$ rpki-client -vvf rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft File: kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft (raw, json) Hash identifier: uuhrOga6N4nO9sIKxFx2Ni8oM1WqsV91Ue7ptywwDyA= Subject key identifier: A8:EF:96:4D:64:6D:7B:B6:F2:06:37:0F:46:70:0C:37:81:8E:40:26 Authority key identifier: 92:FE:FE:8A:E8:29:F0:A5:A5:01:B5:75:06:FA:E4:E5:C1:1A:1D:97 Certificate issuer: /CN=A91403E9/serialNumber=92FEFE8AE829F0A5A501B57506FAE4E5C11A1D97 Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft Manifest number: 01D0 Signing time: Sat 19 Jul 2025 03:06:16 +0000 Manifest this update: Sat 19 Jul 2025 03:06:15 +0000 Manifest next update: Sat 26 Jul 2025 03:06:15 +0000 Files and hashes: 1: kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl (hash: MkOvIwVEvOi6F/JyOM1/dJjrbgT3o3VFL9iWGqqYpNc=) 2: F2CE31B608CA11F09E81487CC4F9AE02.roa (hash: /IwIj5wHV9TZq7gyFUGmW+srgA66FnHYYQjrcF03350=) 3: D40271B608CA11F080AEDB7BC4F9AE02.roa (hash: q5xwzkvJJT2cpQij23jtb331Ba1Q6ZPU5GFvae3tZEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91403E9, serialNumber=92FEFE8AE829F0A5A501B57506FAE4E5C11A1D97 Validity Not Before: Jul 19 03:06:15 2025 GMT Not After : Jul 26 03:06:15 2025 GMT Subject: CN=687b0ba8-11d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d7:87:8c:64:e3:65:d2:a4:24:db:36:74:9e: b7:99:c9:63:3d:53:3b:ba:c1:53:60:d5:16:a4:e3: 9c:00:92:02:a2:cb:8c:5a:ba:2b:92:2c:3f:7b:dc: f8:b6:fa:c6:48:e0:10:2f:ba:6d:01:77:66:e7:f4: a7:b5:7a:3d:b8:60:5f:82:28:40:f9:b7:2c:dd:b7: 87:ea:11:ad:9f:85:25:37:43:70:69:0e:66:8f:88: b2:af:9b:78:c4:0b:5f:84:78:6d:88:96:93:ba:7e: 3f:75:d7:66:4a:13:45:a8:58:28:3b:ae:21:85:35: ec:a8:ca:20:9b:ac:64:ce:86:1c:4b:9e:13:a5:87: 4f:79:ea:95:33:11:02:3e:48:2b:fa:1f:a4:63:f8: 0b:00:54:42:59:6a:1e:2b:c4:b6:62:23:6e:4c:8f: 27:39:4c:af:8b:8d:b3:95:e3:79:c7:ec:d6:20:f5: c3:9f:e0:f1:b4:2e:50:b6:e5:b9:73:a4:72:18:ce: 3b:a2:dc:13:82:39:a0:97:ba:c2:41:e4:67:d8:cd: 48:f1:3c:66:a3:e9:cb:cc:86:e3:41:fd:eb:7d:a3: b1:0f:61:2a:40:e8:69:a0:04:c5:18:70:74:4d:f9: 3d:c1:aa:0c:cd:6e:33:c2:b1:ca:86:59:b8:e6:c8: fe:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:EF:96:4D:64:6D:7B:B6:F2:06:37:0F:46:70:0C:37:81:8E:40:26 X509v3 Authority Key Identifier: keyid:92:FE:FE:8A:E8:29:F0:A5:A5:01:B5:75:06:FA:E4:E5:C1:1A:1D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:5f:ed:e4:20:0d:e8:a3:9f:14:2c:53:cd:26:fa:4b:0d:be: