$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft File: 7FY9v-LzmMjp-xn590IytrVKpuo.mft (raw, json) Hash identifier: aRFg/GtN3iB9RRqhjhw2XMk0uR3UG65kJ7aGpLNb2TQ= Subject key identifier: 0A:70:17:FF:6D:2F:82:74:3C:98:C6:BE:30:48:9D:6C:F1:32:B4:03 Authority key identifier: EC:56:3D:BF:E2:F3:98:C8:E9:FB:19:F9:F7:42:32:B6:B5:4A:A6:EA Certificate issuer: /CN=A91E8632/serialNumber=EC563DBFE2F398C8E9FB19F9F74232B6B54AA6EA Certificate serial: 1B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft Manifest number: 1AF5 Signing time: Sun 20 Jul 2025 16:20:38 +0000 Manifest this update: Sun 20 Jul 2025 16:20:37 +0000 Manifest next update: Sun 27 Jul 2025 16:20:37 +0000 Files and hashes: 1: 7FY9v-LzmMjp-xn590IytrVKpuo.crl (hash: bGrTKlEvpz0hErtYcpa1Coz0ismZPD1+wkENDGR+IVs=) 2: 6290CEFA3E3611F0BC85B94CC4F9AE02.roa (hash: LOoxZWeDgU2+wusXufQ94pg+OOkfT8j3WfNTQznwf90=) 3: F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa (hash: LUrVRFHpHNZiTqSy0L8SOTOMfbUQlb1OEo2uN/0dmZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.crl rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:20:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6942 (0x1b1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8632, serialNumber=EC563DBFE2F398C8E9FB19F9F74232B6B54AA6EA Validity Not Before: Jul 20 16:20:37 2025 GMT Not After : Jul 27 16:20:37 2025 GMT Subject: CN=687d1755-85a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:84:4b:4a:18:3b:ad:8d:88:ac:c7:58:93:61: ab:35:fd:13:e2:05:c7:0d:f3:bd:d6:90:8b:02:2b: 58:c6:d0:a0:e0:8a:7a:9f:9c:ec:80:0a:49:5e:e8: ef:39:13:7c:c5:81:b5:f1:8c:48:d4:3d:9f:b7:e2: a5:58:22:dc:a0:4d:53:82:fc:a6:b6:b9:5e:6d:5e: bb:64:4f:ff:69:24:a4:10:99:2a:e5:aa:f7:13:20: 67:3a:0b:1e:2e:8a:73:c1:9c:5c:79:2a:af:62:26: f2:10:cf:5c:b2:43:16:9d:2f:40:c2:d0:5d:e9:12: ee:86:1c:08:94:3f:b7:fe:64:cc:da:ec:ee:1a:9a: d9:9b:e1:5e:d2:ed:6d:77:82:a1:ba:05:d4:1e:23: a7:fb:e2:be:61:e9:77:82:76:29:64:92:61:93:6e: 1b:7f:b0:44:47:56:a1:7c:a5:40:b9:33:d4:94:65: f6:c5:a9:f9:22:fa:ad:64:13:05:fb:b9:99:74:27: d4:56:96:d3:a9:35:a9:aa:c8:07:f0:12:9e:04:29: 1b:47:e5:12:15:59:9d:02:63:7c:b7:07:c4:0d:57: 11:5e:a9:5d:fd:03:d5:26:e5:d4:2b:02:0f:93:fe: e0:0c:ca:7e:67:2f:44:7f:25:8d:88:2a:c7:b2:55: 7e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:70:17:FF:6D:2F:82:74:3C:98:C6:BE:30:48:9D:6C:F1:32:B4:03 X509v3 Authority Key Identifier: