$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft File: B7Y7XcFse0rper0AhqMVbV10Rlk.mft (raw, json) Hash identifier: TovDjl1kfbt0JROWMCUyz08Slh1BO+MEF6etM1JOJWo= Subject key identifier: 1F:23:71:2E:84:4F:A5:40:F5:6B:56:D7:95:F8:C8:7A:15:63:60:E3 Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft Manifest number: 0201 Signing time: Sat 19 Jul 2025 02:31:51 +0000 Manifest this update: Sat 19 Jul 2025 02:31:50 +0000 Manifest next update: Sat 26 Jul 2025 02:31:50 +0000 Files and hashes: 1: B7Y7XcFse0rper0AhqMVbV10Rlk.crl (hash: lj2XIBngJLx0Msmt/0IPpDeHYgXkHXtCIccVneZuu40=) 2: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (hash: lJnZtZDQNzdO0qp1p8vNJySg5lDyaZrljj6ja2HApOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49, serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Jul 19 02:31:50 2025 GMT Not After : Jul 26 02:31:50 2025 GMT Subject: CN=687b0396-7741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ea:94:78:cd:28:bb:5a:ac:56:5f:64:bb:95: 5b:11:4e:f3:ac:3b:72:df:31:56:7a:68:9b:50:9b: 65:80:e3:b6:9c:05:c7:cf:36:6f:91:08:33:a6:0b: 14:ec:f5:33:eb:bb:e1:4f:1a:1c:54:fa:6d:18:9d: 2a:b8:68:ff:49:74:47:70:83:df:35:07:b4:f3:29: 85:57:6f:4f:8d:d6:78:78:3a:bc:4c:5e:d9:1f:7c: 37:e6:5c:eb:e3:64:07:20:fd:a0:41:35:b4:22:06: 4a:99:ac:94:38:61:b5:3e:51:f7:10:41:f1:ee:13: 71:2e:62:fb:32:3a:4f:29:48:75:a3:e6:b9:c1:b6: 99:ee:01:84:7e:7c:d6:22:88:31:e9:bb:28:11:b2: 7c:95:c0:80:ac:dd:16:dc:ea:69:a1:c3:22:37:a4: 5d:5f:f5:f0:aa:62:40:6b:0b:0c:30:ba:f8:12:3c: d8:77:01:cc:63:32:8e:45:c6:26:84:fe:60:8a:03: ae:30:6e:0a:e8:01:5e:90:58:3c:10:a4:07:9e:18: fb:f5:98:a9:cd:ac:d0:93:75:5b:c7:c8:c7:1b:1d: f8:57:0c:21:4f:02:8e:a6:7f:e7:ef:cf:2d:89:7e: 3f:c6:5b:5d:95:54:15:4e:ae:a8:1c:8f:ae:b9:5e: 8c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:23:71:2E:84:4F:A5:40:F5:6B:56:D7:95:F8:C8:7A:15:63:60:E3 X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:7d:20:33:af:a3:6a:d7:9b:14:a7:4d:54:4e:32:2d:73:02: 41:87:51:f7:61:1c:f2:07:d0:33:d1:e1:17:db:da:ae:0d:cd: ba:37:16:93:c7:1f:37:ae:db:cd:01:fd:b6:dd:89:89:7d:a1: 97:ff:7b:72:6b:83:bf:20:0f:df:bf:48:35:02:62:71:25:75: 72:e7:f2:05:8b:9f:ab:e1:66:e8:44:33:c1:70:fa:fe:8f:be: ab:d7:8e:de:34:6f:82:db:80:f4:f7:ac:40:95:5c:69:75:fc: 9f:c5:05:40:bf:47:98:35:d9:74:5e:07:72:26:1f:04:f3:db: e9:eb:a8:51:a4:0f:b7:46:9b:26:1c:f3:34:ad:64:02:77:c9: 83:a2:0a:00:2f:bc:54:16:98:b4:68:94:0c:18:e1:6c:32:eb: 2e:74:21:fb:8a:60:5e:ae:98:bb:b6:81:ad:81:7c:dd:27:8d: 88:17:40:15:b6:d9:c1:f8:c5:68:c3:36:12:fd:53:44:e9:88: 55:14:0d:76:5b:40:9d:f2:04:63:a3:d3:90:90:1f:4a:57:da: 14:4d:33:21:43:22:c9:37:c5:93:b0:6a:3a:3d:d7:80:9d:05: 46:4e:72:d1:f3:b8:84:fa:59:33:b6:8e:c3:66:d8:ec:77:ba: 97:92:4c:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjUwNzE5MDIzMTUwWhcNMjUwNzI2MDIzMTUwWjAYMRYwFAYD VQQDEw02ODdiMDM5Ni03NzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueqUeM0ou1qsVl9ku5VbEU7zrDty3zFWemibUJtlgOO2nAXHzzZvkQgzpgsU 7PUz67vhTxocVPptGJ0quGj/SXRHcIPfNQe08ymFV29PjdZ4eDq8TF7ZH3w35lzr 42QHIP2gQTW0IgZKmayUOGG1PlH3EEHx7hNxLmL7MjpPKUh1o+a5wbaZ7gGEfnzW Iogx6bsoEbJ8lcCArN0W3OppocMiN6RdX/XwqmJAawsMMLr4EjzYdwHMYzKORcYm hP5gigOuMG4K6AFekFg8EKQHnhj79ZipzazQk3Vbx8jHGx34VwwhTwKOpn/n788t iX4/xltdlVQVTq6oHI+uuV6MlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8jcS6E T6VA9WtW15X4yHoVY2DjMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkU0OS9CMzNBQTdBNjUzODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2Uw cnBlcjBBaHFNVmJWMTBSbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHfSAzr6Nq15sUp01UTjItcwJBh1H3YRzyB9Az0eEX29quDc26NxaT xx83rtvNAf223YmJfaGX/3tya4O/IA/fv0g1AmJxJXVy5/IFi5+r4WboRDPBcPr+ j76r147eNG+C24D096xAlVxpdfyfxQVAv0eYNdl0XgdyJh8E89vp66hRpA+3Rpsm HPM0rWQCd8mDogoAL7xUFpi0aJQMGOFsMusudCH7imBerpi7toGtgXzdJ42IF0AV ttnB+MVowzYS/VNE6YhVFA12W0Cd8gRjo9OQkB9KV9oUTTMhQyLJN8WTsGo6PdeA nQVGTnLR87iE+lkzto7DZtjsd7qXkkx5 -----END CERTIFICATE-----Generated at Sun Jul 20 10:02:58 2025 by rpki-client