$ rpki-client -vvf rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft File: 7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft (raw, json) Hash identifier: XDaB/ScOrmL144y/kF5K2t2jWIDy0VquCO8PTdyFc0U= Subject key identifier: 5A:BF:A7:F2:FB:16:B7:04:D4:22:89:11:77:29:44:C1:5B:82:44:A4 Authority key identifier: ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 Certificate issuer: /CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Certificate serial: 0C21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft Manifest number: 0C0A Signing time: Tue 16 Sep 2025 18:54:23 +0000 Manifest this update: Tue 16 Sep 2025 18:54:23 +0000 Manifest next update: Tue 23 Sep 2025 18:54:23 +0000 Files and hashes: 1: 7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl (hash: lNI9JRYAvc3GV/LekudjIo3R7F4wMG44nMkWDS8p4VM=) 2: 61EE7C6C281211EA881CC32DC4F9AE02.roa (hash: cpZDWElJkWHfyDoaFzzaYvQgJmBavPZ5GGxiNrY4lcE=) 3: 57A5ACF20FE911EBB5AE5524C4F9AE02.roa (hash: Ia7YlzfnZVrXXaoAHWfWApYxD2x/ixMau7CG/ipkyT8=) 4: 627B1438281211EA881CC32DC4F9AE02.roa (hash: uO9dKN19ATuVxFqwADIfuDOdZhJHHOsW2uFtJZD9uM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 18:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3105 (0xc21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D70A, serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Validity Not Before: Sep 16 18:54:23 2025 GMT Not After : Sep 23 18:54:23 2025 GMT Subject: CN=68c9b25f-388d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:27:7a:33:1e:6e:78:5b:1a:a0:ac:4d:6e:6d: 5a:43:f9:7f:8b:b1:3b:0a:de:64:67:5b:5a:24:60: d9:b7:18:f9:d4:fb:71:87:65:4f:cf:90:6d:9a:fd: 2d:26:a5:f6:5a:cf:dd:32:c4:fc:ed:c4:d6:9f:32: 9c:01:18:bc:c7:94:96:97:90:b5:4b:cb:c6:75:6f: f6:b7:cf:3f:15:43:36:30:43:36:a2:c0:93:25:35: 16:e6:fe:87:4e:c0:a0:03:99:00:df:c3:9c:96:9a: 1b:d2:35:5c:e7:c7:05:9b:65:c1:79:e8:c3:ab:3a: df:ee:75:7e:a1:24:0b:1f:20:dc:71:0b:f4:90:cd: d6:64:19:f2:13:4b:7b:9d:6d:1a:18:3d:98:64:4d: 59:14:f1:a1:bd:ff:55:8d:af:26:5e:49:e5:a9:19: 63:db:b3:54:08:c3:60:25:fd:04:6d:78:91:d7:13: cc:2c:36:81:11:1e:36:81:8e:80:d0:ee:cb:1a:b7: ba:65:d5:e6:4f:c5:96:11:d7:1f:32:95:8e:5a:a8: ef:1f:7f:bc:96:ef:d1:12:58:0e:b4:b1:8c:93:17: 6b:20:69:bf:02:4a:c3:5f:f8:91:c7:3f:d3:97:1f: 7b:c8:ed:9e:aa:68:4b:32:af:ec:30:0b:88:b2:11: c2:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:BF:A7:F2:FB:16:B7:04:D4:22:89:11:77:29:44:C1:5B:82:44:A4 X509v3 Authority Key Identifier: