$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft File: Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft (raw, json) Hash identifier: c+3MnjygRNJqCuo3P4qS8ItAWpAYjVkY18L3Jb4ZKe0= Subject key identifier: CE:81:17:C3:13:92:16:1F:FC:F6:AE:F2:2E:C0:55:FB:09:91:DC:0B Authority key identifier: 16:2E:95:6F:88:DD:3E:09:A6:B0:44:D8:B2:B4:2D:EB:10:A8:3D:A1 Certificate issuer: /CN=A91E6F07/serialNumber=162E956F88DD3E09A6B044D8B2B42DEB10A83DA1 Certificate serial: 0C60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft Manifest number: 14CA Signing time: Mon 04 Aug 2025 18:36:39 +0000 Manifest this update: Mon 04 Aug 2025 18:36:39 +0000 Manifest next update: Mon 11 Aug 2025 18:36:39 +0000 Files and hashes: 1: Fi6Vb4jdPgmmsETYsrQt6xCoPaE.crl (hash: 4+Tb+t5D+2hjaxSA2fYPW5Saf+qAgtLRV8iEET9lJRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.crl rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 18:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3168 (0xc60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6F07, serialNumber=162E956F88DD3E09A6B044D8B2B42DEB10A83DA1 Validity Not Before: Aug 4 18:36:39 2025 GMT Not After : Aug 11 18:36:39 2025 GMT Subject: CN=6890fdb7-e896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:32:1a:17:a3:7b:7d:cb:7f:e1:33:6d:f8:97: ca:86:cb:1a:ed:39:8f:60:ce:2e:27:71:80:d6:b0: d4:e1:e1:07:a5:36:79:f2:30:4d:ba:5b:a6:04:a9: 40:f8:83:91:2b:7c:d1:66:71:58:51:2a:ea:79:58: b1:d8:4e:39:33:43:17:de:77:d8:5a:c9:09:f2:26: 1b:47:80:01:0c:7b:24:54:a9:3b:2e:51:74:70:74: 2d:88:a1:dd:9f:14:f6:52:8d:03:4a:e4:ef:60:76: 1f:50:eb:70:1d:5f:e8:b0:02:e7:36:ec:36:85:ac: e2:0c:81:d9:36:fe:86:af:3a:3a:ed:bb:e9:00:12: e4:23:6c:53:b3:d7:e2:1e:f6:0b:9d:47:d1:d2:b7: 84:5d:47:e0:00:e2:aa:c6:1c:c9:c3:e1:c6:34:3c: fd:09:1f:8e:c7:9b:26:78:26:eb:f5:52:ce:99:99: ae:51:83:a9:ce:57:72:fe:62:69:19:1e:fc:c3:90: 96:f8:cc:a9:13:86:ca:10:ab:36:e8:7a:46:99:fa: 7d:98:55:f5:06:f8:dd:e3:da:77:a5:fa:7b:6e:30: 6a:23:b6:95:b7:c4:85:d2:3d:60:dc:6e:c4:81:cd: c4:e6:3a:00:65:ff:36:7f:a1:0e:82:d6:d3:e2:cd: 32:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:81:17:C3:13:92:16:1F:FC:F6:AE:F2:2E:C0:55:FB:09:91:DC:0B X509v3 Authority Key Identifier: keyid:16:2E:95:6F:88:DD:3E:09:A6:B0:44:D8:B2:B4:2D:EB:10:A8:3D:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:0a:0f:8d:4c:e7:2e:6f:2b:57:fe:8e:a6:9e:22:27:af:e3: