$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: tQ0cjvsbEfYLpk6OhFslT2qeDBIwfvGmnCzsDVtOKe4= Subject key identifier: DD:26:21:4D:06:CE:06:D6:F7:03:D1:BC:E0:67:D4:B7:E7:11:B2:63 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B42 Signing time: Fri 08 Aug 2025 19:25:31 +0000 Manifest this update: Fri 08 Aug 2025 19:25:30 +0000 Manifest next update: Fri 15 Aug 2025 19:25:30 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: ogsswuEq2+er8dSt1ResnQb3kOqesvunke5/72Jk5tc=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: NJ+vu7BB1LSL5IyZI4sxWSXiQvL3uuiHK69WI9ypRDY=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: 1Gen1/T5J9VcUP7yeBxePtjlwSEPjuywH9LIrIKtzGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2896 (0xb50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Aug 8 19:25:30 2025 GMT Not After : Aug 15 19:25:30 2025 GMT Subject: CN=68964f2a-fea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:89:e2:5e:99:a6:a9:a1:90:41:43:31:6d:e9: 82:7e:8f:71:c6:c4:2b:a4:bb:4d:2c:00:0c:7e:ac: d6:9b:db:ff:e5:70:70:34:a1:6d:65:21:8a:c2:a8: c9:ab:e8:76:62:60:11:ac:a2:bd:1d:56:ba:29:b3: c5:ed:1f:8b:e8:5c:38:9e:e9:64:f3:f5:ec:d5:1c: ba:b8:1e:ac:72:c4:22:25:ac:e0:a4:a5:fc:37:0e: 8e:2f:2a:43:d4:a3:5f:a2:b0:ea:b5:d6:56:a9:0b: 61:32:44:88:31:8e:79:44:01:56:9b:4a:44:35:4a: ac:73:cc:ec:06:2a:68:f7:0c:20:5c:1b:e4:da:4d: d1:50:cc:d7:e9:11:16:82:3d:ba:df:01:68:39:ad: 69:71:d4:ab:94:eb:07:d7:b1:4b:3d:a2:e7:6a:6f: 88:78:66:d8:08:fd:14:74:22:28:dd:31:6b:3c:eb: e0:57:fc:d4:fe:90:93:75:55:7f:28:54:d7:56:b3: f0:2b:ea:7c:b6:d2:5c:f9:6e:95:ee:4d:0f:57:a7: 91:eb:42:04:f4:7f:81:c7:25:b4:bb:54:a3:9c:4c: 0d:dc:67:a6:ee:65:eb:d1:55:70:b7:77:da:2e:96: 06:88:04:88:e1:70:e0:8a:a0:f9:82:78:eb:7d:bc: a9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:26:21:4D:06:CE:06:D6:F7:03:D1:BC:E0:67:D4:B7:E7:11:B2:63 X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:dd:43:44:52:df:af:95:fe:4b:d8:7b:e0:50:90:53:26:96: b2:c7:db:e0:b3:e8:46:4f:02:80:aa:cf:bb:60:52:db:5f:74: 4b:be:d3:7f:f2:3a:bf:e8:33:7e:2e:10:d7:e6:ce:57:2e:ee: ea:69:48:ec:fa:25:a3:cf:57:fa:75:8e:17:93:8f:c3:e3:c0: 72:b7:0b:bc:1c:04:d9:9e:a3:0c:a4:fd:de:29:b4:90:56:3f: cd:e5:71:ef:51:b2:bf:28:12:09:ac:11:35:30:3f:13:5c:7d: 39:2b:c5:36:30:e8:38:2a:2f:bd:20:e1:2a:93:66:e8:e5:0a: 11:08:91:61:ba:4d:8b:fa:0b:a0:d9:89:c1:b1:d9:8b:41:bc: 6d:cb:0f:bd:f2:1e:24:93:b6:20:bb:34:3f:f9:8a:67:5d:40: 2d:ae:e1:1b:ad:b0:12:24:a4:ed:aa:31:b5:c4:68:ba:85:39: d1:bb:40:db:92:74:39:49:5e:f5:79:af:bb:4c:c9:f7:c5:2a: 15:c2:ab:00:dd:a4:c3:e4:e8:4f:c6:d2:e8:65:c9:6c:99:18: 3f:b9:51:4c:d1:13:3d:cb:4a:25:27:31:72:82:14:5c:8a:7e: ee:d5:c8:58:56:a5:bf:01:4e:9d:be:e2:65:67:16:ba:f1:af: 8a:02:45:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwODA4MTkyNTMwWhcNMjUwODE1MTkyNTMwWjAYMRYwFAYD VQQDEw02ODk2NGYyYS1mZWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoniXpmmqaGQQUMxbemCfo9xxsQrpLtNLAAMfqzWm9v/5XBwNKFtZSGKwqjJ q+h2YmARrKK9HVa6KbPF7R+L6Fw4nulk8/Xs1Ry6uB6scsQiJazgpKX8Nw6OLypD 1KNforDqtdZWqQthMkSIMY55RAFWm0pENUqsc8zsBipo9wwgXBvk2k3RUMzX6REW gj263wFoOa1pcdSrlOsH17FLPaLnam+IeGbYCP0UdCIo3TFrPOvgV/zU/pCTdVV/ KFTXVrPwK+p8ttJc+W6V7k0PV6eR60IE9H+BxyW0u1SjnEwN3Gem7mXr0VVwt3fa LpYGiASI4XDgiqD5gnjrfbyp5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0mIU0G zgbW9wPRvOBn1LfnEbJjMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz3UNEUt+vlf5L2HvgUJBTJpayx9vgs+hGTwKAqs+7YFLbX3RLvtN/ 8jq/6DN+LhDX5s5XLu7qaUjs+iWjz1f6dY4Xk4/D48Bytwu8HATZnqMMpP3eKbSQ Vj/N5XHvUbK/KBIJrBE1MD8TXH05K8U2MOg4Ki+9IOEqk2bo5QoRCJFhuk2L+gug 2YnBsdmLQbxtyw+98h4kk7YguzQ/+YpnXUAtruEbrbASJKTtqjG1xGi6hTnRu0Db knQ5SV71ea+7TMn3xSoVwqsA3aTD5OhPxtLoZclsmRg/uVFM0RM9y0olJzFyghRc in7u1chYVqW/AU6dvuJlZxa68a+KAkWa -----END CERTIFICATE-----Generated at Sat Aug 9 23:28:12 2025 by rpki-client