$ rpki-client -vvf rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft File: 7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft (raw, json) Hash identifier: +wuQtcI+soKtrSjUSgOtadVVsfOGjVQa5J2MK01zCiw= Subject key identifier: 53:EC:AA:BE:71:51:94:50:47:0A:02:8E:07:C9:91:37:E8:4A:69:2A Authority key identifier: EC:3B:90:C3:48:86:FD:09:28:E3:12:54:61:FB:B4:15:2B:E9:91:37 Certificate issuer: /CN=A918D7D0/serialNumber=EC3B90C34886FD0928E3125461FBB4152BE99137 Certificate serial: 0C7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft Manifest number: 149E Signing time: Wed 20 Aug 2025 18:22:18 +0000 Manifest this update: Wed 20 Aug 2025 18:22:17 +0000 Manifest next update: Wed 27 Aug 2025 18:22:17 +0000 Files and hashes: 1: 7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl (hash: xR8hbxTm/pugCQXbYobbzNU0tlOBMCxZIVvHA7AgNFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 18:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3198 (0xc7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D7D0, serialNumber=EC3B90C34886FD0928E3125461FBB4152BE99137 Validity Not Before: Aug 20 18:22:17 2025 GMT Not After : Aug 27 18:22:17 2025 GMT Subject: CN=68a61259-1de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ee:0c:0d:4a:ca:e4:14:32:ff:9a:ac:f5:93: 58:3c:f7:97:79:79:89:48:22:b7:29:a1:7b:ff:4d: 5a:d9:13:75:89:ed:93:ea:8c:bf:9c:74:f1:a5:59: ce:3d:cd:83:38:87:d3:57:cc:ca:95:cc:70:20:d7: 59:27:93:c7:a6:d1:c1:4a:6d:51:0d:06:82:19:10: b6:b7:2b:06:6e:54:5d:be:37:9e:f1:0e:d7:0e:11: 1c:2f:77:f8:bd:20:99:d4:34:53:f5:ea:22:38:dc: 5f:f3:60:de:fa:26:6d:00:21:27:29:ca:77:f3:74: 4f:80:92:95:af:4b:7a:af:ee:21:13:f5:e7:e2:c9: 79:fb:bb:ba:87:ae:ba:0f:43:23:07:71:18:c7:6d: e0:51:77:9b:d8:79:b2:13:4e:4e:1f:2f:6f:bb:6b: 71:1d:b9:77:bd:92:f8:94:3a:4e:40:48:de:9c:0f: fa:99:c0:87:34:e0:d6:68:30:5a:a7:3b:88:d2:b6: 25:bf:2e:b6:e8:09:48:09:d8:9c:2c:84:4d:c4:ec: 16:bb:5d:43:b9:64:ab:be:9b:aa:72:62:11:00:c6: b6:16:3b:f6:bf:3d:af:3b:8c:5d:92:27:c8:1e:d2: 7a:bf:23:94:98:8f:2e:9a:45:dd:41:3f:b0:a6:45: 59:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:EC:AA:BE:71:51:94:50:47:0A:02:8E:07:C9:91:37:E8:4A:69:2A X509v3 Authority Key Identifier: keyid:EC:3B:90:C3:48:86:FD:09:28:E3:12:54:61:FB:B4:15:2B:E9:91:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ba:17:2a:69:78:ff:08:da:16:22:5b:15:f9:4b:1a:8c:97: 