$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft File: 7LW7UwpypAlWiey7FY8q5e_pElU.mft (raw, json) Hash identifier: 7ao9zSaycf2fmLTXy2xJEMpW93x+DVSmeJ6PIj7/15Y= Subject key identifier: BA:C2:4A:E4:58:AA:43:34:97:EE:79:DF:2E:2A:BE:1E:27:46:06:89 Authority key identifier: EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 Certificate issuer: /CN=A91B9FB9/serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Certificate serial: 34BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft Manifest number: 34B7 Signing time: Thu 18 Sep 2025 15:12:21 +0000 Manifest this update: Thu 18 Sep 2025 15:12:20 +0000 Manifest next update: Thu 25 Sep 2025 15:12:20 +0000 Files and hashes: 1: 7LW7UwpypAlWiey7FY8q5e_pElU.crl (hash: NRo6s4jGLEZXpRJPxw9Ck2rGMr312lZVt/DlIjcbZQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13498 (0x34ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9FB9, serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Validity Not Before: Sep 18 15:12:20 2025 GMT Not After : Sep 25 15:12:20 2025 GMT Subject: CN=68cc2154-4265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6c:91:7d:73:48:e9:4a:5d:17:9a:ea:89:a2: 27:0d:38:8b:d6:2f:11:60:3a:cc:59:3e:3e:c9:9c: e0:12:92:84:7d:f6:4e:9a:bd:f0:2c:3b:b5:10:0a: 8d:50:34:c4:ed:85:60:0e:0d:ce:41:7c:45:2b:14: ff:95:98:25:02:a0:01:96:bf:73:5a:26:8e:e0:d1: 87:71:07:39:d8:78:d2:eb:48:a4:69:a0:ee:12:bf: 84:c4:57:cc:fb:bd:6f:3e:74:52:c6:58:94:aa:e4: bd:0a:9d:26:95:b1:99:4d:64:73:ec:7f:d2:ba:b5: 77:82:5d:c7:37:fa:06:db:64:5e:08:dd:cc:f1:70: ed:39:c2:f8:da:44:8f:c2:2c:0a:82:c8:fb:25:f5: a3:49:78:71:ee:a8:e5:8f:6c:40:d4:de:45:35:d5: cf:fc:0c:d0:d3:4d:15:b0:97:12:c2:52:13:92:50: ee:18:a5:04:bd:32:d1:78:31:ec:5c:de:e9:49:34: c5:1d:f9:da:41:3f:6b:ef:93:0e:d3:5f:93:1a:93: 0f:ee:58:23:1c:cc:b1:2e:d6:c0:11:9a:fa:74:ef: d7:9c:99:66:db:fa:fd:39:d6:3a:99:73:ba:1d:23: ad:91:17:18:77:f5:91:3e:25:1b:24:3c:14:de:8a: de:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C2:4A:E4:58:AA:43:34:97:EE:79:DF:2E:2A:BE:1E:27:46:06:89 X509v3 Authority Key Identifier: keyid:EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:5a:99:3d:09:ab:12:49:52:7f:0e:ec:cb:51:67:43:62:8b: b8:35:b8:fb:47:e3:08:f0:12:c1:a5:c3:51:a9:ca:c3:ab:75: fd:a4:0a:fd:7e:47:07:b8:95:23:62:70:5b:ea:a8:13:59:a0: ea:73:6e:1d:b8:77:79:a8:28:74:0e:ac:5b:94:86:7c:4c:12: 81:b6:4a:36:e4:8e:c5:66:26:10:86:7f:e0:8c:a3:fd:35:a4: b3:f5:1f:55:7d:ac:19:5e:6b:58:87:59:c7:5e:d3:75:41:eb: f4:60:1b:15:51:c4:b9:2c:4d:15:a9:da:eb:a5:76:04:8f:6e: 44:94:69:fd:08:c6:a8:04:7f:76:5c:5e:b3:11:dd:5b:f0:f1: 9f:ee:dc:a1:bf:98:84:90:1f:91:de:6c:11:9d:66:d8:3b:a4: 2f:11:a2:6d:2e:6f:de:a2:12:75:65:a3:96:63:f4:a5:78:22: e5:48:b2:89:63:1b:d1:92:64:83:b2:97:bd:c8:54:6c:b2:15: eb:58:da:b2:2c:24:25:71:0d:fe:08:b9:e0:8d:74:53:0d:f8: 90:e4:db:bb:c5:4d:a6:33:39:79:fe:a4:e1:51:21:ca:5e:ad: c8:ff:6c:ca:7e:2b:ce:06:c5:0b:ec:0d:e4:7c:e8:82:99:12: 49:e3:2c:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlGQjkxMTAvBgNVBAUTKEVDQjVCQjUzMEE3MkE0MDk1Njg5RUNCQjE1OEYyQUU1 RUZFOTEyNTUwHhcNMjUwOTE4MTUxMjIwWhcNMjUwOTI1MTUxMjIwWjAYMRYwFAYD VQQDEw02OGNjMjE1NC00MjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWyRfXNI6UpdF5rqiaInDTiL1i8RYDrMWT4+yZzgEpKEffZOmr3wLDu1EAqN UDTE7YVgDg3OQXxFKxT/lZglAqABlr9zWiaO4NGHcQc52HjS60ikaaDuEr+ExFfM +71vPnRSxliUquS9Cp0mlbGZTWRz7H/SurV3gl3HN/oG22ReCN3M8XDtOcL42kSP wiwKgsj7JfWjSXhx7qjlj2xA1N5FNdXP/AzQ000VsJcSwlITklDuGKUEvTLReDHs XN7pSTTFHfnaQT9r75MO01+TGpMP7lgjHMyxLtbAEZr6dO/XnJlm2/r9OdY6mXO6 HSOtkRcYd/WRPiUbJDwU3ore4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrCSuRY qkM0l+553y4qvh4nRgaJMB8GA1UdIwQYMBaAFOy1u1MKcqQJVonsuxWPKuXv6RJV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUZCOS8yMTE0RDU2ODFE QTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBBbFdpZXk3Rlk4cTVlX3BF bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMVzdVd3B5cEFsV2lleTdGWThxNWVfcEVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUZCOS8yMTE0RDU2ODFEQTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBB bFdpZXk3Rlk4cTVlX3BFbFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApWpk9CasSSVJ/DuzLUWdDYou4Nbj7R+MI8BLBpcNRqcrDq3X9pAr9 fkcHuJUjYnBb6qgTWaDqc24duHd5qCh0DqxblIZ8TBKBtko25I7FZiYQhn/gjKP9 NaSz9R9VfawZXmtYh1nHXtN1Qev0YBsVUcS5LE0VqdrrpXYEj25ElGn9CMaoBH92 XF6zEd1b8PGf7tyhv5iEkB+R3mwRnWbYO6QvEaJtLm/eohJ1ZaOWY/SleCLlSLKJ YxvRkmSDspe9yFRsshXrWNqyLCQlcQ3+CLngjXRTDfiQ5Nu7xU2mMzl5/qThUSHK Xq3I/2zKfivOBsUL7A3kfOiCmRJJ4yzE -----END CERTIFICATE-----Generated at Thu Sep 18 23:27:29 2025 by rpki-client