$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft File: 7DavWXkJHGv6WA6juiJXeTV1cNc.mft (raw, json) Hash identifier: fg2g7ng2SVBFDmrC3l9xD0QILkeb/MAZ4q+ZGMsevZQ= Subject key identifier: FC:0A:B7:05:FE:CD:93:B4:88:4F:AE:65:7E:06:D8:98:60:9A:6D:6A Authority key identifier: EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 Certificate issuer: /CN=A91D7578/serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Certificate serial: 061E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft Manifest number: 060F Signing time: Fri 08 Aug 2025 23:20:53 +0000 Manifest this update: Fri 08 Aug 2025 23:20:52 +0000 Manifest next update: Fri 15 Aug 2025 23:20:52 +0000 Files and hashes: 1: 7DavWXkJHGv6WA6juiJXeTV1cNc.crl (hash: kVy7IXZQY9pxSH22kfo7Ig14yjHX1k0P3E9jpTAn6Fg=) 2: E8542DEA6B8811ECAC731B4EC4F9AE02.roa (hash: T+T+1Z/cawjlF+EJ2TY+wUSApzd2WBwRzpxk9RHEA54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1566 (0x61e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7578, serialNumber=EC36AF5979091C6BFA580EA3BA225779357570D7 Validity Not Before: Aug 8 23:20:52 2025 GMT Not After : Aug 15 23:20:52 2025 GMT Subject: CN=68968654-7014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5f:a1:e5:3f:11:db:20:97:4c:d0:5e:23:70: df:70:c5:4f:41:64:4a:98:78:df:b4:30:f7:7e:84: 69:86:d8:f3:7c:77:cd:90:c3:aa:7a:d4:9a:d4:f8: 77:10:e0:40:cb:e2:ea:6f:8a:92:d3:59:cf:d8:d3: 8e:da:eb:ae:10:fa:35:95:bd:c2:f5:94:91:2e:cf: b2:46:99:23:3d:35:3f:e9:50:cf:d8:f5:2b:9e:00: b6:b7:17:a4:68:38:3d:46:98:c8:4f:ac:e5:4e:ff: 37:f0:e1:a4:64:6c:0a:62:fc:24:64:c7:2c:30:ce: c7:a4:86:b3:16:e0:51:27:4e:56:15:43:fd:75:43: aa:82:ca:b6:40:35:82:6e:05:0c:08:65:44:13:9f: bf:18:d3:88:1e:f2:f3:6a:04:d4:4b:77:91:54:a1: 97:eb:20:81:51:21:62:23:31:70:0b:62:85:7c:51: 23:6f:db:ad:b4:99:e3:92:27:7e:9d:f7:f3:08:37: 92:f6:82:0f:52:b8:f4:4e:68:e3:22:f4:71:aa:68: 1b:d8:c8:d6:0a:54:54:be:34:42:ea:8c:45:5e:33: 6f:c1:f8:7e:3a:7a:6c:8d:3c:8e:63:ef:36:da:4a: bb:bc:39:9a:0d:e7:85:ba:b2:9c:fc:3c:36:d4:85: d0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:0A:B7:05:FE:CD:93:B4:88:4F:AE:65:7E:06:D8:98:60:9A:6D:6A X509v3 Authority Key Identifier: keyid:EC:36:AF:59:79:09:1C:6B:FA:58:0E:A3:BA:22:57:79:35:75:70:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DavWXkJHGv6WA6juiJXeTV1cNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7578/D3C0190CBB9D11EB84F73B3AC4F9AE02/7DavWXkJHGv6WA6juiJXeTV1cNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:7c:31:e5:47:c1:b2:35:c5:28:bd:58:14:cc:ac:03:06:a8: 