$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft File: 7CxkBsqh85689Fh1MVANVrlTYsA.mft (raw, json) Hash identifier: L7Y3qxiKacBdL0o1qBTPkp7ExE3Zzdba8kc/v5Cst+k= Subject key identifier: 21:79:72:1E:B4:24:85:67:09:ED:19:BD:B8:20:E1:C5:7A:7C:C3:48 Authority key identifier: EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 Certificate issuer: /CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Certificate serial: 34EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft Manifest number: 34C8 Signing time: Tue 12 Aug 2025 14:16:44 +0000 Manifest this update: Tue 12 Aug 2025 14:16:43 +0000 Manifest next update: Tue 19 Aug 2025 14:16:43 +0000 Files and hashes: 1: 7CxkBsqh85689Fh1MVANVrlTYsA.crl (hash: UTHipJIXV5FMaGVKKGq81Fa4lZp6cM9wz3kffdij4fw=) 2: 3768DFB41C6011EEAF58FB61C4F9AE02.roa (hash: Un+gRmwEe7RmL1YJ6V7sBXAGRc3bNfxPT16yGupUBnU=) 3: 316EEFD4AAE511E68EBE4D52C4F9AE02.roa (hash: JRg1LZXcFPzNHPCZgdhpiNiCJWsLCkY/WCIHJGUF1Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 14:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13550 (0x34ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Validity Not Before: Aug 12 14:16:43 2025 GMT Not After : Aug 19 14:16:43 2025 GMT Subject: CN=689b4ccc-8d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2e:a2:e2:75:86:98:09:e3:b3:07:38:49:bd: 57:c3:2f:36:bd:71:f2:a2:c9:da:45:82:63:df:96: f0:79:2c:8e:fb:5c:f7:3a:02:9b:70:46:8a:8b:0d: 9b:3e:63:1f:74:c7:e7:90:f8:65:fb:2e:42:63:3d: 46:77:5d:2e:c3:a2:9e:56:10:ce:3d:f8:7d:12:20: ca:91:7e:26:73:9d:54:db:79:4d:e7:6e:89:d6:5d: d2:c3:1e:c0:24:53:c4:c9:51:d5:29:0e:99:1f:63: 09:2c:4d:06:93:d9:e4:98:f7:20:4a:dd:1a:8f:bd: 41:1b:c0:a9:b9:67:f9:bd:c8:7c:48:89:e0:09:06: 1a:1e:e8:b5:ec:c9:18:13:6a:34:37:9b:08:d0:19: 09:ce:d8:45:b9:39:29:82:a3:39:02:d4:9c:8e:d2: e6:2b:28:c7:92:d4:eb:e0:d2:82:2a:99:9e:47:3f: 9b:2f:ae:09:bb:b9:2f:37:d2:71:f8:8f:28:7f:95: ff:22:0d:80:5c:38:e9:99:22:50:5c:3b:aa:48:b3: 40:21:90:7b:89:e5:cb:60:f4:af:be:29:d7:83:8f: 9e:56:32:9b:51:b0:77:0d:cd:60:ee:a1:f9:b7:cd: 30:74:7c:b8:96:b1:49:31:58:b9:3b:a8:45:d4:fa: f9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:79:72:1E:B4:24:85:67:09:ED:19:BD:B8:20:E1:C5:7A:7C:C3:48 X509v3 Authority Key Identifier: keyid:EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:c1:28:cd:40:c4:85:49:8e:2c:04:b0:95:d3:0f:7d:8e:27: f1:a5:ca:5e:12:14:fa:ca:b8:4c:39:27:54:f9:b6:6f:6b:65: 48:1c:db:32:2d:22:9f:72:a8:a8:e6:70:13:f3:6e:f2:a3:c1: 73:af:bd:5c:ec:f6:97:ed:96:59:fd:b9:12:de:2a:96:fc:ba: ad:2d:bf:f7:c7:e2:ec:74:f0:b9:0f:ec:21:e1:ad:f8:cc:c5: 3c:41:51:36:50:bd:d0:22:85:38:b6:5c:6d:39:30:1c:e4:ba: f1:1d:74:7f:83:28:a4:73:21:c0:c6:ba:29:d3:2d:6e:9f:2f: b1:0f:48:e3:24:75:d2:b6:33:74:73:86:d2:5e:ad:31:66:29: 5d:82:b7:29:34:1d:11:ff:87:be:38:7e:da:76:25:2a:f2:26: f1:1c:5f:88:16:8b:6e:ce:51:d6:57:7e:c1:85:1f:9e:5f:0d: 52:72:7c:51:02:33:8d:02:9a:d4:3e:b9:46:37:85:72:25:8d: 82:35:4b:a4:99:e2:6e:ce:6d:7c:7c:0a:42:b6:d7:98:85:d5: 48:92:82:f3:86:28:39:81:a9:c6:3a:f8:26:30:b4:9d:2f:2e: b1:f4:09:37:a1:07:a8:df:95:26:30:11:b4:f3:b7:11:a4:77: 9c:ca:cc:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKEVDMkM2NDA2Q0FBMUYzOUVCQ0Y0NTg3NTMxNTAwRDU2 Qjk1MzYyQzAwHhcNMjUwODEyMTQxNjQzWhcNMjUwODE5MTQxNjQzWjAYMRYwFAYD VQQDEw02ODliNGNjYy04ZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2S6i4nWGmAnjswc4Sb1Xwy82vXHyosnaRYJj35bweSyO+1z3OgKbcEaKiw2b PmMfdMfnkPhl+y5CYz1Gd10uw6KeVhDOPfh9EiDKkX4mc51U23lN526J1l3Swx7A JFPEyVHVKQ6ZH2MJLE0Gk9nkmPcgSt0aj71BG8CpuWf5vch8SIngCQYaHui17MkY E2o0N5sI0BkJzthFuTkpgqM5AtScjtLmKyjHktTr4NKCKpmeRz+bL64Ju7kvN9Jx +I8of5X/Ig2AXDjpmSJQXDuqSLNAIZB7ieXLYPSvvinXg4+eVjKbUbB3Dc1g7qH5 t80wdHy4lrFJMVi5O6hF1Pr5OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCF5ch60 JIVnCe0Zvbgg4cV6fMNIMB8GA1UdIwQYMBaAFOwsZAbKofOevPRYdTFQDVa5U2LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC80RTg2NDUwQzFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1Njg5RmgxTVZBTlZybFRZ c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdDeGtCc3FoODU2ODlGaDFNVkFOVnJsVFlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC80RTg2NDUwQzFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1 Njg5RmgxTVZBTlZybFRZc0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZwSjNQMSFSY4sBLCV0w99jifxpcpeEhT6yrhMOSdU+bZva2VIHNsy LSKfcqio5nAT827yo8Fzr71c7PaX7ZZZ/bkS3iqW/LqtLb/3x+LsdPC5D+wh4a34 zMU8QVE2UL3QIoU4tlxtOTAc5LrxHXR/gyikcyHAxrop0y1uny+xD0jjJHXStjN0 c4bSXq0xZildgrcpNB0R/4e+OH7adiUq8ibxHF+IFotuzlHWV37BhR+eXw1ScnxR AjONAprUPrlGN4VyJY2CNUukmeJuzm18fApCtteYhdVIkoLzhig5ganGOvgmMLSd Ly6x9Ak3oQeo35UmMBG087cRpHecysxa -----END CERTIFICATE-----Generated at Wed Aug 13 02:51:36 2025 by rpki-client