$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft File: 7a8emnnZ_ssQeIOv03V_qPcKMtc.mft (raw, json) Hash identifier: bLC2zhpuZyyN8owo1BZbBzHadCBbQ5bmHTIqHhsCmso= Subject key identifier: 1A:72:3D:41:B7:AC:E4:65:BC:65:AE:6D:15:FD:14:8E:31:23:7E:9C Authority key identifier: ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 Certificate issuer: /CN=A91A2F6C/serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Certificate serial: 09C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft Manifest number: 09BA Signing time: Fri 08 Aug 2025 20:19:56 +0000 Manifest this update: Fri 08 Aug 2025 20:19:56 +0000 Manifest next update: Fri 15 Aug 2025 20:19:56 +0000 Files and hashes: 1: 7a8emnnZ_ssQeIOv03V_qPcKMtc.crl (hash: /pBhkUrmhQcbPFQA5W138zgx6Nif83ka6r05AzOCPXA=) 2: FA7CB46C8AB411EA89D83541C4F9AE02.roa (hash: ZKzXf/DOzsl1EKQee5k9LA/isQewfxrXPq7TVjAdiX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2497 (0x9c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F6C, serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Validity Not Before: Aug 8 20:19:56 2025 GMT Not After : Aug 15 20:19:56 2025 GMT Subject: CN=68965bec-429c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e3:18:67:f6:ac:fb:d2:cf:e2:f7:8b:9e:03: c7:84:81:db:43:5a:90:fa:21:cb:fc:16:0c:8a:73: ff:c9:d5:78:a0:77:d9:12:ea:05:09:c0:f1:d8:d1: 02:bd:f5:4b:dd:b3:d3:f1:19:83:50:62:8c:0c:61: 1b:3b:cd:0a:20:66:6a:79:21:a7:27:c0:8e:92:19: c9:ac:26:b0:c7:5c:45:26:4f:f4:96:25:03:9a:78: 4b:1f:54:16:32:15:34:ae:f4:97:a1:54:b1:96:e6: 5d:57:24:02:bd:55:5e:6c:fa:75:38:94:10:33:47: 6b:68:9e:85:4e:78:37:9d:59:a2:85:a7:84:ef:68: 92:6f:86:3e:a1:5b:1f:0c:e6:14:5a:99:4b:78:a0: 77:c0:6d:7f:b1:7c:3d:4b:61:6e:9d:99:af:9f:72: 2b:cb:3c:62:83:ef:e0:8c:e3:ff:10:42:2f:c7:e7: f0:29:30:ed:b4:96:fe:f5:cd:b7:55:15:9b:d3:95: 86:2e:92:2d:49:17:dd:30:d2:a0:41:f8:f6:20:9e: d9:5c:11:ce:28:ed:71:bc:dc:ee:9c:74:3c:93:66: d3:b4:81:fb:af:06:b4:6e:bc:8c:df:38:95:77:b9: 51:32:f1:3d:09:a5:9e:4f:41:d4:3b:70:94:cd:cc: b3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:72:3D:41:B7:AC:E4:65:BC:65:AE:6D:15:FD:14:8E:31:23:7E:9C X509v3 Authority Key Identifier: keyid:ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:08:fb:a2:2e:0b:44:84:ed:aa:54:e7:e2:57:12:de:a4:42: d7:96:91:0d:8e:a7:65:72:b8:18:ee:8e:03:2a:df:fb:90:9e: 53:41:61:ac:fe:69:15:83:e5:7e:64:0e:64:34:e5:96:76:c3: 8c:f4:ec:9d:42:e7:3c:7b:cc:64:d0:4d:b5:93:9f:3e:6b:5d: bd:40:5b:51:4f:e0:0e:52:60:88:9e:35:30:10:fe:99:07:1b: 21:f4:6f:87:00:45:7d:38:41:60:cd:c0:0e:1d:a0:99:a3:a8: 2f:3c:cd:fe:1b:c5:72:9e:3f:b7:7c:93:84:91:34:fc:8c:c0: b9:33:f5:7d:9d:33:c0:04:77:df:8a:e0:8e:10:83:d7:cd:93: a3:d4:33:cb:8a:8e:ba:97:ca:51:2a:40:81:3d:35:c8:c1:58: 5a:a1:41:14:3c:31:c4:79:47:71:6c:62:38:88:82:45:b3:d5: a8:a2:45:d7:7a:a9:bc:06:2c:f3:cc:3f:99:74:7c:dd:a7:26: 28:78:c4:7a:c0:49:4f:93:03:f6:00:bd:8f:9a:a3:69:aa:5b: c8:a3:8f:e3:4a:51:93:0b:82:a5:f6:26:fd:25:27:a5:0a:69: 04:d3:f2:7c:6c:1f:7c:65:6f:39:ba:de:a6:f7:14:5f:c0:45: c2:2f:6b:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGNkMxMTAvBgNVBAUTKEVEQUYxRTlBNzlEOUZFQ0IxMDc4ODNBRkQzNzU3RkE4 RjcwQTMyRDcwHhcNMjUwODA4MjAxOTU2WhcNMjUwODE1MjAxOTU2WjAYMRYwFAYD VQQDEw02ODk2NWJlYy00MjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqeMYZ/as+9LP4veLngPHhIHbQ1qQ+iHL/BYMinP/ydV4oHfZEuoFCcDx2NEC vfVL3bPT8RmDUGKMDGEbO80KIGZqeSGnJ8COkhnJrCawx1xFJk/0liUDmnhLH1QW MhU0rvSXoVSxluZdVyQCvVVebPp1OJQQM0draJ6FTng3nVmihaeE72iSb4Y+oVsf DOYUWplLeKB3wG1/sXw9S2FunZmvn3Iryzxig+/gjOP/EEIvx+fwKTDttJb+9c23 VRWb05WGLpItSRfdMNKgQfj2IJ7ZXBHOKO1xvNzunHQ8k2bTtIH7rwa0bryM3ziV d7lRMvE9CaWeT0HUO3CUzcyz6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpyPUG3 rORlvGWubRX9FI4xI36cMB8GA1UdIwQYMBaAFO2vHpp52f7LEHiDr9N1f6j3CjLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY2Qy85RTMxRjNCMjhB QjMxMUVBOTNBNkJBM0VDNEY5QUUwMi83YThlbW5uWl9zc1FlSU92MDNWX3FQY0tN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhOGVtbm5aX3NzUWVJT3YwM1ZfcVBjS010Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY2Qy85RTMxRjNCMjhBQjMxMUVBOTNBNkJBM0VDNEY5QUUwMi83YThlbW5uWl9z c1FlSU92MDNWX3FQY0tNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBICPuiLgtEhO2qVOfiVxLepELXlpENjqdlcrgY7o4DKt/7kJ5TQWGs /mkVg+V+ZA5kNOWWdsOM9OydQuc8e8xk0E21k58+a129QFtRT+AOUmCInjUwEP6Z Bxsh9G+HAEV9OEFgzcAOHaCZo6gvPM3+G8Vynj+3fJOEkTT8jMC5M/V9nTPABHff iuCOEIPXzZOj1DPLio66l8pRKkCBPTXIwVhaoUEUPDHEeUdxbGI4iIJFs9WookXX eqm8BizzzD+ZdHzdpyYoeMR6wElPkwP2AL2PmqNpqlvIo4/jSlGTC4Kl9ib9JSel CmkE0/J8bB98ZW85ut6m9xRfwEXCL2vC -----END CERTIFICATE-----Generated at Sat Aug 9 01:01:32 2025 by rpki-client