$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft File: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft (raw, json) Hash identifier: 8G4MDg3hHF7Hr7LJH7s6j89AJtHOlYZ54mtzJYJzib4= Subject key identifier: 1A:BB:DE:DD:6A:5A:EC:BB:81:87:2A:4E:7A:8A:EB:7A:4B:40:F9:44 Authority key identifier: EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 Certificate issuer: /CN=A9136D8B/serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Certificate serial: 07FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft Manifest number: 07F3 Signing time: Sun 10 Aug 2025 21:01:13 +0000 Manifest this update: Sun 10 Aug 2025 21:01:13 +0000 Manifest next update: Sun 17 Aug 2025 21:01:13 +0000 Files and hashes: 1: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl (hash: bptfOMG4sXLwN579RoONzrcDK4NfjkRyyuwY2Zd72p8=) 2: D3EE2024F42211EA8FE7AE53C4F9AE02.roa (hash: GW9s3WIygsKZLnHwRZ6mSkc9+Me0q/KYVWFIK75BZGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D8B, serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Validity Not Before: Aug 10 21:01:13 2025 GMT Not After : Aug 17 21:01:13 2025 GMT Subject: CN=68990899-d5bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c5:9d:f1:bd:05:85:72:80:92:fb:b4:33:c5: 5c:79:16:ee:20:29:64:3d:99:4b:47:45:42:f1:fb: 8b:c3:64:c5:6e:f5:22:b2:a2:93:7f:cb:a4:57:ae: 2b:4f:99:3b:8b:f1:2b:58:35:fe:3f:85:d7:64:cc: b1:a6:54:a6:e2:9b:b7:40:7d:f7:77:c9:0b:d7:b0: b4:00:26:1e:6f:42:5a:e5:27:ff:12:0b:48:96:a2: 50:97:93:17:83:9d:03:ad:d1:7a:84:aa:af:8c:c0: 50:e0:15:94:fc:30:52:da:4f:28:12:1e:62:a4:b2: 39:f0:3d:cd:74:d6:57:80:aa:f3:00:0e:45:91:ca: 07:bb:4d:7c:17:f5:88:6f:61:b9:47:78:01:1e:42: cd:3e:80:f5:21:c2:3a:13:88:ba:54:9d:f8:a9:2e: a8:4a:12:ba:48:21:f5:ad:ee:b2:39:e7:31:48:f6: f7:b4:02:1d:27:31:cd:af:73:63:ae:d7:f6:06:8d: 74:ef:58:9b:28:c1:f7:ff:7f:01:0c:2e:b8:d1:5c: 05:d7:bc:c3:41:77:4c:4f:6e:2c:bd:34:19:b0:7b: 7f:14:48:69:59:74:45:01:13:40:8c:78:86:3a:9f: 65:4b:a9:77:1b:11:1c:a1:1a:fc:36:ac:e7:d9:98: b6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BB:DE:DD:6A:5A:EC:BB:81:87:2A:4E:7A:8A:EB:7A:4B:40:F9:44 X509v3 Authority Key Identifier: keyid:EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:5c:26:9d:24:d5:9b:4c:fd:3d:8c:14:14:7b:33:21:c5:29: 81:41:be:a4:27:68:85:11:b9:52:6c:ac:fd:7d:d3:93:3f:38: 7c:a4:dc:9d:d8:36:08:d6:19:1c:0a:12:aa:5d:c3:30:1d:3b: 98:e4:20:3c:08:91:1f:88:57:38:05:fc:89:3f:46:48:80:1e: 53:80:a0:b4:11:c6:27:f6:11:00:08:8d:ea:89:0a:99:ba:a6: b9:73:3c:39:92:b5:ef:b0:67:a7:44:77:bb:8f:5c:7e:bf:36: b5:f2:41:be:e5:e2:7f:74:d3:7f:5a:29:52:63:6f:23:66:02: ab:a6:fb:3e:15:30:bc:92:5c:27:58:fa:dd:4d:30:11:a7:91: 1c:4d:ca:8d:39:da:af:48:5e:ff:c0:75:02:e1:c6:f2:45:79: 32:e6:6f:78:25:41:a5:2b:1d:ae:3a:2c:3e:04:74:0d:1c:34: b8:c1:28:ae:59:d7:6b:26:ca:89:d8:45:01:ee:e9:a6:4f:bf: af:16:6d:20:91:80:2f:e2:fc:65:b2:1f:6a:e2:71:53:5c:0d: 17:ed:1c:e7:68:53:2b:9e:a7:e8:9f:3a:9f:97:e6:5b:b2:a6: 99:9e:86:fa:c4:b3:3b:a6:f6:4d:7d:9e:4d:3c:27:6b:4e:37: c0:18:02:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEOEIxMTAvBgNVBAUTKEVGMUE5NkQxMTJERTE2MjJCMTFDOEM3RTk0QUVCMDQw RURENkFCMDAwHhcNMjUwODEwMjEwMTEzWhcNMjUwODE3MjEwMTEzWjAYMRYwFAYD VQQDEw02ODk5MDg5OS1kNWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucWd8b0FhXKAkvu0M8VceRbuIClkPZlLR0VC8fuLw2TFbvUisqKTf8ukV64r T5k7i/ErWDX+P4XXZMyxplSm4pu3QH33d8kL17C0ACYeb0Ja5Sf/EgtIlqJQl5MX g50DrdF6hKqvjMBQ4BWU/DBS2k8oEh5ipLI58D3NdNZXgKrzAA5FkcoHu018F/WI b2G5R3gBHkLNPoD1IcI6E4i6VJ34qS6oShK6SCH1re6yOecxSPb3tAIdJzHNr3Nj rtf2Bo1071ibKMH3/38BDC640VwF17zDQXdMT24svTQZsHt/FEhpWXRFARNAjHiG Op9lS6l3GxEcoRr8Nqzn2Zi2NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBq73t1q Wuy7gYcqTnqK63pLQPlEMB8GA1UdIwQYMBaAFO8altES3hYisRyMfpSusEDt1qsA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ4Qi9EMDBBQTg1Q0Y0 MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZpS3hISXgtbEs2d1FPM1dx d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd4cVcwUkxlRmlLeEhJeC1sSzZ3UU8zV3F3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ4Qi9EMDBBQTg1Q0Y0MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZp S3hISXgtbEs2d1FPM1dxd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpXCadJNWbTP09jBQUezMhxSmBQb6kJ2iFEblSbKz9fdOTPzh8pNyd 2DYI1hkcChKqXcMwHTuY5CA8CJEfiFc4BfyJP0ZIgB5TgKC0EcYn9hEACI3qiQqZ uqa5czw5krXvsGenRHe7j1x+vza18kG+5eJ/dNN/WilSY28jZgKrpvs+FTC8klwn WPrdTTARp5EcTcqNOdqvSF7/wHUC4cbyRXky5m94JUGlKx2uOiw+BHQNHDS4wSiu WddrJsqJ2EUB7ummT7+vFm0gkYAv4vxlsh9q4nFTXA0X7RznaFMrnqfonzqfl+Zb sqaZnob6xLM7pvZNfZ5NPCdrTjfAGAJ1 -----END CERTIFICATE-----Generated at Mon Aug 11 06:03:13 2025 by rpki-client