b8:d5:f8:05:d4:52:ea:82:43:67:3f:73:31:79:4c:c3:16:13: 17:72:df:6f:30:ea:6e:48:74:18:dd:d4:3a:13:3e:f8:1f:1e: 6f:d1:18:b9:72:9e:ff:6b:90:32:da:a3:3d:5f:de:5a:c4:2b: 05:bd:0e:1f:68:0a:f8:66:04:91:6e:86:23:5f:71:2c:c8:a7: 7f:55:17:44:17:be:ca:32:e6:01:11:95:92:59:e3:59:66:7e: bf:b2:cc:fd:bf:e3:e9:e1:37:c3:a1:cc:3b:19:c7:4d:0b:47: 05:ee:2e:55:76:00:c4:43:3e:e4:65:0d:ca:66:84:dc:1c:b3: 31:9f:dc:42:75:16:e8:d9:6c:4b:cb:84:3f:74:b3:80:03:9a: 68:65:50:13:e4:14:66:01:0e:dd:3c:f5:e5:86:a8:12:49:a5: 61:57:5b:7e:8a:74:a0:a0:7e:eb:61:a0:0c:4e:54:a3:5d:28: 77:c4:d2:54:12:8e:d2:0b:6c:68:ba:97:0c:3d:c4:20:9e:4f: b1:2c:d1:8e:ae:3d:e1:7d:a5:46:09:9b:29:b2:fd:68:31:c1: ae:06:41:79:a7:26:7d:13:ab:2c:43:d2:76:ae:8b:ed:3e:a0: 24:7d:79:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAzRTkxMTAvBgNVBAUTKDkyRkVGRThBRTgyOUYwQTVBNTAxQjU3NTA2RkFFNEU1 QzExQTFEOTcwHhcNMjUwNzE5MDMwNjE1WhcNMjUwNzI2MDMwNjE1WjAYMRYwFAYD VQQDEw02ODdiMGJhOC0xMWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwteHjGTjZdKkJNs2dJ63mcljPVM7usFTYNUWpOOcAJICosuMWrorkiw/e9z4 tvrGSOAQL7ptAXdm5/SntXo9uGBfgihA+bcs3beH6hGtn4UlN0NwaQ5mj4iyr5t4 xAtfhHhtiJaTun4/dddmShNFqFgoO64hhTXsqMogm6xkzoYcS54TpYdPeeqVMxEC Pkgr+h+kY/gLAFRCWWoeK8S2YiNuTI8nOUyvi42zleN5x+zWIPXDn+DxtC5QtuW5 c6RyGM47otwTgjmgl7rCQeRn2M1I8Txmo+nLzIbjQf3rfaOxD2EqQOhpoATFGHB0 Tfk9waoMzW4zwrHKhlm45sj+NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjvlk1k bXu28gY3D0ZwDDeBjkAmMB8GA1UdIwQYMBaAFJL+/oroKfClpQG1dQb65OXBGh2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDNFOS8xNzYxMzIzNEFD M0ExMUVEOTc0MEI2NTVDNEY5QUUwMi9rdjctaXVncDhLV2xBYlYxQnZyazVjRWFI WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t2Ny1pdWdwOEtXbEFiVjFCdnJrNWNFYUhaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDNFOS8xNzYxMzIzNEFDM0ExMUVEOTc0MEI2NTVDNEY5QUUwMi9rdjctaXVncDhL V2xBYlYxQnZyazVjRWFIWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKX+3kIA3oo58ULFPNJvpLDb641fgF1FLqgkNnP3MxeUzDFhMXct9v MOpuSHQY3dQ6Ez74Hx5v0Ri5cp7/a5Ay2qM9X95axCsFvQ4faAr4ZgSRboYjX3Es yKd/VRdEF77KMuYBEZWSWeNZZn6/ssz9v+Pp4TfDocw7GcdNC0cF7i5VdgDEQz7k ZQ3KZoTcHLMxn9xCdRbo2WxLy4Q/dLOAA5poZVAT5BRmAQ7dPPXlhqgSSaVhV1t+ inSgoH7rYaAMTlSjXSh3xNJUEo7SC2xoupcMPcQgnk+xLNGOrj3hfaVGCZspsv1o McGuBkF5pyZ9E6ssQ9J2rovtPqAkfXki -----END CERTIFICATE-----Generated at Sun Jul 20 07:39:32 2025 by rpki-client