$ rpki-client -vvf rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft File: CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft (raw, json) Hash identifier: PA/85qqDJRaxp1t5KRuMobVSt95Ivve1mgEJ4BA8gWs= Subject key identifier: F1:74:7E:CC:BA:04:37:22:D6:82:A7:C6:C0:4F:39:66:5B:73:93:7C Authority key identifier: 08:0E:C1:4A:00:12:5D:91:4C:7E:62:85:DE:9C:56:68:9C:58:72:A4 Certificate issuer: /CN=A9137627/serialNumber=080EC14A00125D914C7E6285DE9C56689C5872A4 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft Manifest number: 86 Signing time: Sat 09 Aug 2025 07:04:44 +0000 Manifest this update: Sat 09 Aug 2025 07:04:44 +0000 Manifest next update: Sat 16 Aug 2025 07:04:44 +0000 Files and hashes: 1: CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl (hash: fgkYyYloks0a5Wu5Hsl1GstgFbMvqW57bVYaeaNbe4I=) 2: 4F148EC8A89211EFBE18B52EC4F9AE02.roa (hash: Ac/uc/BnLL5OC5L/oElWDyPEyaU4HTEnF9nDubVxykg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137627, serialNumber=080EC14A00125D914C7E6285DE9C56689C5872A4 Validity Not Before: Aug 9 07:04:44 2025 GMT Not After : Aug 16 07:04:44 2025 GMT Subject: CN=6896f30c-c08d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a9:1a:78:8e:52:3a:71:dc:8a:18:a5:d5:c6: 49:e2:57:af:9b:ff:92:ef:74:57:43:2d:1b:a9:5a: 86:70:9a:41:de:c6:5c:5c:ed:5e:45:82:00:7e:ce: 5c:7e:44:8c:33:41:e5:7a:18:64:9b:a1:fd:76:b0: 79:79:23:62:31:14:7c:ca:9a:6d:88:e1:c9:19:25: 96:49:77:78:68:f0:0c:59:f5:a7:a9:37:ac:1c:bb: 4f:3a:65:8c:d6:c1:74:c7:d7:09:5c:16:4e:13:85: 0a:b4:e9:4f:80:60:69:7b:0c:69:9d:65:20:f3:fb: 85:4b:fa:82:c1:16:f4:d8:19:96:a6:03:03:cb:34: 85:d5:63:12:c5:02:54:3e:10:4f:19:8b:66:f1:ae: 37:c1:5a:2e:c2:47:5c:68:9c:14:be:39:09:ff:12: 03:c4:f7:65:d8:c3:34:5e:75:04:c5:ba:0a:d2:8a: 6c:fc:cd:09:8d:55:01:c3:53:08:66:8c:0c:cd:f7: 20:b2:56:3c:d5:47:ba:36:13:95:7b:aa:f0:3f:7f: b9:9d:c1:bc:de:5c:0b:5e:a2:4f:c1:81:af:92:3b: 95:07:d3:c3:23:8c:a3:cb:c2:47:2e:48:37:71:2f: ab:fa:9c:f6:19:82:0c:df:bb:76:70:8b:5f:f9:54: db:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:74:7E:CC:BA:04:37:22:D6:82:A7:C6:C0:4F:39:66:5B:73:93:7C X509v3 Authority Key Identifier: keyid:08:0E:C1:4A:00:12:5D:91:4C:7E:62:85:DE:9C:56:68:9C:58:72:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:57:32:9d:62:9f:00:8b:78:a8:91:04:32:02:4a:b0:26:20: 