92:26:7a:61:53:2d:81:e7:f5:19:eb:91:3d:b6:5c:7a:d6:cd: 27:d5:71:af:3c:61:13:80:d3:ad:9f:27:3b:9e:2e:7a:d5:d7: d8:34:fd:3f:3c:c1:cf:24:b0:1e:95:0f:e7:4f:53:25:29:8d: bd:b4:55:e4:6b:52:3c:06:23:43:08:6e:93:e0:5d:d8:9e:67: 31:07:95:0e:fe:6b:58:99:1b:d1:92:f7:52:b0:6f:4c:93:84: 8a:0e:90:10:53:fc:96:e4:99:47:f7:42:dd:4a:1c:91:d5:c3: 39:c9:be:38:a0:04:7f:49:80:31:a9:aa:09:3a:a9:82:8e:ab: c8:0f:05:7f:fe:99:ca:37:c5:b3:67:c7:a8:b3:84:e3:d7:17: c6:3e:4c:4c:3a:f6:53:09:d9:12:ea:81:91:af:59:2d:57:53: dc:6d:a8:c6:5b:aa:0c:fb:17:b6:30:bd:a0:9a:54:3a:a8:73: 01:4c:3d:a0:a3:69:1a:48:70:38:12:3b:f5:6b:55:24:32:0b: 94:26:81:06:7d:4f:8b:85:13:92:70:a1:fc:02:4d:9b:ac:f7: 30:ff:29:18:49:47:08:ab:eb:c0:4f:00:11:b6:9c:bd:37:07: 5d:3e:8a:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3RDAxMTAvBgNVBAUTKEVDM0I5MEMzNDg4NkZEMDkyOEUzMTI1NDYxRkJCNDE1 MkJFOTkxMzcwHhcNMjUwODIwMTgyMjE3WhcNMjUwODI3MTgyMjE3WjAYMRYwFAYD VQQDEw02OGE2MTI1OS0xZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsO4MDUrK5BQy/5qs9ZNYPPeXeXmJSCK3KaF7/01a2RN1ie2T6oy/nHTxpVnO Pc2DOIfTV8zKlcxwINdZJ5PHptHBSm1RDQaCGRC2tysGblRdvjee8Q7XDhEcL3f4 vSCZ1DRT9eoiONxf82De+iZtACEnKcp383RPgJKVr0t6r+4hE/Xn4sl5+7u6h666 D0MjB3EYx23gUXeb2HmyE05OHy9vu2txHbl3vZL4lDpOQEjenA/6mcCHNODWaDBa pzuI0rYlvy626AlICdicLIRNxOwWu11DuWSrvpuqcmIRAMa2Fjv2vz2vO4xdkifI HtJ6vyOUmI8umkXdQT+wpkVZzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPsqr5x UZRQRwoCjgfJkTfoSmkqMB8GA1UdIwQYMBaAFOw7kMNIhv0JKOMSVGH7tBUr6ZE3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDdEMC85ODJCMkQ1QTAw ODIxMUVBQjcxRjRBMkJDNEY5QUUwMi83RHVRdzBpR19Ra280eEpVWWZ1MEZTdnBr VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEdVF3MGlHX1FrbzR4SlVZZnUwRlN2cGtUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDdEMC85ODJCMkQ1QTAwODIxMUVBQjcxRjRBMkJDNEY5QUUwMi83RHVRdzBpR19R a280eEpVWWZ1MEZTdnBrVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCauhcqaXj/CNoWIlsV+UsajJeSJnphUy2B5/UZ65E9tlx61s0n1XGv PGETgNOtnyc7ni561dfYNP0/PMHPJLAelQ/nT1MlKY29tFXka1I8BiNDCG6T4F3Y nmcxB5UO/mtYmRvRkvdSsG9Mk4SKDpAQU/yW5JlH90LdShyR1cM5yb44oAR/SYAx qaoJOqmCjqvIDwV//pnKN8WzZ8eos4Tj1xfGPkxMOvZTCdkS6oGRr1ktV1PcbajG W6oM+xe2ML2gmlQ6qHMBTD2go2kaSHA4Ejv1a1UkMguUJoEGfU+LhROScKH8Ak2b rPcw/ykYSUcIq+vATwARtpy9NwddPorK -----END CERTIFICATE-----Generated at Fri Aug 22 16:25:12 2025 by rpki-client