$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: i5nbWBJsKK7Izf58VzUF2F4f5uzhyhNH4yuqQvBFb10= Subject key identifier: AF:A2:E3:44:44:3B:0B:E6:2D:20:66:33:3A:6E:E3:AE:6F:CF:1D:C8 Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 86 Signing time: Tue 05 Aug 2025 07:15:21 +0000 Manifest this update: Tue 05 Aug 2025 07:15:20 +0000 Manifest next update: Tue 12 Aug 2025 07:15:20 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: uSJm02sSx7W5gqPA4yeYs7thJK2X7OQcOBF1z1jgtrI=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: CcfcyuDgdAXzM0C7pRrcqcGTmtCQX9kXzhcOgKQTSNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: Aug 5 07:15:20 2025 GMT Not After : Aug 12 07:15:20 2025 GMT Subject: CN=6891af89-8dd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6b:b7:17:be:06:47:ca:1b:e0:8f:6b:2d:53: ad:76:e2:ba:2d:2f:90:3f:c6:68:e4:11:23:c3:aa: 99:77:a8:54:d8:37:d7:f4:d8:2b:81:2f:16:42:c8: 29:a3:b9:d8:8f:3d:66:de:4a:c0:7e:5c:8e:5c:08: 47:ce:f3:f7:02:ee:55:40:ad:6b:e0:5f:e6:38:17: d5:0d:6e:a7:75:85:df:83:2d:ac:ec:c0:80:3c:f1: 07:27:9f:c1:49:32:a2:9a:43:e6:78:50:a1:c2:ee: 13:cb:85:a9:d7:75:58:e6:5d:37:1b:5a:86:9a:02: da:5d:8f:12:7b:f4:1c:da:7b:52:8e:d7:6e:3b:44: b2:ed:8a:d5:f6:e1:6f:18:1b:21:c3:03:b9:c0:1e: bb:4a:9f:33:3d:c7:35:b3:8f:79:aa:1e:6f:6d:51: f2:38:37:04:c0:58:08:d8:d4:52:e6:1f:37:56:a1: cd:11:d4:33:bd:cb:78:f6:77:7e:a0:f9:fd:2c:b1: 96:0e:2e:8a:13:98:30:fb:2a:86:05:db:03:9a:47: ff:f8:aa:63:00:ca:88:55:37:67:ed:82:60:b8:a4: 02:f2:e7:73:6a:3b:c8:05:3b:3f:74:1c:1c:08:28: 05:95:bb:20:d9:8c:86:69:3c:37:85:4f:9f:f3:74: 33:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:A2:E3:44:44:3B:0B:E6:2D:20:66:33:3A:6E:E3:AE:6F:CF:1D:C8 X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:06:bd:79:10:51:de:0f:44:fe:be:87:ff:36:bd:75:ef:86: 7e:b3:45:ef:fd:9e:8e:ad:bc:fd:60:3b:99:e0:17:96:42:99: ac:36:2b:7b:78:e0:8a:2e:01:33:5f:83:61:7c:ac:d6:23:96: 40:cc:32:cb:1b:38:ad:13:c3:a8:0b:99:f8:06:1c:c5:ae:aa: 76:49:00:24:58:6c:d8:80:8c:7f:c7:3b:fc:9c:98:57:36:6a: 9a:c4:65:64:00:c1:ea:26:95:85:ee:8a:2c:8d:19:2a:2c:58: d6:97:f1:7f:f1:d3:91:a8:e3:ca:a6:cf:d3:9a:cb:38:f7:80: 35:4a:23:be:57:f6:6d:e1:b1:e0:52:93:08:8d:9c:a4:33:c2: 92:5a:9f:04:47:5f:99:74:70:c8:c2:64:ab:88:22:5a:e7:1d: 4a:08:85:7c:2b:da:9a:6e:d7:4c:ba:69:75:36:a6:62:46:2d: 02:6e:f3:51:10:62:e0:a3:5c:9e:4b:ca:29:15:91:d7:51:db: f8:ef:b7:a4:95:1a:35:0f:d3:9b:cd:21:41:99:4d:29:61:96: f9:ea:95:4a:88:f6:0b:62:87:9d:b9:b3:2c:91:8a:b1:dd:9a: 88:57:bc:85:7d:b7:2c:8e:71:5a:ab:ed:51:28:f0:de:94:90: 65:4b:01:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk0RTcxMTAvBgNVBAUTKDg5MUVEOEJBQUMyQzczQkQxM0FEQ0FBMUExNkFBRjAw RDIyNEE4NzcwHhcNMjUwODA1MDcxNTIwWhcNMjUwODEyMDcxNTIwWjAYMRYwFAYD VQQDEw02ODkxYWY4OS04ZGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22u3F74GR8ob4I9rLVOtduK6LS+QP8Zo5BEjw6qZd6hU2DfX9NgrgS8WQsgp o7nYjz1m3krAflyOXAhHzvP3Au5VQK1r4F/mOBfVDW6ndYXfgy2s7MCAPPEHJ5/B STKimkPmeFChwu4Ty4Wp13VY5l03G1qGmgLaXY8Se/Qc2ntSjtduO0Sy7YrV9uFv GBshwwO5wB67Sp8zPcc1s495qh5vbVHyODcEwFgI2NRS5h83VqHNEdQzvct49nd+ oPn9LLGWDi6KE5gw+yqGBdsDmkf/+KpjAMqIVTdn7YJguKQC8udzajvIBTs/dBwc CCgFlbsg2YyGaTw3hU+f83QzjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+i40RE OwvmLSBmMzpu465vzx3IMB8GA1UdIwQYMBaAFIke2LqsLHO9E63KoaFqrwDSJKh3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTRFNy9GNENGRDFEQUFD NzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3MFRyY3Fob1dxdkFOSWtx SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTRFNy9GNENGRDFEQUFDNzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3 MFRyY3Fob1dxdkFOSWtxSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzBr15EFHeD0T+vof/Nr1174Z+s0Xv/Z6Orbz9YDuZ4BeWQpmsNit7 eOCKLgEzX4NhfKzWI5ZAzDLLGzitE8OoC5n4BhzFrqp2SQAkWGzYgIx/xzv8nJhX NmqaxGVkAMHqJpWF7oosjRkqLFjWl/F/8dORqOPKps/Tmss494A1SiO+V/Zt4bHg UpMIjZykM8KSWp8ER1+ZdHDIwmSriCJa5x1KCIV8K9qabtdMuml1NqZiRi0CbvNR EGLgo1yeS8opFZHXUdv477eklRo1D9ObzSFBmU0pYZb56pVKiPYLYoedubMskYqx 3ZqIV7yFfbcsjnFaq+1RKPDelJBlSwFO -----END CERTIFICATE-----Generated at Thu Aug 7 05:05:42 2025 by rpki-client