$ rpki-client -vvf rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft File: 7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft (raw, json) Hash identifier: H0xYxDcZUelykoOtq3zhlQ+8pIVNXURs7k+TU3vL46U= Subject key identifier: F2:9F:DA:DF:2D:50:E7:42:D1:6A:51:5B:17:9E:57:EF:E0:58:3E:02 Authority key identifier: ED:17:D1:BE:3D:57:11:C6:C9:8C:8C:CC:59:AA:F7:37:E8:65:C3:84 Certificate issuer: /CN=A914C725/serialNumber=ED17D1BE3D5711C6C98C8CCC59AAF737E865C384 Certificate serial: 196C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RfRvj1XEcbJjIzMWar3N-hlw4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft Manifest number: 1953 Signing time: Sun 10 Aug 2025 16:23:27 +0000 Manifest this update: Sun 10 Aug 2025 16:23:27 +0000 Manifest next update: Sun 17 Aug 2025 16:23:27 +0000 Files and hashes: 1: 7RfRvj1XEcbJjIzMWar3N-hlw4Q.crl (hash: phCehW86dpfn1Lp/JpT2TiAR5AluvkS8NHgoN242sNw=) 2: B4DF66BA809F11E7B741FD2EC4F9AE02.roa (hash: KaPPxJGKEv/zZM9wb84aOdkpe/TGoMFG363mkjcQVQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.crl rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RfRvj1XEcbJjIzMWar3N-hlw4Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6508 (0x196c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C725, serialNumber=ED17D1BE3D5711C6C98C8CCC59AAF737E865C384 Validity Not Before: Aug 10 16:23:27 2025 GMT Not After : Aug 17 16:23:27 2025 GMT Subject: CN=6898c77f-493d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:be:41:ab:00:58:fc:71:15:00:4d:6e:cb:83: cc:52:a0:41:30:5d:81:70:b7:c7:05:fd:94:83:b2: c0:36:47:6f:58:fb:c9:c8:1e:51:13:61:6a:6d:02: 6e:6f:9c:0f:ac:82:97:c4:43:f9:b7:a7:2b:3b:27: 59:6d:d9:4b:d0:08:8f:1d:0e:c2:e1:09:18:c3:79: dc:2f:d5:77:95:2b:34:3d:a9:93:dd:bf:21:61:0f: 45:3b:0a:df:76:f2:1b:39:e6:a0:ef:4c:2e:df:bf: 99:7e:41:ca:37:57:7c:a7:f1:4f:d2:78:51:3e:31: e4:5c:ae:16:5c:24:7a:05:ba:87:a5:cd:46:08:2f: e4:48:bc:fd:e6:06:82:4d:59:95:8e:22:31:d0:bb: 43:1d:22:ba:5b:24:e0:17:9c:b7:3f:3c:5d:10:72: 52:04:de:99:d9:0b:ab:19:37:4a:b6:e3:8b:64:04: 87:af:c4:cf:c9:27:80:e2:49:80:ce:19:4e:c9:bf: 0e:d9:4a:da:41:6d:93:6c:68:4f:8d:e4:06:71:1c: 55:79:c7:5a:c8:8e:57:b3:ec:a4:80:48:da:e3:89: 70:28:40:f6:0d:46:fd:53:49:17:a4:53:40:3f:c9: 97:87:e3:4d:5e:a1:18:92:43:0f:ba:04:46:9a:59: e2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:9F:DA:DF:2D:50:E7:42:D1:6A:51:5B:17:9E:57:EF:E0:58:3E:02 X509v3 Authority Key Identifier: