$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: uahyg8TnqiX6SfssElVu6HiNCzDU8j0E7PKPB/SXrd0= Subject key identifier: D5:2C:95:D3:91:3F:88:3B:7E:AC:86:71:45:65:40:92:91:77:F2:C6 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 092F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 0926 Signing time: Fri 08 Aug 2025 20:38:10 +0000 Manifest this update: Fri 08 Aug 2025 20:38:09 +0000 Manifest next update: Fri 15 Aug 2025 20:38:09 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: 5TeyAVen2BvAM250tvzvsom+vgUGETOuPF6JijxhjHU=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2351 (0x92f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Aug 8 20:38:09 2025 GMT Not After : Aug 15 20:38:09 2025 GMT Subject: CN=68966032-7a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4e:1b:77:c3:cb:13:9c:19:58:18:34:5c:ca: 69:d6:88:5e:d8:ef:f2:e6:37:7e:3f:ec:49:71:1b: fa:2b:ff:3b:a3:4a:04:b2:9b:7a:b1:5f:34:51:47: 65:b3:ad:51:74:00:36:fb:8f:38:cf:93:3f:f8:8a: bc:f7:3e:50:05:d1:c9:f5:ec:cf:13:2c:29:e5:47: 2c:f0:79:53:6c:41:6b:bf:ae:a5:b7:9d:10:5f:ef: c3:2f:c0:40:de:21:11:52:82:1c:96:df:da:0d:ed: 66:2a:5a:3f:4e:96:45:32:b6:16:fe:59:9d:9a:d4: bc:c2:7d:c3:3e:c4:68:f9:d6:7a:51:42:fa:59:a3: f1:83:73:75:6f:fa:88:98:3a:e7:8b:06:ed:d7:83: 33:7e:15:96:75:57:05:da:e9:06:a0:9f:61:f9:94: 5a:82:e4:8b:3b:be:c9:61:8e:9b:38:73:c2:63:b1: 78:56:ae:83:53:c8:ac:61:5d:bd:e7:d6:72:5e:d6: b1:e2:2d:de:ac:83:f0:d3:b9:73:db:1e:ec:d2:9a: d7:96:dc:66:d2:c7:b1:9c:78:4f:96:41:75:bb:68: 3e:21:96:53:d6:67:c4:58:0b:47:62:bb:a6:bc:de: ea:e4:b0:41:8f:07:41:43:37:88:49:83:81:25:8f: 08:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:2C:95:D3:91:3F:88:3B:7E:AC:86:71:45:65:40:92:91:77:F2:C6 X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:ee:23:2e:5e:64:f6:63:30:5a:47:02:a3:b4:27:27:48:2f: 76:13:fc:cb:c7:7e:29:63:33:6d:67:5d:8f:ca:21:f1:74:c7: 6d:16:87:a6:65:77:7e:76:52:fb:0d:da:79:d7:7b:41:a7:c8: 41:41:e3:3e:d7:4b:70:09:c0:7b:e6:cd:ab:96:ca:ff:46:cd: 0a:99:ea:fd:22:b3:7c:49:04:54:89:5c:f5:0a:2d:79:6b:0d: 89:03:2a:9b:7a:75:5f:20:49:f5:bb:8d:c2:be:41:08:8a:a5: 53:9c:68:6f:77:7f:12:6b:ac:b8:be:9a:e7:37:c3:87:13:83: 95:7c:d1:ea:98:d9:1f:34:7e:2e:03:cf:22:f2:83:b1:eb:56: 52:96:82:29:0f:35:06:e9:05:64:62:8c:da:c8:d1:0d:63:be: 80:64:a1:1d:41:cf:d1:ff:a2:6c:a6:81:97:5e:9b:e9:74:50: 8c:85:ed:25:df:88:f7:9a:22:51:2e:6d:5f:94:05:6c:ad:27: c1:4c:49:fe:84:7d:24:cb:ed:0b:a0:a0:21:85:7c:ce:01:87: 9d:f1:db:7a:ce:62:d7:5c:91:1c:ae:33:78:22:e1:75:43:27: 38:aa:ac:c4:b2:75:6c:98:d5:0a:16:4c:65:c1:b3:58:30:66: 49:42:f4:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUwODA4MjAzODA5WhcNMjUwODE1MjAzODA5WjAYMRYwFAYD VQQDEw02ODk2NjAzMi03YTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqU4bd8PLE5wZWBg0XMpp1ohe2O/y5jd+P+xJcRv6K/87o0oEspt6sV80UUdl s61RdAA2+484z5M/+Iq89z5QBdHJ9ezPEywp5Ucs8HlTbEFrv66lt50QX+/DL8BA 3iERUoIclt/aDe1mKlo/TpZFMrYW/lmdmtS8wn3DPsRo+dZ6UUL6WaPxg3N1b/qI mDrniwbt14MzfhWWdVcF2ukGoJ9h+ZRaguSLO77JYY6bOHPCY7F4Vq6DU8isYV29 59ZyXtax4i3erIPw07lz2x7s0prXltxm0sexnHhPlkF1u2g+IZZT1mfEWAtHYrum vN7q5LBBjwdBQzeISYOBJY8ILQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUsldOR P4g7fqyGcUVlQJKRd/LGMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj7iMuXmT2YzBaRwKjtCcnSC92E/zLx34pYzNtZ12PyiHxdMdtFoem ZXd+dlL7Ddp513tBp8hBQeM+10twCcB75s2rlsr/Rs0Kmer9IrN8SQRUiVz1Ci15 aw2JAyqbenVfIEn1u43CvkEIiqVTnGhvd38Sa6y4vprnN8OHE4OVfNHqmNkfNH4u A88i8oOx61ZSloIpDzUG6QVkYozayNENY76AZKEdQc/R/6JspoGXXpvpdFCMhe0l 34j3miJRLm1flAVsrSfBTEn+hH0ky+0LoKAhhXzOAYed8dt6zmLXXJEcrjN4IuF1 Qyc4qqzEsnVsmNUKFkxlwbNYMGZJQvRq -----END CERTIFICATE-----Generated at Sun Aug 10 16:03:12 2025 by rpki-client