$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: jFe+uFJzkbAesk0uHFpgRhJORu1Tq2++D1PS5sANxBM= Subject key identifier: BE:B9:69:B3:FE:67:C7:B6:E7:8D:A3:0D:B7:9A:B4:AB:05:35:A5:B7 Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 02D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 02C3 Signing time: Sat 19 Jul 2025 01:54:13 +0000 Manifest this update: Sat 19 Jul 2025 01:54:12 +0000 Manifest next update: Sat 26 Jul 2025 01:54:12 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: gs6NO0HItyXZPBolylwQtntb+IQvrk6+ZDzdjm9Thmg=) 2: E4F8A0BA47ED11EF8A746168C4F9AE02.roa (hash: rCllvSopoGz8aDfU9lvXSKhRHbkj+3Ed22RiWwBDqfc=) 3: F3C5DF2CF03511EF83ECDC30C4F9AE02.roa (hash: bX2GvM4twLrpOhpUXaE3dMjzmYpyVWJx7L0sV9znlKE=) 4: EBF3EF123A2911F09F97AA47C4F9AE02.roa (hash: NHQgyn9MrNq1g/omGCRMq2I0Uiy6dz0ptIaB3+XylPM=) 5: FBE1E73689E311EF9021CE0CC4F9AE02.roa (hash: 455DCGiIcAmYhveApDA31/VkiMOYSAFDxNYnnGbSEJY=) 6: 1C7AC7FE4B0711EFBB12B717C4F9AE02.roa (hash: lOUpDRjlxbgUApviuBIHPbtPtdQ0a+j/Lmf0E0RCirU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 726 (0x2d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Jul 19 01:54:12 2025 GMT Not After : Jul 26 01:54:12 2025 GMT Subject: CN=687afac4-e747 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:08:0e:6d:fb:e5:67:26:7a:53:8c:df:21:45: 8d:43:84:66:87:c5:d0:3e:ba:e4:66:c7:76:5c:7b: 7f:7f:74:c4:40:38:7d:c5:de:0d:7f:e5:de:df:d3: d8:cc:c3:d7:16:a9:c0:cd:9d:e0:29:bc:42:af:c4: 4e:ed:2b:82:41:7e:e2:09:08:d8:4c:a1:44:1c:94: 72:ce:60:58:58:42:3b:f5:3a:fe:0b:8b:62:8c:80: d1:9d:62:74:62:9d:d3:57:0b:76:36:93:33:d2:fa: 1c:8c:e8:e8:b6:63:71:eb:2b:49:81:68:a2:8a:08: 93:60:1e:a8:f5:95:3a:80:29:96:80:b0:f3:2c:c1: 13:11:cc:ef:e4:e0:4c:0a:8b:55:7b:98:9f:af:49: c9:5c:1f:3c:d7:02:a3:9b:13:ef:21:83:f4:11:98: 0e:a6:36:29:45:73:d7:4b:d0:13:47:a4:12:2c:3e: c1:b7:76:15:76:d5:38:f5:11:f9:6c:21:ab:1d:43: eb:8b:f1:7e:48:b2:74:69:95:20:dd:3f:ee:fa:9e: ef:f3:9c:ab:85:58:97:9e:6a:01:93:e8:2e:27:5f: 88:73:19:56:9d:b5:61:94:39:79:5d:ac:f5:d7:9e: 2f:0d:89:26:2a:1a:22:e3:67:15:e8:c1:c1:3d:f5: 0e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B9:69:B3:FE:67:C7:B6:E7:8D:A3:0D:B7:9A:B4:AB:05:35:A5:B7 X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b2:bf:56:f8:29:2b:ed:69:64:1c:e2:7d:60:e2:2c:c8:97: b5:c0:c9:c5:bc:94:1a:6f:c3:b8:51:c0:cb:92:9c:86:b1:87: ec:ac:d0:ed:48:6c:12:03:ef:bd:b2:81:1c:fb:a3:24:98:87: 3d:02:96:1b:82:69:e1:89:0a:95:8d:79:dd:f1:7d:2a:f6:f7: 6f:af:b3:87:2a:f9:dd:96:69:20:f5:26:60:17:db:ae:bc:07: fd:fc:da:b7:77:88:39:c1:4b:08:d9:bc:a1:fd:04:a3:ca:c5: 40:7e:64:10:f2:aa:41:f0:a8:ce:79:d9:6e:4f:23:9d:ab:6b: c3:79:47:f3:e1:79:c3:e9:4e:6e:65:88:45:8b:56:87:df:4c: c8:b0:d0:6a:3e:6c:82:cf:1e:55:47:0c:b7:84:1f:52:52:e1: 6c:80:44:c5:d9:e6:07:96:57:8c:79:7b:6f:71:d4:ea:3e:87: 66:2f:64:d5:98:21:49:bb:96:2c:e1:f7:98:5a:ed:a2:ad:fc: c5:8b:28:0f:3f:bb:90:5c:19:31:51:07:b9:b1:1d:53:43:9c: eb:d2:c9:bf:b6:93:35:d1:32:37:88:0d:e8:39:8f:69:ae:c9: ce:8b:38:bc:0a:78:d5:52:fa:2e:eb:ca:a8:39:04:27:10:ec: eb:64:34:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjUwNzE5MDE1NDEyWhcNMjUwNzI2MDE1NDEyWjAYMRYwFAYD VQQDEw02ODdhZmFjNC1lNzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wgObfvlZyZ6U4zfIUWNQ4Rmh8XQPrrkZsd2XHt/f3TEQDh9xd4Nf+Xe39PY zMPXFqnAzZ3gKbxCr8RO7SuCQX7iCQjYTKFEHJRyzmBYWEI79Tr+C4tijIDRnWJ0 Yp3TVwt2NpMz0vocjOjotmNx6ytJgWiiigiTYB6o9ZU6gCmWgLDzLMETEczv5OBM CotVe5ifr0nJXB881wKjmxPvIYP0EZgOpjYpRXPXS9ATR6QSLD7Bt3YVdtU49RH5 bCGrHUPri/F+SLJ0aZUg3T/u+p7v85yrhViXnmoBk+guJ1+IcxlWnbVhlDl5Xaz1 154vDYkmKhoi42cV6MHBPfUO0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL65abP+ Z8e2542jDbeatKsFNaW3MB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6sr9W+Ckr7WlkHOJ9YOIsyJe1wMnFvJQab8O4UcDLkpyGsYfsrNDt SGwSA++9soEc+6MkmIc9ApYbgmnhiQqVjXnd8X0q9vdvr7OHKvndlmkg9SZgF9uu vAf9/Nq3d4g5wUsI2byh/QSjysVAfmQQ8qpB8KjOedluTyOdq2vDeUfz4XnD6U5u ZYhFi1aH30zIsNBqPmyCzx5VRwy3hB9SUuFsgETF2eYHlleMeXtvcdTqPodmL2TV mCFJu5Ys4feYWu2irfzFiygPP7uQXBkxUQe5sR1TQ5zr0sm/tpM10TI3iA3oOY9p rsnOizi8CnjVUvou68qoOQQnEOzrZDTz -----END CERTIFICATE-----Generated at Sun Jul 20 16:37:00 2025 by rpki-client