$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json) Hash identifier: NktSYPCrZew8OD40yRmhFBFMW5wEpVA252CDkPiJh+Q= Subject key identifier: 57:FF:67:95:97:D7:40:E6:30:A8:F5:2E:AF:BD:20:17:FB:CC:17:54 Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft Manifest number: 82 Signing time: Mon 11 Aug 2025 06:56:26 +0000 Manifest this update: Mon 11 Aug 2025 06:56:25 +0000 Manifest next update: Mon 18 Aug 2025 06:56:25 +0000 Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: YL2VtbKn08UYugBVA8HkwOc2Llq4LFZr7ygt477r4qs=) 2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: WLNXMP0ra3REMtSs7laKuUO//z/EEyMC3rb1Y8gR3Jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Validity Not Before: Aug 11 06:56:25 2025 GMT Not After : Aug 18 06:56:25 2025 GMT Subject: CN=6899941a-6272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:30:c4:a7:41:03:c3:54:4d:43:f8:2e:ba:d5: 6a:0c:2f:3f:93:ca:d1:4e:63:4b:7a:9d:18:d1:b4: 99:13:80:23:7f:12:a9:d6:24:3e:d3:de:6e:3f:5f: e0:b5:ed:dd:34:ac:e8:7d:63:6c:a2:2a:c8:fb:4a: 54:ed:af:6e:95:7d:92:27:bb:b4:02:5e:d6:0d:de: aa:04:05:b9:db:df:6c:31:19:02:f8:3e:cf:75:54: 46:22:75:fb:3c:0b:b8:27:e2:fd:1d:b7:de:64:f5: 32:1c:79:9b:2a:9b:74:97:e9:46:1e:a8:fb:cc:79: 52:60:7d:dc:50:c4:13:ba:d1:46:4d:b4:8e:2a:e2: 3f:73:b1:a8:89:9e:77:22:f7:b6:ed:1d:05:43:f2: 7c:78:22:59:60:44:39:95:5e:9f:24:d7:1a:d9:09: 1c:3c:67:05:6b:37:35:1a:a1:42:5c:15:d8:4c:22: 39:4b:9f:b6:48:09:08:d2:fa:d9:19:67:4a:7a:32: b6:6c:d5:ca:8a:af:23:21:32:28:f2:3a:06:cc:be: 64:e5:73:13:78:bf:53:7a:79:07:33:4c:23:5f:f7: 01:98:26:5f:b1:10:5d:83:3c:4b:51:6a:e4:69:27: 3f:95:ad:89:3d:00:9e:a7:75:80:49:cc:d1:92:fe: 7b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:FF:67:95:97:D7:40:E6:30:A8:F5:2E:AF:BD:20:17:FB:CC:17:54 X509v3 Authority Key Identifier: keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:52:5d:69:c8:93:73:fa:b8:e4:e3:7e:64:85:63:73:59:ff: 8e:29:99:87:28:4a:48:32:4b:fd:a8:40:20:6a:ae:82:6d:45: f5:c6:39:1d:cf:27:30:25:b5:7c:f2:c4:00:bd:a7:9e:93:ff: 01:d3:1b:90:8f:90:69:68:d6:de:90:91:44:48:c9:f6:a0:12: 8d:0d:0a:7b:90:a1:7f:a8:9c:76:e5:9a:1d:b6:83:1f:11:6c: 59:98:0d:88:cd:ce:b4:f0:22:37:5d:e2:54:2c:06:f6:bf:a4: 53:64:c2:e7:e3:48:a7:01:bd:0b:29:c1:e9:cd:f0:93:6d:1b: a3:5a:ed:1a:a4:b8:86:f5:95:eb:5f:e9:6c:e7:34:06:0c:75: 00:a9:f3:70:9c:56:75:a2:8e:c2:7e:29:44:47:b8:5d:5f:35: 21:3b:d6:6c:74:e8:72:26:c4:3b:68:36:6a:7f:f6:ca:d8:b2: ca:9d:84:61:2f:23:b2:d7:ea:4f:50:7c:a3:2f:c6:79:7a:b1: 8c:6c:61:e3:14:c2:a1:c7:9b:a3:1e:fc:6b:e5:69:ac:bf:29: d6:b7:3b:fb:cb:db:09:90:78:e6:48:ef:a9:de:36:ce:86:18: 6b:f3:eb:cd:ec:99:51:67:33:9f:50:81:80:71:14:62:99:74: 71:4d:96:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3Q0YxMTAvBgNVBAUTKEVDM0Q4MDdGNzkzQzlDRjVGQ0UzMzVFRTE1RTA5ODQ0 NDlCNDMwOTYwHhcNMjUwODExMDY1NjI1WhcNMjUwODE4MDY1NjI1WjAYMRYwFAYD VQQDEw02ODk5OTQxYS02MjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzDEp0EDw1RNQ/guutVqDC8/k8rRTmNLep0Y0bSZE4AjfxKp1iQ+095uP1/g te3dNKzofWNsoirI+0pU7a9ulX2SJ7u0Al7WDd6qBAW5299sMRkC+D7PdVRGInX7 PAu4J+L9HbfeZPUyHHmbKpt0l+lGHqj7zHlSYH3cUMQTutFGTbSOKuI/c7GoiZ53 Ive27R0FQ/J8eCJZYEQ5lV6fJNca2QkcPGcFazc1GqFCXBXYTCI5S5+2SAkI0vrZ GWdKejK2bNXKiq8jITIo8joGzL5k5XMTeL9TenkHM0wjX/cBmCZfsRBdgzxLUWrk aSc/la2JPQCep3WASczRkv57FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFf/Z5WX 10DmMKj1Lq+9IBf7zBdUMB8GA1UdIwQYMBaAFOw9gH95PJz1/OM17hXgmERJtDCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTdDRi9CNDE1NTQ1OEIy QzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5QWDg0elh1RmVDWVJFbTBN SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEMkFmM2s4blBYODR6WHVGZUNZUkVtME1KWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTdDRi9CNDE1NTQ1OEIyQzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5Q WDg0elh1RmVDWVJFbTBNSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARUl1pyJNz+rjk435khWNzWf+OKZmHKEpIMkv9qEAgaq6CbUX1xjkd zycwJbV88sQAvaeek/8B0xuQj5BpaNbekJFESMn2oBKNDQp7kKF/qJx25ZodtoMf EWxZmA2Izc608CI3XeJULAb2v6RTZMLn40inAb0LKcHpzfCTbRujWu0apLiG9ZXr X+ls5zQGDHUAqfNwnFZ1oo7CfilER7hdXzUhO9ZsdOhyJsQ7aDZqf/bK2LLKnYRh LyOy1+pPUHyjL8Z5erGMbGHjFMKhx5ujHvxr5WmsvynWtzv7y9sJkHjmSO+p3jbO hhhr8+vN7JlRZzOfUIGAcRRimXRxTZbj -----END CERTIFICATE-----Generated at Wed Aug 13 04:30:27 2025 by rpki-client