$ rpki-client -vvf rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft File: 7bQ_87hP5VlboMvE9ruHNxPkG7I.mft (raw, json) Hash identifier: +9GJ6s/jdIV5PdpS7wJxIC+iSbCKJzHrwHXDUP6X+W8= Subject key identifier: AC:C2:BD:D6:C3:10:7E:AA:80:DF:26:DF:C1:82:B5:DA:0E:B1:7D:45 Authority key identifier: ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2 Certificate issuer: /CN=A9167D85/serialNumber=EDB43FF3B84FE5595BA0CBC4F6BB873713E41BB2 Certificate serial: 06BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft Manifest number: 06B7 Signing time: Thu 24 Jul 2025 22:21:23 +0000 Manifest this update: Thu 24 Jul 2025 22:21:22 +0000 Manifest next update: Thu 31 Jul 2025 22:21:22 +0000 Files and hashes: 1: 7bQ_87hP5VlboMvE9ruHNxPkG7I.crl (hash: WlYXJ/rh9Kj6MCxs8b7jCb8bEFW5a/nD6rASlpJ3W2A=) 2: 44E9156C730811EC89C1CE31C4F9AE02.roa (hash: 3P7zE+Wtx98FiHeFJ5MpJ+Mdyi0A3n8ttsX2hYFO/Pg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.crl rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167D85, serialNumber=EDB43FF3B84FE5595BA0CBC4F6BB873713E41BB2 Validity Not Before: Jul 24 22:21:22 2025 GMT Not After : Jul 31 22:21:22 2025 GMT Subject: CN=6882b1e3-f729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:41:c3:46:d3:c0:5a:9c:2a:a0:21:5d:2c:2c: be:92:11:d3:a4:63:4a:6f:62:f3:c3:85:66:4a:26: 0b:1a:07:0f:95:eb:94:80:21:72:7c:24:3a:e4:83: 1d:65:e7:77:ca:23:07:19:3b:ac:43:a4:4d:0c:25: 93:e8:06:65:70:0f:d5:42:82:7c:1a:64:6a:75:e8: 18:08:31:07:13:e1:6c:d4:e1:f3:94:60:1b:8b:3f: 47:2c:47:e9:4f:f2:11:81:4f:09:6c:c8:e1:21:cf: 4e:ec:5b:9c:61:66:81:d2:fe:65:84:96:26:0e:14: 0c:9a:e5:0c:e9:bd:ca:d5:0c:1a:22:55:24:36:b6: 87:d8:3f:1a:07:86:b1:19:06:27:4e:4b:93:75:5b: 39:a9:bf:2b:f5:74:d1:e4:dd:bc:f2:0a:b8:75:14: 95:97:c1:6b:bf:0b:ad:ee:2c:09:f4:72:a1:d1:fd: 5b:83:77:f7:2d:95:a6:cc:94:99:a6:d5:ef:79:57: 20:14:b9:b5:07:15:52:fa:27:f4:1c:44:44:a6:cd: 7c:bc:7d:9d:e9:8c:31:bb:78:91:73:ce:c3:d1:db: 3f:0c:1d:0f:da:28:5a:3f:28:c4:78:7b:32:9f:40: 1f:1a:45:5a:19:77:83:e1:04:2c:f5:a8:8c:ae:be: 84:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C2:BD:D6:C3:10:7E:AA:80:DF:26:DF:C1:82:B5:DA:0E:B1:7D:45 X509v3 Authority Key Identifier: keyid:ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:aa:6c:37:1b:eb:89:68:f9:0e:ff:22:bd:2b:be:3c:1a:ba: 