$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: PaJVkS8uz+gzcRWt8CJWMRKQPIlWZ+jLCG9jPMv5uJU= Subject key identifier: 5B:0C:6F:27:E0:81:3A:34:56:D6:DB:C1:11:8C:74:EA:85:2B:2C:55 Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 0694 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 068A Signing time: Fri 08 Aug 2025 22:41:57 +0000 Manifest this update: Fri 08 Aug 2025 22:41:56 +0000 Manifest next update: Fri 15 Aug 2025 22:41:56 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: f1Oyo7q3HzQJxr+VyLvtAfNEUw/rwOjoCVc6vOXJM40=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1684 (0x694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Aug 8 22:41:56 2025 GMT Not After : Aug 15 22:41:56 2025 GMT Subject: CN=68967d35-4896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:66:71:2d:77:eb:39:fc:62:49:78:56:a5:74: 7d:63:02:78:d3:8b:2b:2f:5c:1a:47:85:d6:7c:8e: 13:cc:55:09:41:6f:9d:3c:90:19:38:23:60:7e:60: 0d:97:01:cc:12:1c:fb:94:a9:94:fe:91:55:82:e2: f7:9b:6c:38:bd:cd:5c:60:0c:72:d0:3d:fd:8a:08: e7:d2:47:e3:99:6f:e7:c5:3b:2d:4a:b0:0c:9a:33: 9a:b2:49:8b:c2:c5:75:c9:4c:b1:de:19:84:0d:b9: cf:c5:28:4e:b0:2c:ce:cc:15:a1:4c:1d:a1:9e:e9: 99:81:c8:06:56:00:b0:f7:17:68:20:41:e8:d1:fd: e6:c0:32:33:16:fe:96:ac:2b:5c:31:46:01:d1:9d: 51:e4:fd:31:f1:be:bc:07:9c:c0:12:29:f0:47:fa: 7e:9d:11:52:15:6a:4c:0e:ae:be:c4:b8:bd:8e:88: ef:94:35:bf:44:0f:6f:31:41:dc:97:9b:1c:2d:18: ff:33:a8:f0:31:8a:c6:39:b3:fa:75:49:64:76:46: b3:f9:49:63:1e:1d:69:ba:de:ed:fd:8c:e7:7a:2e: 55:72:a8:06:d7:32:5e:cd:db:22:af:03:c9:32:51: 18:f9:67:a2:c0:de:94:26:49:80:58:2e:a2:5d:a0: 91:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:0C:6F:27:E0:81:3A:34:56:D6:DB:C1:11:8C:74:EA:85:2B:2C:55 X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:21:34:20:4f:37:22:0c:3b:9d:ca:d5:36:ff:5f:a4:65:92: 7a:47:ab:b6:3b:08:4c:7e:58:7b:76:9a:50:f4:4b:5e:48:61: a2:7e:87:6e:f4:7a:8b:f2:1a:61:d4:42:89:b1:8b:4c:24:c8: 3a:a8:0f:05:7b:16:02:48:1f:56:00:6b:2f:5a:73:4f:2e:14: e5:44:f6:6e:b3:11:6d:3f:d3:ca:c1:b2:50:56:fd:74:c4:1a: cd:4a:23:bf:56:d2:7d:3e:e8:1b:f0:c5:8b:67:8d:b1:b6:ff: 75:ad:b2:6b:45:64:5b:b8:29:c6:3a:35:16:72:11:f1:88:43: 77:26:39:6f:18:a5:1a:57:b0:61:d0:f7:fb:cb:41:2b:16:44: db:42:86:50:ee:d5:aa:75:7c:1f:ea:67:25:a0:aa:b8:5f:56: 38:14:58:df:56:d1:8f:53:cc:6b:db:0d:c3:63:bd:9b:4b:d8: 09:14:6c:5d:e9:92:6b:ba:55:3d:45:35:4a:35:85:90:ea:63: 12:a0:f7:33:f9:5a:e8:4a:be:1b:c1:55:79:40:af:13:2e:23: 3b:db:eb:3d:cb:2f:1f:8b:55:e6:a0:9b:67:bd:41:6f:27:c1: 40:ea:2b:a3:57:0e:ad:d8:03:1e:12:fc:c1:6b:08:c6:c7:9e: 19:a1:8d:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUwODA4MjI0MTU2WhcNMjUwODE1MjI0MTU2WjAYMRYwFAYD VQQDEw02ODk2N2QzNS00ODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GZxLXfrOfxiSXhWpXR9YwJ404srL1waR4XWfI4TzFUJQW+dPJAZOCNgfmAN lwHMEhz7lKmU/pFVguL3m2w4vc1cYAxy0D39igjn0kfjmW/nxTstSrAMmjOaskmL wsV1yUyx3hmEDbnPxShOsCzOzBWhTB2hnumZgcgGVgCw9xdoIEHo0f3mwDIzFv6W rCtcMUYB0Z1R5P0x8b68B5zAEinwR/p+nRFSFWpMDq6+xLi9jojvlDW/RA9vMUHc l5scLRj/M6jwMYrGObP6dUlkdkaz+UljHh1put7t/Yznei5VcqgG1zJezdsirwPJ MlEY+WeiwN6UJkmAWC6iXaCRGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsMbyfg gTo0VtbbwRGMdOqFKyxVMB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoITQgTzciDDudytU2/1+kZZJ6R6u2OwhMflh7dppQ9EteSGGifodu 9HqL8hph1EKJsYtMJMg6qA8FexYCSB9WAGsvWnNPLhTlRPZusxFtP9PKwbJQVv10 xBrNSiO/VtJ9Pugb8MWLZ42xtv91rbJrRWRbuCnGOjUWchHxiEN3JjlvGKUaV7Bh 0Pf7y0ErFkTbQoZQ7tWqdXwf6mcloKq4X1Y4FFjfVtGPU8xr2w3DY72bS9gJFGxd 6ZJrulU9RTVKNYWQ6mMSoPcz+VroSr4bwVV5QK8TLiM72+s9yy8fi1XmoJtnvUFv J8FA6iujVw6t2AMeEvzBawjGx54ZoY3I -----END CERTIFICATE-----Generated at Sat Aug 9 22:47:37 2025 by rpki-client