$ rpki-client -vvf rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft File: rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft (raw, json) Hash identifier: CNXOjTimTJwMU4KqisnCazb/DHLYf6WOEzTsw0rd8NY= Subject key identifier: 07:E6:97:38:BE:98:9B:EB:94:F4:23:A3:39:E7:D2:CF:E6:35:85:22 Authority key identifier: AD:DE:E9:09:A3:16:76:21:55:3F:D4:4E:02:24:D3:8A:06:78:79:87 Certificate issuer: /CN=A91878B2/serialNumber=ADDEE909A3167621553FD44E0224D38A06787987 Certificate serial: 06AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft Manifest number: 06A4 Signing time: Thu 18 Sep 2025 22:29:37 +0000 Manifest this update: Thu 18 Sep 2025 22:29:36 +0000 Manifest next update: Thu 25 Sep 2025 22:29:36 +0000 Files and hashes: 1: rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl (hash: 2HrkFhDcXT5023OmS3e9pejz0LZXUZwoYriwuHxpO7s=) 2: 47249F9E7D7D11EBA5FADA5FC4F9AE02.roa (hash: Ck9VYv/1rcTBtaX5FrHIAevWzTx3mNc72bWTwUqMdEA=) 3: 467830CE7D7D11EBA5FADA5FC4F9AE02.roa (hash: mTOOiMtwoSIKIvU9I/HZJyVIkpOV2ubS6z5GxznmdY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1710 (0x6ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91878B2, serialNumber=ADDEE909A3167621553FD44E0224D38A06787987 Validity Not Before: Sep 18 22:29:36 2025 GMT Not After : Sep 25 22:29:36 2025 GMT Subject: CN=68cc87d1-9fea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:89:93:89:9c:ed:48:92:16:27:40:46:4a:6d: 93:d9:7f:bb:16:88:50:2a:4d:ec:91:c1:26:3d:5b: d2:7b:9b:2d:ad:b4:21:b0:1f:8c:53:8a:a4:71:fb: 62:a5:1e:7b:6d:ef:70:42:11:2b:36:47:fe:78:32: b1:97:ec:17:c1:e5:bf:8b:a2:df:aa:a1:e3:27:d4: 98:ca:8c:9d:88:00:79:19:65:90:dd:aa:d0:36:3a: 8d:49:b5:29:18:1c:95:b5:88:4a:78:5d:c1:b3:36: ba:44:c2:28:27:d1:30:19:fa:cb:47:cb:63:a3:60: f2:54:ed:58:c0:17:b1:80:62:49:46:6c:b9:5c:8a: 46:b7:81:ad:0e:ba:4f:1b:2f:34:10:88:4e:ed:89: c4:6d:52:1e:1b:83:34:d7:f6:50:bc:dd:7e:f1:59: 10:ab:fb:28:89:b1:f5:d6:97:74:ef:8f:f4:24:94: 0e:bc:4d:d7:32:be:ae:2f:89:ac:44:40:c4:8b:99: dd:9d:64:65:c1:30:4d:52:29:74:e0:39:b4:2e:52: 68:ba:59:d0:59:b3:8a:85:b8:50:37:2c:52:92:f1: bd:0a:aa:6a:56:cb:56:e9:ab:d4:28:02:27:19:d3: ef:3e:f6:21:f3:3c:a5:3b:3e:2d:4a:62:88:27:b0: 6c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E6:97:38:BE:98:9B:EB:94:F4:23:A3:39:E7:D2:CF:E6:35:85:22 X509v3 Authority Key Identifier: