$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: KoBQOJ4D2q1VRnoYYUUKWHSUhy4Ftmqq9NOU8EN3KMg= Subject key identifier: 8E:56:A7:A7:ED:CF:65:6A:A2:01:92:9C:D4:0E:01:E1:D2:C3:2D:DF Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 34BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 402F Signing time: Thu 18 Sep 2025 14:51:49 +0000 Manifest this update: Thu 18 Sep 2025 14:51:48 +0000 Manifest next update: Thu 25 Sep 2025 14:51:48 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: WXA3dT+Zs+uxqJePrie6F0JiIj/N8bj7Oh5JJzNcnyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:51:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13499 (0x34bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: Sep 18 14:51:48 2025 GMT Not After : Sep 25 14:51:48 2025 GMT Subject: CN=68cc1c84-2f71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:81:29:b9:53:23:d7:0b:50:db:f9:9f:d0:59: cd:b8:c3:67:ac:f5:17:57:35:e5:18:60:2e:58:97: 11:48:7b:b9:de:4b:37:59:0c:d0:fb:6b:4f:dd:77: bb:e2:1c:aa:53:95:b8:0d:97:fa:57:4e:a7:d3:fa: 0b:76:c8:43:b8:c9:3e:2e:ec:62:7b:73:5e:05:b4: 2b:b2:2a:96:83:3b:01:ad:1d:1e:ee:ef:44:fb:f7: 06:00:61:3c:92:fe:e2:be:70:35:c8:72:0b:85:80: 90:29:ff:e4:36:b1:c7:c5:c9:5d:8b:b4:55:87:9c: 01:16:d7:fa:89:b1:cc:47:73:46:3c:47:bd:3b:e2: e4:56:84:aa:e2:d3:f4:05:3e:fb:d4:77:f6:cd:70: 2a:44:96:f8:2e:65:4c:c0:c1:a7:84:77:d6:43:5b: c9:d8:60:88:35:9a:10:36:9d:89:02:99:37:8e:6f: 77:5c:c2:7d:3e:6d:97:0f:df:78:df:f9:64:68:a7: ba:d8:d2:c3:29:ae:ca:37:cb:88:ec:77:45:5a:e5: e8:c4:53:c1:47:15:dc:68:4e:f8:2b:14:fa:1c:c0: b6:e8:17:6b:a2:b5:13:00:fd:ce:19:4d:96:59:db: 6b:03:75:ee:57:68:73:14:a2:91:c3:0d:78:42:15: dc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:56:A7:A7:ED:CF:65:6A:A2:01:92:9C:D4:0E:01:E1:D2:C3:2D:DF X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:6d:de:06:c3:96:a1:b4:27:52:1d:81:57:4f:08:8a:23:6b: d4:f2:e2:c1:0a:aa:5c:ca:53:f9:07:ce:0d:3f:00:91:34:d0: 99:3e:9c:8d:84:15:4c:e2:9b:8b:87:06:4d:7c:ae:17:74:7a: 8f:ed:a1:26:91:21:3a:10:d1:fb:21:46:a3:bb:47:69:48:96: a2:e3:f8:02:f0:12:b3:9f:b6:c6:a3:ba:c9:12:e0:70:f6:43: 1d:f9:50:1a:9c:c0:9f:6b:37:86:17:c6:4c:a1:34:53:c8:3d: e5:27:7a:6d:bf:ea:f8:21:97:e3:e2:80:e6:0b:ff:88:96:59: 9e:af:55:81:4b:74:fc:64:ca:78:2b:90:03:dd:79:0d:79:4c: 49:d2:c9:fd:36:02:f3:c7:f8:05:40:5b:47:cd:df:7d:c5:b6: 5d:13:ad:31:ef:b2:74:79:97:b1:34:82:0c:d0:d0:c3:4f:ad: 33:0a:43:8e:68:80:fa:3a:e9:42:05:3e:77:2d:1e:64:cf:94: a2:2e:27:99:b9:6d:c5:3a:4b:11:02:2f:c7:8b:89:d8:1a:7b: 53:9e:ff:ad:b1:52:da:79:fb:4d:e5:12:f9:25:a8:86:62:b3: 86:9a:60:c9:c6:32:c7:04:af:e4:e4:2f:fa:e8:16:9e:18:2a: d5:f3:01:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjUwOTE4MTQ1MTQ4WhcNMjUwOTI1MTQ1MTQ4WjAYMRYwFAYD VQQDEw02OGNjMWM4NC0yZjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYEpuVMj1wtQ2/mf0FnNuMNnrPUXVzXlGGAuWJcRSHu53ks3WQzQ+2tP3Xe7 4hyqU5W4DZf6V06n0/oLdshDuMk+Luxie3NeBbQrsiqWgzsBrR0e7u9E+/cGAGE8 kv7ivnA1yHILhYCQKf/kNrHHxcldi7RVh5wBFtf6ibHMR3NGPEe9O+LkVoSq4tP0 BT771Hf2zXAqRJb4LmVMwMGnhHfWQ1vJ2GCINZoQNp2JApk3jm93XMJ9Pm2XD994 3/lkaKe62NLDKa7KN8uI7HdFWuXoxFPBRxXcaE74KxT6HMC26BdrorUTAP3OGU2W WdtrA3XuV2hzFKKRww14QhXclQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5Wp6ft z2VqogGSnNQOAeHSwy3fMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBubd4Gw5ahtCdSHYFXTwiKI2vU8uLBCqpcylP5B84NPwCRNNCZPpyN hBVM4puLhwZNfK4XdHqP7aEmkSE6ENH7IUaju0dpSJai4/gC8BKzn7bGo7rJEuBw 9kMd+VAanMCfazeGF8ZMoTRTyD3lJ3ptv+r4IZfj4oDmC/+Illmer1WBS3T8ZMp4 K5AD3XkNeUxJ0sn9NgLzx/gFQFtHzd99xbZdE60x77J0eZexNIIM0NDDT60zCkOO aID6OulCBT53LR5kz5SiLieZuW3FOksRAi/Hi4nYGntTnv+tsVLaeftN5RL5JaiG YrOGmmDJxjLHBK/k5C/66BaeGCrV8wHj -----END CERTIFICATE-----Generated at Thu Sep 18 21:43:12 2025 by rpki-client