$ rpki-client -vvf rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft File: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft (raw, json) Hash identifier: MFCuJ+QPx9GNjdJm9Kn0RpUdw6na3ZB9yW5RDiLyeAk= Subject key identifier: 3B:32:4C:0B:D2:14:D9:00:8E:D8:9C:31:5B:0C:73:95:F9:AD:EC:D6 Authority key identifier: ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07 Certificate issuer: /CN=A91E04ED/serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907 Certificate serial: 0678 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft Manifest number: 0671 Signing time: Fri 08 Aug 2025 22:53:42 +0000 Manifest this update: Fri 08 Aug 2025 22:53:42 +0000 Manifest next update: Fri 15 Aug 2025 22:53:42 +0000 Files and hashes: 1: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl (hash: jnJhqEenmZYADyUVJSyWM6xWHA4TLvs5ZojRIbhjrb4=) 2: 0665D2328D1A11EB80593760C4F9AE02.roa (hash: 9RcU5RMIguV5RGzPowAleQQk2yHbByHLcaosyfn/YYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1656 (0x678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E04ED, serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907 Validity Not Before: Aug 8 22:53:42 2025 GMT Not After : Aug 15 22:53:42 2025 GMT Subject: CN=68967ff6-27bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0b:ca:76:57:5b:7f:82:d1:94:eb:2f:9e:f6: 93:19:13:1b:c2:e3:7a:28:69:02:20:d0:1f:03:8d: 16:76:ae:60:c9:1f:7b:7b:c9:f4:4c:ff:d8:e1:ea: b7:b2:ac:c3:e6:cf:36:a5:43:d0:e7:27:70:33:0e: 73:a3:0f:82:50:34:47:94:3e:e6:4c:57:96:2e:6d: 35:86:c8:59:6f:15:74:46:9e:73:b2:69:fd:5c:80: 1a:b1:22:34:af:ec:93:69:37:f0:08:17:b5:20:d0: f0:64:48:c3:3d:65:87:08:13:56:8d:a4:6a:81:21: 9a:72:4e:e5:c7:9d:d9:f5:d4:13:a7:a9:0e:8c:02: d4:e2:00:88:51:25:fc:0d:28:cd:62:95:5b:87:37: f2:82:ce:77:0b:f0:65:7e:cc:f2:84:03:fa:24:fa: 0e:71:09:43:7f:e0:ed:e2:d8:6a:1b:13:8d:e3:77: ae:15:9c:5c:5c:17:86:68:1a:8c:d4:43:46:e4:90: b6:81:f8:39:d4:90:31:86:e7:70:b1:3f:88:53:f0: 9c:f1:49:34:7c:12:c0:5b:93:d8:71:78:d0:5d:85: ea:90:07:11:de:70:b5:be:de:70:56:da:44:9c:f9: 8c:0e:35:fe:84:0e:d3:39:21:28:88:66:23:ba:af: 96:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:32:4C:0B:D2:14:D9:00:8E:D8:9C:31:5B:0C:73:95:F9:AD:EC:D6 X509v3 Authority Key Identifier: keyid:ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:3a:10:ca:07:af:2a:cd:e3:53:61:fb:4a:dc:99:33:14:29: a6:b5:3f:f9:a4:47:3f:6f:f8:08:c7:7c:09:9b:2d:a4:30:4d: 3f:f7:b4:0d:95:d2:1c:a2:a6:11:cb:1f:e7:a7:50:45:89:4b: c2:5a:9e:80:4b:4f:db:f5:27:64:8b:0d:17:9a:77:70:c6:06: ee:4d:03:7f:00:34:cc:be:71:79:6d:1b:9c:06:11:35:44:ef: 8e:35:51:91:36:ba:43:d0:b4:d6:60:4e:a5:c5:c4:90:48:8e: f6:a7:5e:88:16:78:ad:4b:f4:a8:b3:b9:6a:49:c2:f3:e5:88: 0a:f3:ad:bc:f8:e3:6b:1f:ff:a6:88:3d:f5:71:26:5a:06:07: 10:bb:f7:48:ab:ed:cd:df:87:8d:f3:26:3f:3c:d7:f5:ef:32: e2:7b:96:ac:5c:5e:90:95:fc:ba:9a:1b:66:90:66:3a:94:f5: 76:91:55:6b:e6:ae:58:2d:bc:b4:09:b1:a3:7c:17:7b:c1:05: 3e:92:78:19:e6:3a:41:6d:2d:5f:61:91:41:43:f8:21:7d:67: c3:b9:b7:17:15:2e:e1:0a:3b:35:39:17:ed:8f:8e:be:9d:4d: 7d:a8:89:15:50:e2:09:da:1a:48:6d:ba:be:6a:1d:20:a7:58: b5:5f:42:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0RUQxMTAvBgNVBAUTKEVEQTJBQUJCNDAyMTJFQjNDMDkyQUFFQUYxNTE0MkE3 NjlFRjU5MDcwHhcNMjUwODA4MjI1MzQyWhcNMjUwODE1MjI1MzQyWjAYMRYwFAYD VQQDEw02ODk2N2ZmNi0yN2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQvKdldbf4LRlOsvnvaTGRMbwuN6KGkCINAfA40Wdq5gyR97e8n0TP/Y4eq3 sqzD5s82pUPQ5ydwMw5zow+CUDRHlD7mTFeWLm01hshZbxV0Rp5zsmn9XIAasSI0 r+yTaTfwCBe1INDwZEjDPWWHCBNWjaRqgSGack7lx53Z9dQTp6kOjALU4gCIUSX8 DSjNYpVbhzfygs53C/BlfszyhAP6JPoOcQlDf+Dt4thqGxON43euFZxcXBeGaBqM 1ENG5JC2gfg51JAxhudwsT+IU/Cc8Uk0fBLAW5PYcXjQXYXqkAcR3nC1vt5wVtpE nPmMDjX+hA7TOSEoiGYjuq+WDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsyTAvS FNkAjticMVsMc5X5rezWMB8GA1UdIwQYMBaAFO2iqrtAIS6zwJKq6vFRQqdp71kH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDRFRC9EQkU5MEJBQzhE MTcxMUVCOTM2ODg1NUNDNEY5QUUwMi83YUtxdTBBaExyUEFrcXJxOFZGQ3AybnZX UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhS3F1MEFoTHJQQWtxcnE4VkZDcDJudldRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDRFRC9EQkU5MEJBQzhEMTcxMUVCOTM2ODg1NUNDNEY5QUUwMi83YUtxdTBBaExy UEFrcXJxOFZGQ3AybnZXUWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBOhDKB68qzeNTYftK3JkzFCmmtT/5pEc/b/gIx3wJmy2kME0/97QN ldIcoqYRyx/np1BFiUvCWp6AS0/b9Sdkiw0XmndwxgbuTQN/ADTMvnF5bRucBhE1 RO+ONVGRNrpD0LTWYE6lxcSQSI72p16IFnitS/Sos7lqScLz5YgK8628+ONrH/+m iD31cSZaBgcQu/dIq+3N34eN8yY/PNf17zLie5asXF6Qlfy6mhtmkGY6lPV2kVVr 5q5YLby0CbGjfBd7wQU+kngZ5jpBbS1fYZFBQ/ghfWfDubcXFS7hCjs1ORftj46+ nU19qIkVUOIJ2hpIbbq+ah0gp1i1X0Im -----END CERTIFICATE-----Generated at Sun Aug 10 05:51:09 2025 by rpki-client