$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft File: cFWB1AyVgaJlHlMlI42zvcs6fQU.mft (raw, json) Hash identifier: U/v3bHRQt8mrO0FIGbw0vjrWBkh1vjaUsfqwjpoqPeM= Subject key identifier: F9:E1:C6:5E:79:4F:3F:38:0F:36:B9:7D:02:3F:B2:DA:F9:84:1A:63 Authority key identifier: 70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05 Certificate issuer: /CN=A91E1D91/serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05 Certificate serial: 03C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft Manifest number: 03B8 Signing time: Mon 11 Aug 2025 00:55:27 +0000 Manifest this update: Mon 11 Aug 2025 00:55:26 +0000 Manifest next update: Mon 18 Aug 2025 00:55:26 +0000 Files and hashes: 1: cFWB1AyVgaJlHlMlI42zvcs6fQU.crl (hash: ck9/uCKt8cg1QAnP9q0v8Ct7i81mYHz/KThHVrc0518=) 2: 6CDC639EA04411EC8A7E5E2CC4F9AE02.roa (hash: WktAZLAHSw7QkU+hNH84sEG4OXo+/tq5XSlAqKGLv18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D91, serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05 Validity Not Before: Aug 11 00:55:26 2025 GMT Not After : Aug 18 00:55:26 2025 GMT Subject: CN=68993f7f-dbc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:e7:de:f7:a1:b4:6e:a2:54:9f:54:30:4a:48: 3f:0a:2a:ee:2c:fc:13:24:0f:77:d0:84:f7:d9:73: f3:ae:c4:a0:78:82:3f:ac:2f:30:73:13:30:8c:17: cf:e2:66:32:0a:47:32:7b:eb:e5:be:80:14:92:ef: 7c:8c:a8:1f:c0:d5:d6:42:b4:e4:1f:3c:cc:31:c1: 82:c1:05:29:dd:28:b1:c3:7d:66:41:c7:ff:37:c3: 83:84:de:5f:69:27:5a:e9:5d:5b:d8:42:65:08:e3: 52:34:3e:e3:ef:20:22:a4:5d:0e:f1:2d:6d:2f:2d: 49:5a:2e:b7:22:f7:d4:e6:1e:92:eb:d8:18:0a:9a: 97:d8:24:bc:de:99:89:74:a6:1b:3a:3e:58:64:55: 17:c1:cb:0a:b0:e0:79:d5:cd:53:13:2f:9a:c7:a5: af:fe:c5:fa:f0:a7:02:ed:4e:b7:97:22:5f:cd:1e: 0c:3b:a3:2f:b9:1f:41:c8:72:da:99:63:21:ca:1e: 0c:b9:b9:b2:fa:8e:0e:9f:9f:12:c8:f8:00:7c:91: b9:c8:db:3c:fa:66:9c:77:d9:7c:84:79:bf:6a:ca: 2f:10:e8:39:1b:1e:4d:13:5a:ce:e8:ee:d8:a7:b9: a0:a1:86:98:d6:48:55:3a:47:d0:f5:00:45:02:3b: 78:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:E1:C6:5E:79:4F:3F:38:0F:36:B9:7D:02:3F:B2:DA:F9:84:1A:63 X509v3 Authority Key Identifier: keyid:70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:52:cc:22:66:06:f2:be:a0:6e:fe:7b:1f:80:ce:d6:fc:a9: d3:88:6e:13:2a:2e:97:f1:22:d2:52:a8:eb:8b:f4:29:db:76: 93:c1:b7:65:37:cb:13:e6:e6:82:39:4d:b2:f2:38:a2:fd:52: 4c:3a:ae:7e:52:0a:3d:3d:7a:02:69:e3:ee:3d:b6:c0:1d:47: ac:f4:7d:e3:f5:49:46:f8:02:7b:e7:92:fe:22:10:e7:c7:71: 4c:57:fc:25:df:de:98:cd:3d:91:9e:51:79:0c:13:68:bd:6d: 8b:88:c5:45:3e:1d:cd:5b:72:bc:dc:e7:c5:9b:ff:52:f6:72: 8f:5e:b4:c9:ff:d1:fe:f9:c8:fc:de:52:5a:8b:29:2f:49:3d: 69:dc:51:bf:9f:ec:1b:45:22:48:46:31:64:85:78:1d:f0:08: b8:6c:82:a3:45:e5:3d:3c:ea:53:ab:b3:3a:95:d0:0b:42:63: e8:33:0a:3d:8f:1d:38:32:07:99:97:d8:bb:63:fe:f7:a8:6c: 61:14:63:8d:7f:a0:a8:df:d2:68:91:cf:83:c9:6e:e9:21:87: da:ba:9a:dd:06:dc:a4:59:87:d9:39:23:dc:b4:b8:cc:e1:95: 59:d1:b7:92:53:f1:02:3d:54:5e:aa:54:6e:7f:c5:1f:99:52: 8e:45:8e:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFEOTExMTAvBgNVBAUTKDcwNTU4MUQ0MEM5NTgxQTI2NTFFNTMyNTIzOERCM0JE Q0IzQTdEMDUwHhcNMjUwODExMDA1NTI2WhcNMjUwODE4MDA1NTI2WjAYMRYwFAYD VQQDEw02ODk5M2Y3Zi1kYmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Ofe96G0bqJUn1QwSkg/CiruLPwTJA930IT32XPzrsSgeII/rC8wcxMwjBfP 4mYyCkcye+vlvoAUku98jKgfwNXWQrTkHzzMMcGCwQUp3Sixw31mQcf/N8ODhN5f aSda6V1b2EJlCONSND7j7yAipF0O8S1tLy1JWi63IvfU5h6S69gYCpqX2CS83pmJ dKYbOj5YZFUXwcsKsOB51c1TEy+ax6Wv/sX68KcC7U63lyJfzR4MO6MvuR9ByHLa mWMhyh4Mubmy+o4On58SyPgAfJG5yNs8+macd9l8hHm/asovEOg5Gx5NE1rO6O7Y p7mgoYaY1khVOkfQ9QBFAjt4aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnhxl55 Tz84Dza5fQI/str5hBpjMB8GA1UdIwQYMBaAFHBVgdQMlYGiZR5TJSONs73LOn0F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ5MS81RDhDMTcxMkEw NDAxMUVDODQ1QUU5MjZDNEY5QUUwMi9jRldCMUF5VmdhSmxIbE1sSTQyenZjczZm UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGV0IxQXlWZ2FKbEhsTWxJNDJ6dmNzNmZRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ5MS81RDhDMTcxMkEwNDAxMUVDODQ1QUU5MjZDNEY5QUUwMi9jRldCMUF5Vmdh SmxIbE1sSTQyenZjczZmUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZUswiZgbyvqBu/nsfgM7W/KnTiG4TKi6X8SLSUqjri/Qp23aTwbdl N8sT5uaCOU2y8jii/VJMOq5+Ugo9PXoCaePuPbbAHUes9H3j9UlG+AJ755L+IhDn x3FMV/wl396YzT2RnlF5DBNovW2LiMVFPh3NW3K83OfFm/9S9nKPXrTJ/9H++cj8 3lJaiykvST1p3FG/n+wbRSJIRjFkhXgd8Ai4bIKjReU9POpTq7M6ldALQmPoMwo9 jx04MgeZl9i7Y/73qGxhFGONf6Co39Jokc+DyW7pIYfauprdBtykWYfZOSPctLjM 4ZVZ0beSU/ECPVReqlRuf8UfmVKORY5/ -----END CERTIFICATE-----Generated at Mon Aug 11 07:30:41 2025 by rpki-client