$ rpki-client -vvf rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft File: 7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft (raw, json) Hash identifier: lC8tBPrvnLA8Lq3z9219HJyB2MG85HJji3P5VUIU3Xw= Subject key identifier: FC:EB:8F:72:A5:8D:7D:6C:97:F8:43:4E:C8:3C:EE:DA:30:56:B2:4F Authority key identifier: EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 Certificate issuer: /CN=A91B04E3/serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Certificate serial: 0AAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft Manifest number: 0AA9 Signing time: Sun 10 Aug 2025 19:33:01 +0000 Manifest this update: Sun 10 Aug 2025 19:33:00 +0000 Manifest next update: Sun 17 Aug 2025 19:33:00 +0000 Files and hashes: 1: 7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl (hash: 5yqMqLh/wW5aij3tp5s3zLguzjRLla7XfwOQGjaoiAs=) 2: A7D265605BB411EAB5B9A73BC4F9AE02.roa (hash: wRiU0pz+/rk6H4beDLKQQM79S2Mgy7c+Kq9SVKFoW2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2735 (0xaaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B04E3, serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Validity Not Before: Aug 10 19:33:00 2025 GMT Not After : Aug 17 19:33:00 2025 GMT Subject: CN=6898f3ec-1353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4d:45:be:73:c4:d6:4f:a1:2a:88:c4:61:91: 0c:61:9d:03:b6:47:2b:1f:cb:9a:f3:e5:85:56:0c: 22:b4:80:e8:25:7f:18:0e:ba:1e:52:65:0c:07:29: b1:44:c4:07:a2:fe:4c:3c:b0:62:5b:aa:9d:69:31: 10:e1:26:09:5d:b9:29:53:7d:75:df:58:ee:f0:ca: 9e:bf:6d:dc:7a:be:54:0a:a8:4e:09:04:d4:29:69: 5c:0c:5e:6e:3c:6b:5f:02:02:85:4f:a6:36:a9:d6: b2:33:a5:1d:e1:36:8f:1b:7a:ff:cc:bb:0f:33:b6: 33:74:70:d5:8c:a7:42:ed:75:1b:a4:f0:f3:9f:3a: 35:9d:10:af:5e:27:64:6b:d2:ed:4a:0b:2c:a1:33: ab:3a:7a:51:98:eb:0f:94:0a:fc:76:ce:44:e8:94: 5b:4a:86:2e:d7:17:a2:c8:a4:45:74:56:ac:68:33: 61:c8:03:df:24:d8:2e:cd:5c:db:03:a3:f2:21:01: e2:c6:f0:85:e6:70:bc:74:5d:3d:0e:f9:5e:a3:d1: 24:36:be:63:7e:4d:4c:5b:9b:1b:c5:fe:eb:5d:08: 7a:04:cb:d4:14:aa:44:0c:72:d0:57:7b:32:ee:72: e9:93:9c:e3:52:c2:6d:45:78:3a:16:33:3b:a0:3b: 25:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:EB:8F:72:A5:8D:7D:6C:97:F8:43:4E:C8:3C:EE:DA:30:56:B2:4F X509v3 Authority Key Identifier: keyid:EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:ac:9d:c1:91:b7:d7:8a:73:35:d5:89:2f:0d:b9:d0:aa:04: 33:52:07:90:1d:ec:dd:71:f8:4b:33:9a:03:66:a4:37:9c:05: c3:be:9c:2d:de:63:df:88:ae:db:e3:ea:a4:56:b3:fb:e4:1a: 7b:e4:b1:80:b8:92:09:44:53:90:99:4c:b0:a8:54:b5:45:32: 6a:f8:86:6c:0f:10:70:9c:f1:aa:ce:0f:54:23:f3:00:6f:63: b2:68:9b:cb:91:c6:56:87:1b:1e:b5:12:65:86:5a:aa:04:51: e1:8b:1b:ad:8f:76:1f:ae:da:3a:32:61:50:a2:10:eb:88:40: f7:f0:9e:4d:db:e5:1c:2e:a4:60:b4:62:52:66:1a:f8:e8:9a: 7f:fd:49:87:cd:c4:83:6e:80:82:07:68:c1:83:f5:42:87:33: ff:78:0a:f5:39:ff:8b:f3:82:a9:33:24:cf:c4:f8:06:ae:09: 95:0f:8b:80:e2:3f:d1:2e:bb:bb:c9:40:c3:6b:7c:e4:15:7f: ac:9d:cb:44:84:3c:ef:33:49:c8:63:dc:9e:26:07:41:5a:9f: 29:4d:7d:00:81:0b:a4:31:e1:cc:c7:f7:e2:45:0c:b0:db:55: e1:ee:bb:0e:bc:2a:66:98:71:38:dc:5a:ab:31:70:1b:de:9c: 71:ba:31:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA0RTMxMTAvBgNVBAUTKEVDNThCNDM3OEZDQkZGNENCMTI0MUY4MkYzQkNDMEU4 NzJFNEIzOTYwHhcNMjUwODEwMTkzMzAwWhcNMjUwODE3MTkzMzAwWjAYMRYwFAYD VQQDEw02ODk4ZjNlYy0xMzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3E1FvnPE1k+hKojEYZEMYZ0DtkcrH8ua8+WFVgwitIDoJX8YDroeUmUMBymx RMQHov5MPLBiW6qdaTEQ4SYJXbkpU31131ju8Mqev23cer5UCqhOCQTUKWlcDF5u PGtfAgKFT6Y2qdayM6Ud4TaPG3r/zLsPM7YzdHDVjKdC7XUbpPDznzo1nRCvXidk a9LtSgssoTOrOnpRmOsPlAr8ds5E6JRbSoYu1xeiyKRFdFasaDNhyAPfJNguzVzb A6PyIQHixvCF5nC8dF09Dvleo9EkNr5jfk1MW5sbxf7rXQh6BMvUFKpEDHLQV3sy 7nLpk5zjUsJtRXg6FjM7oDsl5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzrj3Kl jX1sl/hDTsg87towVrJPMB8GA1UdIwQYMBaAFOxYtDePy/9MsSQfgvO8wOhy5LOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDRFMy8xNDgzQkQzNjVC QjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8weXhKQi1DODd6QTZITGtz NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGaTBONF9MXzB5eEpCLUM4N3pBNkhMa3M1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDRFMy8xNDgzQkQzNjVCQjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8w eXhKQi1DODd6QTZITGtzNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmrJ3BkbfXinM11YkvDbnQqgQzUgeQHezdcfhLM5oDZqQ3nAXDvpwt 3mPfiK7b4+qkVrP75Bp75LGAuJIJRFOQmUywqFS1RTJq+IZsDxBwnPGqzg9UI/MA b2OyaJvLkcZWhxsetRJlhlqqBFHhixutj3Yfrto6MmFQohDriED38J5N2+UcLqRg tGJSZhr46Jp//UmHzcSDboCCB2jBg/VChzP/eAr1Of+L84KpMyTPxPgGrgmVD4uA 4j/RLru7yUDDa3zkFX+snctEhDzvM0nIY9yeJgdBWp8pTX0AgQukMeHMx/fiRQyw 21Xh7rsOvCpmmHE43FqrMXAb3pxxujGD -----END CERTIFICATE-----Generated at Mon Aug 11 08:57:19 2025 by rpki-client