$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: rWGouBu5ue/1/+IMCtBjdBzdKUz7RI54XXaiXy82Ww0= Subject key identifier: BF:A3:DB:C8:13:4E:FB:DE:BD:0B:1D:46:3F:57:18:EA:D4:3C:D0:03 Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 8F Signing time: Sat 23 Aug 2025 06:47:53 +0000 Manifest this update: Sat 23 Aug 2025 06:47:52 +0000 Manifest next update: Sat 30 Aug 2025 06:47:52 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: gxkk3y2sHmDEAOi+sbTtCrbEujgkUxBRfg5JK/OsxNU=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: CcfcyuDgdAXzM0C7pRrcqcGTmtCQX9kXzhcOgKQTSNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: Aug 23 06:47:52 2025 GMT Not After : Aug 30 06:47:52 2025 GMT Subject: CN=68a96418-ac52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c2:0f:1a:cc:a0:2a:25:f4:a4:96:30:ee:45: f8:6e:a6:2c:f8:80:57:7c:b8:7b:0a:d6:64:87:4a: 49:ba:38:a9:3e:ae:e0:ba:26:dc:20:c1:44:ae:11: c4:9a:cf:63:ec:f9:a2:fe:87:fe:75:1e:19:fc:2f: 4b:3a:60:49:b1:a9:40:38:18:79:83:79:9c:75:69: 40:27:c4:c1:ed:2f:d0:2a:39:b5:b4:44:c7:84:09: 8c:19:a4:e6:6f:13:bf:cb:e9:f4:90:41:26:9c:8d: 99:7e:2d:54:a6:94:50:b0:ef:c7:63:9d:b7:2f:95: ed:95:65:75:2d:8c:4d:ee:85:f9:9d:7c:52:31:cb: 7e:23:5b:65:98:d2:93:b8:83:43:3d:3d:6d:84:de: 4c:07:e0:08:e4:c5:0f:93:07:65:8e:d6:41:2e:5c: bd:ce:db:2f:13:ab:a0:a7:c3:16:91:c9:6b:57:ef: e4:f1:28:aa:68:7c:6e:65:12:03:0c:1a:86:80:06: 87:26:b6:ea:d2:6a:61:8b:16:0b:3b:c2:19:a2:8d: f6:05:f2:b8:c8:0c:02:3b:29:8d:99:dd:db:b9:81: d7:50:8d:24:c6:e0:f7:9e:a4:06:58:05:a9:8e:7e: d6:8a:20:6a:31:79:c0:cd:8b:27:31:37:ad:1b:c7: d0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A3:DB:C8:13:4E:FB:DE:BD:0B:1D:46:3F:57:18:EA:D4:3C:D0:03 X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:c4:14:c4:14:37:74:2f:51:9b:40:de:c4:03:97:a6:f2:b4: 9f:c5:e4:13:3f:5d:4b:75:14:6f:de:99:a6:5a:c0:d1:32:49: 97:2b:85:a8:bd:24:fa:43:62:d4:a5:78:e3:08:6b:18:2f:74: 7e:42:75:52:b2:26:e5:7a:4f:dc:51:21:da:16:1d:21:31:11: a7:2e:af:1e:c6:11:c0:f3:15:bf:12:ac:51:e4:0c:46:d1:06: b2:99:b1:2a:ec:53:70:8b:5a:f3:cf:c8:76:a5:a2:30:98:aa: 4b:1f:f1:09:9c:46:db:4a:48:c2:26:64:0f:d0:d7:29:6d:49: f1:1d:53:9d:fe:11:ad:a4:0f:56:f3:35:76:3e:24:9d:07:df: f7:c2:e4:5b:12:e5:13:30:b7:eb:9c:7d:fa:21:c6:5a:73:5d: 1d:ea:32:5f:11:a5:e4:78:51:0d:46:ca:c2:d3:a2:58:93:a3: 94:8e:5d:cf:fb:23:fd:fd:dc:a6:91:55:37:90:5a:a7:19:e5: 87:29:72:a4:21:6b:12:48:da:a7:89:07:4b:7c:b6:a1:c1:44: 0c:8c:c8:79:92:a8:b5:05:78:ee:71:81:e4:9c:67:92:fe:78: 19:8d:f6:87:e2:47:a6:0c:e9:06:04:7c:67:53:8f:29:d4:5d: 58:6a:5e:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk0RTcxMTAvBgNVBAUTKDg5MUVEOEJBQUMyQzczQkQxM0FEQ0FBMUExNkFBRjAw RDIyNEE4NzcwHhcNMjUwODIzMDY0NzUyWhcNMjUwODMwMDY0NzUyWjAYMRYwFAYD VQQDEw02OGE5NjQxOC1hYzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8IPGsygKiX0pJYw7kX4bqYs+IBXfLh7CtZkh0pJujipPq7guibcIMFErhHE ms9j7Pmi/of+dR4Z/C9LOmBJsalAOBh5g3mcdWlAJ8TB7S/QKjm1tETHhAmMGaTm bxO/y+n0kEEmnI2Zfi1UppRQsO/HY523L5XtlWV1LYxN7oX5nXxSMct+I1tlmNKT uINDPT1thN5MB+AI5MUPkwdljtZBLly9ztsvE6ugp8MWkclrV+/k8SiqaHxuZRID DBqGgAaHJrbq0mphixYLO8IZoo32BfK4yAwCOymNmd3buYHXUI0kxuD3nqQGWAWp jn7WiiBqMXnAzYsnMTetG8fQAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+j28gT TvvevQsdRj9XGOrUPNADMB8GA1UdIwQYMBaAFIke2LqsLHO9E63KoaFqrwDSJKh3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTRFNy9GNENGRDFEQUFD NzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3MFRyY3Fob1dxdkFOSWtx SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTRFNy9GNENGRDFEQUFDNzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3 MFRyY3Fob1dxdkFOSWtxSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVxBTEFDd0L1GbQN7EA5em8rSfxeQTP11LdRRv3pmmWsDRMkmXK4Wo vST6Q2LUpXjjCGsYL3R+QnVSsiblek/cUSHaFh0hMRGnLq8exhHA8xW/EqxR5AxG 0QaymbEq7FNwi1rzz8h2paIwmKpLH/EJnEbbSkjCJmQP0NcpbUnxHVOd/hGtpA9W 8zV2PiSdB9/3wuRbEuUTMLfrnH36IcZac10d6jJfEaXkeFENRsrC06JYk6OUjl3P +yP9/dymkVU3kFqnGeWHKXKkIWsSSNqniQdLfLahwUQMjMh5kqi1BXjucYHknGeS /ngZjfaH4kemDOkGBHxnU48p1F1Yal6M -----END CERTIFICATE-----Generated at Sat Aug 23 22:33:25 2025 by rpki-client