$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: 210FfX24Y7kiIS3rqOUmJ4s9O572v1JalnyuFCXGdto= Subject key identifier: DD:B8:70:44:CD:B2:B6:FE:B1:6B:39:C9:FC:D3:8F:36:4F:F8:3F:7B Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0CD5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0CCB Signing time: Sun 24 Aug 2025 18:05:51 +0000 Manifest this update: Sun 24 Aug 2025 18:05:51 +0000 Manifest next update: Sun 31 Aug 2025 18:05:51 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: hCvSDVs9QUHnHLCSjr8fQViIEyfoK0FRn8Gjo8i+T/I=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: Lgb8GqRFfTjU3W3z9LRFwwnC1h3FLvp4weLwp44Pmyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3285 (0xcd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Aug 24 18:05:51 2025 GMT Not After : Aug 31 18:05:51 2025 GMT Subject: CN=68ab547f-d476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ae:56:00:5e:f9:f2:a2:77:6b:82:cb:d9:d6: 3b:4a:7c:63:fb:c3:23:5e:9b:f5:fa:ca:d0:87:ef: 73:20:95:71:c7:7a:56:2b:47:c1:b5:e1:ed:ed:6e: 08:19:30:39:e1:01:4c:de:8d:3d:d7:b1:6e:3e:42: 1b:5d:fb:fc:cc:b9:ad:97:46:34:c3:a1:6d:d8:a0: 17:a0:a9:e4:da:65:1c:9d:ed:73:6c:f6:9b:eb:3a: 32:d7:01:36:f5:5f:82:15:60:fc:25:40:ac:a0:a2: b4:96:b2:d3:40:ad:fd:e1:02:19:52:a6:43:7f:b1: 8c:02:24:4f:df:80:13:40:40:22:4d:40:0e:e0:84: 20:bb:16:42:5f:24:91:d5:be:38:91:e0:97:e5:4e: 98:51:02:5f:d3:b8:4c:3c:79:95:e1:f2:c8:c3:84: 81:80:e4:f1:e5:70:39:82:d3:95:c3:fd:4f:b3:a0: 45:ed:2f:81:11:f3:f1:0c:96:5a:5a:e9:80:87:ae: 73:aa:59:20:84:36:2f:47:be:46:38:1a:c9:8d:a8: 3f:8b:b6:c3:24:48:50:41:90:f4:c7:bd:30:c2:f0: c5:4c:e7:13:02:c9:f4:fc:da:dd:9a:6f:0b:74:6f: 26:06:d8:3f:c9:ec:1c:93:f4:f4:53:95:6f:43:3b: 8f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B8:70:44:CD:B2:B6:FE:B1:6B:39:C9:FC:D3:8F:36:4F:F8:3F:7B X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:58:4e:21:cb:3e:2d:43:fc:fe:ff:d0:d4:9a:24:f8:9e:a4: f3:6e:a3:a1:8d:1e:c0:8a:db:e6:18:5c:98:38:a4:92:20:6a: 19:15:ed:4a:63:c8:d4:7c:94:77:2c:1a:9a:52:e8:13:98:18: e4:f1:a0:25:5c:b8:94:77:7a:02:ca:cc:98:36:3d:2e:ca:7a: 55:a4:f8:2b:6d:af:84:98:6a:5e:a0:a9:45:f4:8e:72:60:0f: d8:f8:4d:b7:8b:63:2b:96:c9:69:0a:e5:56:61:c2:ad:0a:ac: 5d:bd:2b:8a:c1:e5:f3:92:05:9a:4a:22:87:3a:53:3a:ff:5a: 99:10:dd:3a:a4:21:ab:fe:f7:68:f4:42:b5:2d:08:85:1c:1d: b7:bc:38:e4:fe:ea:ea:33:9e:40:4e:dd:26:77:61:51:3d:b0: 4e:ce:a7:ef:77:8b:bd:46:d3:09:8b:82:eb:98:ad:3e:ae:9d: aa:c8:b2:4e:27:fe:73:c5:52:47:65:df:32:88:18:4a:cd:2b: 4f:eb:47:13:ac:ce:48:79:96:74:8f:52:bd:9f:e6:03:04:52: 3f:2e:0c:f2:be:5d:f7:97:3e:e6:5a:94:a4:17:93:da:41:4a: bd:d3:28:f0:2d:a7:ee:04:87:3e:a6:bc:34:5f:13:66:1b:0f: 4d:59:ba:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUwODI0MTgwNTUxWhcNMjUwODMxMTgwNTUxWjAYMRYwFAYD VQQDEw02OGFiNTQ3Zi1kNDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0K5WAF758qJ3a4LL2dY7Snxj+8MjXpv1+srQh+9zIJVxx3pWK0fBteHt7W4I GTA54QFM3o0917FuPkIbXfv8zLmtl0Y0w6Ft2KAXoKnk2mUcne1zbPab6zoy1wE2 9V+CFWD8JUCsoKK0lrLTQK394QIZUqZDf7GMAiRP34ATQEAiTUAO4IQguxZCXySR 1b44keCX5U6YUQJf07hMPHmV4fLIw4SBgOTx5XA5gtOVw/1Ps6BF7S+BEfPxDJZa WumAh65zqlkghDYvR75GOBrJjag/i7bDJEhQQZD0x70wwvDFTOcTAsn0/Nrdmm8L dG8mBtg/yewck/T0U5VvQzuPnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN24cETN srb+sWs5yfzTjzZP+D97MB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXWE4hyz4tQ/z+/9DUmiT4nqTzbqOhjR7AitvmGFyYOKSSIGoZFe1K Y8jUfJR3LBqaUugTmBjk8aAlXLiUd3oCysyYNj0uynpVpPgrba+EmGpeoKlF9I5y YA/Y+E23i2MrlslpCuVWYcKtCqxdvSuKweXzkgWaSiKHOlM6/1qZEN06pCGr/vdo 9EK1LQiFHB23vDjk/urqM55ATt0md2FRPbBOzqfvd4u9RtMJi4LrmK0+rp2qyLJO J/5zxVJHZd8yiBhKzStP60cTrM5IeZZ0j1K9n+YDBFI/Lgzyvl33lz7mWpSkF5Pa QUq90yjwLafuBIc+prw0XxNmGw9NWbrc -----END CERTIFICATE-----Generated at Sun Aug 24 21:48:20 2025 by rpki-client