99:02:c3:71:c9:a1:77:b5:8f:6e:8c:9e:2d:5d:b5:96:91:ae: 83:2b:00:aa:9e:47:66:10:0e:94:97:68:ee:c1:14:90:e8:aa: 60:0f:4b:bf:61:3d:07:72:e3:5a:77:5f:ff:af:25:1a:99:f3: 6c:12:17:73:13:2e:ff:47:9e:8b:8d:a5:a1:74:2e:40:e9:c5: 0c:52:5b:eb:35:12:12:bc:5d:b0:18:16:26:52:c6:25:f8:d7: f8:85:c3:8b:e7:79:82:ec:63:51:c9:ed:7b:27:e3:02:a8:de: f8:9f:c6:1b:2e:c2:7c:12:5e:2e:98:b9:e7:a5:c9:4c:89:e5: 07:f9:73:e4:99:2e:f9:e7:8a:e5:49:82:b0:13:7f:b7:05:2d: 8e:21:fc:e7:d2:c0:ac:67:95:a2:68:35:1a:f8:1b:7d:c8:04: 9a:bd:11:97:90:b4:b9:53:a8:30:77:03:20:ad:c9:8f:ae:ee: 80:63:19:b7:c4:fa:39:ec:61:b2:c5:47:6c:96:47:b3:9d:9d: ed:6f:61:95:1e:fc:e3:4a:9a:63:b7:12:49:61:4e:1a:c9:bb: 9d:6b:2f:68:78:f0:67:68:47:9a:bb:fb:40:ef:b8:ba:78:87: f6:b9:cb:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc1NzgxMTAvBgNVBAUTKEVDMzZBRjU5NzkwOTFDNkJGQTU4MEVBM0JBMjI1Nzc5 MzU3NTcwRDcwHhcNMjUwODA4MjMyMDUyWhcNMjUwODE1MjMyMDUyWjAYMRYwFAYD VQQDEw02ODk2ODY1NC03MDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwl+h5T8R2yCXTNBeI3DfcMVPQWRKmHjftDD3foRphtjzfHfNkMOqetSa1Ph3 EOBAy+Lqb4qS01nP2NOO2uuuEPo1lb3C9ZSRLs+yRpkjPTU/6VDP2PUrngC2txek aDg9RpjIT6zlTv838OGkZGwKYvwkZMcsMM7HpIazFuBRJ05WFUP9dUOqgsq2QDWC bgUMCGVEE5+/GNOIHvLzagTUS3eRVKGX6yCBUSFiIzFwC2KFfFEjb9uttJnjkid+ nffzCDeS9oIPUrj0TmjjIvRxqmgb2MjWClRUvjRC6oxFXjNvwfh+OnpsjTyOY+82 2kq7vDmaDeeFurKc/Dw21IXQEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwKtwX+ zZO0iE+uZX4G2Jhgmm1qMB8GA1UdIwQYMBaAFOw2r1l5CRxr+lgOo7oiV3k1dXDX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzU3OC9EM0MwMTkwQ0JC OUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhHdjZXQTZqdWlKWGVUVjFj TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEYXZXWGtKSEd2NldBNmp1aUpYZVRWMWNOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzU3OC9EM0MwMTkwQ0JCOUQxMUVCODRGNzNCM0FDNEY5QUUwMi83RGF2V1hrSkhH djZXQTZqdWlKWGVUVjFjTmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAafDHlR8GyNcUovVgUzKwDBqiZAsNxyaF3tY9ujJ4tXbWWka6DKwCq nkdmEA6Ul2juwRSQ6KpgD0u/YT0HcuNad1//ryUamfNsEhdzEy7/R56LjaWhdC5A 6cUMUlvrNRISvF2wGBYmUsYl+Nf4hcOL53mC7GNRye17J+MCqN74n8YbLsJ8El4u mLnnpclMieUH+XPkmS7554rlSYKwE3+3BS2OIfzn0sCsZ5WiaDUa+Bt9yASavRGX kLS5U6gwdwMgrcmPru6AYxm3xPo57GGyxUdslkeznZ3tb2GVHvzjSppjtxJJYU4a ybuday9oePBnaEeau/tA77i6eIf2ucvo -----END CERTIFICATE-----Generated at Sun Aug 10 03:48:23 2025 by rpki-client