$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: 6hZXNlW9WBhUXaWin38iKCYcj3SR5X7iqzQcIIFWt7w= Subject key identifier: 57:99:8B:7E:4B:AB:4D:10:8F:D8:D4:12:1D:EE:8A:85:D6:83:A2:DC Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 08FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 08F7 Signing time: Wed 06 Aug 2025 20:39:30 +0000 Manifest this update: Wed 06 Aug 2025 20:39:30 +0000 Manifest next update: Wed 13 Aug 2025 20:39:30 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: iowBHrtrNN6oJkrqZ0uTDb8LaZoHFE/5uHDJkCtdE3E=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: uh8Xk70gWxRTmNYaCNUAB+Hh9CL9zqsYHo9ULlX8dpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:39:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2301 (0x8fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23, serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Aug 6 20:39:30 2025 GMT Not After : Aug 13 20:39:30 2025 GMT Subject: CN=6893bd82-ec7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fe:c9:83:33:f2:6f:6a:24:c7:d4:ba:c4:13: ea:45:d4:e5:cb:ce:4c:54:cc:9d:b4:20:24:fa:77: 49:5b:d0:8e:0f:ae:74:48:3e:02:04:a0:67:99:b4: 97:e5:fc:75:7e:f1:25:a0:76:70:89:84:5e:fe:bb: 27:63:9d:2c:fc:e5:04:62:9d:a1:d5:ac:42:f6:0e: 36:b6:4c:62:59:3c:53:3d:3b:a1:b2:45:f2:31:34: 12:10:87:06:a2:49:a7:79:59:ff:31:73:36:93:4c: eb:ed:93:ea:a7:a7:f0:2b:75:a0:9f:7e:ae:ad:4b: 49:25:a2:eb:36:c4:80:5d:75:1b:00:b3:da:b2:c3: a5:6f:05:42:d0:bd:97:38:b9:f9:36:4c:5d:11:e2: 4e:9d:64:24:a1:39:ad:30:db:f9:1a:68:0c:6b:45: 0a:7d:bd:38:31:d4:73:9b:3d:e3:46:c3:f1:d2:5c: 91:da:eb:dd:24:e6:c6:5f:f7:82:1a:22:16:1f:f0: c9:b3:ad:23:6a:90:ec:b0:9a:4d:15:f0:18:d7:10: 9e:33:c4:90:74:62:ce:1f:06:36:c8:66:51:36:d0: 98:a7:90:7d:bb:77:99:cd:91:f4:f5:08:c2:75:ad: 15:b1:75:63:34:08:df:80:fc:65:fc:60:50:f1:a4: e9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:99:8B:7E:4B:AB:4D:10:8F:D8:D4:12:1D:EE:8A:85:D6:83:A2:DC X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:0c:37:7d:bb:f8:8e:65:f3:02:9f:46:7a:5b:36:81:37:e8: f9:81:9b:06:d7:1d:e7:39:bc:37:5a:32:14:20:ed:f9:06:68: 3c:df:30:b5:cf:36:e0:fd:21:20:15:f6:a5:f1:a4:38:08:61: 83:a0:76:ac:38:75:81:2c:d5:c8:c3:71:39:f5:16:f8:df:5b: 08:d3:39:e1:7c:1b:62:0e:2b:1a:41:cc:4c:0d:4c:db:8a:eb: 5d:45:f6:11:7c:0d:bb:cf:aa:2f:4c:f7:3e:d1:ec:2f:fd:d4: c2:56:68:09:7b:58:35:02:5d:b6:ba:48:a6:b6:0e:5c:de:26: dd:1d:7f:6f:e1:90:a2:5f:c1:30:f0:69:82:a8:15:36:d5:6e: b7:04:37:05:d3:3e:04:04:2a:f5:07:14:4c:4f:c1:36:29:7e: 67:25:2b:76:74:c6:06:83:13:8a:d0:d1:b6:d8:e1:8b:13:12: 53:f1:0b:8a:dd:cf:fd:82:04:ec:1f:98:7c:9b:54:f1:15:00: 66:b2:23:79:3c:37:31:bb:a5:47:14:15:96:f1:db:4c:e5:b5: bc:cb:5a:75:40:a8:8f:9b:b2:69:1b:0e:dd:6a:86:62:fd:f7: 76:77:ff:68:73:0f:ee:77:26:e0:2e:d6:82:65:70:b2:d5:4f: 9b:e0:50:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjUwODA2MjAzOTMwWhcNMjUwODEzMjAzOTMwWjAYMRYwFAYD VQQDEw02ODkzYmQ4Mi1lYzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/7JgzPyb2okx9S6xBPqRdTly85MVMydtCAk+ndJW9COD650SD4CBKBnmbSX 5fx1fvEloHZwiYRe/rsnY50s/OUEYp2h1axC9g42tkxiWTxTPTuhskXyMTQSEIcG okmneVn/MXM2k0zr7ZPqp6fwK3Wgn36urUtJJaLrNsSAXXUbALPassOlbwVC0L2X OLn5NkxdEeJOnWQkoTmtMNv5GmgMa0UKfb04MdRzmz3jRsPx0lyR2uvdJObGX/eC GiIWH/DJs60japDssJpNFfAY1xCeM8SQdGLOHwY2yGZRNtCYp5B9u3eZzZH09QjC da0VsXVjNAjfgPxl/GBQ8aTpuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeZi35L q00Qj9jUEh3uioXWg6LcMB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHDDd9u/iOZfMCn0Z6WzaBN+j5gZsG1x3nObw3WjIUIO35Bmg83zC1 zzbg/SEgFfal8aQ4CGGDoHasOHWBLNXIw3E59Rb431sI0znhfBtiDisaQcxMDUzb iutdRfYRfA27z6ovTPc+0ewv/dTCVmgJe1g1Al22ukimtg5c3ibdHX9v4ZCiX8Ew 8GmCqBU21W63BDcF0z4EBCr1BxRMT8E2KX5nJSt2dMYGgxOK0NG22OGLExJT8QuK 3c/9ggTsH5h8m1TxFQBmsiN5PDcxu6VHFBWW8dtM5bW8y1p1QKiPm7JpGw7daoZi /fd2d/9ocw/udybgLtaCZXCy1U+b4FD4 -----END CERTIFICATE-----Generated at Thu Aug 7 01:20:58 2025 by rpki-client