keyid:AD:DE:E9:09:A3:16:76:21:55:3F:D4:4E:02:24:D3:8A:06:78:79:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:05:5e:f7:72:6b:40:d5:0b:b3:52:46:53:48:83:8d:6f:da: 53:27:85:f1:68:b2:81:90:c0:c1:6f:a6:65:88:4c:68:a5:d8: 39:b3:e2:27:3a:60:c8:73:24:f0:59:da:13:11:9a:fa:ee:18: b2:16:8f:97:83:bd:91:1c:dc:70:f3:b0:4a:9c:3f:b7:72:32: a2:7b:80:e3:64:ea:a5:36:af:30:41:6f:60:fc:32:a8:cb:67: 60:dc:ad:51:67:41:06:4e:c2:11:db:61:88:3d:a0:a1:e6:7b: e7:2a:5d:c6:8d:4d:2a:51:64:20:1b:9b:8b:3e:48:53:82:d7: a1:90:27:6c:13:b1:4c:98:13:a0:9d:3d:71:64:cc:dd:14:3b: 01:07:2a:d1:45:a1:39:35:36:33:3d:44:20:4a:20:72:30:6d: 5d:bc:c8:e3:a5:7b:d6:32:c3:59:12:6a:5d:91:6f:ce:0f:a7: 30:22:c3:6a:c2:a5:93:7d:1e:47:e5:66:a2:a2:d5:a6:cd:1a: 95:fe:28:4f:2b:9c:5b:55:18:ef:5d:e6:ae:6a:37:2a:52:a9: 4d:e1:8a:a4:b3:50:f9:43:60:ae:70:45:7a:6e:9c:31:05:cf: f3:60:ed:35:84:5e:81:26:df:00:ce:39:a5:8d:b6:82:2d:5b: 55:01:ab:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc4QjIxMTAvBgNVBAUTKEFEREVFOTA5QTMxNjc2MjE1NTNGRDQ0RTAyMjREMzhB MDY3ODc5ODcwHhcNMjUwOTE4MjIyOTM2WhcNMjUwOTI1MjIyOTM2WjAYMRYwFAYD VQQDEw02OGNjODdkMS05ZmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14mTiZztSJIWJ0BGSm2T2X+7FohQKk3skcEmPVvSe5strbQhsB+MU4qkcfti pR57be9wQhErNkf+eDKxl+wXweW/i6LfqqHjJ9SYyoydiAB5GWWQ3arQNjqNSbUp GByVtYhKeF3Bsza6RMIoJ9EwGfrLR8tjo2DyVO1YwBexgGJJRmy5XIpGt4GtDrpP Gy80EIhO7YnEbVIeG4M01/ZQvN1+8VkQq/soibH11pd074/0JJQOvE3XMr6uL4ms REDEi5ndnWRlwTBNUil04Dm0LlJoulnQWbOKhbhQNyxSkvG9CqpqVstW6avUKAIn GdPvPvYh8zylOz4tSmKIJ7BsSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfmlzi+ mJvrlPQjoznn0s/mNYUiMB8GA1UdIwQYMBaAFK3e6QmjFnYhVT/UTgIk04oGeHmH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzhCMi83MzlCQkE1QTdE N0IxMUVCQTYyMjI3NUJDNEY5QUUwMi9yZDdwQ2FNV2RpRlZQOVJPQWlUVGlnWjRl WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkN3BDYU1XZGlGVlA5Uk9BaVRUaWdaNGVZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzhCMi83MzlCQkE1QTdEN0IxMUVCQTYyMjI3NUJDNEY5QUUwMi9yZDdwQ2FNV2Rp RlZQOVJPQWlUVGlnWjRlWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0BV73cmtA1QuzUkZTSIONb9pTJ4XxaLKBkMDBb6ZliExopdg5s+In OmDIcyTwWdoTEZr67hiyFo+Xg72RHNxw87BKnD+3cjKie4DjZOqlNq8wQW9g/DKo y2dg3K1RZ0EGTsIR22GIPaCh5nvnKl3GjU0qUWQgG5uLPkhTgtehkCdsE7FMmBOg nT1xZMzdFDsBByrRRaE5NTYzPUQgSiByMG1dvMjjpXvWMsNZEmpdkW/OD6cwIsNq wqWTfR5H5WaiotWmzRqV/ihPK5xbVRjvXeauajcqUqlN4Yqks1D5Q2CucEV6bpwx Bc/zYO01hF6BJt8AzjmljbaCLVtVAaui -----END CERTIFICATE-----Generated at Fri Sep 19 08:48:33 2025 by rpki-client