$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: IGbafFMt2jYhf404Wqq4S1GbxX5AbsAlDyJaA9Z5fAg= Subject key identifier: 3D:89:63:EE:19:B1:2D:13:42:A2:EF:B8:D9:20:D7:B8:16:DB:CF:B2 Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 02FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 02E1 Signing time: Sun 07 Sep 2025 01:48:40 +0000 Manifest this update: Sun 07 Sep 2025 01:48:39 +0000 Manifest next update: Sun 14 Sep 2025 01:48:39 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: NibNlDwzW/COlAsbKHZGFnhTILZ1TP1Y814HX7hbumg=) 2: E4F8A0BA47ED11EF8A746168C4F9AE02.roa (hash: BW5tT5Fwnb90kCw3kdyCo6pAhP8PZLajj0fwMdIDbDA=) 3: F3C5DF2CF03511EF83ECDC30C4F9AE02.roa (hash: z4aaUTQPt4LTmxBrxqPbGwAQr9ekPHI1lkNmNVVH7mw=) 4: 652A87CC65EC11F0BAEF8066C4F9AE02.roa (hash: 9Lyfdf8jewXKDNNSejND0Fdao81XqhdSmTyOn0pVCEo=) 5: FBE1E73689E311EF9021CE0CC4F9AE02.roa (hash: zUxzk8PVVaES9EMN0VkIqcIxDvXdbV+4WJwr6H3F2mM=) 6: 1C7AC7FE4B0711EFBB12B717C4F9AE02.roa (hash: 2FTQfXCf5iEijrWaIGoqW7OkD23cYHWReHvkr3RdiVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 01:48:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 762 (0x2fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Sep 7 01:48:39 2025 GMT Not After : Sep 14 01:48:39 2025 GMT Subject: CN=68bce477-1b21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e1:0a:2c:a9:61:52:44:8f:8a:8c:62:3f:9f: aa:e8:be:2b:e9:86:ca:b9:ff:62:c2:4b:9a:14:5e: 3b:88:dd:a9:d7:3d:fa:43:1b:3e:1f:c1:8b:d6:4e: fa:dd:18:da:80:69:e2:bd:50:1d:23:24:e2:5e:11: 3a:25:10:72:ca:59:86:d3:75:98:01:66:83:ba:f6: 30:2f:7a:ed:d8:c5:3a:71:dc:6a:a9:e8:cd:69:0b: ba:ee:5d:48:5f:37:9c:8c:f0:d9:31:c6:11:ed:e0: 3f:88:b1:74:90:85:d0:77:d6:0e:08:27:b6:84:16: e4:aa:29:70:05:59:dd:9f:aa:cb:dc:c5:6e:f5:47: 48:7c:e0:25:a3:90:61:ed:2e:e7:81:a3:82:cd:1b: 8f:7a:c1:9e:c7:ba:94:df:ba:d3:9b:10:bf:c1:5b: 14:94:ee:78:8d:ac:65:9d:cb:70:83:1b:42:c1:ef: b7:3d:f6:9c:37:3a:33:ac:7a:01:51:54:5d:f8:83: 97:70:17:9a:69:9d:f9:7d:4d:13:2a:e9:26:4c:6d: fe:9b:bc:7c:3b:47:d0:6c:ac:c4:02:0b:02:c0:16: 58:5a:a4:e0:32:04:e1:e5:32:2d:8f:5a:0d:86:d2: c7:4d:04:e0:b8:65:68:f6:34:8f:c0:d2:c8:60:f7: be:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:89:63:EE:19:B1:2D:13:42:A2:EF:B8:D9:20:D7:B8:16:DB:CF:B2 X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:0e:44:f3:6c:57:a0:6f:a0:81:05:d4:67:09:13:76:12:6f: 45:7c:68:cd:32:6c:68:83:3d:2e:1f:6b:2a:28:eb:cc:8b:9a: 5f:3d:b0:7e:e4:a1:16:f0:c5:f2:e6:05:5c:06:46:d1:b8:49: 8c:73:d0:1d:61:e2:0a:56:a4:5d:76:c1:0b:be:68:23:9f:df: 6f:05:03:3a:88:3a:f5:f2:39:42:76:39:f2:52:c8:fc:15:d0: 6c:6a:39:7d:23:8f:86:c5:33:e4:03:bb:e2:a7:2b:2c:86:41: bc:a2:66:b5:17:7d:41:fc:bf:8e:cb:0d:d9:b3:b5:c6:58:6b: 3b:60:7c:e4:c2:19:f9:ea:27:d2:74:eb:7e:86:13:2c:31:71: 25:3b:b8:c7:a1:6e:95:6f:df:72:be:7e:15:fb:a7:0d:5c:bb: 94:80:4a:71:62:e5:87:ce:21:b8:df:6d:56:f4:a3:af:f4:f5: 25:6a:7c:99:6c:c7:fe:cd:a9:9a:82:95:e3:b0:88:09:7a:d8: 25:4a:c8:a5:ba:05:28:78:3b:2f:95:ab:c8:e1:19:4d:d4:41: 4c:1a:36:c6:6c:8b:3e:c7:64:62:b4:3b:27:8b:ec:1c:af:d3: 74:28:3b:3d:27:80:04:91:54:ac:d9:4d:c5:9e:3f:bf:25:96: a9:8c:d2:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjUwOTA3MDE0ODM5WhcNMjUwOTE0MDE0ODM5WjAYMRYwFAYD VQQDEw02OGJjZTQ3Ny0xYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruEKLKlhUkSPioxiP5+q6L4r6YbKuf9iwkuaFF47iN2p1z36Qxs+H8GL1k76 3RjagGnivVAdIyTiXhE6JRByylmG03WYAWaDuvYwL3rt2MU6cdxqqejNaQu67l1I XzecjPDZMcYR7eA/iLF0kIXQd9YOCCe2hBbkqilwBVndn6rL3MVu9UdIfOAlo5Bh 7S7ngaOCzRuPesGex7qU37rTmxC/wVsUlO54jaxlnctwgxtCwe+3PfacNzozrHoB UVRd+IOXcBeaaZ35fU0TKukmTG3+m7x8O0fQbKzEAgsCwBZYWqTgMgTh5TItj1oN htLHTQTguGVo9jSPwNLIYPe+aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2JY+4Z sS0TQqLvuNkg17gW28+yMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkDkTzbFegb6CBBdRnCRN2Em9FfGjNMmxogz0uH2sqKOvMi5pfPbB+ 5KEW8MXy5gVcBkbRuEmMc9AdYeIKVqRddsELvmgjn99vBQM6iDr18jlCdjnyUsj8 FdBsajl9I4+GxTPkA7vipysshkG8oma1F31B/L+Oyw3Zs7XGWGs7YHzkwhn56ifS dOt+hhMsMXElO7jHoW6Vb99yvn4V+6cNXLuUgEpxYuWHziG4321W9KOv9PUlanyZ bMf+zamagpXjsIgJetglSsilugUoeDsvlavI4RlN1EFMGjbGbIs+x2RitDsni+wc r9N0KDs9J4AEkVSs2U3Fnj+/JZapjNIk -----END CERTIFICATE-----Generated at Mon Sep 8 02:20:14 2025 by rpki-client