$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft File: 7IKxn5B5ht6zu4AtInPQNNFBSy0.mft (raw, json) Hash identifier: oq7tAsARxXGSgt2PXmGD/CgfwBPQFlnSgDZT5yohquE= Subject key identifier: 88:06:73:CC:DF:49:06:6B:92:81:D8:DA:47:D9:B7:DC:03:EF:A5:13 Authority key identifier: EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D Certificate issuer: /CN=A91EC3CA/serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Certificate serial: 0BD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft Manifest number: 0BD1 Signing time: Fri 08 Aug 2025 19:08:14 +0000 Manifest this update: Fri 08 Aug 2025 19:08:13 +0000 Manifest next update: Fri 15 Aug 2025 19:08:13 +0000 Files and hashes: 1: 7IKxn5B5ht6zu4AtInPQNNFBSy0.crl (hash: dwNAqPsExQ+lN8EC7G9+/618nVZtt5v3HTeKOclzNyA=) 2: 8C76CF46218411EAA6A8DB38C4F9AE02.roa (hash: ygQ6vfqXgCOjWaI/M9+8sSQcLe6CReohgnbLpV4rvKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3031 (0xbd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3CA, serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Validity Not Before: Aug 8 19:08:13 2025 GMT Not After : Aug 15 19:08:13 2025 GMT Subject: CN=68964b1e-6744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0f:af:3c:98:a8:11:51:5d:75:77:f1:1d:50: c2:79:49:9a:44:bc:bf:6c:1e:f7:64:ab:ef:ad:e9: 12:ea:4d:76:87:34:60:56:c3:b1:ed:00:59:bb:05: f7:2d:e9:6b:bd:2f:a1:9d:1b:af:c0:36:9c:43:4f: f9:08:30:83:a5:7f:b2:ea:a4:f1:27:05:23:53:b4: eb:22:5e:96:33:fa:bc:98:d4:c9:6b:eb:c8:1e:8c: 3a:4f:1d:cd:84:db:ed:80:4f:e4:a3:76:0e:fc:93: b9:07:81:57:08:d3:23:c6:ea:d7:96:62:bd:a8:b6: 63:24:4d:ad:3a:d4:52:4c:11:d2:a6:6c:a1:21:f8: 7b:d2:f4:7a:61:9a:3e:aa:fa:4d:30:24:f9:ad:1a: ac:d6:47:b7:a4:83:c1:63:58:11:9b:46:56:aa:ea: 71:76:43:8a:e8:49:25:14:4c:a6:f5:db:9a:1f:73: 45:1b:18:1e:f0:7a:b7:cb:34:64:5b:60:52:7c:05: f0:f7:df:6c:ce:32:c9:c3:7a:8c:98:d8:42:ca:12: 45:a6:0c:15:b3:d4:ad:82:3d:4d:fa:de:ce:62:84: 10:1e:99:78:65:b4:d0:36:fd:2f:50:f6:f7:9e:78: ce:40:72:b7:8c:b6:2c:2a:25:e0:99:34:12:4c:ee: 0d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:06:73:CC:DF:49:06:6B:92:81:D8:DA:47:D9:B7:DC:03:EF:A5:13 X509v3 Authority Key Identifier: keyid:EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:6b:e1:82:dd:e7:c0:3a:14:e3:b3:f9:26:ed:e5:56:2d:19: 17:ae:db:f3:59:3b:ad:5b:41:73:1c:56:8a:42:d6:cb:ca:36: 88:19:ac:a5:a9:21:bd:f7:83:29:4a:b9:cf:6d:dc:bd:fc:06: 36:29:dc:c5:3c:3a:f4:44:cb:c6:49:42:84:94:78:14:2c:9f: 82:ab:1d:83:13:d0:46:32:a6:a7:e8:91:96:97:b0:2e:ad:95: b6:e8:2b:78:78:d1:30:bf:2d:0f:3e:22:49:54:ce:c6:8e:56: 9b:b8:9a:9b:76:34:f4:dc:ce:41:da:75:25:06:96:0e:ef:d2: 47:48:7c:2f:36:3b:16:34:db:1b:21:ab:5b:02:c6:7b:40:e1: 33:70:ea:41:8e:6a:f4:34:ef:0e:4b:c9:83:78:57:f1:95:e9: fc:1c:3c:25:4b:df:1d:7c:05:f8:e9:ca:81:63:46:64:19:d2: 56:9f:d7:a8:9d:2b:d1:28:5c:c5:68:be:e3:08:b8:83:9c:ad: f6:9f:95:53:91:b0:5e:ef:2c:03:a7:7c:5c:d3:9e:ad:a0:94: ea:a0:0d:83:4c:39:f3:d4:cc:f0:30:f4:8d:53:83:d5:28:50: 03:fb:a5:12:37:86:44:c6:25:21:db:f9:6b:a1:e1:a6:27:16: 78:79:f2:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQ0ExMTAvBgNVBAUTKEVDODJCMTlGOTA3OTg2REVCM0JCODAyRDIyNzNEMDM0 RDE0MTRCMkQwHhcNMjUwODA4MTkwODEzWhcNMjUwODE1MTkwODEzWjAYMRYwFAYD VQQDEw02ODk2NGIxZS02NzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvA+vPJioEVFddXfxHVDCeUmaRLy/bB73ZKvvrekS6k12hzRgVsOx7QBZuwX3 LelrvS+hnRuvwDacQ0/5CDCDpX+y6qTxJwUjU7TrIl6WM/q8mNTJa+vIHow6Tx3N hNvtgE/ko3YO/JO5B4FXCNMjxurXlmK9qLZjJE2tOtRSTBHSpmyhIfh70vR6YZo+ qvpNMCT5rRqs1ke3pIPBY1gRm0ZWqupxdkOK6EklFEym9duaH3NFGxge8Hq3yzRk W2BSfAXw999szjLJw3qMmNhCyhJFpgwVs9Stgj1N+t7OYoQQHpl4ZbTQNv0vUPb3 nnjOQHK3jLYsKiXgmTQSTO4NVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgGc8zf SQZrkoHY2kfZt9wD76UTMB8GA1UdIwQYMBaAFOyCsZ+QeYbes7uALSJz0DTRQUst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNDQS84MTM4NjA0NjIx ODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0Nnp1NEF0SW5QUU5ORkJT eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdJS3huNUI1aHQ2enU0QXRJblBRTk5GQlN5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNDQS84MTM4NjA0NjIxODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0 Nnp1NEF0SW5QUU5ORkJTeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAda+GC3efAOhTjs/km7eVWLRkXrtvzWTutW0FzHFaKQtbLyjaIGayl qSG994MpSrnPbdy9/AY2KdzFPDr0RMvGSUKElHgULJ+Cqx2DE9BGMqan6JGWl7Au rZW26Ct4eNEwvy0PPiJJVM7GjlabuJqbdjT03M5B2nUlBpYO79JHSHwvNjsWNNsb IatbAsZ7QOEzcOpBjmr0NO8OS8mDeFfxlen8HDwlS98dfAX46cqBY0ZkGdJWn9eo nSvRKFzFaL7jCLiDnK32n5VTkbBe7ywDp3xc056toJTqoA2DTDnz1MzwMPSNU4PV KFAD+6USN4ZExiUh2/lroeGmJxZ4efK7 -----END CERTIFICATE-----Generated at Sun Aug 10 04:15:15 2025 by rpki-client