$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft File: FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft (raw, json) Hash identifier: kyHVM34QhJ0x/7qCoTZWp39PIF4c21Z0Y9ix11muyTU= Subject key identifier: E5:34:12:24:BB:7C:5D:87:EA:31:61:62:66:0B:82:AA:B5:01:CE:E8 Authority key identifier: 15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 Certificate issuer: /CN=A91A5EBA/serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft Manifest number: D7 Signing time: Sat 09 Aug 2025 05:57:40 +0000 Manifest this update: Sat 09 Aug 2025 05:57:40 +0000 Manifest next update: Sat 16 Aug 2025 05:57:40 +0000 Files and hashes: 1: FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl (hash: IZZhRGtJwkjvckMYEBGL7KP4xdZR0Hb2RWSuvwA81tc=) 2: 80F32E7C2C5511EF83ECC535C4F9AE02.roa (hash: AqGZytLz79ZmCSne/bhw4dD+/PQ46qKOd6q10ehPEX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EBA, serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Validity Not Before: Aug 9 05:57:40 2025 GMT Not After : Aug 16 05:57:40 2025 GMT Subject: CN=6896e354-e593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:17:b0:97:ad:e0:8a:46:56:94:ea:82:36:ff: f7:98:18:12:8a:61:1c:16:8b:6e:40:2a:e1:a0:7c: 63:49:f8:97:94:3b:9f:ee:bf:77:d4:78:2d:6b:90: 41:5d:14:74:b6:de:ed:13:eb:56:62:0d:21:68:2c: 64:a9:5f:e9:67:19:d3:91:54:cf:73:ba:57:55:1d: 59:4b:5a:9b:18:fb:18:79:9a:e4:65:85:a5:73:2b: 37:d7:3f:08:ca:7d:f3:f3:bf:30:9f:53:09:1c:04: a5:1e:8e:10:a5:ff:49:af:13:13:94:b3:3b:09:27: ce:69:08:4c:59:22:07:06:8c:a9:71:66:ae:ff:fc: d1:fc:26:4d:b1:71:4b:54:83:9b:cb:4e:4d:cb:47: 4c:e8:dc:a7:16:57:ed:1f:5e:db:b8:a5:37:27:25: 03:5b:41:5c:fd:c5:63:ba:c7:96:16:ba:37:55:38: 34:f3:10:a7:b2:80:21:32:dd:62:1d:f8:8f:67:45: a1:fe:56:94:8b:cb:39:d6:ed:30:c9:9c:20:62:88: 98:ee:d0:d0:31:66:e5:02:5c:14:3a:24:9e:84:7f: 30:d2:dc:fa:4c:38:58:00:5b:69:99:65:8f:a0:37: 75:e8:bd:9b:49:70:40:75:71:83:ca:b7:3d:8c:50: da:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:34:12:24:BB:7C:5D:87:EA:31:61:62:66:0B:82:AA:B5:01:CE:E8 X509v3 Authority Key Identifier: keyid:15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:09:3f:9e:1c:6b:4a:94:ba:cf:0b:8e:7f:79:d8:51:1c:74: 22:62:0b:ec:e7:e8:8b:eb:7c:d6:12:97:fd:fe:42:1c:0e:5e: 93:96:b4:3c:98:c6:18:b5:24:11:aa:40:b1:e1:ad:07:b4:2a: fd:7c:be:68:ed:2f:7f:76:9c:72:44:26:23:28:63:c0:67:40: ee:f0:8b:b9:66:8f:e1:13:2a:1a:f8:23:40:f6:e4:99:4b:25: d8:a3:09:ed:20:66:c7:1e:7d:81:67:d1:18:b0:ed:c3:b1:ec: b0:c8:e0:46:17:c0:cd:85:9f:27:8e:bd:36:99:f2:57:2b:f7: 92:69:b0:fc:2f:f7:45:ac:68:d9:fb:f3:a5:45:89:6a:b8:14: b0:f8:e4:f4:e9:f1:14:65:64:0c:5d:3b:fb:78:d7:45:e4:24: 40:8c:2e:c6:b6:c0:d7:fd:ba:ac:53:35:07:b6:31:5e:01:6d: 9e:b9:d6:7c:8d:73:74:f9:8a:53:3d:af:e0:13:70:28:c3:29: bd:d7:8b:f3:9c:be:02:97:23:7b:da:f9:7e:9c:92:bc:25:c2: 2d:6b:2d:c6:11:81:2d:60:c5:51:3b:85:06:04:a9:b3:55:0c: f0:83:77:46:df:f8:d8:72:8c:83:fb:ad:15:d8:73:05:cd:c0: f8:a9:c6:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFQkExMTAvBgNVBAUTKDE1NkQ0QTlDNkYxNUVCMkI0QjNGMzY3RDY5RkFBMjUx MDEyODA3ODgwHhcNMjUwODA5MDU1NzQwWhcNMjUwODE2MDU1NzQwWjAYMRYwFAYD VQQDEw02ODk2ZTM1NC1lNTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBewl63gikZWlOqCNv/3mBgSimEcFotuQCrhoHxjSfiXlDuf7r931Hgta5BB XRR0tt7tE+tWYg0haCxkqV/pZxnTkVTPc7pXVR1ZS1qbGPsYeZrkZYWlcys31z8I yn3z878wn1MJHASlHo4Qpf9JrxMTlLM7CSfOaQhMWSIHBoypcWau//zR/CZNsXFL VIOby05Ny0dM6NynFlftH17buKU3JyUDW0Fc/cVjuseWFro3VTg08xCnsoAhMt1i HfiPZ0Wh/laUi8s51u0wyZwgYoiY7tDQMWblAlwUOiSehH8w0tz6TDhYAFtpmWWP oDd16L2bSXBAdXGDyrc9jFDaPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOU0EiS7 fF2H6jFhYmYLgqq1Ac7oMB8GA1UdIwQYMBaAFBVtSpxvFesrSz82fWn6olEBKAeI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVCQS83MkU1NENGRTJD NTMxMUVGOTFCRjdDMzBDNEY5QUUwMi9GVzFLbkc4VjZ5dExQelo5YWZxaVVRRW9C NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZXMUtuRzhWNnl0TFB6WjlhZnFpVVFFb0I0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUVCQS83MkU1NENGRTJDNTMxMUVGOTFCRjdDMzBDNEY5QUUwMi9GVzFLbkc4VjZ5 dExQelo5YWZxaVVRRW9CNGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaCT+eHGtKlLrPC45/edhRHHQiYgvs5+iL63zWEpf9/kIcDl6TlrQ8 mMYYtSQRqkCx4a0HtCr9fL5o7S9/dpxyRCYjKGPAZ0Du8Iu5Zo/hEyoa+CNA9uSZ SyXYowntIGbHHn2BZ9EYsO3DseywyOBGF8DNhZ8njr02mfJXK/eSabD8L/dFrGjZ +/OlRYlquBSw+OT06fEUZWQMXTv7eNdF5CRAjC7GtsDX/bqsUzUHtjFeAW2eudZ8 jXN0+YpTPa/gE3Aowym914vznL4ClyN72vl+nJK8JcItay3GEYEtYMVRO4UGBKmz VQzwg3dG3/jYcoyD+60V2HMFzcD4qcaR -----END CERTIFICATE-----Generated at Sun Aug 10 18:23:58 2025 by rpki-client