$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft File: FDeI0jX9adsvJbd3Il96t2naNQs.mft (raw, json) Hash identifier: Rt+NzUjA/TeqP45ov+psMtUJWXw7NL/bhblYENjTj94= Subject key identifier: FD:F6:1F:28:4A:90:85:A2:1D:7F:5E:98:62:A0:68:D9:C1:14:E7:D9 Authority key identifier: 14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B Certificate issuer: /CN=A91C5323/serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Certificate serial: 057A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft Manifest number: 0572 Signing time: Sat 14 Jun 2025 23:04:58 +0000 Manifest this update: Sat 14 Jun 2025 23:04:57 +0000 Manifest next update: Sat 21 Jun 2025 23:04:57 +0000 Files and hashes: 1: FDeI0jX9adsvJbd3Il96t2naNQs.crl (hash: FCs+bDqDpdBnYE73PBkwJNQ7DPpEpg40NL2OqEfZGWY=) 2: 2A52AB54138811F0BA2C056DC4F9AE02.roa (hash: 0AvanG6lwhnjCogGu+WtHXRuTCMKYEBdG6vznbvbdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5323, serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Validity Not Before: Jun 14 23:04:57 2025 GMT Not After : Jun 21 23:04:57 2025 GMT Subject: CN=684e001a-7395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:60:bf:f2:f8:e4:8d:2c:d7:25:c5:3f:c6:32: 4f:8a:4d:b7:77:40:80:5e:a2:8b:6c:b9:34:87:a6: 37:5c:f4:c2:e1:0c:8d:62:c3:b9:b4:83:f5:77:c6: c6:20:86:bd:33:4c:2d:db:20:62:d1:19:d1:22:46: d3:5d:61:1b:3f:03:b1:61:b1:b5:61:e9:3d:7c:fc: d4:81:bf:61:ce:94:9c:c5:bf:c4:e4:df:3e:77:fd: 6a:5f:05:8c:de:6b:3f:af:51:49:ec:c0:e9:2d:cd: ae:02:4f:92:5f:9e:f3:21:35:5c:eb:bf:6c:3f:3c: 96:c7:c2:68:ab:d2:c1:6d:bd:d3:83:72:30:cf:56: 37:5b:54:17:95:c6:6f:86:25:08:32:4d:5a:5f:ba: 76:02:8a:06:f0:29:30:00:ac:e4:fb:d5:a1:29:ae: 39:c5:1f:00:b3:3f:7a:c8:a2:97:85:da:75:dd:b1: 35:f5:24:87:d4:a7:09:9f:28:d4:38:3e:bf:35:27: f0:6d:a2:43:ed:e2:4e:1b:c4:a7:03:71:6a:13:dd: 97:58:3b:8a:b6:1e:53:48:29:54:f4:8b:94:ab:8b: bd:8e:3f:24:92:ef:7e:76:4c:b2:cd:b9:66:7e:b1: 48:af:58:ed:61:bf:c1:ce:48:85:90:25:55:4c:33: aa:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F6:1F:28:4A:90:85:A2:1D:7F:5E:98:62:A0:68:D9:C1:14:E7:D9 X509v3 Authority Key Identifier: keyid:14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:dd:de:68:33:fa:37:01:0d:74:69:32:46:50:f7:18:84:b8: c2:69:cf:b4:3b:fb:b1:65:ed:14:0d:16:80:e6:f4:1f:4d:0c: 50:51:56:a8:8e:61:42:c2:28:8b:7e:7f:4a:4c:61:a3:a0:8f: c6:d9:cf:e5:3a:07:59:4d:34:c6:ba:99:48:3b:be:8a:8b:69: 22:3a:30:70:a4:a7:43:12:d2:39:cd:d8:a5:26:59:f1:6c:f4: 0f:61:84:4c:2d:d6:3b:a6:4d:ff:b2:89:0d:46:cd:fb:40:30: 2a:4d:de:40:95:2b:48:9a:08:77:1b:e1:3d:bd:5b:3b:2c:38: 18:41:97:eb:c6:a7:e5:74:06:64:ad:12:58:03:3c:31:b7:62: b9:83:15:4a:6c:ec:30:81:02:8e:91:c6:d4:ee:6d:e4:72:95: ab:fe:44:7a:2e:c6:2a:f6:ea:77:b1:f7:55:6c:da:b2:0d:44: e0:33:e3:1d:d3:dd:61:1f:6a:17:cd:6a:5b:21:81:7d:73:74: fa:27:e3:0b:89:c6:0d:0a:2b:23:7e:ec:3a:e7:76:fe:a8:87: d4:87:2d:e7:ed:54:48:d7:15:94:c2:ab:1e:c2:2b:51:54:6b: 28:d3:0b:d8:a2:ad:76:2d:b7:6a:37:25:5d:2b:34:d5:3e:b0: 7e:1d:bc:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMjMxMTAvBgNVBAUTKDE0Mzc4OEQyMzVGRDY5REIyRjI1Qjc3NzIyNUY3QUI3 NjlEQTM1MEIwHhcNMjUwNjE0MjMwNDU3WhcNMjUwNjIxMjMwNDU3WjAYMRYwFAYD VQQDEw02ODRlMDAxYS03Mzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGC/8vjkjSzXJcU/xjJPik23d0CAXqKLbLk0h6Y3XPTC4QyNYsO5tIP1d8bG IIa9M0wt2yBi0RnRIkbTXWEbPwOxYbG1Yek9fPzUgb9hzpScxb/E5N8+d/1qXwWM 3ms/r1FJ7MDpLc2uAk+SX57zITVc679sPzyWx8Joq9LBbb3Tg3Iwz1Y3W1QXlcZv hiUIMk1aX7p2AooG8CkwAKzk+9WhKa45xR8Asz96yKKXhdp13bE19SSH1KcJnyjU OD6/NSfwbaJD7eJOG8SnA3FqE92XWDuKth5TSClU9IuUq4u9jj8kku9+dkyyzblm frFIr1jtYb/BzkiFkCVVTDOqGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP32HyhK kIWiHX9emGKgaNnBFOfZMB8GA1UdIwQYMBaAFBQ3iNI1/WnbLyW3dyJferdp2jUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMyMy9ERjY2REUyNEU1 NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFkc3ZKYmQzSWw5NnQybmFO UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZEZUkwalg5YWRzdkpiZDNJbDk2dDJuYU5Rcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTMyMy9ERjY2REUyNEU1NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFk c3ZKYmQzSWw5NnQybmFOUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx3d5oM/o3AQ10aTJGUPcYhLjCac+0O/uxZe0UDRaA5vQfTQxQUVao jmFCwiiLfn9KTGGjoI/G2c/lOgdZTTTGuplIO76Ki2kiOjBwpKdDEtI5zdilJlnx bPQPYYRMLdY7pk3/sokNRs37QDAqTd5AlStImgh3G+E9vVs7LDgYQZfrxqfldAZk rRJYAzwxt2K5gxVKbOwwgQKOkcbU7m3kcpWr/kR6LsYq9up3sfdVbNqyDUTgM+Md 091hH2oXzWpbIYF9c3T6J+MLicYNCisjfuw653b+qIfUhy3n7VRI1xWUwqsewitR VGso0wvYoq12LbdqNyVdKzTVPrB+Hbyl -----END CERTIFICATE-----Generated at Sun Jun 15 09:42:59 2025 by rpki-client