$ rpki-client -vvf rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft File: u7bmAQQ3QyUFSIC308E15vx8yrE.mft (raw, json) Hash identifier: oZez0yg8wJxoCLtl9qQDAHZnAzui1qnwFZ67DgZvL/s= Subject key identifier: F7:17:91:F9:5E:53:65:FB:72:66:6D:66:F4:51:38:65:C3:40:4D:DD Authority key identifier: BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 Certificate issuer: /CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft Manifest number: 0204 Signing time: Sat 19 Jul 2025 02:31:36 +0000 Manifest this update: Sat 19 Jul 2025 02:31:35 +0000 Manifest next update: Sat 26 Jul 2025 02:31:35 +0000 Files and hashes: 1: u7bmAQQ3QyUFSIC308E15vx8yrE.crl (hash: 9qs+M8/iHOdEG63SGnSCMqphGa4Ww+ELmRyCXT/1uKY=) 2: CCB0DBA8CB2911EE9CE70483C4F9AE02.roa (hash: +L4H64N18c7HC9b7a2kMN0oPwzUDs4ByILHmodSVj7c=) 3: 003D7FEE15E811F0841B1A7DC4F9AE02.roa (hash: NzfvN2nV9saQebWeBwyNL6bb8Qj6DnzhJ2bxOu8Ukwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912804A, serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Validity Not Before: Jul 19 02:31:35 2025 GMT Not After : Jul 26 02:31:35 2025 GMT Subject: CN=687b0388-975d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:84:ca:10:48:33:62:cd:ce:05:7d:db:4f:dc: b5:33:f9:10:41:06:2a:07:ea:50:fc:56:0a:4a:cb: ee:b7:0f:49:0d:e0:81:0a:bf:f9:cb:17:0c:22:00: 6c:38:10:38:f2:5e:86:19:f8:25:04:84:f0:53:d7: de:8a:e9:51:92:66:cc:10:f8:47:de:43:2a:67:47: 8a:d4:ff:75:e9:6b:37:70:a3:20:18:69:56:d3:f7: 7f:5a:1d:bd:41:4f:4a:cc:32:b8:9f:22:92:e5:b9: db:59:5c:b1:b5:a0:04:89:3e:f2:d6:fc:cb:a5:ec: 67:b1:63:12:51:98:d6:cc:07:1d:52:e0:04:43:74: 02:77:52:07:dd:6f:42:92:bb:0d:e2:1f:7e:d2:7c: fa:ae:c7:c4:33:62:1e:d9:f6:34:62:f7:1e:29:eb: b6:a9:57:3e:11:97:fd:30:42:6d:a6:95:47:61:53: 9f:4b:29:43:02:ba:69:50:7b:14:58:42:29:b3:07: 49:21:14:9d:64:90:72:73:58:26:bd:c2:46:13:58: 7f:18:bf:75:ef:85:c2:74:01:c3:25:42:f0:68:ce: b8:66:7d:ec:7c:fd:9c:a9:d9:7f:5f:0a:5a:dd:4c: e3:9e:d8:6a:b0:68:ce:99:92:07:cb:47:2f:66:cd: 67:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:17:91:F9:5E:53:65:FB:72:66:6D:66:F4:51:38:65:C3:40:4D:DD X509v3 Authority Key Identifier: keyid:BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:a5:f5:c8:78:5d:b0:78:b8:c4:3f:99:68:e0:ab:f0:1d:dd: e2:93:e0:e9:b2:31:b8:88:4a:5f:a7:32:5f:53:5e:5b:9d:e3: c9:27:04:a7:9d:37:f9:1d:93:2d:bd:18:00:f5:2e:ea:78:72: e0:cf:71:91:7c:e5:cf:e1:be:4b:00:8c:2c:e3:74:1c:db:d6: 01:84:1f:ab:ca:f7:5d:2e:9d:f5:8e:01:82:d6:84:5f:0d:a4: 46:7f:cf:24:bb:1c:5d:cf:db:b5:61:b9:1e:d9:c4:02:e5:ce: 31:3e:45:60:6d:8f:96:f9:16:bb:a7:8c:62:da:99:6f:35:36: 63:c3:74:07:f4:a9:7d:d0:65:fd:2e:7b:bb:9b:7f:6e:09:50: 8f:15:4c:3b:aa:8f:5b:b9:b8:35:c1:79:69:26:58:98:ff:1e: a8:fc:ed:bd:41:32:13:f3:20:25:41:31:89:48:81:50:86:d5: 03:2a:34:d0:ca:a3:3a:18:e8:81:78:f4:e1:a8:9f:22:43:43: dd:3c:c5:7b:7a:b2:c5:59:72:cc:64:7f:df:10:f7:6a:73:5a: 67:cc:73:6b:2f:07:25:35:e6:0a:08:8a:c2:47:da:93:7c:9a: 18:ac:a7:91:fe:1f:90:af:4b:a0:1e:9a:f4:76:db:d8:09:eb: b8:ac:b4:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwNEExMTAvBgNVBAUTKEJCQjZFNjAxMDQzNzQzMjUwNTQ4ODBCN0QzQzEzNUU2 RkM3Q0NBQjEwHhcNMjUwNzE5MDIzMTM1WhcNMjUwNzI2MDIzMTM1WjAYMRYwFAYD VQQDEw02ODdiMDM4OC05NzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YTKEEgzYs3OBX3bT9y1M/kQQQYqB+pQ/FYKSsvutw9JDeCBCr/5yxcMIgBs OBA48l6GGfglBITwU9feiulRkmbMEPhH3kMqZ0eK1P916Ws3cKMgGGlW0/d/Wh29 QU9KzDK4nyKS5bnbWVyxtaAEiT7y1vzLpexnsWMSUZjWzAcdUuAEQ3QCd1IH3W9C krsN4h9+0nz6rsfEM2Ie2fY0YvceKeu2qVc+EZf9MEJtppVHYVOfSylDArppUHsU WEIpswdJIRSdZJByc1gmvcJGE1h/GL9174XCdAHDJULwaM64Zn3sfP2cqdl/Xwpa 3UzjnthqsGjOmZIHy0cvZs1nYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcXkfle U2X7cmZtZvRROGXDQE3dMB8GA1UdIwQYMBaAFLu25gEEN0MlBUiAt9PBNeb8fMqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA0QS85NUE4MTAxNDUw NzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5VUZTSUMzMDhFMTV2eDh5 ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3Ym1BUVEzUXlVRlNJQzMwOEUxNXZ4OHlyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA0QS85NUE4MTAxNDUwNzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5 VUZTSUMzMDhFMTV2eDh5ckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBypfXIeF2weLjEP5lo4KvwHd3ik+DpsjG4iEpfpzJfU15bnePJJwSn nTf5HZMtvRgA9S7qeHLgz3GRfOXP4b5LAIws43Qc29YBhB+ryvddLp31jgGC1oRf DaRGf88kuxxdz9u1Ybke2cQC5c4xPkVgbY+W+Ra7p4xi2plvNTZjw3QH9Kl90GX9 Lnu7m39uCVCPFUw7qo9bubg1wXlpJliY/x6o/O29QTIT8yAlQTGJSIFQhtUDKjTQ yqM6GOiBePThqJ8iQ0PdPMV7erLFWXLMZH/fEPdqc1pnzHNrLwclNeYKCIrCR9qT fJoYrKeR/h+Qr0ugHpr0dtvYCeu4rLRB -----END CERTIFICATE-----Generated at Sun Jul 20 08:00:35 2025 by rpki-client