$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: hN88tGOt9WlcE8wgdITSMpHY8F0kdTh6E/q5sAKliws= Subject key identifier: F0:FE:48:FD:6C:14:4F:81:A7:AA:15:BA:63:60:E2:CC:35:83:AC:02 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2AEA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2AC6 Signing time: Sun 20 Jul 2025 15:36:11 +0000 Manifest this update: Sun 20 Jul 2025 15:36:10 +0000 Manifest next update: Sun 27 Jul 2025 15:36:10 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: yNKRKSUdpN4rxVTo5jLRzh6oVxQf9AFBGiwBLFlKVUo=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: h6LaGc6kyZukCUqqYzIxqwzDNG7IrAkyoRHl1/dzGpU=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: fvGOEcDamDrvii5lTVdwqyxJJEnDbSq0cSF/6Idf/Qk=) 4: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: FFTz06zJWJ6iZpeQ1wgw2MSgfSJo5OaRNASidfTNms8=) 5: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: tuJy1jz8I76zoSkWOckZshXRuwxgYv1SGerZsew2KCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10986 (0x2aea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Jul 20 15:36:10 2025 GMT Not After : Jul 27 15:36:10 2025 GMT Subject: CN=687d0ceb-139d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2c:d2:36:46:53:7c:32:91:6b:78:73:e3:90: 5e:03:9d:1c:55:66:7b:0e:a6:8a:d0:5c:24:33:a0: 62:a5:0f:02:71:d9:e8:72:45:cf:14:63:16:fb:cb: 02:0d:08:03:c7:d2:82:12:fb:56:e3:22:f9:a1:64: cf:24:67:c4:6d:93:13:be:88:12:66:9d:84:3c:55: 88:21:7a:b5:09:8c:c3:5c:84:c3:ba:2d:6d:9c:85: 99:5b:8a:0b:2a:35:ce:b6:5c:9c:30:45:9f:32:1b: f5:95:69:e4:0e:be:e8:7f:35:0a:c7:9f:80:97:77: 8b:94:75:f2:db:7d:95:41:4d:98:42:03:ca:b4:31: 3c:af:d4:a8:e5:5b:e6:a2:bb:12:65:bc:e2:ff:9c: d3:9c:44:9a:9b:d1:7a:7f:82:9e:ec:aa:80:bc:aa: eb:94:9a:22:af:bc:5f:20:35:e2:0a:71:7a:a7:06: f9:31:9e:57:c4:f7:65:54:6f:11:4e:e2:8e:b1:5b: da:02:fd:65:c8:26:66:8d:68:78:0a:47:ed:fd:96: 88:94:7f:49:69:26:69:08:ff:dc:b2:a9:58:33:d7: 8a:52:45:1f:b8:9d:32:f9:5c:8f:9b:39:ec:2a:6e: c7:ac:71:ae:20:20:7d:3c:ec:ce:ca:ec:4b:b3:9e: ef:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:FE:48:FD:6C:14:4F:81:A7:AA:15:BA:63:60:E2:CC:35:83:AC:02 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:52:c3:84:49:28:05:56:cd:bd:ff:fa:9d:a9:a2:4a:ec:91: 38:18:5c:ab:12:4e:ec:58:82:4a:f6:72:bf:c0:2a:e8:82:0f: c8:46:43:a1:44:e6:a3:59:c3:e6:07:dd:43:5c:e3:56:aa:f0: 64:b6:f6:80:1f:e0:c9:68:a1:3f:bf:73:e2:62:6e:3a:3b:97: c8:d6:f1:b4:34:2c:47:eb:fa:38:58:99:01:84:5a:01:e6:14: 60:df:e2:c7:17:c9:76:28:98:44:8b:21:b2:10:d9:29:0d:7e: 94:df:6c:47:48:8d:5c:15:90:2c:c1:63:0a:05:aa:61:60:fa: be:65:7f:bb:84:5e:b6:78:dd:da:e2:ce:18:bc:75:b1:f4:df: 1b:51:27:0c:f8:05:f7:50:02:7e:aa:b4:5d:6e:c6:ab:66:64: a9:09:4c:65:e1:57:9f:80:f1:32:e1:6b:11:14:23:48:c5:89: 99:df:ad:8e:fa:8e:38:4a:89:d4:d7:82:f2:7c:71:40:f3:0e: 93:84:cf:48:52:27:87:3f:0e:db:32:35:e4:51:61:85:ce:1f: 24:6c:34:2d:ec:76:d8:af:15:0c:81:db:67:f5:65:e8:22:20: 24:17:2b:ba:32:c0:e5:e1:b7:e9:08:3a:8f:9f:39:d8:f1:77: ba:b7:47:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUwNzIwMTUzNjEwWhcNMjUwNzI3MTUzNjEwWjAYMRYwFAYD VQQDEw02ODdkMGNlYi0xMzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyzSNkZTfDKRa3hz45BeA50cVWZ7DqaK0FwkM6BipQ8CcdnockXPFGMW+8sC DQgDx9KCEvtW4yL5oWTPJGfEbZMTvogSZp2EPFWIIXq1CYzDXITDui1tnIWZW4oL KjXOtlycMEWfMhv1lWnkDr7ofzUKx5+Al3eLlHXy232VQU2YQgPKtDE8r9So5Vvm orsSZbzi/5zTnESam9F6f4Ke7KqAvKrrlJoir7xfIDXiCnF6pwb5MZ5XxPdlVG8R TuKOsVvaAv1lyCZmjWh4Ckft/ZaIlH9JaSZpCP/csqlYM9eKUkUfuJ0y+VyPmzns Km7HrHGuICB9POzOyuxLs57vbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPD+SP1s FE+Bp6oVumNg4sw1g6wCMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGUsOESSgFVs29//qdqaJK7JE4GFyrEk7sWIJK9nK/wCrogg/IRkOh ROajWcPmB91DXONWqvBktvaAH+DJaKE/v3PiYm46O5fI1vG0NCxH6/o4WJkBhFoB 5hRg3+LHF8l2KJhEiyGyENkpDX6U32xHSI1cFZAswWMKBaphYPq+ZX+7hF62eN3a 4s4YvHWx9N8bUScM+AX3UAJ+qrRdbsarZmSpCUxl4VefgPEy4WsRFCNIxYmZ362O +o44SonU14LyfHFA8w6ThM9IUieHPw7bMjXkUWGFzh8kbDQt7HbYrxUMgdtn9WXo IiAkFyu6MsDl4bfpCDqPnznY8Xe6t0cV -----END CERTIFICATE-----Generated at Sun Jul 20 18:39:04 2025 by rpki-client