$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft File: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft (raw, json) Hash identifier: /0i29hBazRhg3HPpOss3XqqBFlZCBufHObkm8iGq4GA= Subject key identifier: 3A:33:EB:85:57:3D:BD:57:9A:85:0D:1F:8B:21:77:F7:0B:69:26:99 Authority key identifier: ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C Certificate issuer: /CN=A91BAA24/serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft Manifest number: 36 Signing time: Thu 21 Aug 2025 07:47:57 +0000 Manifest this update: Thu 21 Aug 2025 07:47:57 +0000 Manifest next update: Thu 28 Aug 2025 07:47:57 +0000 Files and hashes: 1: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl (hash: gVkl2oLOrE7qL7yOI96QzuJaWn7bAfBUs3YyQVztE5g=) 2: 28C2D6002BCB11F0A99C1E60C4F9AE02.roa (hash: 3eRh0WSm3ML8fWWz0uqzCk5In0Q1rchUgCmcr9wy07U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 07:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA24, serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Validity Not Before: Aug 21 07:47:57 2025 GMT Not After : Aug 28 07:47:57 2025 GMT Subject: CN=68a6cf2d-5346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:da:1c:a0:c4:2b:89:20:0c:f3:6d:e0:69:80: 0f:e9:09:89:95:2d:1b:93:02:6e:2a:f2:f4:99:6e: 05:ba:a0:e2:d0:9c:80:ff:6a:6a:34:17:16:60:bb: 84:f2:88:1e:45:ee:e3:97:ca:68:90:ad:46:02:54: b8:5b:d0:f7:42:0e:a9:11:6e:0a:70:09:9b:8f:f5: 6f:1b:d8:00:e9:d8:a9:10:e4:39:6b:39:70:7c:d7: 01:2b:4c:61:0a:01:af:2b:9f:d7:28:50:ad:a5:6a: fa:ad:10:af:67:01:ba:f6:fd:04:5b:73:a6:9e:dd: f0:97:d8:3b:21:9f:7d:54:6b:b7:42:3f:b4:ad:9b: e1:e9:9c:55:af:4b:11:76:ef:f6:83:5e:3e:31:c7: 85:38:f8:9e:13:ca:ac:0c:e2:0a:0b:0f:91:d9:4c: cd:a0:12:cd:d7:61:7f:40:f0:06:1d:bd:26:43:a2: 54:0f:42:cd:ce:f7:09:af:86:44:75:17:91:62:19: bf:d6:b9:5f:bd:18:f0:f4:f0:68:cf:0c:51:22:6e: d8:53:5f:f5:d5:8a:9d:4b:f1:65:18:d0:41:c8:90: 5f:8f:01:9c:07:32:3e:6d:b6:7f:63:7f:5a:56:5b: 4a:7b:b1:d5:fc:69:a9:1d:6b:98:a0:69:70:d7:01: 90:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:33:EB:85:57:3D:BD:57:9A:85:0D:1F:8B:21:77:F7:0B:69:26:99 X509v3 Authority Key Identifier: keyid:ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:5a:80:20:4e:01:3f:5e:4a:5f:f4:54:c0:89:d2:39:5b:9d: 93:45:92:34:65:ae:86:8a:79:39:59:92:14:ec:55:7a:15:42: ef:52:a1:f4:cb:aa:f9:f7:2c:38:ab:b8:42:d2:a4:4e:26:35: 3c:2a:5a:ea:bf:1a:75:d9:e7:a3:1e:ac:96:fa:2c:83:c8:b2: fd:59:3c:37:66:43:eb:65:29:3a:c6:33:a4:bd:99:eb:f7:33: 26:c4:b5:49:d3:62:79:b5:c2:bb:30:a2:de:c8:a7:99:8f:cf: e2:7e:c8:0d:f9:3b:dd:e6:93:8e:5c:d9:98:38:66:8e:e9:99: 79:2c:4a:0e:ee:b5:a8:1b:fe:ee:d1:69:b0:e7:1d:4a:7d:a4: 74:af:b3:c9:ab:ff:41:d9:80:59:a2:84:2c:f1:2d:25:89:03: b9:1d:4c:b8:6f:9c:1e:71:6e:58:31:7b:45:07:34:6c:7e:a7: 0f:8a:fa:87:26:0f:c0:85:6f:e3:de:96:a3:72:ca:74:ad:f3: 66:05:05:81:59:d4:e6:e6:a9:6d:fb:64:1d:60:d8:bd:41:f1: 3f:22:39:a5:58:17:d7:2e:99:70:e8:a3:0b:67:02:65:3d:c4: 22:91:41:ac:0f:14:ce:ad:05:bc:18:cc:0d:34:cd:12:78:e8: a4:de:36:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QUEyNDExMC8GA1UEBRMoRUQ3MkM3MTZCQzBBRjU5RDQzMDYzMjNGQkFBNDc0QkQ0 QjRERTcxQzAeFw0yNTA4MjEwNzQ3NTdaFw0yNTA4MjgwNzQ3NTdaMBgxFjAUBgNV BAMTDTY4YTZjZjJkLTUzNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC82hygxCuJIAzzbeBpgA/pCYmVLRuTAm4q8vSZbgW6oOLQnID/amo0FxZgu4Ty iB5F7uOXymiQrUYCVLhb0PdCDqkRbgpwCZuP9W8b2ADp2KkQ5DlrOXB81wErTGEK Aa8rn9coUK2lavqtEK9nAbr2/QRbc6ae3fCX2Dshn31Ua7dCP7Stm+HpnFWvSxF2 7/aDXj4xx4U4+J4TyqwM4goLD5HZTM2gEs3XYX9A8AYdvSZDolQPQs3O9wmvhkR1 F5FiGb/WuV+9GPD08GjPDFEibthTX/XVip1L8WUY0EHIkF+PAZwHMj5ttn9jf1pW W0p7sdX8aakda5igaXDXAZApAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOjPrhVc9 vVeahQ0fiyF39wtpJpkwHwYDVR0jBBgwFoAU7XLHFrwK9Z1DBjI/uqR0vUtN5xww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQTI0LzE3MzlDMzVBMkJD OTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVoxREJqSV91cVIwdlV0TjV4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1hMSEZyd0s5WjFEQmpJX3VxUjB2VXRONXh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB QTI0LzE3MzlDMzVBMkJDOTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVox REJqSV91cVIwdlV0TjV4dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALVagCBOAT9eSl/0VMCJ0jlbnZNFkjRlroaKeTlZkhTsVXoVQu9SofTL qvn3LDiruELSpE4mNTwqWuq/GnXZ56MerJb6LIPIsv1ZPDdmQ+tlKTrGM6S9mev3 MybEtUnTYnm1wrswot7Ip5mPz+J+yA35O93mk45c2Zg4Zo7pmXksSg7utagb/u7R abDnHUp9pHSvs8mr/0HZgFmihCzxLSWJA7kdTLhvnB5xblgxe0UHNGx+pw+K+ocm D8CFb+PelqNyynSt82YFBYFZ1ObmqW37ZB1g2L1B8T8iOaVYF9cumXDoowtnAmU9 xCKRQawPFM6tBbwYzA00zRJ46KTeNic= -----END CERTIFICATE-----Generated at Sat Aug 23 02:04:08 2025 by rpki-client