5a:89:8e:b1:f2:0b:72:19:b3:c3:b4:be:c6:5a:e4:b0:bc:d3: 93:6e:e8:12:71:07:9d:68:f7:31:ea:a6:07:be:25:4b:05:53: db:2d:88:fc:7c:22:aa:3e:af:63:72:3d:41:16:40:73:6c:c5: 31:46:0a:8a:e6:84:32:9b:be:ec:6b:dd:66:12:d9:7a:44:10: 64:1f:6b:5b:de:d8:9d:e6:0d:08:a7:8b:5a:8b:b4:60:8e:1e: d8:89:50:0d:86:b3:df:c8:43:90:31:5d:c5:c7:52:3b:65:90: e5:28:c1:ba:51:fa:d5:a4:9d:dd:64:46:50:28:04:85:42:50: 5a:cd:25:41:e1:8e:65:02:38:0c:4a:ed:a1:bd:62:65:88:b0: 8a:0a:bd:2f:d9:f4:ee:bd:88:53:c2:b4:a9:be:1e:a6:9d:c4: e5:e5:09:a8:af:b1:86:4c:ae:38:48:cc:94:c7:5f:84:17:9b: f2:06:18:9d:2d:9b:08:34:c8:cb:f7:fd:3d:ff:a4:17:68:43: be:83:58:fd:e0:3d:0a:00:0d:f0:ea:b1:3b:b3:c7:0f:ea:ea: 6e:ee:28:34:5a:99:1e:00:b7:97:2d:d7:a8:da:02:33:b7:f2: a1:bd:67:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdEODUxMTAvBgNVBAUTKEVEQjQzRkYzQjg0RkU1NTk1QkEwQ0JDNEY2QkI4NzM3 MTNFNDFCQjIwHhcNMjUwNzI0MjIyMTIyWhcNMjUwNzMxMjIyMTIyWjAYMRYwFAYD VQQDEw02ODgyYjFlMy1mNzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUHDRtPAWpwqoCFdLCy+khHTpGNKb2Lzw4VmSiYLGgcPleuUgCFyfCQ65IMd Zed3yiMHGTusQ6RNDCWT6AZlcA/VQoJ8GmRqdegYCDEHE+Fs1OHzlGAbiz9HLEfp T/IRgU8JbMjhIc9O7FucYWaB0v5lhJYmDhQMmuUM6b3K1QwaIlUkNraH2D8aB4ax GQYnTkuTdVs5qb8r9XTR5N288gq4dRSVl8Frvwut7iwJ9HKh0f1bg3f3LZWmzJSZ ptXveVcgFLm1BxVS+if0HEREps18vH2d6Ywxu3iRc87D0ds/DB0P2ihaPyjEeHsy n0AfGkVaGXeD4QQs9aiMrr6E4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzCvdbD EH6qgN8m38GCtdoOsX1FMB8GA1UdIwQYMBaAFO20P/O4T+VZW6DLxPa7hzcT5Buy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0Q4NS83MUE2RjdENDZD NkMxMUVCQjlDNzlENENDNEY5QUUwMi83YlFfODdoUDVWbGJvTXZFOXJ1SE54UGtH N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdiUV84N2hQNVZsYm9NdkU5cnVITnhQa0c3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0Q4NS83MUE2RjdENDZDNkMxMUVCQjlDNzlENENDNEY5QUUwMi83YlFfODdoUDVW bGJvTXZFOXJ1SE54UGtHN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJqmw3G+uJaPkO/yK9K748GrpaiY6x8gtyGbPDtL7GWuSwvNOTbugS cQedaPcx6qYHviVLBVPbLYj8fCKqPq9jcj1BFkBzbMUxRgqK5oQym77sa91mEtl6 RBBkH2tb3tid5g0Ip4tai7Rgjh7YiVANhrPfyEOQMV3Fx1I7ZZDlKMG6UfrVpJ3d ZEZQKASFQlBazSVB4Y5lAjgMSu2hvWJliLCKCr0v2fTuvYhTwrSpvh6mncTl5Qmo r7GGTK44SMyUx1+EF5vyBhidLZsINMjL9/09/6QXaEO+g1j94D0KAA3w6rE7s8cP 6upu7ig0WpkeALeXLdeo2gIzt/KhvWcM -----END CERTIFICATE-----Generated at Sat Jul 26 07:40:39 2025 by rpki-client