keyid:ED:17:D1:BE:3D:57:11:C6:C9:8C:8C:CC:59:AA:F7:37:E8:65:C3:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RfRvj1XEcbJjIzMWar3N-hlw4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:f5:4e:74:5c:cf:c8:36:19:b9:6f:92:68:45:93:01:1d:6c: 8c:ae:3d:4a:e3:0f:88:5e:87:1e:90:40:68:85:d0:5d:82:d7: bc:67:95:be:f5:f8:25:cb:1c:c0:2b:b5:52:13:03:55:10:5d: 2f:91:44:0a:f3:4d:ec:b6:4f:5d:07:06:75:4b:1b:f8:68:d2: 6a:c9:74:64:12:5e:37:5e:30:1e:c8:89:0a:a0:ea:32:72:e4: 1c:6a:5d:28:fe:f7:80:2f:ee:b5:67:fb:a1:8c:1c:e6:bb:88: 52:d3:80:21:a8:07:4f:85:06:48:fe:18:39:e9:a0:bb:27:ed: 27:2f:de:0d:bd:de:a2:4b:0a:1d:ba:e1:e4:3a:99:27:40:6d: b3:cd:b2:fd:ae:66:fa:87:f3:51:d7:4a:f0:a2:cc:26:36:3e: b7:ba:b7:4e:11:a4:08:3e:f3:b3:28:b7:02:77:d1:15:7e:a2: 6d:de:38:a5:5b:cc:84:58:60:52:a2:48:e6:6e:63:ae:c9:85: 57:cc:dd:cb:d2:8f:6a:40:c4:a3:63:92:16:a2:2d:b3:f1:5a: 13:0d:d3:f6:fb:a5:53:aa:a5:f0:79:a0:63:a7:61:5a:70:21: c0:33:2a:bb:60:ef:ea:0b:90:44:c6:f6:00:f0:33:4b:71:9e: 1e:52:b2:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM3MjUxMTAvBgNVBAUTKEVEMTdEMUJFM0Q1NzExQzZDOThDOENDQzU5QUFGNzM3 RTg2NUMzODQwHhcNMjUwODEwMTYyMzI3WhcNMjUwODE3MTYyMzI3WjAYMRYwFAYD VQQDEw02ODk4Yzc3Zi00OTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzr5BqwBY/HEVAE1uy4PMUqBBMF2BcLfHBf2Ug7LANkdvWPvJyB5RE2FqbQJu b5wPrIKXxEP5t6crOydZbdlL0AiPHQ7C4QkYw3ncL9V3lSs0PamT3b8hYQ9FOwrf dvIbOeag70wu37+ZfkHKN1d8p/FP0nhRPjHkXK4WXCR6BbqHpc1GCC/kSLz95gaC TVmVjiIx0LtDHSK6WyTgF5y3PzxdEHJSBN6Z2QurGTdKtuOLZASHr8TPySeA4kmA zhlOyb8O2UraQW2TbGhPjeQGcRxVecdayI5Xs+ykgEja44lwKED2DUb9U0kXpFNA P8mXh+NNXqEYkkMPugRGmlniMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKf2t8t UOdC0WpRWxeeV+/gWD4CMB8GA1UdIwQYMBaAFO0X0b49VxHGyYyMzFmq9zfoZcOE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzcyNS8zMTg0NEMzNjgw OUYxMUU3QkQ2QTZCMkVDNEY5QUUwMi83UmZSdmoxWEVjYkpqSXpNV2FyM04taGx3 NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdSZlJ2ajFYRWNiSmpJek1XYXIzTi1obHc0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzcyNS8zMTg0NEMzNjgwOUYxMUU3QkQ2QTZCMkVDNEY5QUUwMi83UmZSdmoxWEVj YkpqSXpNV2FyM04taGx3NFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV9U50XM/INhm5b5JoRZMBHWyMrj1K4w+IXocekEBohdBdgte8Z5W+ 9fglyxzAK7VSEwNVEF0vkUQK803stk9dBwZ1Sxv4aNJqyXRkEl43XjAeyIkKoOoy cuQcal0o/veAL+61Z/uhjBzmu4hS04AhqAdPhQZI/hg56aC7J+0nL94Nvd6iSwod uuHkOpknQG2zzbL9rmb6h/NR10rwoswmNj63urdOEaQIPvOzKLcCd9EVfqJt3jil W8yEWGBSokjmbmOuyYVXzN3L0o9qQMSjY5IWoi2z8VoTDdP2+6VTqqXweaBjp2Fa cCHAMyq7YO/qC5BExvYA8DNLcZ4eUrIk -----END CERTIFICATE-----Generated at Mon Aug 11 10:33:12 2025 by rpki-client