$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft File: 7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft (raw, json) Hash identifier: KUXCw2evkblm0mm1Vay0OkZc9ShiMBS8GBCqF8VoaXQ= Subject key identifier: 0C:9D:34:EB:62:83:21:C3:50:57:8E:B3:4A:D7:39:99:28:46:6E:D4 Authority key identifier: EE:FD:3E:86:AF:74:F9:48:34:64:01:6B:93:4F:C3:EF:14:C8:2D:46 Certificate issuer: /CN=A91C0FF9/serialNumber=EEFD3E86AF74F9483464016B934FC3EF14C82D46 Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft Manifest number: 067F Signing time: Fri 18 Jul 2025 22:39:15 +0000 Manifest this update: Fri 18 Jul 2025 22:39:15 +0000 Manifest next update: Fri 25 Jul 2025 22:39:15 +0000 Files and hashes: 1: 7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl (hash: 2tW/bEppGjE5/a1s7R/5g5YpKPeAaPtgnEe2FYfaIMQ=) 2: 98536A8A8D1811EBA3DEC15BC4F9AE02.roa (hash: GZC1H6bkYz3KSM38VOTZVhfdcChKVhr9TmELY8NJ80g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0FF9, serialNumber=EEFD3E86AF74F9483464016B934FC3EF14C82D46 Validity Not Before: Jul 18 22:39:15 2025 GMT Not After : Jul 25 22:39:15 2025 GMT Subject: CN=687acd13-5aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:41:1b:7a:05:81:61:69:15:08:34:bb:41:ca: b0:57:a9:fd:59:6c:84:3c:38:c3:41:d1:79:5b:18: 4e:a4:b7:ff:17:0c:c6:5c:0c:5c:93:b9:2d:69:6c: ca:d6:57:95:16:3f:26:4b:ab:5e:bc:13:ad:58:81: 8d:6e:15:bb:1a:15:17:bf:24:bf:1b:6e:be:61:97: 4a:9c:f8:6a:2e:63:2e:8b:ae:69:a5:5a:ec:be:1e: e4:b8:d8:06:b5:ca:35:63:a4:b7:8a:81:51:33:91: 3a:94:9c:c6:b2:21:05:89:20:42:05:65:84:11:4d: 4b:97:16:e3:1d:d7:97:3a:b3:fd:dd:a8:26:9b:60: 9b:75:08:b1:a6:6d:d4:d1:ae:08:b3:18:55:df:68: 91:f6:5d:99:35:9a:87:11:36:7c:8a:10:81:a0:02: 53:18:eb:e7:59:c2:c9:19:36:ec:40:c1:2b:ff:a8: 05:19:fd:1f:8d:64:1d:33:6f:79:b2:89:0f:94:2e: 44:5d:30:95:1a:cf:44:0e:b4:e5:19:fd:b1:fb:ef: b0:cf:4c:16:b4:ad:41:12:79:2c:f8:29:0d:5b:dc: a4:34:2f:36:90:16:86:56:7b:a6:71:0f:b3:56:6c: 8a:fd:a9:bc:e2:75:b2:68:4a:0d:80:4b:9d:b0:b8: de:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:9D:34:EB:62:83:21:C3:50:57:8E:B3:4A:D7:39:99:28:46:6E:D4 X509v3 Authority Key Identifier: keyid:EE:FD:3E:86:AF:74:F9:48:34:64:01:6B:93:4F:C3:EF:14:C8:2D:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v0-hq90-Ug0ZAFrk0_D7xTILUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0FF9/DD6A765080CE11EB93501868C4F9AE02/7v0-hq90-Ug0ZAFrk0_D7xTILUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:65:3a:75:64:1c:5a:dc:da:3b:fe:bd:6b:04:74:2a:cf:8d: 