$ rpki-client -vvf rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft File: 7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft (raw, json) Hash identifier: QWR4lImBsJ43STFI5f/AqMG0mIp560Sc511N/YCltTs= Subject key identifier: 5D:98:98:CD:E7:98:4A:71:C7:0A:EA:0F:67:DF:E0:9F:44:4B:5C:65 Authority key identifier: ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC Certificate issuer: /CN=A91A02D8/serialNumber=ED9B0E6085A25DF26749FF27581A4E8BC7C186CC Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft Manifest number: D3 Signing time: Sat 19 Jul 2025 05:52:36 +0000 Manifest this update: Sat 19 Jul 2025 05:52:36 +0000 Manifest next update: Sat 26 Jul 2025 05:52:36 +0000 Files and hashes: 1: 7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl (hash: kXfm3Muq/RZzh3yX7KwML3yQWsZB+09mCytp7CT7uBs=) 2: 86F9CBCC2AB711EF996EC819C4F9AE02.roa (hash: YJwOvl48MytuGc6I1DEuIiMXD3Gk+mKKkditJ1faO0o=) 3: 2C7C9DD2258E11F0B42E1529C4F9AE02.roa (hash: KCTQ3tbaoeUAbY8WbJ6K6Z4PRHlUfgdv71MIHaYTETs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A02D8, serialNumber=ED9B0E6085A25DF26749FF27581A4E8BC7C186CC Validity Not Before: Jul 19 05:52:36 2025 GMT Not After : Jul 26 05:52:36 2025 GMT Subject: CN=687b32a4-56e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d8:8e:86:60:33:02:9e:12:50:6e:14:e1:ec: c3:97:92:bb:d2:62:e6:54:c9:50:11:21:c6:d0:fc: 79:95:04:a7:40:c0:8a:f2:5b:28:0e:c1:bb:3f:14: 8f:85:5e:54:31:ac:c6:b2:b8:2c:b4:44:83:a2:00: 5a:bc:24:e6:fb:ea:c1:9e:05:12:55:3a:29:82:f5: e3:76:61:01:05:a2:71:e7:2a:68:61:d7:8a:4a:1c: 88:cc:fb:6c:ca:71:19:3a:b4:8d:e9:ab:41:3a:c6: e6:e4:d7:74:53:32:b7:c3:98:84:94:05:21:a7:7b: 2a:5d:5e:70:37:6c:87:2b:0f:fd:43:ab:90:06:a3: 87:3a:f1:ed:ea:57:0a:d2:40:93:1d:a2:d5:d0:d3: 07:23:e0:04:85:52:cc:26:07:c4:b2:da:91:58:31: b5:bf:82:0d:64:68:99:a8:be:b4:e2:6c:42:58:9b: 8e:07:a1:b7:e6:68:74:a1:3f:2e:3b:b2:25:51:ca: 8c:ee:d3:36:eb:32:e1:ba:19:76:73:90:f3:a1:1f: 2d:d1:b0:ec:14:a8:87:bf:d6:15:be:58:9f:0b:f2: b1:c4:e2:75:d9:aa:fe:20:76:ae:58:3d:26:f1:dd: 9c:2a:d4:c5:3a:c7:20:aa:b9:32:a9:bf:e0:3c:ed: 66:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:98:98:CD:E7:98:4A:71:C7:0A:EA:0F:67:DF:E0:9F:44:4B:5C:65 X509v3 Authority Key Identifier: keyid:ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:32:f3:1e:b6:f8:cf:7e:1c:50:3b:94:e3:75:82:ff:25:16: 