$ rpki-client -vvf rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft File: 7HnRemDtVw7Ge1EWFitgi2C5zUE.mft (raw, json) Hash identifier: dBcjpXJjUgJTGk6lzbP2KX/pKyovEBcEPmksOrh+Els= Subject key identifier: 00:66:63:B2:AB:17:0F:31:E0:79:AC:D1:A5:44:56:0D:1F:86:B2:1E Authority key identifier: EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 Certificate issuer: /CN=A91C309F/serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Certificate serial: 06CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft Manifest number: 06C6 Signing time: Fri 08 Aug 2025 22:28:42 +0000 Manifest this update: Fri 08 Aug 2025 22:28:42 +0000 Manifest next update: Fri 15 Aug 2025 22:28:42 +0000 Files and hashes: 1: 7HnRemDtVw7Ge1EWFitgi2C5zUE.crl (hash: KLitU3ks3qxxCplhk+2ytu+8qP/zZzMVpP2pvGy4E+A=) 2: C144C89ADCF311EC80AD955EC4F9AE02.roa (hash: oHlo3Sofjys47IZ2Ei8IuoMAeL8C2VUTJUZO9aDUVcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1741 (0x6cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C309F, serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Validity Not Before: Aug 8 22:28:42 2025 GMT Not After : Aug 15 22:28:42 2025 GMT Subject: CN=68967a1a-920d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:dd:e6:85:3e:70:48:a2:42:e1:57:4f:62:79: 3f:23:b7:5b:5d:a9:a5:61:90:66:64:9d:4c:ea:cd: 4f:c5:7a:21:d8:4a:c1:d3:33:c1:82:3e:04:17:47: 27:40:c1:b6:22:15:5d:2f:bc:e6:d4:13:3f:01:d9: ed:ab:47:1e:a4:88:2d:19:b3:cf:35:de:8d:62:fb: 54:7e:0e:69:70:19:6a:b0:5a:b3:cc:35:c5:3d:e8: e8:81:91:32:44:04:7e:ea:c9:a7:5a:d0:4e:00:6a: 92:e5:d4:9f:88:7c:27:06:57:b3:26:d8:20:ac:50: 98:10:46:8b:87:44:01:be:6e:69:38:cf:77:2f:e2: 1e:e1:16:8a:fb:45:b8:1a:b4:e6:93:47:56:85:ec: 19:83:24:30:e0:06:86:d6:28:9a:21:69:14:f8:11: 6d:b0:0a:07:f7:b2:ba:51:a9:f6:ff:ab:d5:f0:b9: 0d:28:82:fd:b9:43:3f:7c:9c:20:4c:98:7e:f4:14: e8:1a:a8:2f:4f:14:e1:07:c0:90:5e:78:ed:cb:67: 92:24:a0:36:9f:1e:15:51:c4:27:f9:1a:64:f0:00: 3f:84:a6:f4:46:1f:76:a7:07:9e:6a:02:3b:07:52: 2f:ca:a4:24:90:91:7f:a1:46:fe:7a:0c:9d:28:a1: 19:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:66:63:B2:AB:17:0F:31:E0:79:AC:D1:A5:44:56:0D:1F:86:B2:1E X509v3 Authority Key Identifier: keyid:EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:2b:a9:93:5d:5b:9c:06:23:1c:24:0d:95:7b:34:64:db:28: 9e:0d:c5:12:b9:39:c9:fa:82:5d:ad:f3:79:5f:22:44:b5:c0: 5a:5c:e5:18:92:d3:48:bc:3a:21:5f:c3:ca:9e:32:d2:37:c7: 8e:39:07:df:50:4e:d1:0a:3e:2b:b2:c9:e8:da:f6:60:ab:6b: df:3f:03:0a:86:78:d2:ad:11:ff:e5:04:39:d2:cb:bd:73:85: d7:47:f3:6d:80:65:46:84:c3:d8:24:a4:31:29:60:e6:f4:a4: 47:ee:92:bc:3d:3a:0f:6e:b6:b9:7c:14:49:7a:41:4c:ea:7f: 73:72:49:c5:56:ea:94:d4:8c:73:f8:55:44:87:58:7a:a4:c5: ee:4a:3a:43:27:b8:fb:0f:19:45:bd:2d:24:7f:54:7d:0c:0a: 31:34:17:a1:b1:98:a5:c2:90:f6:b5:5a:9a:3e:f4:44:b1:4a: 2b:6e:5f:9d:f7:f6:fd:a3:89:dc:13:a9:58:3b:fc:3b:64:f4: 8b:5f:30:98:8e:c6:9b:d0:38:d5:f9:78:03:b1:0b:89:e5:e5: a3:f5:f5:e3:06:3a:43:da:d8:7b:93:73:f3:ed:40:a6:dc:e2: 25:6f:20:0f:fe:ae:9b:ff:24:98:d4:e4:7e:11:01:df:3a:5c: d4:ae:5a:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMwOUYxMTAvBgNVBAUTKEVDNzlEMTdBNjBFRDU3MEVDNjdCNTExNjE2MkI2MDhC NjBCOUNENDEwHhcNMjUwODA4MjIyODQyWhcNMjUwODE1MjIyODQyWjAYMRYwFAYD VQQDEw02ODk2N2ExYS05MjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs93mhT5wSKJC4VdPYnk/I7dbXamlYZBmZJ1M6s1PxXoh2ErB0zPBgj4EF0cn QMG2IhVdL7zm1BM/Adntq0cepIgtGbPPNd6NYvtUfg5pcBlqsFqzzDXFPejogZEy RAR+6smnWtBOAGqS5dSfiHwnBlezJtggrFCYEEaLh0QBvm5pOM93L+Ie4RaK+0W4 GrTmk0dWhewZgyQw4AaG1iiaIWkU+BFtsAoH97K6Uan2/6vV8LkNKIL9uUM/fJwg TJh+9BToGqgvTxThB8CQXnjty2eSJKA2nx4VUcQn+Rpk8AA/hKb0Rh92pweeagI7 B1IvyqQkkJF/oUb+egydKKEZUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABmY7Kr Fw8x4Hms0aVEVg0fhrIeMB8GA1UdIwQYMBaAFOx50Xpg7VcOxntRFhYrYItguc1B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA5Ri8xREI0ODNBNDY5 REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3N0dlMUVXRml0Z2kyQzV6 VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdIblJlbUR0Vnc3R2UxRVdGaXRnaTJDNXpVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzA5Ri8xREI0ODNBNDY5REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3 N0dlMUVXRml0Z2kyQzV6VUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4K6mTXVucBiMcJA2VezRk2yieDcUSuTnJ+oJdrfN5XyJEtcBaXOUY ktNIvDohX8PKnjLSN8eOOQffUE7RCj4rssno2vZgq2vfPwMKhnjSrRH/5QQ50su9 c4XXR/NtgGVGhMPYJKQxKWDm9KRH7pK8PToPbra5fBRJekFM6n9zcknFVuqU1Ixz +FVEh1h6pMXuSjpDJ7j7DxlFvS0kf1R9DAoxNBehsZilwpD2tVqaPvREsUorbl+d 9/b9o4ncE6lYO/w7ZPSLXzCYjsab0DjV+XgDsQuJ5eWj9fXjBjpD2th7k3Pz7UCm 3OIlbyAP/q6b/ySY1OR+EQHfOlzUrlqB -----END CERTIFICATE-----Generated at Sun Aug 10 16:11:10 2025 by rpki-client