$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: kt1mlL6lGMPNvIe1zHT1EfYcWtfXLUsU69q43dd+Dvo= Subject key identifier: B9:BA:4F:24:E6:5D:EE:07:46:64:C9:47:56:FD:8D:D2:73:81:0E:50 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B38 Signing time: Sun 20 Jul 2025 19:16:52 +0000 Manifest this update: Sun 20 Jul 2025 19:16:51 +0000 Manifest next update: Sun 27 Jul 2025 19:16:51 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: qeEyqGR4fhSqDDTawITc74yFEL5wkyWYkkD0xwCvkY8=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: NJ+vu7BB1LSL5IyZI4sxWSXiQvL3uuiHK69WI9ypRDY=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: 1Gen1/T5J9VcUP7yeBxePtjlwSEPjuywH9LIrIKtzGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2886 (0xb46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Jul 20 19:16:51 2025 GMT Not After : Jul 27 19:16:51 2025 GMT Subject: CN=687d40a3-4e21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1d:af:06:1e:7f:1d:a3:56:fc:3e:e7:3d:00: ef:dc:0c:94:24:21:f6:70:79:07:1a:f9:a7:d8:86: 78:64:7a:d9:1b:7a:4b:4e:6e:5f:21:f7:95:bf:3f: ba:09:25:16:a8:f1:6b:0f:3b:1c:0a:c9:8f:55:c6: 6a:19:26:e2:3f:be:57:36:d3:da:b8:d0:26:32:e2: a7:9b:09:a4:7f:d3:ab:c6:b2:17:c4:8a:80:7a:1d: 12:0b:cd:68:0f:40:83:ce:1c:fe:92:ff:04:53:2e: 5e:9a:66:df:89:36:98:52:c2:d9:76:8f:1b:73:bc: 6f:31:fc:9a:12:71:52:df:28:26:b8:f5:08:4c:71: a2:d1:1c:1a:3e:9b:58:4b:28:fd:d7:11:22:7f:7b: 23:7a:cc:e1:cc:e8:3a:66:ba:47:6f:c2:2c:6a:3a: 9f:cb:45:2b:97:48:c5:04:70:94:14:fc:eb:96:ed: cb:18:53:a1:06:cc:c1:8d:6b:00:ec:3d:15:62:93: 02:b1:c1:85:38:1d:7a:e5:43:35:ea:c1:1a:52:40: 8e:75:01:c0:9e:e1:b0:f5:32:d7:44:28:69:e7:e9: 76:43:2a:45:f7:2a:2a:9a:e2:c2:98:6a:69:5e:32: fb:78:3b:85:36:ff:79:14:dd:a0:f3:00:84:57:e7: 7e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:BA:4F:24:E6:5D:EE:07:46:64:C9:47:56:FD:8D:D2:73:81:0E:50 X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:39:80:0f:fd:a7:44:20:aa:57:66:87:59:78:0b:d7:b0:7a: ac:c7:77:f8:7e:3a:6a:f3:7f:f6:f2:78:b9:e4:53:f8:e1:85: 3d:b3:11:dc:8e:65:e5:a0:9b:02:3a:4f:61:48:b7:53:46:a7: 45:dc:5a:bf:1f:ea:4f:0b:ee:8e:df:1c:5c:8e:8f:af:dc:a9: c0:13:9d:c0:64:a9:a9:5c:6c:57:44:39:cb:e6:ea:5d:9e:22: 31:7f:47:0e:cc:3f:97:b5:5b:aa:47:59:d8:a8:21:1e:74:75: 1d:d5:74:11:82:95:84:4c:5d:54:4c:fe:64:29:f8:47:2a:0a: db:b1:18:89:c9:a2:59:fe:85:74:1b:05:e8:e5:fd:ff:a4:f6: ac:1e:f1:25:19:c9:15:79:f1:7a:a5:87:b9:0a:63:23:d2:97: ea:66:13:08:0b:5a:c9:a4:28:44:d6:7d:86:d0:d0:a8:67:3b: 28:32:c3:1d:47:00:d2:18:34:f7:f3:53:08:74:15:07:29:5e: 66:72:3c:be:7a:f4:02:da:38:69:0b:5b:23:e6:9f:dc:c6:f0: 96:2f:91:bb:96:90:49:92:f2:a3:e7:b2:68:57:75:3e:79:4f: a7:b2:e3:87:ec:54:b6:85:8b:11:a4:57:84:67:9e:55:bf:5e: ec:23:d2:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwNzIwMTkxNjUxWhcNMjUwNzI3MTkxNjUxWjAYMRYwFAYD VQQDEw02ODdkNDBhMy00ZTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4R2vBh5/HaNW/D7nPQDv3AyUJCH2cHkHGvmn2IZ4ZHrZG3pLTm5fIfeVvz+6 CSUWqPFrDzscCsmPVcZqGSbiP75XNtPauNAmMuKnmwmkf9OrxrIXxIqAeh0SC81o D0CDzhz+kv8EUy5emmbfiTaYUsLZdo8bc7xvMfyaEnFS3ygmuPUITHGi0RwaPptY Syj91xEif3sjeszhzOg6ZrpHb8Isajqfy0Url0jFBHCUFPzrlu3LGFOhBszBjWsA 7D0VYpMCscGFOB165UM16sEaUkCOdQHAnuGw9TLXRChp5+l2QypF9yoqmuLCmGpp XjL7eDuFNv95FN2g8wCEV+d+rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLm6TyTm Xe4HRmTJR1b9jdJzgQ5QMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvOYAP/adEIKpXZodZeAvXsHqsx3f4fjpq83/28ni55FP44YU9sxHc jmXloJsCOk9hSLdTRqdF3Fq/H+pPC+6O3xxcjo+v3KnAE53AZKmpXGxXRDnL5upd niIxf0cOzD+XtVuqR1nYqCEedHUd1XQRgpWETF1UTP5kKfhHKgrbsRiJyaJZ/oV0 GwXo5f3/pPasHvElGckVefF6pYe5CmMj0pfqZhMIC1rJpChE1n2G0NCoZzsoMsMd RwDSGDT381MIdBUHKV5mcjy+evQC2jhpC1sj5p/cxvCWL5G7lpBJkvKj57JoV3U+ eU+nsuOH7FS2hYsRpFeEZ55Vv17sI9Le -----END CERTIFICATE-----Generated at Mon Jul 21 12:46:59 2025 by rpki-client