0f:a4:ba:13:91:60:92:9d:e6:1e:74:65:0f:07:e8:03:1f:4e: 73:69:b5:4e:1b:91:08:ad:20:b3:cf:26:a4:61:ff:90:37:73: f3:5d:50:19:98:56:9d:27:6f:f0:a2:54:20:15:28:d8:4f:86: f6:b7:e1:5b:87:ca:ad:49:03:50:70:c8:74:8d:13:b1:be:a9: 78:13:17:49:32:ac:97:92:2d:e0:41:fb:f2:33:14:0b:f6:35: 12:21:d1:a1:49:46:d2:48:09:3b:68:61:f3:a5:a9:c8:e6:c0: 3b:f6:6c:f1:0b:3c:de:0d:4f:2c:58:c5:7f:3f:a4:90:9e:bf: 21:b6:ba:3b:aa:ed:20:ff:e8:04:b0:cd:fd:72:6c:2b:16:fb: 54:98:38:e7:62:94:08:7c:5e:b2:d1:6c:e7:38:d6:e2:43:ce: f8:78:cd:2a:ea:fd:78:84:34:1c:bc:0e:b5:ec:d5:64:43:c4: c2:86:89:a7:54:a9:5f:f6:98:f1:c9:a1:ea:f5:c8:da:5b:67: 7f:41:c7:0d:f4:63:ef:cd:bc:5c:10:df:02:f0:a3:52:0b:7b: 4d:47:58:29:d4:15:b3:87:95:b9:e0:b9:f0:de:20:cf:33:b0: 6c:eb:6b:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAyRDgxMTAvBgNVBAUTKEVEOUIwRTYwODVBMjVERjI2NzQ5RkYyNzU4MUE0RThC QzdDMTg2Q0MwHhcNMjUwNzE5MDU1MjM2WhcNMjUwNzI2MDU1MjM2WjAYMRYwFAYD VQQDEw02ODdiMzJhNC01NmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9iOhmAzAp4SUG4U4ezDl5K70mLmVMlQESHG0Px5lQSnQMCK8lsoDsG7PxSP hV5UMazGsrgstESDogBavCTm++rBngUSVTopgvXjdmEBBaJx5ypoYdeKShyIzPts ynEZOrSN6atBOsbm5Nd0UzK3w5iElAUhp3sqXV5wN2yHKw/9Q6uQBqOHOvHt6lcK 0kCTHaLV0NMHI+AEhVLMJgfEstqRWDG1v4INZGiZqL604mxCWJuOB6G35mh0oT8u O7IlUcqM7tM26zLhuhl2c5DzoR8t0bDsFKiHv9YVvlifC/KxxOJ12ar+IHauWD0m 8d2cKtTFOscgqrkyqb/gPO1mrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2YmM3n mEpxxwrqD2ff4J9ES1xlMB8GA1UdIwQYMBaAFO2bDmCFol3yZ0n/J1gaTovHwYbM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDJEOC9FMDkyNDhFQTJB QjYxMUVGQjMzOUZEODFDNEY5QUUwMi83WnNPWUlXaVhmSm5TZjhuV0JwT2k4ZkJo c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdac09ZSVdpWGZKblNmOG5XQnBPaThmQmhzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDJEOC9FMDkyNDhFQTJBQjYxMUVGQjMzOUZEODFDNEY5QUUwMi83WnNPWUlXaVhm Sm5TZjhuV0JwT2k4ZkJoc3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8MvMetvjPfhxQO5TjdYL/JRYPpLoTkWCSneYedGUPB+gDH05zabVO G5EIrSCzzyakYf+QN3PzXVAZmFadJ2/wolQgFSjYT4b2t+Fbh8qtSQNQcMh0jROx vql4ExdJMqyXki3gQfvyMxQL9jUSIdGhSUbSSAk7aGHzpanI5sA79mzxCzzeDU8s WMV/P6SQnr8htro7qu0g/+gEsM39cmwrFvtUmDjnYpQIfF6y0WznONbiQ874eM0q 6v14hDQcvA617NVkQ8TChomnVKlf9pjxyaHq9cjaW2d/QccN9GPvzbxcEN8C8KNS C3tNR1gp1BWzh5W54Lnw3iDPM7Bs62sn -----END CERTIFICATE-----Generated at Sun Jul 20 07:17:55 2025 by rpki-client