$ rpki-client -vvf rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft File: _7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft (raw, json) Hash identifier: AY09MmwJw/RpLOzrkB/GQgU2KDLFnM+IqZJUIaAAex8= Subject key identifier: E7:96:1A:DE:51:2C:C6:D9:E0:45:E1:10:AF:08:09:38:EF:D6:56:57 Authority key identifier: FF:BC:2D:41:CD:D9:5F:FC:F8:A7:7E:52:91:9E:2E:6D:1B:AF:02:DF Certificate issuer: /CN=A91168FD/serialNumber=FFBC2D41CDD95FFCF8A77E52919E2E6D1BAF02DF Certificate serial: 2192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft Manifest number: 2189 Signing time: Wed 20 Aug 2025 15:58:05 +0000 Manifest this update: Wed 20 Aug 2025 15:58:05 +0000 Manifest next update: Wed 27 Aug 2025 15:58:05 +0000 Files and hashes: 1: _7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl (hash: LLgGuORLD8iMCOaLaFvbRzEw6Ocv6E7YKhIXx/cIqTk=) 2: D07411B6661211ECBCD61A65C4F9AE02.roa (hash: /mOiRGW1T9qa7YdW+2kPvRZkQyewAraUry397iZAYjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 15:58:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8594 (0x2192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91168FD, serialNumber=FFBC2D41CDD95FFCF8A77E52919E2E6D1BAF02DF Validity Not Before: Aug 20 15:58:05 2025 GMT Not After : Aug 27 15:58:05 2025 GMT Subject: CN=68a5f08d-90b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e9:55:7f:26:f6:ff:5e:36:6b:ba:51:db:c1: 0a:3e:89:a7:ad:af:82:0c:b1:51:da:10:30:fe:b8: e3:f9:f8:63:01:b6:c9:52:9f:5f:2e:83:42:69:d8: 27:54:58:71:dd:7d:61:39:78:be:4b:c2:8e:5a:ca: a5:94:c7:2a:7f:d2:7d:a8:60:28:6b:ae:ef:d8:0b: 2f:58:89:5b:65:81:01:67:ca:97:74:52:94:98:dd: 05:0f:0c:77:9b:1a:85:c4:79:a8:06:d1:47:46:4c: 9e:5c:88:86:1b:97:b7:4f:20:a6:e0:04:62:dc:03: 56:81:6e:03:2a:7f:0c:0d:a5:08:f4:4b:f1:13:88: 3e:f8:06:2d:91:6d:ae:5f:66:f2:bd:96:75:e5:63: 25:02:79:2c:f9:c6:2e:97:d7:83:b0:e8:d0:da:f8: 29:e0:5f:70:4b:2d:da:37:d4:45:37:4e:03:9b:df: 00:a9:3e:c0:15:4e:31:df:56:92:a8:d7:a2:33:7f: 8f:6c:59:21:e9:ae:0e:71:30:8b:e7:e7:7c:7b:1e: bb:e3:fc:f4:d1:3c:2f:9b:c3:7e:64:8a:be:fd:d6: 52:b6:a1:a5:4b:e8:9a:d8:56:94:dc:fc:89:99:4e: 1a:c1:92:2f:e9:96:4e:3d:74:cc:b0:03:c2:31:5d: 66:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:96:1A:DE:51:2C:C6:D9:E0:45:E1:10:AF:08:09:38:EF:D6:56:57 X509v3 Authority Key Identifier: keyid:FF:BC:2D:41:CD:D9:5F:FC:F8:A7:7E:52:91:9E:2E:6D:1B:AF:02:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:5a:66:78:88:37:37:61:4b:cd:55:72:54:5e:74:37:29:96: 