$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft File: B7Y7XcFse0rper0AhqMVbV10Rlk.mft (raw, json) Hash identifier: xNw3weuKeV+K8AWFCVD0OauIphZYqV7QAdrPMgVF1Bc= Subject key identifier: 4C:EF:21:05:22:AB:C5:5C:71:A2:9D:C9:CC:D2:2F:43:D8:CF:F7:49 Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 020F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft Manifest number: 020B Signing time: Thu 07 Aug 2025 02:40:22 +0000 Manifest this update: Thu 07 Aug 2025 02:40:22 +0000 Manifest next update: Thu 14 Aug 2025 02:40:22 +0000 Files and hashes: 1: B7Y7XcFse0rper0AhqMVbV10Rlk.crl (hash: Vz5dLTz16r0vBLn4r1Pg1D3OeyJVAy7i5Z7pd81zdvQ=) 2: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (hash: lJnZtZDQNzdO0qp1p8vNJySg5lDyaZrljj6ja2HApOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:40:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49, serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Aug 7 02:40:22 2025 GMT Not After : Aug 14 02:40:22 2025 GMT Subject: CN=68941216-4369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1e:1b:77:49:c2:60:31:9b:b4:ab:77:60:be: 55:f5:a3:3c:07:e3:fb:8d:c5:0d:08:9b:de:db:5d: d6:bb:df:4f:26:59:72:a1:21:ae:1f:a5:9a:ed:56: 1d:30:55:7d:06:d7:11:f0:6e:f3:ec:22:ee:bb:dc: 8d:44:c2:83:31:f6:e6:9e:07:c8:53:f0:45:c0:9e: df:ef:33:67:23:cc:bb:a6:f1:ff:f7:01:70:1c:d4: bd:56:51:34:4f:ca:39:53:2c:c7:d6:25:08:8a:ae: ca:fd:1f:7c:2a:4f:fd:6e:61:7f:87:e5:83:9c:c4: 1b:91:9b:94:b8:9d:2c:71:4e:a9:b3:66:12:fb:4a: bc:cd:2f:b9:84:28:7b:c8:3f:0a:9b:c7:87:00:32: 32:66:5f:f5:2a:f7:65:cd:67:e9:9b:7b:12:e7:5a: 44:ae:21:66:05:b9:d8:a2:04:55:4a:79:6c:db:7a: 94:b6:63:4f:9a:a7:38:92:7c:13:47:e3:37:67:8f: 4e:03:21:d8:03:0d:bb:95:d8:36:0b:9c:33:11:ce: a5:2c:db:cb:85:9a:29:75:8c:b8:8e:45:76:e6:81: 8b:70:d8:a5:86:5d:31:49:69:ab:0a:f1:87:d8:5e: 29:42:88:b1:55:98:b8:39:e5:19:94:6c:28:78:9b: 37:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:EF:21:05:22:AB:C5:5C:71:A2:9D:C9:CC:D2:2F:43:D8:CF:F7:49 X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:f3:d9:db:d2:d7:ba:ce:34:53:50:f9:d0:61:34:32:6d:08: 77:38:cb:c6:61:b6:48:4e:af:9c:88:33:b2:02:0f:3b:6f:e2: 5f:77:b9:70:ae:16:4e:f0:60:4d:8d:f3:d5:85:55:25:03:6e: bd:d5:cd:fd:fc:ca:32:31:3a:6e:35:50:ee:50:d0:2e:e8:57: 4d:5d:8a:de:e9:39:57:81:03:ae:7c:34:cd:25:23:a8:b8:21: 49:bc:18:06:e3:43:31:af:3f:9b:4d:84:5a:49:21:cc:c0:ec: 59:93:82:3f:a2:2e:ba:61:0d:5c:cc:c1:e8:ad:2b:9c:52:18: 52:7a:b3:f3:d6:1d:c6:ae:a7:07:69:28:94:ff:e1:14:31:4b: 0d:f6:c7:a6:80:83:8b:68:e1:27:d6:9c:c7:a6:8b:c0:88:10: ae:f4:cc:60:e2:c2:ee:6f:89:0a:b3:75:30:b0:75:a6:70:90: 88:86:7a:d2:0b:98:b0:1e:7e:a1:6a:2e:b5:7c:f1:a4:37:ee: 99:35:af:47:15:7a:09:b0:4a:76:7e:40:02:60:d5:4e:c2:d8: 60:c7:12:68:6b:22:02:19:a7:2d:cf:8a:1c:91:93:b7:09:4c: f1:4d:59:8a:b6:ff:7d:0f:c2:a3:c2:6b:80:54:2c:8b:af:36: 1a:76:b9:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjUwODA3MDI0MDIyWhcNMjUwODE0MDI0MDIyWjAYMRYwFAYD VQQDEw02ODk0MTIxNi00MzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyR4bd0nCYDGbtKt3YL5V9aM8B+P7jcUNCJve213Wu99PJllyoSGuH6Wa7VYd MFV9BtcR8G7z7CLuu9yNRMKDMfbmngfIU/BFwJ7f7zNnI8y7pvH/9wFwHNS9VlE0 T8o5UyzH1iUIiq7K/R98Kk/9bmF/h+WDnMQbkZuUuJ0scU6ps2YS+0q8zS+5hCh7 yD8Km8eHADIyZl/1KvdlzWfpm3sS51pEriFmBbnYogRVSnls23qUtmNPmqc4knwT R+M3Z49OAyHYAw27ldg2C5wzEc6lLNvLhZopdYy4jkV25oGLcNilhl0xSWmrCvGH 2F4pQoixVZi4OeUZlGwoeJs3WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzvIQUi q8VccaKdyczSL0PYz/dJMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkU0OS9CMzNBQTdBNjUzODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2Uw cnBlcjBBaHFNVmJWMTBSbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA089nb0te6zjRTUPnQYTQybQh3OMvGYbZITq+ciDOyAg87b+Jfd7lw rhZO8GBNjfPVhVUlA2691c39/MoyMTpuNVDuUNAu6FdNXYre6TlXgQOufDTNJSOo uCFJvBgG40Mxrz+bTYRaSSHMwOxZk4I/oi66YQ1czMHorSucUhhSerPz1h3GrqcH aSiU/+EUMUsN9semgIOLaOEn1pzHpovAiBCu9Mxg4sLub4kKs3UwsHWmcJCIhnrS C5iwHn6hai61fPGkN+6ZNa9HFXoJsEp2fkACYNVOwthgxxJoayICGactz4ockZO3 CUzxTVmKtv99D8KjwmuAVCyLrzYadrno -----END CERTIFICATE-----Generated at Sat Aug 9 01:13:19 2025 by rpki-client