$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: hR9c2AIlSt4uwuZsPf2QqZWqRn9OV5AOAPowYwfzHVU= Subject key identifier: AC:3C:06:C5:A5:A4:93:1D:BA:D0:F1:C7:AF:A8:F4:51:9D:9E:8F:58 Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 34A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 4007 Signing time: Sun 10 Aug 2025 14:48:00 +0000 Manifest this update: Sun 10 Aug 2025 14:48:00 +0000 Manifest next update: Sun 17 Aug 2025 14:48:00 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: W4D2uq7f9YexU2KusVFPlE6boWHMFOZ8WBe3xsM4/f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13479 (0x34a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: Aug 10 14:48:00 2025 GMT Not After : Aug 17 14:48:00 2025 GMT Subject: CN=6898b120-2841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:3b:64:e0:d0:f6:7e:b7:50:a8:80:91:92:7f: 66:21:72:b7:a0:71:90:71:cf:6e:e8:4e:d1:b1:89: 4b:18:30:c8:cd:67:f7:db:7a:ed:67:23:ee:7c:85: e0:81:f6:64:6c:23:23:46:f2:39:c8:c5:a5:04:b2: a8:14:a3:fb:3b:6e:54:0b:d5:92:69:3a:98:13:33: 9a:3f:c5:85:bd:c6:93:9e:03:46:df:41:26:4b:ab: 7c:34:ea:f9:83:fd:24:ef:b8:02:03:4b:6b:f3:c8: 04:b3:d4:db:e3:a1:87:bb:0b:0d:a3:4e:8a:28:14: 6f:ac:d5:66:60:d1:30:1c:70:b1:19:92:cb:2e:d5: fd:cb:d1:b1:aa:ca:46:76:b9:00:52:7b:52:ec:7b: 1d:c0:06:d4:b4:c7:b0:52:6a:38:e6:e8:f4:d7:50: 76:b4:1a:a8:ad:37:85:6f:0b:1c:50:19:5c:cb:f7: 67:55:91:bc:55:a8:3b:20:0e:80:bc:62:81:1a:35: e5:f8:d4:a0:15:ae:68:a0:5e:96:07:1e:e4:c5:09: ff:9f:e8:f6:e0:97:90:56:41:7f:33:d0:68:78:84: d0:71:03:f5:5c:84:0a:46:f1:07:31:b1:b5:51:ea: e4:4e:d4:61:75:7d:e8:94:71:62:a6:e1:2d:8a:ed: 04:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3C:06:C5:A5:A4:93:1D:BA:D0:F1:C7:AF:A8:F4:51:9D:9E:8F:58 X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:24:75:33:ff:28:e8:fb:d3:d2:dc:a3:1b:28:b4:c8:fd:f0: d8:d8:7c:b2:6d:5a:44:5f:17:ea:16:b9:ec:a4:ec:94:59:d5: 5c:47:85:61:29:9c:9f:12:f8:9c:d2:79:74:78:c1:62:2e:45: c4:1e:76:94:8a:00:50:1d:8f:2f:28:78:4a:b5:77:a6:51:f4: 4b:89:55:1f:d5:9c:22:fc:05:ce:99:f7:47:7a:ae:bb:06:46: f6:36:d8:50:dd:1b:0c:c5:23:21:52:63:fa:24:aa:88:3e:c9: 32:14:39:04:1d:94:59:53:2e:03:d9:8a:02:04:b9:ce:e7:0c: 8d:92:1c:f5:59:ec:d5:a1:3f:f6:45:d8:79:16:93:04:48:23: 44:3f:98:cd:8d:e9:7f:6a:51:e6:71:2a:cc:f2:0f:6d:4f:f0: df:ed:b3:e8:eb:7f:e2:40:7a:ca:e9:71:6d:c3:d4:aa:ef:77: 74:82:dd:54:53:8b:79:a1:87:14:f2:91:ea:ed:17:80:03:71: 57:c2:52:e6:86:62:1c:52:45:83:0e:6f:33:83:31:89:e9:d3: 52:1e:9c:d8:70:1b:82:cd:59:ac:2c:08:3a:a7:b3:f0:38:e8: f0:e7:7c:f4:de:ec:25:3c:74:34:e7:4f:77:62:28:3e:93:a4: eb:cc:b1:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjUwODEwMTQ0ODAwWhcNMjUwODE3MTQ0ODAwWjAYMRYwFAYD VQQDEw02ODk4YjEyMC0yODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Ttk4ND2frdQqICRkn9mIXK3oHGQcc9u6E7RsYlLGDDIzWf323rtZyPufIXg gfZkbCMjRvI5yMWlBLKoFKP7O25UC9WSaTqYEzOaP8WFvcaTngNG30EmS6t8NOr5 g/0k77gCA0tr88gEs9Tb46GHuwsNo06KKBRvrNVmYNEwHHCxGZLLLtX9y9GxqspG drkAUntS7HsdwAbUtMewUmo45uj011B2tBqorTeFbwscUBlcy/dnVZG8Vag7IA6A vGKBGjXl+NSgFa5ooF6WBx7kxQn/n+j24JeQVkF/M9BoeITQcQP1XIQKRvEHMbG1 UerkTtRhdX3olHFipuEtiu0EMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKw8BsWl pJMdutDxx6+o9FGdno9YMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXJHUz/yjo+9PS3KMbKLTI/fDY2HyybVpEXxfqFrnspOyUWdVcR4Vh KZyfEvic0nl0eMFiLkXEHnaUigBQHY8vKHhKtXemUfRLiVUf1Zwi/AXOmfdHeq67 Bkb2NthQ3RsMxSMhUmP6JKqIPskyFDkEHZRZUy4D2YoCBLnO5wyNkhz1WezVoT/2 Rdh5FpMESCNEP5jNjel/alHmcSrM8g9tT/Df7bPo63/iQHrK6XFtw9Sq73d0gt1U U4t5oYcU8pHq7ReAA3FXwlLmhmIcUkWDDm8zgzGJ6dNSHpzYcBuCzVmsLAg6p7Pw OOjw53z03uwlPHQ05093Yig+k6TrzLEa -----END CERTIFICATE-----Generated at Sun Aug 10 21:02:35 2025 by rpki-client