88:e4:29:21:b9:8d:d8:b8:58:58:c2:2b:d0:ad:2d:26:f2:0f: 63:9d:92:11:ff:1e:78:2c:32:2b:e2:bf:57:42:d2:d6:05:2c: 9b:9d:21:15:23:02:3c:39:2f:0e:9c:4d:6d:63:2f:cb:b9:1c: af:41:42:a0:bd:fb:d7:e3:c5:ec:5c:6d:b0:32:66:5c:b3:98: f7:bb:fa:34:6d:51:d5:6d:50:3e:84:e6:e4:20:fc:4f:ea:18: b5:4c:5d:83:65:df:da:c5:58:f9:7d:f2:c8:f5:b9:74:07:86: 3e:57:45:7b:22:06:73:99:27:e6:6e:c4:69:15:10:19:8d:69: 85:23:b0:1c:fd:38:ae:b9:f0:c7:b9:74:86:b7:c1:92:7a:95: 52:fc:86:f3:03:35:5b:da:21:b6:5b:cb:78:3f:f5:30:61:e1: ec:54:92:2c:d3:1b:1b:eb:6f:da:c1:9a:57:e6:cd:29:80:01: 57:75:d8:06:bb:d4:cf:bf:ba:59:e4:a0:23:03:fa:73:c3:ca: 36:ae:0d:68:67:f8:1a:d5:2b:b9:14:f1:e8:eb:70:f5:15:38: 36:f0:0f:81:18:66:56:7f:25:aa:f8:d6:89:e8:27:75:58:99: 97:a8:d7:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc2MjcxMTAvBgNVBAUTKDA4MEVDMTRBMDAxMjVEOTE0QzdFNjI4NURFOUM1NjY4 OUM1ODcyQTQwHhcNMjUwODA5MDcwNDQ0WhcNMjUwODE2MDcwNDQ0WjAYMRYwFAYD VQQDEw02ODk2ZjMwYy1jMDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKkaeI5SOnHcihil1cZJ4levm/+S73RXQy0bqVqGcJpB3sZcXO1eRYIAfs5c fkSMM0Hlehhkm6H9drB5eSNiMRR8ypptiOHJGSWWSXd4aPAMWfWnqTesHLtPOmWM 1sF0x9cJXBZOE4UKtOlPgGBpewxpnWUg8/uFS/qCwRb02BmWpgMDyzSF1WMSxQJU PhBPGYtm8a43wVouwkdcaJwUvjkJ/xIDxPdl2MM0XnUExboK0ops/M0JjVUBw1MI ZowMzfcgslY81Ue6NhOVe6rwP3+5ncG83lwLXqJPwYGvkjuVB9PDI4yjy8JHLkg3 cS+r+pz2GYIM37t2cItf+VTb5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPF0fsy6 BDci1oKnxsBPOWZbc5N8MB8GA1UdIwQYMBaAFAgOwUoAEl2RTH5ihd6cVmicWHKk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzYyNy9FN0QyNTc4NkE4 OTExMUVGOTI2ODhCMkJDNEY5QUUwMi9DQTdCU2dBU1haRk1mbUtGM3B4V2FKeFlj cVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBN0JTZ0FTWFpGTWZtS0YzcHhXYUp4WWNxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzYyNy9FN0QyNTc4NkE4OTExMUVGOTI2ODhCMkJDNEY5QUUwMi9DQTdCU2dBU1ha Rk1mbUtGM3B4V2FKeFljcVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClVzKdYp8Ai3iokQQyAkqwJiCI5CkhuY3YuFhYwivQrS0m8g9jnZIR /x54LDIr4r9XQtLWBSybnSEVIwI8OS8OnE1tYy/LuRyvQUKgvfvX48XsXG2wMmZc s5j3u/o0bVHVbVA+hObkIPxP6hi1TF2DZd/axVj5ffLI9bl0B4Y+V0V7IgZzmSfm bsRpFRAZjWmFI7Ac/TiuufDHuXSGt8GSepVS/IbzAzVb2iG2W8t4P/UwYeHsVJIs 0xsb62/awZpX5s0pgAFXddgGu9TPv7pZ5KAjA/pzw8o2rg1oZ/ga1Su5FPHo63D1 FTg28A+BGGZWfyWq+NaJ6Cd1WJmXqNct -----END CERTIFICATE-----Generated at Sun Aug 10 04:27:09 2025 by rpki-client