2c:98:08:7d:07:3e:23:1b:87:47:f7:61:4d:1d:d0:46:17:36: e6:8f:b5:d1:b7:c1:ff:c7:0f:9f:2a:06:fe:b1:8b:bf:b3:e5: 08:47:5f:b9:d5:15:54:af:83:db:39:4f:33:5b:79:b9:0f:c7: 78:12:49:77:da:cf:68:23:0e:e1:76:f0:64:95:55:f8:67:95: b4:5e:bb:f4:ae:9d:a1:25:06:a2:90:d5:b5:e2:8c:3b:88:fa: 93:22:c2:05:42:b2:71:c4:7e:38:be:e8:94:0e:e1:e9:d2:e1: d0:9a:34:42:07:9a:0d:3a:ad:f4:ce:2d:f9:ad:aa:cf:b5:a0: ba:e3:85:df:9c:16:24:27:27:28:20:b1:ad:44:06:4c:51:4c: 57:83:67:e9:4d:3e:a2:eb:2f:ca:ac:ba:38:b7:70:0b:be:da: be:da:b3:a9:0c:a7:82:b1:a4:59:7b:e1:8c:61:75:ca:e8:45: a9:eb:cb:8c:30:1e:40:7d:a6:b5:2f:4c:89:2d:f3:3b:10:ef: b2:78:84:2a:ac:94:8d:3e:ae:46:d6:b4:96:5d:f7:c0:38:01: 8b:1a:58:d4:cb:00:d8:28:c2:1d:c7:44:b1:7c:9d:c0:b0:92: 00:22:37:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY4RkQxMTAvBgNVBAUTKEZGQkMyRDQxQ0REOTVGRkNGOEE3N0U1MjkxOUUyRTZE MUJBRjAyREYwHhcNMjUwODIwMTU1ODA1WhcNMjUwODI3MTU1ODA1WjAYMRYwFAYD VQQDEw02OGE1ZjA4ZC05MGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArulVfyb2/142a7pR28EKPomnra+CDLFR2hAw/rjj+fhjAbbJUp9fLoNCadgn VFhx3X1hOXi+S8KOWsqllMcqf9J9qGAoa67v2AsvWIlbZYEBZ8qXdFKUmN0FDwx3 mxqFxHmoBtFHRkyeXIiGG5e3TyCm4ARi3ANWgW4DKn8MDaUI9EvxE4g++AYtkW2u X2byvZZ15WMlAnks+cYul9eDsOjQ2vgp4F9wSy3aN9RFN04Dm98AqT7AFU4x31aS qNeiM3+PbFkh6a4OcTCL5+d8ex674/z00Twvm8N+ZIq+/dZStqGlS+ia2FaU3PyJ mU4awZIv6ZZOPXTMsAPCMV1mewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeWGt5R LMbZ4EXhEK8ICTjv1lZXMB8GA1UdIwQYMBaAFP+8LUHN2V/8+Kd+UpGeLm0brwLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjhGRC85QTc5OTY0NEUx MTExMUU1QUIwMTc3MjdDNEY5QUUwMi9fN3d0UWMzWlhfejRwMzVTa1o0dWJSdXZB dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL183d3RRYzNaWF96NHAzNVNrWjR1YlJ1dkF0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjhGRC85QTc5OTY0NEUxMTExMUU1QUIwMTc3MjdDNEY5QUUwMi9fN3d0UWMzWlhf ejRwMzVTa1o0dWJSdXZBdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWWmZ4iDc3YUvNVXJUXnQ3KZYsmAh9Bz4jG4dH92FNHdBGFzbmj7XR t8H/xw+fKgb+sYu/s+UIR1+51RVUr4PbOU8zW3m5D8d4Ekl32s9oIw7hdvBklVX4 Z5W0Xrv0rp2hJQaikNW14ow7iPqTIsIFQrJxxH44vuiUDuHp0uHQmjRCB5oNOq30 zi35rarPtaC644XfnBYkJycoILGtRAZMUUxXg2fpTT6i6y/KrLo4t3ALvtq+2rOp DKeCsaRZe+GMYXXK6EWp68uMMB5Afaa1L0yJLfM7EO+yeIQqrJSNPq5G1rSWXffA OAGLGljUywDYKMIdx0SxfJ3AsJIAIjf+ -----END CERTIFICATE-----Generated at Fri Aug 22 16:18:18 2025 by rpki-client