$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: /soWC61ta8ZdW77xxx40TN2aCUE2KzFeo5kdz7hYMRk= Subject key identifier: 27:9C:AC:D6:F4:C6:EC:3A:F2:F3:E8:C7:F4:7D:62:50:E6:D6:14:10 Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 0122 Signing time: Fri 05 Sep 2025 05:09:43 +0000 Manifest this update: Fri 05 Sep 2025 05:09:43 +0000 Manifest next update: Fri 12 Sep 2025 05:09:43 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: YIgvV5/YkJlvZyLytNElR/GPL1r8m/+AQxKRnfOiSqA=) 2: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: g8goRa5uN0098PK1vnqVTndrxAdY1S5JKnq752ZsLOQ=) 3: C63D0814097B11F0B1329480C4F9AE02.roa (hash: BxZpcifR3l7qhnt+56VpPmZ3hTQmgPYYxX/h3b9rorE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: Sep 5 05:09:43 2025 GMT Not After : Sep 12 05:09:43 2025 GMT Subject: CN=68ba7097-8ea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:93:7c:87:42:b9:4d:fc:d3:01:e0:39:73:ed: 72:47:71:1c:9c:8d:20:43:72:8c:87:af:fe:04:64: 03:b1:d6:14:da:7b:ff:fe:d4:fe:3c:27:06:be:56: 80:af:49:17:50:68:43:4f:63:eb:d6:c4:7a:45:2e: bd:a5:ba:1c:f6:1c:18:48:3e:30:c9:0c:e7:08:0a: d3:78:c1:f1:74:36:7f:e9:1f:b7:1f:26:01:d4:51: 62:44:d3:54:91:b5:cb:87:a0:dd:11:9f:71:55:54: ca:57:57:3d:48:4a:8f:4e:e8:db:c6:57:96:30:1b: 58:e3:58:ac:34:39:8f:e3:6d:e7:ee:5f:6a:7c:6a: 09:02:16:7e:29:cb:e6:ff:2d:47:55:67:74:09:0d: 2f:8a:bf:54:5d:06:5c:81:76:98:f6:81:f5:4a:0f: bb:05:9c:c1:d8:5c:53:57:40:4f:cf:f5:5c:a5:34: e2:13:5c:1e:f1:2a:b4:26:93:d6:3b:9f:45:c8:0b: ac:60:c9:0b:f7:4a:f4:da:e2:88:e0:14:b2:8e:09: ea:e3:f8:e1:3d:e6:9d:58:3b:bd:e9:ca:28:c8:fb: 0a:69:9f:f9:e1:08:8d:0c:94:c5:26:69:3e:ad:0f: b2:77:35:e9:ca:7d:c6:b8:83:73:16:04:08:81:63: c1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:9C:AC:D6:F4:C6:EC:3A:F2:F3:E8:C7:F4:7D:62:50:E6:D6:14:10 X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:fb:3d:38:c2:87:ff:91:64:0e:f8:f2:52:2e:c6:3d:c0:d0: d6:a7:bc:7c:6f:e3:1f:6b:51:bc:15:e2:e6:3c:e8:3a:8d:75: 3d:6d:49:16:23:eb:43:94:2f:c2:a3:58:18:62:08:58:cb:cf: ad:e5:64:b9:a4:1c:45:f0:af:53:ca:32:8a:90:4d:0a:03:64: 77:ee:5e:77:ef:c3:d8:ee:68:7b:0f:37:ee:c3:4a:48:49:d7: 49:76:6b:01:e8:39:ed:0f:53:cd:93:81:47:f7:56:09:04:62: 30:ca:87:8d:62:1e:dd:38:88:ce:60:3f:bf:16:0b:2d:f2:d4: 44:d8:48:33:94:98:2a:1b:e0:0a:91:2f:ca:0b:5e:aa:7d:61: c1:0f:a0:d2:a9:12:ce:30:59:19:fa:ee:02:65:22:4a:da:fb: da:a3:bf:06:e1:bd:93:05:58:f4:32:13:c4:1f:e3:47:e1:68: 46:9d:f3:40:78:ad:f4:bf:93:93:9d:0f:64:cb:91:e4:5d:f5: 5b:42:51:49:b3:7c:6b:24:54:66:5a:b9:c2:f7:d6:0d:da:8a: 38:1e:c1:ad:8a:b0:88:82:6d:33:d5:fc:0b:4a:60:cc:e4:f8: 89:78:e7:e2:87:ad:11:cb:e2:70:c8:30:5f:ec:aa:85:89:57: 4d:b5:3a:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjUwOTA1MDUwOTQzWhcNMjUwOTEyMDUwOTQzWjAYMRYwFAYD VQQDEw02OGJhNzA5Ny04ZWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5N8h0K5TfzTAeA5c+1yR3EcnI0gQ3KMh6/+BGQDsdYU2nv//tT+PCcGvlaA r0kXUGhDT2Pr1sR6RS69pboc9hwYSD4wyQznCArTeMHxdDZ/6R+3HyYB1FFiRNNU kbXLh6DdEZ9xVVTKV1c9SEqPTujbxleWMBtY41isNDmP423n7l9qfGoJAhZ+Kcvm /y1HVWd0CQ0vir9UXQZcgXaY9oH1Sg+7BZzB2FxTV0BPz/VcpTTiE1we8Sq0JpPW O59FyAusYMkL90r02uKI4BSyjgnq4/jhPeadWDu96cooyPsKaZ/54QiNDJTFJmk+ rQ+ydzXpyn3GuINzFgQIgWPBPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCecrNb0 xuw68vPox/R9YlDm1hQQMB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc+z04wof/kWQO+PJSLsY9wNDWp7x8b+Mfa1G8FeLmPOg6jXU9bUkW I+tDlC/Co1gYYghYy8+t5WS5pBxF8K9TyjKKkE0KA2R37l5378PY7mh7Dzfuw0pI SddJdmsB6DntD1PNk4FH91YJBGIwyoeNYh7dOIjOYD+/Fgst8tRE2EgzlJgqG+AK kS/KC16qfWHBD6DSqRLOMFkZ+u4CZSJK2vvao78G4b2TBVj0MhPEH+NH4WhGnfNA eK30v5OTnQ9ky5HkXfVbQlFJs3xrJFRmWrnC99YN2oo4HsGtirCIgm0z1fwLSmDM 5PiJeOfih60Ry+JwyDBf7KqFiVdNtTo7 -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:49 2025 by rpki-client