keyid:EC:56:3D:BF:E2:F3:98:C8:E9:FB:19:F9:F7:42:32:B6:B5:4A:A6:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:f0:05:fe:d1:18:57:d5:b8:7e:9c:a2:78:7e:44:13:dc:ba: b0:83:a9:cb:9b:13:5c:dc:9f:7e:e8:fd:bc:54:df:99:42:04: 6b:6c:a5:25:c5:4a:50:78:e4:8c:1a:28:f1:77:24:1d:0c:fb: 46:01:34:72:6e:68:44:2a:9f:1d:84:68:84:fe:d6:fc:64:4e: e9:66:a4:59:fd:49:4d:50:eb:72:84:56:89:b7:cb:ec:66:92: e3:e1:56:99:ee:e5:84:50:c6:99:63:34:af:0e:de:d5:14:8f: 4b:21:e5:96:09:04:35:ac:24:11:f5:ce:96:05:b2:6f:85:20: 4c:5b:32:8b:fd:e6:b0:2d:60:21:88:48:78:83:6f:88:3a:d4: 8f:a7:0b:03:55:64:ef:88:27:78:7a:7e:8d:51:75:ef:12:a7: 08:db:88:ec:08:8c:eb:6e:8d:ea:6e:2a:13:70:c9:3f:6a:74: 89:83:94:5a:1b:56:f7:4d:76:97:cb:57:1b:d7:bc:1d:fa:6a: 0c:f6:d7:a5:bf:ff:df:ab:a6:2e:0c:95:70:e2:73:33:cf:a1: 92:0c:da:33:91:d2:41:ec:c1:70:a1:27:5e:ce:dc:65:e7:36: fc:f2:9c:50:13:9c:cf:69:ee:18:d6:00:59:93:d0:29:f6:fd: dc:3d:01:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2MzIxMTAvBgNVBAUTKEVDNTYzREJGRTJGMzk4QzhFOUZCMTlGOUY3NDIzMkI2 QjU0QUE2RUEwHhcNMjUwNzIwMTYyMDM3WhcNMjUwNzI3MTYyMDM3WjAYMRYwFAYD VQQDEw02ODdkMTc1NS04NWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYRLShg7rY2IrMdYk2GrNf0T4gXHDfO91pCLAitYxtCg4Ip6n5zsgApJXujv ORN8xYG18YxI1D2ft+KlWCLcoE1TgvymtrlebV67ZE//aSSkEJkq5ar3EyBnOgse LopzwZxceSqvYibyEM9cskMWnS9AwtBd6RLuhhwIlD+3/mTM2uzuGprZm+Fe0u1t d4KhugXUHiOn++K+Yel3gnYpZJJhk24bf7BER1ahfKVAuTPUlGX2xan5IvqtZBMF +7mZdCfUVpbTqTWpqsgH8BKeBCkbR+USFVmdAmN8twfEDVcRXqld/QPVJuXUKwIP k/7gDMp+Zy9EfyWNiCrHslV+EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApwF/9t L4J0PJjGvjBInWzxMrQDMB8GA1UdIwQYMBaAFOxWPb/i85jI6fsZ+fdCMra1Sqbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODYzMi8wNUNFNDRFQTJF NUUxMUU3QkFDODhCNjlDNEY5QUUwMi83Rlk5di1Mem1NanAteG41OTBJeXRyVktw dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGWTl2LUx6bU1qcC14bjU5MEl5dHJWS3B1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODYzMi8wNUNFNDRFQTJFNUUxMUU3QkFDODhCNjlDNEY5QUUwMi83Rlk5di1Mem1N anAteG41OTBJeXRyVktwdW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW8AX+0RhX1bh+nKJ4fkQT3Lqwg6nLmxNc3J9+6P28VN+ZQgRrbKUl xUpQeOSMGijxdyQdDPtGATRybmhEKp8dhGiE/tb8ZE7pZqRZ/UlNUOtyhFaJt8vs ZpLj4VaZ7uWEUMaZYzSvDt7VFI9LIeWWCQQ1rCQR9c6WBbJvhSBMWzKL/eawLWAh iEh4g2+IOtSPpwsDVWTviCd4en6NUXXvEqcI24jsCIzrbo3qbioTcMk/anSJg5Ra G1b3TXaXy1cb17wd+moM9telv//fq6YuDJVw4nMzz6GSDNozkdJB7MFwoSdeztxl 5zb88pxQE5zPae4Y1gBZk9Ap9v3cPQGF -----END CERTIFICATE-----Generated at Mon Jul 21 12:45:25 2025 by rpki-client