keyid:ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:8e:0e:97:c9:53:03:e2:38:91:dc:fa:1e:fe:5f:99:b2:b3: b9:25:6e:3a:39:96:35:f7:21:fc:e7:95:53:4f:62:2d:6c:8c: 8a:b4:71:8e:3e:89:3f:7e:01:08:8c:22:d6:ba:24:e7:e0:84: ab:c2:e9:39:7c:b3:41:8c:ba:0b:04:76:9b:f5:65:8c:a5:fa: 80:c4:14:4d:b6:48:b6:0a:41:86:d1:c0:36:01:9b:2e:39:0c: 93:56:aa:b0:ae:39:f2:9f:04:b0:50:4b:f2:be:6f:c0:53:f3: 80:b9:b6:5e:42:a0:91:39:90:63:2b:3e:98:c8:c6:8a:36:49: fa:51:3e:6a:a1:f6:c9:68:af:e5:db:00:10:11:9b:47:33:17: 77:8c:88:5c:7b:78:87:74:fb:06:d1:54:14:34:40:c3:43:8f: 05:84:28:ed:7f:c9:fa:31:dd:5a:90:4c:06:40:86:f5:03:25: 56:26:a2:85:f6:fa:76:b0:82:9c:08:d1:ec:cc:c8:81:6a:e7: 16:5d:6e:fc:c6:c7:85:85:8e:b7:29:d2:89:ff:0a:a5:1e:58: 0a:70:a5:cd:0c:b5:52:c4:11:46:07:71:66:ee:aa:cc:4f:d3: 42:3c:a9:47:aa:62:e4:db:50:6d:1c:56:23:92:59:0f:14:fa: 1e:0f:20:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MEExMTAvBgNVBAUTKEVEMzMwODIwRkZBQkQwQUIyODQxQkE5M0U5MDJFQTY4 Mjk5MkRBQTkwHhcNMjUwOTE2MTg1NDIzWhcNMjUwOTIzMTg1NDIzWjAYMRYwFAYD VQQDEw02OGM5YjI1Zi0zODhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSd6Mx5ueFsaoKxNbm1aQ/l/i7E7Ct5kZ1taJGDZtxj51Ptxh2VPz5Btmv0t JqX2Ws/dMsT87cTWnzKcARi8x5SWl5C1S8vGdW/2t88/FUM2MEM2osCTJTUW5v6H TsCgA5kA38Oclpob0jVc58cFm2XBeejDqzrf7nV+oSQLHyDccQv0kM3WZBnyE0t7 nW0aGD2YZE1ZFPGhvf9Vja8mXknlqRlj27NUCMNgJf0EbXiR1xPMLDaBER42gY6A 0O7LGre6ZdXmT8WWEdcfMpWOWqjvH3+8lu/RElgOtLGMkxdrIGm/AkrDX/iRxz/T lx97yO2eqmhLMq/sMAuIshHCyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFq/p/L7 FrcE1CKJEXcpRMFbgkSkMB8GA1UdIwQYMBaAFO0zCCD/q9CrKEG6k+kC6mgpktqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcwQS80MUFCRDI5RTFC ODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBLc29RYnFUNlFMcWFDbVMy cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUTUlJUC1yMEtzb1FicVQ2UUxxYUNtUzJxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDcwQS80MUFCRDI5RTFCODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBL c29RYnFUNlFMcWFDbVMycWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADjg6XyVMD4jiR3Poe/l+ZsrO5JW46OZY19yH855VTT2ItbIyKtHGO Pok/fgEIjCLWuiTn4ISrwuk5fLNBjLoLBHab9WWMpfqAxBRNtki2CkGG0cA2AZsu OQyTVqqwrjnynwSwUEvyvm/AU/OAubZeQqCROZBjKz6YyMaKNkn6UT5qofbJaK/l 2wAQEZtHMxd3jIhce3iHdPsG0VQUNEDDQ48FhCjtf8n6Md1akEwGQIb1AyVWJqKF 9vp2sIKcCNHszMiBaucWXW78xseFhY63KdKJ/wqlHlgKcKXNDLVSxBFGB3Fm7qrM T9NCPKlHqmLk21BtHFYjklkPFPoeDyBd -----END CERTIFICATE-----Generated at Wed Sep 17 10:01:47 2025 by rpki-client