$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft File: FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft (raw, json) Hash identifier: gXY667skt0CvJqTBBnFxr86edcPluHWhWAaRY9p886Y= Subject key identifier: C8:71:A5:C9:64:30:22:F8:32:89:15:21:9D:3A:B4:B3:1A:28:8F:74 Authority key identifier: 15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 Certificate issuer: /CN=A91A5EBA/serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft Manifest number: BB Signing time: Sun 15 Jun 2025 05:00:29 +0000 Manifest this update: Sun 15 Jun 2025 05:00:29 +0000 Manifest next update: Sun 22 Jun 2025 05:00:29 +0000 Files and hashes: 1: FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl (hash: JuExbMLK5KihphSyATbwKGeX/E/FGVu9Eu+wfVmgKS4=) 2: 80F32E7C2C5511EF83ECC535C4F9AE02.roa (hash: AqGZytLz79ZmCSne/bhw4dD+/PQ46qKOd6q10ehPEX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EBA, serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Validity Not Before: Jun 15 05:00:29 2025 GMT Not After : Jun 22 05:00:29 2025 GMT Subject: CN=684e536d-d7ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e2:02:02:3d:1a:bf:66:99:a0:49:2f:b9:3e: ba:1b:b8:18:2d:ec:b1:3f:14:dc:45:5d:38:75:0a: 6f:53:29:6e:35:e1:e3:e2:de:5a:17:d1:bb:ef:a6: fc:33:9c:60:34:e2:18:7d:82:25:fe:68:af:d4:fa: ef:7a:2d:bc:37:72:0f:bc:ea:bc:18:a6:04:bf:f2: bc:65:02:d1:94:ad:78:5f:90:2c:e7:3d:b8:b8:cb: bd:f7:91:92:53:a1:b3:b4:16:1a:6b:00:5e:41:11: 39:44:31:a5:49:65:d2:4f:6c:ee:7f:20:50:8a:31: f2:77:c7:6f:6b:92:47:82:f9:5b:97:e4:f4:55:0c: 04:44:35:77:d3:da:0a:36:30:1b:9d:5e:6b:18:21: 4a:01:ea:81:61:da:3f:bc:89:9b:4a:d5:0d:ab:28: 12:b6:78:c2:bf:15:2d:8a:eb:d6:46:fc:d7:7f:d2: 2e:c5:8b:5d:11:80:e5:a3:f4:6f:0e:20:a1:98:9c: 6e:23:34:8c:7f:d9:f3:39:18:fe:65:23:bd:2a:5c: 32:67:d0:ce:d3:e6:8c:77:6a:24:a5:1a:19:d2:0e: aa:ed:18:62:0a:a3:82:8f:c8:d1:53:bb:42:80:52: a9:a2:93:e3:fd:5c:38:9d:33:b6:7d:ab:b6:5e:f0: a5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:71:A5:C9:64:30:22:F8:32:89:15:21:9D:3A:B4:B3:1A:28:8F:74 X509v3 Authority Key Identifier: keyid:15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:b5:ab:7e:23:26:b0:44:8f:3f:76:bf:3f:19:98:19:63:9e: 78:e6:56:fd:ec:aa:08:42:32:81:25:f1:6d:1a:ea:b1:34:19: 67:56:df:2a:9c:d5:fe:e8:b3:cd:e2:e8:ec:9b:98:93:0c:62: d3:0d:3a:d8:a5:e4:e6:42:06:23:7e:48:e0:56:7e:0c:68:7e: fc:6e:c9:a6:32:db:2d:6c:53:09:ff:c4:37:2c:b9:6c:87:61: 41:1b:74:61:d5:46:17:dc:0b:e3:67:5a:7a:bf:ee:95:b4:59: 05:31:93:2b:6c:b2:63:e1:a6:7f:ba:a0:a9:c6:32:16:a4:36: e6:7e:82:e0:a0:84:c0:e2:7e:ff:24:7f:aa:23:1e:ae:c8:86: a6:37:cd:8c:17:b9:43:04:18:36:b1:5b:ea:56:e8:b9:b2:c6: ff:19:36:eb:00:13:90:92:46:25:62:e8:21:7e:b2:5f:e2:5c: 3a:4b:6c:6d:fc:b9:fd:6a:1d:1a:56:0a:64:9b:cc:fb:ad:b5: cb:3f:eb:fb:ca:14:39:3f:10:0a:1e:95:63:aa:ad:a7:08:03: 40:2b:32:f9:8f:c4:30:48:21:ec:1a:67:27:f3:96:dd:f6:26: af:85:25:ba:2d:e9:b7:6d:02:ab:a5:a5:19:c0:12:ec:d4:f2: 2d:83:4a:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFQkExMTAvBgNVBAUTKDE1NkQ0QTlDNkYxNUVCMkI0QjNGMzY3RDY5RkFBMjUx MDEyODA3ODgwHhcNMjUwNjE1MDUwMDI5WhcNMjUwNjIyMDUwMDI5WjAYMRYwFAYD VQQDEw02ODRlNTM2ZC1kN2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuICAj0av2aZoEkvuT66G7gYLeyxPxTcRV04dQpvUyluNeHj4t5aF9G776b8 M5xgNOIYfYIl/miv1Prvei28N3IPvOq8GKYEv/K8ZQLRlK14X5As5z24uMu995GS U6GztBYaawBeQRE5RDGlSWXST2zufyBQijHyd8dva5JHgvlbl+T0VQwERDV309oK NjAbnV5rGCFKAeqBYdo/vImbStUNqygStnjCvxUtiuvWRvzXf9IuxYtdEYDlo/Rv DiChmJxuIzSMf9nzORj+ZSO9KlwyZ9DO0+aMd2okpRoZ0g6q7RhiCqOCj8jRU7tC gFKpopPj/Vw4nTO2fau2XvClQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhxpclk MCL4MokVIZ06tLMaKI90MB8GA1UdIwQYMBaAFBVtSpxvFesrSz82fWn6olEBKAeI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVCQS83MkU1NENGRTJD NTMxMUVGOTFCRjdDMzBDNEY5QUUwMi9GVzFLbkc4VjZ5dExQelo5YWZxaVVRRW9C NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZXMUtuRzhWNnl0TFB6WjlhZnFpVVFFb0I0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUVCQS83MkU1NENGRTJDNTMxMUVGOTFCRjdDMzBDNEY5QUUwMi9GVzFLbkc4VjZ5 dExQelo5YWZxaVVRRW9CNGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZtat+IyawRI8/dr8/GZgZY5545lb97KoIQjKBJfFtGuqxNBlnVt8q nNX+6LPN4ujsm5iTDGLTDTrYpeTmQgYjfkjgVn4MaH78bsmmMtstbFMJ/8Q3LLls h2FBG3Rh1UYX3AvjZ1p6v+6VtFkFMZMrbLJj4aZ/uqCpxjIWpDbmfoLgoITA4n7/ JH+qIx6uyIamN82MF7lDBBg2sVvqVui5ssb/GTbrABOQkkYlYughfrJf4lw6S2xt /Ln9ah0aVgpkm8z7rbXLP+v7yhQ5PxAKHpVjqq2nCANAKzL5j8QwSCHsGmcn85bd 9iavhSW6Lem3bQKrpaUZwBLs1PItg0pI -----END CERTIFICATE-----Generated at Sun Jun 15 10:04:00 2025 by rpki-client