$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: IVj8QloGiiFfvjNLF/IsbFa3kWekI/eQPZMGxiD0zyQ= Subject key identifier: 0D:B3:53:CF:1D:41:23:9F:74:56:F4:E3:8F:95:00:8E:6C:DF:52:33 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 0913 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 090A Signing time: Sat 14 Jun 2025 20:09:50 +0000 Manifest this update: Sat 14 Jun 2025 20:09:50 +0000 Manifest next update: Sat 21 Jun 2025 20:09:50 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: FfZ7BbksuYVvKDwg2QuoOpDacOJza9WppSI+XEQfdFc=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2323 (0x913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Jun 14 20:09:50 2025 GMT Not After : Jun 21 20:09:50 2025 GMT Subject: CN=684dd70e-ec9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a7:32:cb:03:d5:15:1d:9e:cd:9b:28:0a:46: 43:fb:aa:07:4c:02:73:29:c4:e0:d5:68:23:b3:73: d5:14:31:97:0f:4e:18:b2:ef:0b:4f:d3:93:c2:09: cb:45:6c:31:b0:06:bb:b9:62:2b:e0:57:1e:9d:4e: 68:9b:5c:10:11:0c:cc:ea:9a:b2:a8:22:81:13:8d: 33:99:d9:b0:39:0d:91:5c:78:da:5b:a7:54:06:3d: 35:8f:c4:46:d4:c8:39:f5:f6:6c:bb:70:96:f9:04: 48:80:68:be:46:94:c5:d9:8f:c0:e3:d1:ca:b3:28: bc:eb:1b:e9:33:8a:cb:35:2f:e4:c9:08:95:11:ce: 48:d2:6d:a8:7d:20:fa:f9:3c:30:3c:ff:81:0b:1d: 91:cb:6a:ec:6d:3a:c2:1e:70:8b:36:d0:57:6c:47: 65:3b:ae:f5:e4:94:b7:4f:83:26:83:ae:73:4d:cb: fb:9b:88:28:68:ac:f2:38:02:71:e4:df:38:e6:44: ed:1c:50:e4:40:70:ee:ae:00:5f:c3:c1:bb:75:4d: 37:99:c9:07:34:4b:ab:58:c0:d1:1b:ce:0d:f7:bd: dd:e0:8c:af:98:18:b1:f5:b4:66:60:8f:66:1e:4a: f6:3d:35:5d:72:2e:e4:1d:a6:76:dd:39:05:65:68: ef:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B3:53:CF:1D:41:23:9F:74:56:F4:E3:8F:95:00:8E:6C:DF:52:33 X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:28:3f:63:17:c0:95:82:79:d1:df:38:6d:50:bd:83:16:ab: 06:ad:c3:d1:72:73:ac:fe:35:ea:2b:16:b0:0d:2b:a9:9f:dc: 8b:c6:86:25:3f:fd:bd:fb:a7:63:34:34:a2:51:b8:76:01:d6: 02:13:4d:14:8c:e2:bd:fb:02:78:eb:39:92:0e:4a:15:c7:b6: a3:04:bd:34:0e:ad:6a:3b:0e:ee:96:ff:b1:5b:b8:95:1a:00: 96:7b:e6:4a:a0:af:7c:7c:e6:d4:1b:4b:13:80:e1:4a:4f:56: 8c:f8:8f:25:1d:39:5a:59:c2:4a:18:81:bb:ac:4f:96:fc:04: 0e:a7:10:a2:68:fe:4b:1a:ba:76:7f:3b:a8:5c:d0:1f:75:72: f0:e3:a5:e6:4d:1f:6d:d3:de:70:f0:72:ba:99:cc:a2:56:88: c0:8a:3e:eb:6c:69:34:e5:20:33:df:a0:d3:7c:69:3c:7b:b5: a1:ef:3c:b4:f1:42:6e:cd:22:77:03:8e:4d:37:74:e2:0c:02: 88:93:aa:ab:6c:38:29:2d:7f:55:3e:dc:99:c2:b6:3a:b9:b2: 07:81:bd:2f:2e:47:ad:93:67:57:2d:ce:2d:7c:d4:93:1a:b4: c4:97:9b:55:45:6c:3a:72:24:69:e5:fa:81:3b:a9:f2:9b:91: 55:2d:db:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUwNjE0MjAwOTUwWhcNMjUwNjIxMjAwOTUwWjAYMRYwFAYD VQQDEw02ODRkZDcwZS1lYzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06cyywPVFR2ezZsoCkZD+6oHTAJzKcTg1Wgjs3PVFDGXD04Ysu8LT9OTwgnL RWwxsAa7uWIr4FcenU5om1wQEQzM6pqyqCKBE40zmdmwOQ2RXHjaW6dUBj01j8RG 1Mg59fZsu3CW+QRIgGi+RpTF2Y/A49HKsyi86xvpM4rLNS/kyQiVEc5I0m2ofSD6 +TwwPP+BCx2Ry2rsbTrCHnCLNtBXbEdlO6715JS3T4Mmg65zTcv7m4goaKzyOAJx 5N845kTtHFDkQHDurgBfw8G7dU03mckHNEurWMDRG84N973d4IyvmBix9bRmYI9m Hkr2PTVdci7kHaZ23TkFZWjvEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2zU88d QSOfdFb044+VAI5s31IzMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwKD9jF8CVgnnR3zhtUL2DFqsGrcPRcnOs/jXqKxawDSupn9yLxoYl P/29+6djNDSiUbh2AdYCE00UjOK9+wJ46zmSDkoVx7ajBL00Dq1qOw7ulv+xW7iV GgCWe+ZKoK98fObUG0sTgOFKT1aM+I8lHTlaWcJKGIG7rE+W/AQOpxCiaP5LGrp2 fzuoXNAfdXLw46XmTR9t095w8HK6mcyiVojAij7rbGk05SAz36DTfGk8e7Wh7zy0 8UJuzSJ3A45NN3TiDAKIk6qrbDgpLX9VPtyZwrY6ubIHgb0vLketk2dXLc4tfNST GrTEl5tVRWw6ciRp5fqBO6nym5FVLduW -----END CERTIFICATE-----Generated at Sun Jun 15 09:37:48 2025 by rpki-client