d5:24:59:15:51:69:ef:20:fd:7e:95:cd:a3:f7:74:d9:4d:c5: 43:3a:ec:67:d0:98:5f:65:8f:3d:4e:75:c9:7f:36:78:11:e9: 96:94:43:02:c8:a7:6f:a6:89:50:2e:e4:b2:17:ff:8a:c9:f5: 67:5c:b6:9a:f2:6b:eb:6e:02:f2:69:2d:0d:5c:77:cc:7b:5a: eb:fb:35:97:db:a2:f9:ee:ea:b4:7b:73:c2:2c:65:33:c3:e3: 14:ac:8f:e0:87:ce:93:72:51:b8:0e:9f:c0:ab:eb:1d:5b:12: 82:cb:6c:ee:90:c5:01:0b:f4:b0:66:cf:7b:82:e9:31:af:72: a0:fc:da:de:14:58:26:b1:c0:9b:46:59:e2:68:7e:fe:e5:e4: e7:c7:89:95:84:9e:fb:3a:6e:74:0c:6e:51:12:8c:3b:ef:a5: c0:42:db:ec:6f:98:65:27:a0:93:7a:6e:d6:9c:ca:c9:9f:80: b4:19:38:e7:68:27:70:24:c7:7c:9c:fa:13:e3:8f:2d:93:6b: a0:57:b6:91:4e:63:99:99:60:ee:de:54:b8:66:21:2f:d6:be: 0c:a4:d9:90:9e:e6:95:9f:47:8b:8c:27:d8:cc:f7:1f:5d:98: d6:1c:77:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZGMDcxMTAvBgNVBAUTKDE2MkU5NTZGODhERDNFMDlBNkIwNDREOEIyQjQyREVC MTBBODNEQTEwHhcNMjUwODA0MTgzNjM5WhcNMjUwODExMTgzNjM5WjAYMRYwFAYD VQQDEw02ODkwZmRiNy1lODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjIaF6N7fct/4TNt+JfKhssa7TmPYM4uJ3GA1rDU4eEHpTZ58jBNulumBKlA +IORK3zRZnFYUSrqeVix2E45M0MX3nfYWskJ8iYbR4ABDHskVKk7LlF0cHQtiKHd nxT2Uo0DSuTvYHYfUOtwHV/osALnNuw2haziDIHZNv6Grzo67bvpABLkI2xTs9fi HvYLnUfR0reEXUfgAOKqxhzJw+HGNDz9CR+Ox5smeCbr9VLOmZmuUYOpzldy/mJp GR78w5CW+MypE4bKEKs26HpGmfp9mFX1Bvjd49p3pfp7bjBqI7aVt8SF0j1g3G7E gc3E5joAZf82f6EOgtbT4s0yOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6BF8MT khYf/Pau8i7AVfsJkdwLMB8GA1UdIwQYMBaAFBYulW+I3T4JprBE2LK0LesQqD2h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkYwNy9DMTNEODFEODA1 MjkxMUVBODJENzQzMzdDNEY5QUUwMi9GaTZWYjRqZFBnbW1zRVRZc3JRdDZ4Q29Q YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZpNlZiNGpkUGdtbXNFVFlzclF0NnhDb1BhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkYwNy9DMTNEODFEODA1MjkxMUVBODJENzQzMzdDNEY5QUUwMi9GaTZWYjRqZFBn bW1zRVRZc3JRdDZ4Q29QYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Cg+NTOcubytX/o6mniInr+PVJFkVUWnvIP1+lc2j93TZTcVDOuxn 0JhfZY89TnXJfzZ4EemWlEMCyKdvpolQLuSyF/+KyfVnXLaa8mvrbgLyaS0NXHfM e1rr+zWX26L57uq0e3PCLGUzw+MUrI/gh86TclG4Dp/Aq+sdWxKCy2zukMUBC/Sw Zs97gukxr3Kg/NreFFgmscCbRlniaH7+5eTnx4mVhJ77Om50DG5REow776XAQtvs b5hlJ6CTem7WnMrJn4C0GTjnaCdwJMd8nPoT448tk2ugV7aRTmOZmWDu3lS4ZiEv 1r4MpNmQnuaVn0eLjCfYzPcfXZjWHHes -----END CERTIFICATE-----Generated at Wed Aug 6 09:28:00 2025 by rpki-client