$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: 3fq2bgCCpH6plgY6wLNUB1dGkAY4E04Jb3DrNaLFhZA= Subject key identifier: 81:4E:2D:E3:A2:20:CB:63:6D:3A:5B:27:1D:9B:71:7D:C2:B5:F7:B1 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2B19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2AEA Signing time: Thu 04 Sep 2025 15:39:59 +0000 Manifest this update: Thu 04 Sep 2025 15:39:58 +0000 Manifest next update: Thu 11 Sep 2025 15:39:58 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: D9c9HcP5D9ADR+tM8ZPBE8HVWC3WBzQn99jYeld5PC0=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: +HLe66PXx2PeHfF3w62lv44BzlqBqje8fJ2L8YnpkrU=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: W6zfrwj6/OqirsYiKLU78RB1FM66HD+HpTrmcoXxfW0=) 4: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: JIxsUWoaA8dqs4H846TBR0QXM7ZNHktOJjX2Kny5hR4=) 5: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: Gj/dQfmDGUWDK4XHV01NkbElb3DXkLPBPWk0YD6hwjM=) 6: 7523EB28671811F0B26A8C1AC4F9AE02.roa (hash: ppGKOWraeOF8KBxlm/qgPAfA6uqwS+C7Tk6GCScwyjk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11033 (0x2b19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Sep 4 15:39:58 2025 GMT Not After : Sep 11 15:39:58 2025 GMT Subject: CN=68b9b2ce-4c5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:04:5c:9f:66:6c:66:62:14:11:8b:12:a3:0a: 54:ab:56:85:73:3a:97:47:8d:ac:d0:32:71:40:f1: aa:90:2f:10:14:35:8f:ee:7a:ce:8a:31:76:82:49: 1a:f9:7c:db:21:89:e1:37:3a:cd:fa:c5:fe:6a:d2: 96:e9:6e:29:84:63:5d:a2:b7:4e:01:e1:48:0d:f7: c5:44:34:99:e1:e7:35:ef:e5:37:f5:98:79:23:af: cd:da:08:de:15:45:db:32:ca:97:c1:85:3f:aa:09: 92:49:c5:fa:7e:16:6f:6d:40:ed:f1:5f:68:7d:60: 6c:f9:33:30:c5:e1:a9:f2:ae:a8:b3:e6:aa:f3:a4: ad:0e:1a:ea:c9:8f:14:16:13:2c:ea:e5:a0:ca:1d: d1:6c:40:5b:b8:3d:a5:54:01:66:a9:81:e5:cb:58: c2:40:4d:42:6f:ad:97:10:83:4f:f5:3d:5d:c0:df: 3a:0f:1b:af:fa:68:b8:79:ec:0e:4f:d0:7f:7d:15: d0:00:30:a4:54:5b:6b:46:20:77:eb:aa:7b:f0:db: 08:ee:b2:6d:20:ca:91:0f:bf:bf:5c:9c:b7:75:43: d5:99:a6:1c:d0:11:26:20:c5:57:b1:8e:c1:90:69: 71:dc:25:ca:d6:4a:f4:37:d1:82:9e:fc:ba:42:e6: df:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:4E:2D:E3:A2:20:CB:63:6D:3A:5B:27:1D:9B:71:7D:C2:B5:F7:B1 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f3:d3:67:b1:43:e8:80:a3:51:10:3c:3c:fe:5b:b8:f0:83: c6:fc:ca:0c:81:6a:d7:d5:88:f2:ef:c7:45:ca:a1:16:18:27: a6:b2:41:01:15:55:0c:14:c9:c4:e0:d7:ed:cf:63:f6:64:bc: b2:53:cf:a8:5f:2d:f8:b7:f5:5b:16:2d:3a:da:73:6c:7f:87: d9:dd:99:fa:9e:0d:98:61:da:5a:d3:f0:fd:3e:59:21:cb:34: 72:fa:3e:2a:2c:5d:eb:5d:5b:a5:08:f2:5f:60:91:0c:cb:21: a4:0d:f5:80:06:ff:3f:9b:c8:bd:44:90:a2:e2:b3:a0:f1:7a: 6c:c3:ee:4a:0e:d3:5c:3d:b3:fa:80:ad:f3:fb:46:b7:d4:f4: f5:0a:c1:75:ac:ba:53:52:a2:f9:35:15:71:1b:09:8e:aa:53: 61:ba:8f:e7:a0:f1:c5:18:ff:d6:d0:f9:ca:a6:68:90:5b:08: ec:3c:8f:b0:cd:36:78:ed:72:ff:87:55:91:ab:92:2a:99:9e: 84:86:3f:72:0c:6f:81:cf:5d:f2:44:18:2e:4e:35:c4:f9:17: 06:c2:4b:af:d9:cb:96:5a:f2:58:1b:bc:47:5f:71:3e:8a:14: 55:f6:3a:d0:e7:b9:24:6f:d6:c2:6e:87:28:22:02:0a:91:43: cf:85:b1:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUwOTA0MTUzOTU4WhcNMjUwOTExMTUzOTU4WjAYMRYwFAYD VQQDEw02OGI5YjJjZS00YzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgRcn2ZsZmIUEYsSowpUq1aFczqXR42s0DJxQPGqkC8QFDWP7nrOijF2gkka +XzbIYnhNzrN+sX+atKW6W4phGNdordOAeFIDffFRDSZ4ec17+U39Zh5I6/N2gje FUXbMsqXwYU/qgmSScX6fhZvbUDt8V9ofWBs+TMwxeGp8q6os+aq86StDhrqyY8U FhMs6uWgyh3RbEBbuD2lVAFmqYHly1jCQE1Cb62XEINP9T1dwN86Dxuv+mi4eewO T9B/fRXQADCkVFtrRiB366p78NsI7rJtIMqRD7+/XJy3dUPVmaYc0BEmIMVXsY7B kGlx3CXK1kr0N9GCnvy6QubfCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFOLeOi IMtjbTpbJx2bcX3CtfexMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA789NnsUPogKNREDw8/lu48IPG/MoMgWrX1Yjy78dFyqEWGCemskEB FVUMFMnE4Nftz2P2ZLyyU8+oXy34t/VbFi062nNsf4fZ3Zn6ng2YYdpa0/D9Plkh yzRy+j4qLF3rXVulCPJfYJEMyyGkDfWABv8/m8i9RJCi4rOg8Xpsw+5KDtNcPbP6 gK3z+0a31PT1CsF1rLpTUqL5NRVxGwmOqlNhuo/noPHFGP/W0PnKpmiQWwjsPI+w zTZ47XL/h1WRq5IqmZ6Ehj9yDG+Bz13yRBguTjXE+RcGwkuv2cuWWvJYG7xHX3E+ ihRV9jrQ57kkb9bCbocoIgIKkUPPhbH8 -----END CERTIFICATE-----Generated at Sat Sep 6 11:49:06 2025 by rpki-client