$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft File: 07TuvD2fWh6iApZpmumSiBsdjf0.mft (raw, json) Hash identifier: z45EKmXV+i5ax0El0M0UpaOLWlbUpqXgui1FevuSKB8= Subject key identifier: 69:F4:21:E1:53:35:A5:A1:1A:E7:73:E0:32:DE:5A:CA:43:41:1A:27 Authority key identifier: D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD Certificate issuer: /CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft Manifest number: 0673 Signing time: Fri 08 Aug 2025 14:50:01 +0000 Manifest this update: Fri 08 Aug 2025 14:49:59 +0000 Manifest next update: Fri 15 Aug 2025 14:49:59 +0000 Files and hashes: 1: 07TuvD2fWh6iApZpmumSiBsdjf0.crl (hash: Syhp0xOAVHzNnEm2mVn6VXRrx/ZSx+4Zwpxn3vjMznU=) 2: E969742CB33B11EEB4D87842C4F9AE02.roa (hash: /bP5RMzdbkL7/5EZqhq7cO3FfNuTY5k1xdEgv+lDTck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD4E0, serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Validity Not Before: Aug 8 14:49:59 2025 GMT Not After : Aug 15 14:49:59 2025 GMT Subject: CN=68960e98-b71b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bf:c5:13:1e:24:29:46:c6:f5:9e:72:f7:0c: 68:7f:83:d8:b0:23:96:54:c7:de:31:12:4f:f6:c4: 98:e4:05:f4:a7:a0:46:de:c7:c6:25:cc:9f:67:36: e9:79:11:65:62:8e:1c:5b:fe:7c:ba:b2:f3:d5:20: 06:94:8e:e8:22:41:51:72:3e:40:c8:45:f5:45:d3: 99:e9:2f:e1:f6:e9:ba:bf:44:c4:c8:2e:a5:91:32: 16:be:ed:d5:d2:6b:ad:74:ab:59:9e:23:3e:5e:82: 4d:06:27:2e:b9:ba:75:19:06:76:dd:0d:c0:61:8a: e1:2f:36:f4:46:e0:48:52:45:75:d8:64:d7:42:79: 60:6b:cb:ea:17:ee:94:a9:09:b2:d8:9f:f6:6e:03: ea:54:a2:a9:43:4e:95:a5:78:5c:7a:a7:58:b4:3b: d4:ae:40:a9:d2:ae:5f:60:4f:f5:0b:1f:cb:d1:5e: f6:7c:d5:6d:e3:57:ac:6b:4c:ca:9a:77:a9:52:57: 43:87:1c:d7:1b:68:37:57:29:48:75:34:64:45:8d: 15:e8:0f:42:31:a0:66:0b:e9:ca:9c:72:30:7a:43: 37:6e:63:e3:2d:98:98:9b:ad:42:aa:37:ee:a2:18: 05:12:09:31:f6:5b:fb:eb:70:26:72:52:f2:30:9a: 72:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F4:21:E1:53:35:A5:A1:1A:E7:73:E0:32:DE:5A:CA:43:41:1A:27 X509v3 Authority Key Identifier: keyid:D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:05:62:c5:08:3a:ff:3f:1d:8c:50:51:fa:e1:a8:c7:62:ce: 57:e7:be:08:d1:95:ca:56:31:82:f5:31:cb:0b:04:65:95:6a: de:25:93:b5:c7:07:5f:bd:c4:0d:48:30:85:e4:23:53:7b:08: 33:7a:7d:9a:44:fb:1b:df:b6:f4:0e:46:3e:ed:99:d6:91:8b: dd:08:4e:d5:28:7d:72:9b:6b:03:36:18:c0:16:b1:77:96:b5: 74:1a:f1:59:24:ca:5b:ae:13:ca:6b:02:b1:a5:42:ec:d1:1b: e7:2e:94:76:f0:16:3c:8d:18:19:6f:1c:c9:d9:cc:e2:23:8a: 26:4a:78:01:26:a9:31:bf:eb:d2:93:bc:e9:85:25:c3:16:f9: 7d:0e:1c:c2:6a:26:72:c1:dc:f5:7d:ed:91:6f:c1:38:f2:b6: 97:40:e5:23:20:a1:5d:a3:84:68:88:cd:d5:7a:68:3e:ba:67: a3:8f:1a:a8:96:ac:1a:43:07:d4:74:57:22:cc:4d:e4:ae:67: eb:bc:c2:20:e8:c5:c0:1c:ed:dc:d7:92:11:dd:ba:f9:3d:85: 2a:3c:bf:b5:2a:82:75:28:4f:3f:4a:15:7a:02:8f:f1:97:d4: f9:ab:8e:67:66:5e:01:b2:a5:45:6e:8b:06:56:db:f3:b5:52: 73:cc:42:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0RTAxMTAvBgNVBAUTKEQzQjRFRUJDM0Q5RjVBMUVBMjAyOTY2OTlBRTk5Mjg4 MUIxRDhERkQwHhcNMjUwODA4MTQ0OTU5WhcNMjUwODE1MTQ0OTU5WjAYMRYwFAYD VQQDEw02ODk2MGU5OC1iNzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwb/FEx4kKUbG9Z5y9wxof4PYsCOWVMfeMRJP9sSY5AX0p6BG3sfGJcyfZzbp eRFlYo4cW/58urLz1SAGlI7oIkFRcj5AyEX1RdOZ6S/h9um6v0TEyC6lkTIWvu3V 0mutdKtZniM+XoJNBicuubp1GQZ23Q3AYYrhLzb0RuBIUkV12GTXQnlga8vqF+6U qQmy2J/2bgPqVKKpQ06VpXhceqdYtDvUrkCp0q5fYE/1Cx/L0V72fNVt41esa0zK mnepUldDhxzXG2g3VylIdTRkRY0V6A9CMaBmC+nKnHIwekM3bmPjLZiYm61Cqjfu ohgFEgkx9lv763AmclLyMJpyDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGn0IeFT NaWhGudz4DLeWspDQRonMB8GA1UdIwQYMBaAFNO07rw9n1oeogKWaZrpkogbHY39 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDRFMC84MzQ1NzExNjhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldoNmlBcFpwbXVtU2lCc2Rq ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3VHV2RDJmV2g2aUFwWnBtdW1TaUJzZGpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDRFMC84MzQ1NzExNjhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldo NmlBcFpwbXVtU2lCc2RqZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdBWLFCDr/Px2MUFH64ajHYs5X574I0ZXKVjGC9THLCwRllWreJZO1 xwdfvcQNSDCF5CNTewgzen2aRPsb37b0DkY+7ZnWkYvdCE7VKH1ym2sDNhjAFrF3 lrV0GvFZJMpbrhPKawKxpULs0RvnLpR28BY8jRgZbxzJ2cziI4omSngBJqkxv+vS k7zphSXDFvl9DhzCaiZywdz1fe2Rb8E48raXQOUjIKFdo4RoiM3Vemg+umejjxqo lqwaQwfUdFcizE3krmfrvMIg6MXAHO3c15IR3br5PYUqPL+1KoJ1KE8/ShV6Ao/x l9T5q45nZl4BsqVFbosGVtvztVJzzELf -----END CERTIFICATE-----Generated at Sat Aug 9 23:17:27 2025 by rpki-client