$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: wff2d+ClOR69rTZt7GjuTvvbX6pHtfvsB92G8hKhS2Y= Subject key identifier: 6D:96:7F:04:EA:02:23:9F:C1:70:03:96:A2:14:4A:17:F5:28:6E:43 Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 0502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 04FB Signing time: Sat 09 Aug 2025 00:08:37 +0000 Manifest this update: Sat 09 Aug 2025 00:08:37 +0000 Manifest next update: Sat 16 Aug 2025 00:08:37 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: wnS3paWZ+SaFzaF/5E0lMJ7vDEtgb85Sc+qXPJIeAcg=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: b/ItM9VGVv0zUWnweJ6+Pz3YcBgADXF1u82bmhYCBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1282 (0x502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603, serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: Aug 9 00:08:37 2025 GMT Not After : Aug 16 00:08:37 2025 GMT Subject: CN=68969185-2b23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c1:9c:46:5e:55:2e:e5:bd:19:04:72:dc:78: f8:98:3c:94:88:5c:2a:3f:96:14:87:8f:69:b4:8a: 05:33:de:1b:19:dc:e6:d5:4b:c3:2c:06:22:a5:2a: 7a:3e:9f:ef:fe:eb:8e:e7:1b:2c:38:17:b2:4d:69: 71:6c:3d:18:59:5c:d6:80:d3:07:49:9d:c5:bd:37: e1:2a:71:76:ce:d2:f4:e3:1e:37:fb:f9:01:f4:6d: ae:cc:1d:92:9d:c6:a6:65:c7:8d:ea:e4:9d:fb:07: b2:67:67:ca:9e:8b:d3:cf:a8:0b:56:f8:52:47:f5: e5:93:90:28:0b:17:29:fa:84:38:5b:10:1d:6b:a4: b9:66:d8:00:c0:b4:e9:8b:cd:93:22:c6:ff:c2:70: b4:5b:8a:2c:06:bb:13:2d:1a:ab:9e:33:15:d0:94: 25:c1:ac:5c:17:97:47:6f:ed:33:29:08:bc:6b:31: c0:36:0c:13:65:e6:b1:e2:31:bd:dd:6e:11:e7:7a: 13:cd:58:29:83:15:29:15:8c:f2:aa:b8:0b:f8:b6: 52:71:19:07:2a:bf:9b:aa:6b:99:ef:71:d0:c8:c5: ba:30:ee:7a:54:c8:d3:c2:06:8c:d3:46:a0:7c:ed: 86:de:2a:01:56:9d:e6:79:48:fb:b0:93:d6:bd:50: 7b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:96:7F:04:EA:02:23:9F:C1:70:03:96:A2:14:4A:17:F5:28:6E:43 X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:f9:02:30:93:c8:d7:34:29:f5:90:b8:0c:c8:e6:c7:3b:20: 1e:d8:cf:4e:f4:e2:8f:ae:f1:65:a6:20:c7:f4:44:dc:d4:42: bf:06:d7:b0:c1:3f:40:2b:2a:41:77:d8:09:25:46:a3:fe:44: ad:30:c6:ac:03:ea:8c:1b:8c:7b:e3:6a:77:98:4d:d2:b1:7f: 69:e2:c7:a5:53:80:21:f9:e0:90:30:1f:2a:39:d4:23:af:ed: c3:57:75:44:c2:40:9a:5a:d1:32:d7:85:67:69:a5:b5:e0:c9: e0:eb:ac:b7:19:ad:62:dd:1a:ce:40:6a:2c:de:6d:d0:77:53: 41:e6:e0:ef:2c:40:d2:e5:38:1b:93:e8:83:e7:7e:82:36:2d: 2b:b8:e5:a8:5a:37:75:a8:e5:3b:95:60:df:ff:35:81:25:40: 9e:e1:af:a7:8e:d2:ad:10:5a:a7:2b:20:8d:53:87:7a:7d:b3: d4:05:b5:f2:fe:0f:c8:97:d9:85:bb:e4:d5:9a:4d:f8:f5:9e: 8e:62:f9:95:18:49:d6:71:99:d5:35:9b:7d:b7:13:15:44:64: f6:35:87:cc:31:2d:e4:ce:36:36:37:cf:fc:2e:5e:15:4f:ce: 90:b6:c9:54:02:d6:e8:58:12:02:22:70:81:01:04:40:48:0d: 77:fe:4e:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjUwODA5MDAwODM3WhcNMjUwODE2MDAwODM3WjAYMRYwFAYD VQQDEw02ODk2OTE4NS0yYjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssGcRl5VLuW9GQRy3Hj4mDyUiFwqP5YUh49ptIoFM94bGdzm1UvDLAYipSp6 Pp/v/uuO5xssOBeyTWlxbD0YWVzWgNMHSZ3FvTfhKnF2ztL04x43+/kB9G2uzB2S ncamZceN6uSd+weyZ2fKnovTz6gLVvhSR/Xlk5AoCxcp+oQ4WxAda6S5ZtgAwLTp i82TIsb/wnC0W4osBrsTLRqrnjMV0JQlwaxcF5dHb+0zKQi8azHANgwTZeax4jG9 3W4R53oTzVgpgxUpFYzyqrgL+LZScRkHKr+bqmuZ73HQyMW6MO56VMjTwgaM00ag fO2G3ioBVp3meUj7sJPWvVB7bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2WfwTq AiOfwXADlqIUShf1KG5DMB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc+QIwk8jXNCn1kLgMyObHOyAe2M9O9OKPrvFlpiDH9ETc1EK/Btew wT9AKypBd9gJJUaj/kStMMasA+qMG4x742p3mE3SsX9p4selU4Ah+eCQMB8qOdQj r+3DV3VEwkCaWtEy14VnaaW14Mng66y3Ga1i3RrOQGos3m3Qd1NB5uDvLEDS5Tgb k+iD536CNi0ruOWoWjd1qOU7lWDf/zWBJUCe4a+njtKtEFqnKyCNU4d6fbPUBbXy /g/Il9mFu+TVmk349Z6OYvmVGEnWcZnVNZt9txMVRGT2NYfMMS3kzjY2N8/8Ll4V T86QtslUAtboWBICInCBAQRASA13/k7P -----END CERTIFICATE-----Generated at Sat Aug 9 02:46:34 2025 by rpki-client