$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: iK9v4kQu7+LxhfAdCeFrwR1J0iGjcw7oHBHbN4/3wXY= Subject key identifier: E8:FD:9A:A6:32:AF:F1:22:B5:C2:4E:B4:E0:DA:6B:65:6D:88:F0:7E Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: 01C3 Signing time: Thu 07 Aug 2025 03:24:08 +0000 Manifest this update: Thu 07 Aug 2025 03:24:08 +0000 Manifest next update: Thu 14 Aug 2025 03:24:08 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: D9llEWPR/Zo1X9jrfZcxNPPbyzoNlqQMAiTEJF9K4Q8=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: pRhFi90u5iaLYPX6g3PP+55Ior11n+chfHkyJHcRUKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: Aug 7 03:24:08 2025 GMT Not After : Aug 14 03:24:08 2025 GMT Subject: CN=68941c58-6072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:81:bc:b7:e0:67:41:e9:11:35:5d:b3:46:02: 77:16:9c:89:67:58:9a:15:c3:59:5e:81:38:39:b8: 49:63:bd:df:ac:b6:a0:6d:12:6f:9c:9a:a6:9d:92: 69:28:e5:e3:ac:87:eb:cd:8a:6f:0a:e0:77:2b:81: db:4b:9e:2c:95:b8:e7:9a:d5:0a:f0:ed:09:4d:51: ca:fa:62:6d:c9:a6:93:8c:4b:34:b0:f8:3e:02:11: 1b:45:38:ff:f9:c9:54:11:1e:6a:0f:72:ee:91:fd: ff:e1:b5:0f:67:fe:fe:6b:49:47:3f:6c:27:68:ae: b1:e9:12:98:f5:b2:39:21:b2:a7:f0:96:fc:17:94: 10:99:69:04:20:ea:1b:86:c7:20:b0:98:8a:3c:c2: 7e:7c:fa:da:7a:3a:6f:14:81:27:c0:01:25:6c:0c: 38:a7:88:da:07:19:d3:34:c1:1c:95:dc:e8:32:4d: 78:c3:67:d4:6d:3f:63:d0:a4:99:18:3c:0a:7f:ed: a1:7d:89:03:83:4f:eb:b6:30:06:96:90:4d:fd:05: 46:ff:6e:6b:41:b4:4b:19:26:ec:c6:25:26:58:5b: b7:59:50:4d:3d:c9:93:a2:3a:e8:4b:7c:01:f0:05: f1:ff:f0:9f:16:80:dc:53:23:6d:8a:73:12:9e:6a: 00:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:FD:9A:A6:32:AF:F1:22:B5:C2:4E:B4:E0:DA:6B:65:6D:88:F0:7E X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:36:a9:aa:7b:41:42:e4:a7:6e:cd:b2:c2:8f:59:40:39:d8: b7:ea:b5:53:a3:fb:a8:0d:95:40:a2:e4:f9:ff:e2:fa:eb:d7: e3:77:9d:07:99:6c:ec:4e:cb:79:08:08:a5:5f:43:5b:75:cd: 2e:64:ea:2f:8f:6a:c0:75:94:17:ba:39:c6:3b:37:59:8f:0d: 97:fe:85:94:b2:db:3d:37:5f:2c:04:6b:fe:15:70:d1:94:8f: ed:3f:34:31:97:7f:73:d1:95:20:70:12:43:2d:18:b4:22:56: 92:1f:46:c1:52:8c:e4:de:b3:d6:06:79:4e:72:38:95:46:e5: 00:45:b2:3b:0c:0b:02:58:97:c4:33:01:c4:fa:90:8d:b6:34: f7:a3:4b:53:79:05:d8:38:e7:ed:9f:72:cf:6d:67:fe:e4:9d: 11:53:80:55:e3:69:d6:eb:00:99:3f:e4:7d:15:77:86:57:b6: 9d:59:7a:50:22:ed:7c:3a:f2:f5:df:e0:63:3a:93:da:2b:34: 55:ff:ff:c1:e5:18:2d:6c:65:c2:be:a6:2c:85:83:ab:56:41: 98:19:7f:47:cd:6c:6f:2a:0f:fd:a0:8b:19:87:a2:83:62:eb: 0f:39:01:1a:2c:aa:65:5e:34:41:a4:8e:bc:32:96:9f:b9:a4: da:07:98:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUwODA3MDMyNDA4WhcNMjUwODE0MDMyNDA4WjAYMRYwFAYD VQQDEw02ODk0MWM1OC02MDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4G8t+BnQekRNV2zRgJ3FpyJZ1iaFcNZXoE4ObhJY73frLagbRJvnJqmnZJp KOXjrIfrzYpvCuB3K4HbS54slbjnmtUK8O0JTVHK+mJtyaaTjEs0sPg+AhEbRTj/ +clUER5qD3Lukf3/4bUPZ/7+a0lHP2wnaK6x6RKY9bI5IbKn8Jb8F5QQmWkEIOob hscgsJiKPMJ+fPraejpvFIEnwAElbAw4p4jaBxnTNMEcldzoMk14w2fUbT9j0KSZ GDwKf+2hfYkDg0/rtjAGlpBN/QVG/25rQbRLGSbsxiUmWFu3WVBNPcmTojroS3wB 8AXx//CfFoDcUyNtinMSnmoArwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOj9mqYy r/EitcJOtODaa2VtiPB+MB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcNqmqe0FC5KduzbLCj1lAOdi36rVTo/uoDZVAouT5/+L669fjd50H mWzsTst5CAilX0Nbdc0uZOovj2rAdZQXujnGOzdZjw2X/oWUsts9N18sBGv+FXDR lI/tPzQxl39z0ZUgcBJDLRi0IlaSH0bBUozk3rPWBnlOcjiVRuUARbI7DAsCWJfE MwHE+pCNtjT3o0tTeQXYOOftn3LPbWf+5J0RU4BV42nW6wCZP+R9FXeGV7adWXpQ Iu18OvL13+BjOpPaKzRV///B5RgtbGXCvqYshYOrVkGYGX9HzWxvKg/9oIsZh6KD YusPOQEaLKplXjRBpI68MpafuaTaB5hG -----END CERTIFICATE-----Generated at Sat Aug 9 01:24:04 2025 by rpki-client