$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: woRMqxUovqsJ4X4q6rHZZIkMMTEk8TPpX430OAOlxKw= Subject key identifier: F3:13:F5:8A:77:E3:35:B0:55:16:A0:E3:53:64:12:C5:48:97:FE:69 Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 74 Signing time: Tue 01 Jul 2025 07:39:13 +0000 Manifest this update: Tue 01 Jul 2025 07:39:12 +0000 Manifest next update: Tue 08 Jul 2025 07:39:12 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: wBS9vxaCyTot0oiLW/AVOxn59KMx45mkie9qUDO14KI=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: CcfcyuDgdAXzM0C7pRrcqcGTmtCQX9kXzhcOgKQTSNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: Jul 1 07:39:12 2025 GMT Not After : Jul 8 07:39:12 2025 GMT Subject: CN=686390a0-457b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0f:bc:3f:64:73:2f:66:97:3c:be:76:b8:8f: 37:22:62:d2:cf:e2:7f:66:f1:c9:c0:a8:2d:a5:dc: b4:27:da:89:f5:99:e4:57:e6:1a:30:08:9f:60:8b: 1b:dc:0c:65:27:51:22:66:89:03:11:55:45:dc:98: d1:dc:74:1e:7a:61:f5:ef:24:97:ba:2f:d0:21:99: 45:35:9e:27:db:61:17:49:6d:f6:c5:4c:38:ea:b2: 2c:da:02:fa:ce:2d:d3:65:5e:35:87:ae:05:13:24: 9a:61:f1:95:1b:c6:a3:97:88:c7:65:fb:9d:79:2d: 0a:99:69:a1:f7:75:4c:dc:c0:b7:b1:7a:75:b8:4f: 92:64:1c:c2:2f:73:3b:70:46:99:7b:e6:c2:04:9d: f9:2e:3e:dc:45:b0:de:8f:bb:04:68:29:6e:30:e3: 15:61:fe:c3:96:cd:37:86:26:c2:05:a4:75:ee:3b: 59:09:27:cc:43:a7:1e:cd:ff:d1:d4:0c:2b:62:b4: 07:9a:49:9a:04:b7:f1:62:fa:5c:19:92:82:5d:ea: d1:02:0d:54:74:be:7b:f7:50:8b:28:b0:2b:fb:6d: 33:e0:ff:23:93:21:79:67:68:f0:78:d7:96:94:92: 33:80:87:8a:38:0f:71:28:32:09:35:0a:a5:50:66: a7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:13:F5:8A:77:E3:35:B0:55:16:A0:E3:53:64:12:C5:48:97:FE:69 X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:57:89:c7:b6:ce:f2:97:9e:fe:22:7a:4b:0b:11:7e:1c:c1: 5f:98:9b:17:7c:10:ec:e5:fe:ee:ea:cb:b1:09:d5:75:0c:0a: a2:24:15:29:3f:b5:b6:0a:41:96:0a:99:32:8a:87:5f:15:fb: 47:78:1f:61:0a:db:6b:d5:b9:2e:40:2b:7e:e2:84:f8:44:84: ec:83:29:cc:09:ff:d7:0f:80:05:49:64:81:82:38:75:84:07: 04:e9:53:5a:57:ef:67:94:e1:04:2e:e6:4f:e9:0a:70:27:f9: ab:14:36:2b:e1:04:00:34:28:4e:ae:7a:80:ac:2a:9f:b7:a9: e4:52:c6:43:90:7a:14:76:4f:22:76:eb:f3:da:86:bb:a6:10: 75:c9:bf:1d:b1:4c:57:76:27:77:61:08:ba:fa:95:57:a5:cb: a4:c5:12:0e:35:08:11:2a:05:e1:45:fe:fa:75:81:35:25:55: b7:b4:e3:ea:2d:21:e9:7c:a4:52:8a:98:26:65:62:ce:d7:2f: 7b:fd:e9:a8:ad:f0:97:66:cd:38:50:95:9b:94:fd:02:a8:73: 74:33:b9:3c:1d:ac:35:17:90:e5:9a:05:17:ec:d1:a8:9f:5d: 7a:0d:2e:90:89:3d:1c:bf:a4:01:1a:e2:77:2a:12:32:4a:e2: 54:74:1c:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTRFNzExMC8GA1UEBRMoODkxRUQ4QkFBQzJDNzNCRDEzQURDQUExQTE2QUFGMDBE MjI0QTg3NzAeFw0yNTA3MDEwNzM5MTJaFw0yNTA3MDgwNzM5MTJaMBgxFjAUBgNV BAMTDTY4NjM5MGEwLTQ1N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXD7w/ZHMvZpc8vna4jzciYtLP4n9m8cnAqC2l3LQn2on1meRX5howCJ9gixvc DGUnUSJmiQMRVUXcmNHcdB56YfXvJJe6L9AhmUU1nifbYRdJbfbFTDjqsizaAvrO LdNlXjWHrgUTJJph8ZUbxqOXiMdl+515LQqZaaH3dUzcwLexenW4T5JkHMIvcztw Rpl75sIEnfkuPtxFsN6PuwRoKW4w4xVh/sOWzTeGJsIFpHXuO1kJJ8xDpx7N/9HU DCtitAeaSZoEt/Fi+lwZkoJd6tECDVR0vnv3UIsosCv7bTPg/yOTIXlnaPB415aU kjOAh4o4D3EoMgk1CqVQZqedAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8xP1infj NbBVFqDjU2QSxUiX/mkwHwYDVR0jBBgwFoAUiR7Yuqwsc70TrcqhoWqvANIkqHcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NEU3L0Y0Q0ZEMURBQUM3 MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FI Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVI3WXVxd3NjNzBUcmNxaG9XcXZBTklrcUhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5 NEU3L0Y0Q0ZEMURBQUM3MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcw VHJjcWhvV3F2QU5Ja3FIYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMRXice2zvKXnv4ieksLEX4cwV+Ymxd8EOzl/u7qy7EJ1XUMCqIkFSk/ tbYKQZYKmTKKh18V+0d4H2EK22vVuS5AK37ihPhEhOyDKcwJ/9cPgAVJZIGCOHWE BwTpU1pX72eU4QQu5k/pCnAn+asUNivhBAA0KE6ueoCsKp+3qeRSxkOQehR2TyJ2 6/PahrumEHXJvx2xTFd2J3dhCLr6lVely6TFEg41CBEqBeFF/vp1gTUlVbe04+ot Iel8pFKKmCZlYs7XL3v96ait8JdmzThQlZuU/QKoc3QzuTwdrDUXkOWaBRfs0aif XXoNLpCJPRy/pAEa4ncqEjJK4lR0HLU= -----END CERTIFICATE-----Generated at Tue Jul 1 15:13:40 2025 by rpki-client