$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: ALP7oDPNVZZ58qC71Dy99Ck/yl9oFG1rjv2dIFEoPIo= Subject key identifier: AD:1F:DF:EB:92:43:9C:A4:04:CA:7B:93:FD:1D:D6:A2:8D:B9:B0:B4 Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 7D Signing time: Sat 19 Jul 2025 07:01:04 +0000 Manifest this update: Sat 19 Jul 2025 07:01:04 +0000 Manifest next update: Sat 26 Jul 2025 07:01:04 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: GNAendsMdGrkZBPQcBdaoHT+Hl2S/GjETXCskriGx0o=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: CcfcyuDgdAXzM0C7pRrcqcGTmtCQX9kXzhcOgKQTSNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: Jul 19 07:01:04 2025 GMT Not After : Jul 26 07:01:04 2025 GMT Subject: CN=687b42b0-3f7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:23:c2:84:51:e0:76:d4:30:f0:b9:10:fd:7c: 0a:45:33:78:0d:c7:a7:71:30:66:b2:d7:12:01:25: 4e:aa:af:41:0a:e6:1e:f9:ec:7a:ea:17:de:3f:1b: 96:96:f6:22:13:7a:aa:04:81:68:29:16:1a:57:87: 00:df:55:65:a0:d7:50:93:42:e8:2a:4b:dd:76:ae: c2:68:20:a2:db:5e:49:28:76:c8:41:36:64:df:90: fd:cf:62:87:39:de:84:c6:5d:e5:d0:5b:b8:c7:f3: c9:3f:65:7e:a8:0b:88:bf:c6:31:21:71:62:19:d1: 19:86:76:d9:8b:b3:20:cc:ae:05:b1:fc:c6:d5:c1: a2:a5:04:68:ed:52:68:37:d6:b0:50:6c:22:ef:30: 28:93:11:90:d6:ce:c0:c3:a0:15:54:d9:5a:9a:ab: bb:74:39:65:c5:e3:f4:d3:dc:c2:15:53:6c:a5:d3: e4:18:b4:ac:2c:26:cf:04:a3:26:25:f9:89:4d:50: 45:bc:0f:68:e7:75:0e:a0:68:20:3c:a9:fc:38:71: c0:ed:15:4e:5c:5a:c9:2d:18:d1:80:c6:78:a0:2a: 1c:68:01:c4:d2:55:a4:61:dd:80:3d:4f:a5:fb:cd: 99:a8:d9:ba:6b:ff:24:a2:df:79:d9:29:ff:fc:c8: db:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:1F:DF:EB:92:43:9C:A4:04:CA:7B:93:FD:1D:D6:A2:8D:B9:B0:B4 X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:b3:df:f3:91:d4:3e:0f:01:ef:90:24:76:d2:d8:96:54:72: 5d:4c:6d:1f:5b:42:84:c4:7e:47:e9:43:d3:ff:9f:c0:99:1a: 7a:0e:37:8c:ea:a6:90:30:9a:2b:c5:a5:0b:4a:c2:36:ca:ec: 72:47:40:2d:d6:20:34:3c:07:49:8c:31:8f:1a:23:ac:30:87: 24:32:61:2e:bb:cf:1a:44:81:71:cb:1a:53:c1:a7:2b:fe:2e: 83:5c:f0:52:30:65:df:af:ce:90:50:0c:09:da:a8:dd:46:47: 52:35:e9:e3:15:1d:d7:09:dd:35:f2:e3:3e:a1:a8:ff:22:03: 94:1b:21:f5:54:5a:3d:46:e2:e7:b2:64:26:e3:b8:cb:55:28: 05:26:74:2b:19:c6:d4:41:3c:7f:0a:36:62:8b:aa:6f:0c:0b: 2e:1f:6a:73:6e:45:f3:97:cd:99:89:02:29:4c:96:1a:23:ec: dd:de:bf:07:26:e2:1a:f3:e8:42:44:f3:58:16:d2:12:0a:b3: 23:00:3a:57:e2:25:b1:1c:27:17:a4:d3:17:46:f6:70:e1:f0: 1a:f0:1a:9d:fe:67:4a:d1:32:de:64:9e:a9:72:f6:a3:62:1b: 69:ef:3e:60:84:ec:ad:8d:fc:72:6a:83:05:17:0d:6a:c7:41: c1:2c:82:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk0RTcxMTAvBgNVBAUTKDg5MUVEOEJBQUMyQzczQkQxM0FEQ0FBMUExNkFBRjAw RDIyNEE4NzcwHhcNMjUwNzE5MDcwMTA0WhcNMjUwNzI2MDcwMTA0WjAYMRYwFAYD VQQDEw02ODdiNDJiMC0zZjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyPChFHgdtQw8LkQ/XwKRTN4DcencTBmstcSASVOqq9BCuYe+ex66hfePxuW lvYiE3qqBIFoKRYaV4cA31VloNdQk0LoKkvddq7CaCCi215JKHbIQTZk35D9z2KH Od6Exl3l0Fu4x/PJP2V+qAuIv8YxIXFiGdEZhnbZi7MgzK4FsfzG1cGipQRo7VJo N9awUGwi7zAokxGQ1s7Aw6AVVNlamqu7dDllxeP009zCFVNspdPkGLSsLCbPBKMm JfmJTVBFvA9o53UOoGggPKn8OHHA7RVOXFrJLRjRgMZ4oCocaAHE0lWkYd2APU+l +82ZqNm6a/8kot952Sn//MjbvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0f3+uS Q5ykBMp7k/0d1qKNubC0MB8GA1UdIwQYMBaAFIke2LqsLHO9E63KoaFqrwDSJKh3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTRFNy9GNENGRDFEQUFD NzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3MFRyY3Fob1dxdkFOSWtx SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTRFNy9GNENGRDFEQUFDNzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3 MFRyY3Fob1dxdkFOSWtxSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAs9/zkdQ+DwHvkCR20tiWVHJdTG0fW0KExH5H6UPT/5/AmRp6DjeM 6qaQMJorxaULSsI2yuxyR0At1iA0PAdJjDGPGiOsMIckMmEuu88aRIFxyxpTwacr /i6DXPBSMGXfr86QUAwJ2qjdRkdSNenjFR3XCd018uM+oaj/IgOUGyH1VFo9RuLn smQm47jLVSgFJnQrGcbUQTx/CjZii6pvDAsuH2pzbkXzl82ZiQIpTJYaI+zd3r8H JuIa8+hCRPNYFtISCrMjADpX4iWxHCcXpNMXRvZw4fAa8Bqd/mdK0TLeZJ6pcvaj Yhtp7z5ghOytjfxyaoMFFw1qx0HBLIJk -----END CERTIFICATE-----Generated at Sun Jul 20 10:00:20 2025 by rpki-client