$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft File: FF-_nuMXN-kcPNSE7AFq48jzgDw.mft (raw, json) Hash identifier: GTdsShlzD32rzS26B790uetoVVaeDXLUzLoa4EEmwWo= Subject key identifier: 20:15:91:DF:1A:72:51:98:38:A6:23:73:BD:63:66:26:05:6F:A7:97 Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 02B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft Manifest number: 02B2 Signing time: Sun 15 Jun 2025 01:10:13 +0000 Manifest this update: Sun 15 Jun 2025 01:10:13 +0000 Manifest next update: Sun 22 Jun 2025 01:10:13 +0000 Files and hashes: 1: FF-_nuMXN-kcPNSE7AFq48jzgDw.crl (hash: bCkaAYC5QmMUQs6WlSewN3dhCvuvaS14MGtXQr3l2fM=) 2: D5D64BB0FB6811EC863B8150C4F9AE02.roa (hash: QqynXUFn2t2DwRQgssbkvYUHxaAcBlMuvOzz1OFVxaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D, serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: Jun 15 01:10:13 2025 GMT Not After : Jun 22 01:10:13 2025 GMT Subject: CN=684e1d75-77bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ce:17:85:1f:52:1a:46:f2:8e:74:15:9e:c0: 9e:1e:a5:d3:00:7f:64:32:f3:c6:51:ff:88:fa:fb: be:65:a7:b4:cb:b2:c8:f2:fc:44:d4:18:fb:25:ce: 67:84:a4:93:56:70:ea:21:88:cf:13:4a:aa:da:5b: 3f:ae:51:3d:76:13:6e:a1:8d:6b:a6:cd:74:f8:ab: 1a:6f:2c:83:83:59:d1:97:15:90:6b:af:90:61:d9: 2c:70:ff:55:30:0f:61:84:7a:5f:c4:da:db:e5:a1: f1:3e:5a:1c:2f:c1:76:3c:34:89:24:64:9a:14:be: 38:fc:1c:ba:d7:89:6d:e7:67:51:c3:d0:81:73:3e: d6:a7:c2:66:7a:01:35:27:4d:15:b1:66:69:ba:64: 91:1d:03:ea:b9:51:62:9b:c4:26:b5:73:4d:df:cf: 63:ac:b6:9e:18:8e:b7:df:ac:ba:56:5f:45:0b:53: a0:b4:ec:77:0f:98:4d:66:e2:b1:a6:aa:01:aa:9c: b6:73:13:49:90:01:48:6a:a9:ad:4b:05:5a:f5:f7: 22:91:f9:90:42:03:d9:c6:bb:e3:a5:64:fd:48:f0: 4b:03:ad:54:75:4f:dc:08:81:3d:13:a4:f5:ff:0d: 50:db:fd:a2:cf:a5:05:0a:2c:6e:18:bc:01:90:f9: 94:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:15:91:DF:1A:72:51:98:38:A6:23:73:BD:63:66:26:05:6F:A7:97 X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:b2:d3:6d:78:89:46:b6:d7:7c:87:48:5a:b7:11:7b:5b:81: 2e:d2:c6:ef:d9:0d:24:33:48:1c:6f:83:e8:52:1b:bf:61:c2: 66:5a:59:8a:80:9a:6b:a9:bb:e9:b2:87:80:c7:c2:6b:f8:28: 75:15:87:3c:90:36:53:76:58:52:6b:7c:4a:10:94:44:14:54: 53:a1:d3:09:0e:39:2c:84:bd:74:44:ab:1d:0b:fc:87:34:84: 1a:ff:8a:e5:40:1b:0b:f9:53:b3:b3:7e:fd:ee:02:f6:15:f8: 9a:1f:84:de:0a:51:fd:5c:e7:5c:ca:43:db:be:97:0d:ff:34: d9:fa:ed:2c:84:f8:c6:5e:f5:b6:ac:a7:9a:96:77:30:39:7f: 16:86:4d:ce:3f:2d:de:fe:42:ec:6d:8d:30:d6:06:22:cb:c0: c5:b5:a5:da:9e:81:89:e1:5b:43:44:b1:73:dd:d6:c7:6a:3f: 4a:c1:59:d5:7d:c6:f0:32:c8:7e:36:2f:b4:97:dd:0f:c7:1e: 5b:79:7d:94:0c:0e:ab:7b:6c:4d:f5:e2:fe:cc:48:60:f1:77: 34:ca:8d:a0:a9:b9:e3:ef:1c:3a:9a:86:ac:23:e5:1e:ec:3d: d3:4d:31:24:55:b1:50:23:98:8b:59:0d:a2:99:f1:80:98:bd: 75:db:9e:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjUwNjE1MDExMDEzWhcNMjUwNjIyMDExMDEzWjAYMRYwFAYD VQQDEw02ODRlMWQ3NS03N2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm84XhR9SGkbyjnQVnsCeHqXTAH9kMvPGUf+I+vu+Zae0y7LI8vxE1Bj7Jc5n hKSTVnDqIYjPE0qq2ls/rlE9dhNuoY1rps10+KsabyyDg1nRlxWQa6+QYdkscP9V MA9hhHpfxNrb5aHxPlocL8F2PDSJJGSaFL44/By614lt52dRw9CBcz7Wp8JmegE1 J00VsWZpumSRHQPquVFim8QmtXNN389jrLaeGI6336y6Vl9FC1OgtOx3D5hNZuKx pqoBqpy2cxNJkAFIaqmtSwVa9fcikfmQQgPZxrvjpWT9SPBLA61UdU/cCIE9E6T1 /w1Q2/2iz6UFCixuGLwBkPmUiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAVkd8a clGYOKYjc71jZiYFb6eXMB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc4RC82N0I0NDgyOEZCNjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4t a2NQTlNFN0FGcTQ4anpnRHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEstNteIlGttd8h0hatxF7W4Eu0sbv2Q0kM0gcb4PoUhu/YcJmWlmK gJprqbvpsoeAx8Jr+Ch1FYc8kDZTdlhSa3xKEJREFFRTodMJDjkshL10RKsdC/yH NIQa/4rlQBsL+VOzs3797gL2FfiaH4TeClH9XOdcykPbvpcN/zTZ+u0shPjGXvW2 rKealncwOX8Whk3OPy3e/kLsbY0w1gYiy8DFtaXanoGJ4VtDRLFz3dbHaj9KwVnV fcbwMsh+Ni+0l90Pxx5beX2UDA6re2xN9eL+zEhg8Xc0yo2gqbnj7xw6moasI+Ue 7D3TTTEkVbFQI5iLWQ2imfGAmL11255D -----END CERTIFICATE-----Generated at Sun Jun 15 09:31:02 2025 by rpki-client