0e:b8:64:74:c7:a7:f8:3e:8c:98:58:2d:79:f9:77:0c:0f:cb: a5:3c:1c:b9:4b:2d:e5:1a:eb:58:ca:93:77:88:14:9e:3b:21: 96:9a:d7:3e:93:fc:39:fd:ca:e1:2a:5b:44:16:8a:6f:ce:2e: 56:66:2f:ff:4f:71:9e:fd:15:d4:94:0a:95:8d:c1:63:47:73: 82:e4:9e:24:6d:c8:c4:c2:f1:bf:08:75:c9:37:1a:f5:f4:09: 85:53:32:9e:07:ef:5c:90:d4:40:2b:f6:86:52:05:2c:f0:23: 6c:87:32:1f:06:1f:a0:4a:9d:ab:61:df:14:73:03:1d:b7:be: 4b:56:1f:30:d7:81:86:e7:fa:89:7f:8d:44:a0:a9:36:9f:f8: cd:5e:4b:48:29:33:18:af:e6:9e:00:1b:d7:91:18:dd:cd:0e: 87:0e:6d:73:22:cc:f6:a5:b4:7a:fa:89:da:08:94:2f:2f:df: 76:3d:8c:ec:84:9e:20:49:3b:0a:38:4a:13:ac:5e:13:35:d4: cc:0e:be:1c:94:4e:90:bb:3d:54:b8:72:6b:f4:16:62:2c:41: 16:c5:88:e0:3f:65:0a:06:65:9d:1d:f2:d9:9b:27:0c:18:f4: 37:d6:00:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBGRjkxMTAvBgNVBAUTKEVFRkQzRTg2QUY3NEY5NDgzNDY0MDE2QjkzNEZDM0VG MTRDODJENDYwHhcNMjUwNzE4MjIzOTE1WhcNMjUwNzI1MjIzOTE1WjAYMRYwFAYD VQQDEw02ODdhY2QxMy01YWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUEbegWBYWkVCDS7QcqwV6n9WWyEPDjDQdF5WxhOpLf/FwzGXAxck7ktaWzK 1leVFj8mS6tevBOtWIGNbhW7GhUXvyS/G26+YZdKnPhqLmMui65ppVrsvh7kuNgG tco1Y6S3ioFRM5E6lJzGsiEFiSBCBWWEEU1LlxbjHdeXOrP93agmm2CbdQixpm3U 0a4IsxhV32iR9l2ZNZqHETZ8ihCBoAJTGOvnWcLJGTbsQMEr/6gFGf0fjWQdM295 sokPlC5EXTCVGs9EDrTlGf2x+++wz0wWtK1BEnks+CkNW9ykNC82kBaGVnumcQ+z VmyK/am84nWyaEoNgEudsLjeEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAydNOti gyHDUFeOs0rXOZkoRm7UMB8GA1UdIwQYMBaAFO79PoavdPlINGQBa5NPw+8UyC1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEZGOS9ERDZBNzY1MDgw Q0UxMUVCOTM1MDE4NjhDNEY5QUUwMi83djAtaHE5MC1VZzBaQUZyazBfRDd4VElM VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd2MC1ocTkwLVVnMFpBRnJrMF9EN3hUSUxVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEZGOS9ERDZBNzY1MDgwQ0UxMUVCOTM1MDE4NjhDNEY5QUUwMi83djAtaHE5MC1V ZzBaQUZyazBfRDd4VElMVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfZTp1ZBxa3No7/r1rBHQqz40OuGR0x6f4PoyYWC15+XcMD8ulPBy5 Sy3lGutYypN3iBSeOyGWmtc+k/w5/crhKltEFopvzi5WZi//T3Ge/RXUlAqVjcFj R3OC5J4kbcjEwvG/CHXJNxr19AmFUzKeB+9ckNRAK/aGUgUs8CNshzIfBh+gSp2r Yd8UcwMdt75LVh8w14GG5/qJf41EoKk2n/jNXktIKTMYr+aeABvXkRjdzQ6HDm1z Isz2pbR6+onaCJQvL992PYzshJ4gSTsKOEoTrF4TNdTMDr4clE6Quz1UuHJr9BZi LEEWxYjgP2UKBmWdHfLZmycMGPQ31gAH -----END CERTIFICATE-----Generated at Sun Jul 20 21:56:29 2025 by rpki-client