ElNb4roSFQ6Fn88=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2565 (0xa05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Jun 14 19:45:36 2025 GMT Not After : Jun 21 19:45:36 2025 GMT Subject: CN=684dd160-9dcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2d:7e:bf:7b:f0:0e:fd:c1:51:6f:c9:30:b9: 4c:61:ce:fd:2b:8d:a0:fa:b4:a8:ff:ca:b5:66:d5: 82:50:e7:a3:81:7e:69:00:fa:ea:2d:54:e7:17:1a: 23:c2:9b:37:2c:1f:54:ad:33:c5:65:89:9b:e2:6c: a2:a4:32:fd:7f:31:83:a5:02:1f:d0:40:72:b2:c9: 86:d8:1d:c1:8d:1f:05:a4:e7:1e:a4:10:56:fd:75: 42:2e:96:90:a3:72:ab:0f:23:3f:cb:45:9a:5f:6a: d7:ad:c8:99:fd:90:f0:13:f1:cf:ae:80:b3:6e:51: e6:74:cd:97:63:6d:9e:fb:bd:e9:33:97:f6:8c:8d: 00:32:d2:20:84:47:99:6c:22:b5:a3:72:c5:da:d4: 93:10:b3:79:d4:4b:d4:41:45:9b:f3:3e:5a:f0:9e: 42:09:be:14:3d:84:56:f2:60:20:aa:79:a0:21:f5: e5:fc:d8:4d:75:ae:69:35:c1:41:89:aa:66:ff:2b: b8:11:f7:bf:ec:6a:4d:4b:60:18:e6:48:9b:ea:1d: b5:a1:89:da:c8:e1:6b:48:bb:29:72:c3:db:0f:6e: bd:f5:8f:ef:42:84:79:f0:1d:11:2a:b8:90:73:df: 51:66:5f:32:83:e5:ad:7b:66:8b:92:64:5d:9c:cb: e5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:EE:DC:91:03:38:21:02:26:28:7D:94:8F:36:97:B0:B5:F4:71:6E X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:56:25:62:ff:32:ea:8e:01:b9:41:ea:4f:d6:70:7b:6a:b1: 35:18:38:7d:ad:30:1e:ae:10:5b:35:6b:c7:3b:24:0c:f1:a7: a5:31:91:62:58:b2:0c:ad:cb:27:05:04:ce:6d:cf:b4:78:d9: b0:08:da:cc:2e:c5:7c:eb:76:e4:52:e4:28:a5:c2:46:94:41: b6:bf:b1:06:2a:8e:d5:49:9f:3d:19:16:e9:23:e8:e1:71:9c: 41:3b:22:be:9b:8e:18:9b:0c:6d:e5:a1:21:75:1c:00:53:50: 54:b6:ea:44:06:20:b9:de:0c:0c:61:9e:3f:74:8d:f3:f1:bc: 5b:53:12:c2:3d:a6:7b:55:03:1c:bc:8b:20:a3:ab:48:5a:c8: ee:47:f4:91:16:10:22:b2:c9:0b:9c:ce:58:4b:3c:34:08:53: 3a:a1:76:75:cf:b8:c4:42:ba:b4:5c:b4:6d:24:46:23:e3:64: 01:8b:cc:0a:41:b9:33:88:98:c8:1d:96:78:81:9a:0a:62:92: 5c:0b:d3:85:69:9f:06:4f:d3:8c:99:f9:6d:6a:d1:c2:55:0f: 78:37:df:b2:16:dc:24:35:c1:1a:5d:b4:2e:eb:29:11:6b:d3: ac:8c:81:35:9d:19:bf:df:55:69:d9:6f:31:4e:b8:2b:aa:bf: 73:fd:de:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUwNjE0MTk0NTM2WhcNMjUwNjIxMTk0NTM2WjAYMRYwFAYD VQQDEw02ODRkZDE2MC05ZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAty1+v3vwDv3BUW/JMLlMYc79K42g+rSo/8q1ZtWCUOejgX5pAPrqLVTnFxoj wps3LB9UrTPFZYmb4myipDL9fzGDpQIf0EByssmG2B3BjR8FpOcepBBW/XVCLpaQ o3KrDyM/y0WaX2rXrciZ/ZDwE/HProCzblHmdM2XY22e+73pM5f2jI0AMtIghEeZ bCK1o3LF2tSTELN51EvUQUWb8z5a8J5CCb4UPYRW8mAgqnmgIfXl/NhNda5pNcFB iapm/yu4Efe/7GpNS2AY5kib6h21oYnayOFrSLspcsPbD2699Y/vQoR58B0RKriQ c99RZl8yg+Wte2aLkmRdnMvlWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLu3JED OCECJih9lI82l7C19HFuMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgViVi/zLqjgG5QepP1nB7arE1GDh9rTAerhBbNWvHOyQM8aelMZFi WLIMrcsnBQTObc+0eNmwCNrMLsV863bkUuQopcJGlEG2v7EGKo7VSZ89GRbpI+jh cZxBOyK+m44Ymwxt5aEhdRwAU1BUtupEBiC53gwMYZ4/dI3z8bxbUxLCPaZ7VQMc vIsgo6tIWsjuR/SRFhAisskLnM5YSzw0CFM6oXZ1z7jEQrq0XLRtJEYj42QBi8wK QbkziJjIHZZ4gZoKYpJcC9OFaZ8GT9OMmfltatHCVQ94N9+yFtwkNcEaXbQu6ykR a9OsjIE1nRm/31Vp2W8xTrgrqr9z/d7n -----END CERTIFICATE-----Generated at Sun Jun 15 09:46:22 2025 by rpki-client