$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft File: B7Y7XcFse0rper0AhqMVbV10Rlk.mft (raw, json) Hash identifier: /z20AQ7Q3Qm73AUEaRiBQpsPcV0KMOJgliHFU3AdY3s= Subject key identifier: 24:4C:2A:0E:93:23:1C:B7:06:5B:38:B2:68:EC:79:26:EF:AA:B2:54 Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 0224 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft Manifest number: 0220 Signing time: Wed 17 Sep 2025 02:30:19 +0000 Manifest this update: Wed 17 Sep 2025 02:30:18 +0000 Manifest next update: Wed 24 Sep 2025 02:30:18 +0000 Files and hashes: 1: B7Y7XcFse0rper0AhqMVbV10Rlk.crl (hash: eebERvBXP5yYf3Ji5KETbs3VRZ9bNBI14f31YTQA5zM=) 2: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (hash: lJnZtZDQNzdO0qp1p8vNJySg5lDyaZrljj6ja2HApOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49, serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Sep 17 02:30:18 2025 GMT Not After : Sep 24 02:30:18 2025 GMT Subject: CN=68ca1d3b-6efb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:50:bd:ed:47:12:8c:97:ad:1f:44:c7:42:ac: 45:c0:4b:03:41:36:c1:7c:d2:f5:7f:5f:7d:db:c2: 88:3d:43:51:07:4f:93:f8:a1:c9:ae:ba:fb:c8:ed: 79:f3:4b:cd:16:6c:67:a0:57:62:06:77:8b:bf:6c: 14:95:d0:67:cf:45:3f:e7:fd:ee:c6:e4:22:82:92: 30:d7:e0:b9:17:22:9a:9c:0a:d6:aa:b7:0f:35:59: cd:9b:ef:e8:02:62:81:b9:7c:13:d0:74:97:77:a1: d9:16:d3:9f:27:6e:a4:ea:ac:d2:5e:c8:ae:73:62: fc:96:07:eb:6a:69:07:34:f1:2e:a4:72:7d:27:2d: bb:18:26:f5:95:b3:07:a1:a4:ba:ad:7e:59:89:42: 2e:3a:84:4c:fc:61:00:1a:22:6d:23:7b:e4:8c:6d: 07:34:ae:40:34:f2:a3:9d:62:c2:48:c8:f7:37:ed: 33:8b:fb:42:e7:60:c4:a4:4f:99:71:54:df:62:47: ce:ef:3f:a5:a2:43:86:89:1c:d1:92:01:34:09:47: 76:6f:e3:4a:49:48:79:41:a0:7f:20:2f:c2:61:fd: d5:e8:85:14:d2:9a:e9:49:77:50:15:9c:a5:11:84: 13:a4:e5:0a:1c:82:04:94:4e:ab:7b:c0:08:f5:8e: 5c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:4C:2A:0E:93:23:1C:B7:06:5B:38:B2:68:EC:79:26:EF:AA:B2:54 X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:32:09:b2:b5:33:f1:e2:e8:3c:dd:a3:ce:ac:47:0c:06:49: 96:e7:b7:f1:22:fb:2a:fc:ac:d7:c1:af:74:8a:be:65:fc:d3: f7:e1:35:1f:d0:6f:fa:67:47:f3:0b:3e:90:62:ef:0f:8d:9a: 09:0a:c9:d2:89:22:fc:79:70:b8:d8:20:c7:a0:b5:9b:51:eb: 8a:6a:d7:29:07:66:03:2c:1c:73:4f:e4:09:0e:35:16:d8:55: 94:eb:03:bd:f0:45:3b:0c:15:26:c9:8c:fb:45:ff:82:5a:52: c0:da:83:fc:65:0f:24:8a:dd:5d:54:b5:56:fc:26:11:e4:22: 1d:e4:8c:93:05:70:35:38:7f:cf:2f:0f:97:bb:d4:3a:d7:b9: c3:a8:d1:8a:7f:15:a2:07:88:ce:38:31:40:60:d1:0e:09:b3: 34:e2:42:46:24:64:fb:4b:ff:93:e1:6e:62:ea:66:9a:03:cc: 0e:3b:79:e9:9d:0a:a4:ca:34:74:9e:b6:b9:19:03:92:1a:6e: 07:f2:9c:4a:10:4b:bc:74:cf:3a:fd:fe:28:d1:8b:76:41:21: e8:d8:3d:23:78:21:c1:3e:ba:2a:79:6d:a7:c7:f2:1e:f2:ad: e7:ef:81:83:82:58:24:4e:ab:80:50:00:82:0c:6d:f7:a3:eb: 17:7b:b3:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjUwOTE3MDIzMDE4WhcNMjUwOTI0MDIzMDE4WjAYMRYwFAYD VQQDEw02OGNhMWQzYi02ZWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51C97UcSjJetH0THQqxFwEsDQTbBfNL1f19928KIPUNRB0+T+KHJrrr7yO15 80vNFmxnoFdiBneLv2wUldBnz0U/5/3uxuQigpIw1+C5FyKanArWqrcPNVnNm+/o AmKBuXwT0HSXd6HZFtOfJ26k6qzSXsiuc2L8lgframkHNPEupHJ9Jy27GCb1lbMH oaS6rX5ZiUIuOoRM/GEAGiJtI3vkjG0HNK5ANPKjnWLCSMj3N+0zi/tC52DEpE+Z cVTfYkfO7z+lokOGiRzRkgE0CUd2b+NKSUh5QaB/IC/CYf3V6IUU0prpSXdQFZyl EYQTpOUKHIIElE6re8AI9Y5cMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRMKg6T Ixy3Bls4smjseSbvqrJUMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkU0OS9CMzNBQTdBNjUzODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2Uw cnBlcjBBaHFNVmJWMTBSbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwMgmytTPx4ug83aPOrEcMBkmW57fxIvsq/KzXwa90ir5l/NP34TUf 0G/6Z0fzCz6QYu8PjZoJCsnSiSL8eXC42CDHoLWbUeuKatcpB2YDLBxzT+QJDjUW 2FWU6wO98EU7DBUmyYz7Rf+CWlLA2oP8ZQ8kit1dVLVW/CYR5CId5IyTBXA1OH/P Lw+Xu9Q617nDqNGKfxWiB4jOODFAYNEOCbM04kJGJGT7S/+T4W5i6maaA8wOO3np nQqkyjR0nra5GQOSGm4H8pxKEEu8dM86/f4o0Yt2QSHo2D0jeCHBProqeW2nx/Ie 8q3n74GDglgkTquAUACCDG33o+sXe7PT -----END CERTIFICATE-----Generated at Thu Sep 18 21:38:11 2025 by rpki-client