$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft File: 7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft (raw, json) Hash identifier: aZ1/hA/sBa+A6hQeJpOWsocgUa1YknpArikoz/osh8A= Subject key identifier: A0:74:42:06:82:59:B8:28:3E:50:C3:2F:31:A9:E3:4A:12:B6:D7:14 Authority key identifier: EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6 Certificate issuer: /CN=A91982B6/serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft Manifest number: 65 Signing time: Mon 21 Jul 2025 07:10:25 +0000 Manifest this update: Mon 21 Jul 2025 07:10:24 +0000 Manifest next update: Mon 28 Jul 2025 07:10:24 +0000 Files and hashes: 1: 7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl (hash: gAxU4kfpV49b0JA1aQxDe31UpMqnusBzDYoNSTe++98=) 2: 739C8BDECB5A11EFBEE64062C4F9AE02.roa (hash: WVqv1JuSt8hSNNolUiV5z8//m1vJSnq0q+Q8Ooe/S0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:10:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6 Validity Not Before: Jul 21 07:10:24 2025 GMT Not After : Jul 28 07:10:24 2025 GMT Subject: CN=687de7e0-aa64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e7:5d:86:e2:59:56:5a:86:1f:be:f9:14:bb: df:1f:e3:c7:54:ae:dc:e5:b8:22:88:d4:66:06:7d: 04:e7:06:a4:eb:04:b3:7d:dc:96:c6:a6:76:3b:69: 28:b1:65:e8:2d:06:e1:a8:93:f2:64:45:43:ab:90: 86:d8:cd:0e:c6:c4:56:9e:20:26:52:f5:01:6d:ae: 3a:03:da:c6:6b:be:a6:df:a4:68:b0:84:37:fc:4b: 04:18:d3:ac:48:d6:48:e0:f5:f7:1b:0b:e4:99:38: d3:b3:a2:fd:98:ae:08:f0:31:c7:7f:ba:80:27:be: b0:0f:ef:c2:d9:fd:b2:79:9d:3e:4e:37:50:8a:23: d9:e1:3f:16:7f:bb:43:57:b8:42:98:e6:33:ef:56: 75:7d:57:ef:75:12:73:36:ea:a7:ca:a4:80:5c:f3: da:ff:b6:aa:db:cd:98:7e:13:da:d8:3c:03:8c:27: ba:6e:81:6f:b1:ca:f8:c1:61:80:d3:ac:66:f4:2b: ae:b2:6d:78:b4:0b:c9:32:e5:a3:da:38:3a:ee:89: 33:4a:70:5a:c6:57:aa:44:94:5f:4c:2b:25:cb:ad: 02:db:c7:9a:59:7a:4a:25:dc:0b:fb:b1:53:09:82: b8:d2:98:92:a1:2b:82:bd:d7:26:68:1c:e9:10:82: 1c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:74:42:06:82:59:B8:28:3E:50:C3:2F:31:A9:E3:4A:12:B6:D7:14 X509v3 Authority Key Identifier: keyid:EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:a7:14:78:d7:2e:78:0a:47:a1:81:ff:64:a8:8f:d1:fd:98: 2f:ca:58:0d:f1:7c:76:87:30:ce:04:e4:db:cc:66:af:f8:89: dc:5a:d9:54:8f:12:d9:cb:3a:d6:64:36:e2:24:67:47:63:57: d0:9e:a4:14:7b:32:35:48:2d:50:79:0c:ac:d9:bc:fb:e8:dc: 91:6f:ec:cc:d7:89:5c:00:b9:3f:ec:ae:5b:ef:d4:1f:b9:c3: 29:80:25:f7:21:ec:d5:2d:1a:a1:4a:dc:e6:d0:54:92:fe:ff: 6b:6c:82:24:59:2f:bd:32:fa:a0:4b:4d:2b:e5:d8:81:bd:bf: fd:f2:bb:5f:de:c3:a3:fb:70:ac:f8:85:40:68:e3:3c:b8:d8: 68:db:68:0a:76:17:b1:e5:79:3a:c9:6b:08:29:80:05:71:45: 16:25:7b:a8:01:85:c8:f5:f9:bf:fb:23:36:d6:f6:20:6d:2f: 75:18:a5:7c:ff:93:25:6f:b9:60:c1:32:ec:ad:7e:ae:33:d3: 6a:b1:25:2f:98:75:8e:d0:67:e5:e5:eb:f7:2b:5c:65:3c:8a: 22:8b:f7:f3:9d:03:da:3e:3b:97:e7:e0:fc:a8:bc:d6:04:bb: 65:aa:d2:5e:58:96:88:1a:d7:a2:60:7b:08:8f:dd:ea:3d:c3: 84:98:92:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJCNjExMC8GA1UEBRMoRUM2NzkxNjkxNzdCOUUxMzFEMERBQTAxMzk4RDcwMDM5 ODI3RDFGNjAeFw0yNTA3MjEwNzEwMjRaFw0yNTA3MjgwNzEwMjRaMBgxFjAUBgNV BAMTDTY4N2RlN2UwLWFhNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz512G4llWWoYfvvkUu98f48dUrtzluCKI1GYGfQTnBqTrBLN93JbGpnY7aSix ZegtBuGok/JkRUOrkIbYzQ7GxFaeICZS9QFtrjoD2sZrvqbfpGiwhDf8SwQY06xI 1kjg9fcbC+SZONOzov2YrgjwMcd/uoAnvrAP78LZ/bJ5nT5ON1CKI9nhPxZ/u0NX uEKY5jPvVnV9V+91EnM26qfKpIBc89r/tqrbzZh+E9rYPAOMJ7pugW+xyvjBYYDT rGb0K66ybXi0C8ky5aPaODruiTNKcFrGV6pElF9MKyXLrQLbx5pZekol3Av7sVMJ grjSmJKhK4K91yZoHOkQghyfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoHRCBoJZ uCg+UMMvManjShK21xQwHwYDVR0jBBgwFoAU7GeRaRd7nhMdDaoBOY1wA5gn0fYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkI2L0U2NEIwM0I0Q0I1 OTExRUY4NjkxNUI2MUM0RjlBRTAyLzdHZVJhUmQ3bmhNZERhb0JPWTF3QTVnbjBm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0dlUmFSZDduaE1kRGFvQk9ZMXdBNWduMGZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 MkI2L0U2NEIwM0I0Q0I1OTExRUY4NjkxNUI2MUM0RjlBRTAyLzdHZVJhUmQ3bmhN ZERhb0JPWTF3QTVnbjBmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALqnFHjXLngKR6GB/2Soj9H9mC/KWA3xfHaHMM4E5NvMZq/4idxa2VSP EtnLOtZkNuIkZ0djV9CepBR7MjVILVB5DKzZvPvo3JFv7MzXiVwAuT/srlvv1B+5 wymAJfch7NUtGqFK3ObQVJL+/2tsgiRZL70y+qBLTSvl2IG9v/3yu1/ew6P7cKz4 hUBo4zy42GjbaAp2F7HleTrJawgpgAVxRRYle6gBhcj1+b/7IzbW9iBtL3UYpXz/ kyVvuWDBMuytfq4z02qxJS+YdY7QZ+Xl6/crXGU8iiKL9/OdA9o+O5fn4PyovNYE u2Wq0l5Yloga16JgewiP3eo9w4SYkq0= -----END CERTIFICATE-----Generated at Wed Jul 23 04:20:22 2025 by rpki-client