$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: NFepMiRb1aR/QA950/ODuQm5/KDdp3uihML9WBNyLhA= Subject key identifier: ED:19:CF:CE:E8:9F:2F:77:37:A2:00:15:99:B1:24:77:0F:EC:36:9A Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 98 Signing time: Tue 09 Sep 2025 06:34:49 +0000 Manifest this update: Tue 09 Sep 2025 06:34:48 +0000 Manifest next update: Tue 16 Sep 2025 06:34:48 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: Qh3A3Zv9aucJAeJya0fg7dwxpwW8MvwS4PJk36i/7Gk=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: CcfcyuDgdAXzM0C7pRrcqcGTmtCQX9kXzhcOgKQTSNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: Sep 9 06:34:48 2025 GMT Not After : Sep 16 06:34:48 2025 GMT Subject: CN=68bfca88-6919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2e:cd:94:bc:93:ea:58:fe:36:b5:f5:d6:5d: 18:af:c2:4f:72:c2:87:26:26:2d:7e:fb:f4:29:e5: 84:9f:d7:0d:00:86:76:b0:16:cc:0f:c6:41:6d:e7: 9d:01:a8:17:2e:a8:17:b1:6e:c4:0d:0b:97:2f:94: f8:a3:5a:f0:95:61:f5:4e:63:bf:4f:51:83:bd:4d: 85:30:49:c3:6c:41:2d:61:fd:4b:bc:27:f6:29:3b: cb:a5:68:a1:62:4b:d2:7f:74:c8:d5:de:8f:9e:a3: 8c:74:07:2f:14:63:cb:2e:f0:9a:d1:d3:d9:04:cf: 9d:ae:72:19:27:28:d1:da:bf:a0:62:f1:4f:b5:16: 03:6c:f1:df:81:4d:9d:ea:ce:72:59:0f:ed:43:20: 16:fa:7a:8c:d2:90:a4:8d:31:eb:ce:a8:4b:25:4c: 2f:75:1e:21:48:ee:cd:8f:49:63:a9:31:54:00:d6: 02:0f:a0:fc:34:98:eb:35:fa:1c:8f:55:17:1c:4a: 20:86:cf:b4:8f:73:fb:ff:68:7b:d4:b1:29:7a:12: ba:8a:a6:4c:81:29:d4:08:5e:da:a6:4f:39:7d:a6: 21:4f:34:18:00:6c:2c:f1:e9:9a:a4:5b:b8:75:4c: 52:4d:26:55:f3:ea:9e:77:d6:89:39:45:28:c5:8f: eb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:19:CF:CE:E8:9F:2F:77:37:A2:00:15:99:B1:24:77:0F:EC:36:9A X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:a0:1c:ce:ed:80:9d:69:1a:44:47:6f:88:10:a8:b7:e2:20: 9c:f9:1a:78:c8:81:87:61:bf:3b:71:63:07:82:d8:00:67:fe: 2a:9e:f6:93:d6:6c:1f:7f:fc:51:6b:6c:d0:45:ee:53:29:32: 3a:bf:ae:a6:a7:20:22:a3:79:f4:d3:c7:64:57:83:ff:bd:7a: f9:85:3a:50:57:09:80:3a:20:b5:1c:72:44:2a:e9:c9:67:a3: 98:15:88:f2:e5:6c:8c:f5:4a:73:b3:94:e3:e8:55:82:b8:c0: af:b0:12:aa:51:30:d9:be:35:b5:07:31:47:e2:d5:15:90:99: 34:ba:09:06:a6:0a:a9:fe:4d:8f:b6:c1:63:ff:34:5b:d9:62: 1f:84:c8:e5:0b:35:57:8d:df:e9:fd:dd:3c:c3:b6:8d:8b:81: 5b:41:a0:4a:21:f5:3b:89:c5:85:7a:b5:51:59:6b:6e:1f:d8: a8:13:7b:38:07:18:1c:fb:2a:d5:26:e9:5f:c6:af:18:1e:f4: 14:04:b0:e9:8b:e2:b4:c9:f9:a1:cb:94:2c:86:bf:5e:26:e5: 4b:1f:04:23:d4:20:4c:5b:48:55:7a:40:c9:7a:ce:93:be:2c: a6:0a:59:c0:6f:74:a6:e8:6c:16:a7:66:79:19:bd:d9:60:e1: 76:ac:66:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk0RTcxMTAvBgNVBAUTKDg5MUVEOEJBQUMyQzczQkQxM0FEQ0FBMUExNkFBRjAw RDIyNEE4NzcwHhcNMjUwOTA5MDYzNDQ4WhcNMjUwOTE2MDYzNDQ4WjAYMRYwFAYD VQQDEw02OGJmY2E4OC02OTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyC7NlLyT6lj+NrX11l0Yr8JPcsKHJiYtfvv0KeWEn9cNAIZ2sBbMD8ZBbeed AagXLqgXsW7EDQuXL5T4o1rwlWH1TmO/T1GDvU2FMEnDbEEtYf1LvCf2KTvLpWih YkvSf3TI1d6PnqOMdAcvFGPLLvCa0dPZBM+drnIZJyjR2r+gYvFPtRYDbPHfgU2d 6s5yWQ/tQyAW+nqM0pCkjTHrzqhLJUwvdR4hSO7Nj0ljqTFUANYCD6D8NJjrNfoc j1UXHEoghs+0j3P7/2h71LEpehK6iqZMgSnUCF7apk85faYhTzQYAGws8emapFu4 dUxSTSZV8+qed9aJOUUoxY/rcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0Zz87o ny93N6IAFZmxJHcP7DaaMB8GA1UdIwQYMBaAFIke2LqsLHO9E63KoaFqrwDSJKh3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTRFNy9GNENGRDFEQUFD NzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3MFRyY3Fob1dxdkFOSWtx SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTRFNy9GNENGRDFEQUFDNzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3 MFRyY3Fob1dxdkFOSWtxSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzoBzO7YCdaRpER2+IEKi34iCc+Rp4yIGHYb87cWMHgtgAZ/4qnvaT 1mwff/xRa2zQRe5TKTI6v66mpyAio3n008dkV4P/vXr5hTpQVwmAOiC1HHJEKunJ Z6OYFYjy5WyM9Upzs5Tj6FWCuMCvsBKqUTDZvjW1BzFH4tUVkJk0ugkGpgqp/k2P tsFj/zRb2WIfhMjlCzVXjd/p/d08w7aNi4FbQaBKIfU7icWFerVRWWtuH9ioE3s4 Bxgc+yrVJulfxq8YHvQUBLDpi+K0yfmhy5Qshr9eJuVLHwQj1CBMW0hVekDJes6T viymClnAb3Sm6GwWp2Z5Gb3ZYOF2rGZj -----END CERTIFICATE-----Generated at Wed Sep 10 07:04:35 2025 by rpki-client