$ rpki-client -vvf rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft File: B-7MRCaowz1FkLzaEtl1DEkEhX0.mft (raw, json) Hash identifier: jMzcouv6hGg9authMZ9uObNIVxy25+jJ0uG7qx7iL6M= Subject key identifier: 57:C0:45:F5:A2:2D:C7:B7:6A:81:E6:7F:72:F3:B0:AF:68:D0:F8:ED Authority key identifier: 07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D Certificate issuer: /CN=A914C90B/serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft Manifest number: F0 Signing time: Thu 03 Jul 2025 05:28:06 +0000 Manifest this update: Thu 03 Jul 2025 05:28:06 +0000 Manifest next update: Thu 10 Jul 2025 05:28:06 +0000 Files and hashes: 1: B-7MRCaowz1FkLzaEtl1DEkEhX0.crl (hash: hyQeGEvvzOm0/skwHXuztPNlZ5lmX1CQoIBGdbcWkUg=) 2: 52BD65B4E7D511EE8C353D2AC4F9AE02.roa (hash: v7bT+lzlhBzHYXIgxw7CXDLlyYjEfCYhNYxtpgDCkMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.crl rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C90B, serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D Validity Not Before: Jul 3 05:28:06 2025 GMT Not After : Jul 10 05:28:06 2025 GMT Subject: CN=686614e6-b533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8b:ac:10:98:fa:51:80:ba:25:5a:3b:de:ab: 82:40:a7:94:0e:7a:26:8a:27:f2:52:91:1e:dd:c8: be:90:93:53:db:66:89:94:75:b8:8b:a3:1d:26:40: a5:95:68:9a:e3:cb:ba:1d:8a:27:e2:82:6b:76:70: af:e6:84:0f:36:7f:20:92:8b:b0:09:27:4d:f5:e4: 7f:df:83:b0:5c:08:22:f9:a0:46:0f:e5:86:d2:b8: d1:fa:7b:f9:3c:6a:25:86:9a:29:cb:f8:de:5f:c1: 55:0e:4a:82:b3:78:51:c2:86:0c:31:ca:44:43:c2: 02:b4:83:ed:66:b1:d4:00:ec:ae:c3:83:40:51:bd: 3b:77:a6:63:04:a8:11:5c:bf:76:6b:5a:04:fb:8e: af:09:24:31:c9:37:b4:97:32:af:b3:44:de:db:ae: 34:ba:f8:4e:35:8e:ce:d3:3f:97:78:43:1e:16:44: 22:eb:25:45:57:c1:d4:50:70:32:67:ef:99:29:6a: 37:7d:d3:60:98:45:ce:a0:e6:22:80:55:72:b8:93: ee:d1:36:78:e1:22:2c:8b:50:46:52:5f:9f:f8:20: f9:c1:2f:15:b7:f8:71:91:58:13:21:5c:0c:4f:f3: 3f:39:0a:4a:19:11:8a:8d:b8:03:16:9c:e4:14:51: ff:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:C0:45:F5:A2:2D:C7:B7:6A:81:E6:7F:72:F3:B0:AF:68:D0:F8:ED X509v3 Authority Key Identifier: keyid:07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:84:39:6b:36:c5:93:2d:2b:51:c0:c7:56:b7:cb:fc:62:89: ba:55:d7:0e:be:5c:d1:96:f0:fa:6b:82:ca:e4:8a:94:3c:40: 21:65:94:92:f0:28:96:ee:d0:31:4e:c5:27:0c:7e:10:2f:da: dc:f8:88:de:9e:70:2e:e8:7c:bf:3a:4d:72:22:c4:7e:da:bb: b5:75:7c:22:29:75:f0:b9:4b:9b:8b:83:f9:ff:b5:22:86:c2: 9d:42:87:5c:6e:e1:be:52:4d:81:9a:48:d7:d7:5c:00:ec:72: d5:2c:48:8a:11:ee:0e:32:de:7e:b2:5c:d2:f4:b9:c6:c1:aa: c8:a6:51:01:e4:eb:70:8e:fb:c9:6a:df:3e:a2:31:d1:71:2d: dd:9b:2f:2c:51:df:94:2b:30:d3:90:db:e2:08:bf:6f:85:db: b8:99:21:e3:13:5b:fa:00:30:00:9d:41:93:ee:50:eb:a4:2b: 4e:e3:a6:39:d2:b5:c9:f1:fc:3e:25:2f:8e:ff:8d:d4:48:19: 43:60:1c:8e:86:7b:b9:2d:b3:6a:dd:73:59:8a:32:c0:7e:1c: 29:2f:ec:90:23:31:54:6d:56:7a:b3:eb:63:15:fe:6e:74:86: 9b:f8:17:b5:97:c7:d3:b5:63:6f:01:bb:88:61:dd:ed:65:28: 11:ba:45:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM5MEIxMTAvBgNVBAUTKDA3RUVDQzQ0MjZBOEMzM0Q0NTkwQkNEQTEyRDk3NTBD NDkwNDg1N0QwHhcNMjUwNzAzMDUyODA2WhcNMjUwNzEwMDUyODA2WjAYMRYwFAYD VQQDEw02ODY2MTRlNi1iNTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqousEJj6UYC6JVo73quCQKeUDnomiifyUpEe3ci+kJNT22aJlHW4i6MdJkCl lWia48u6HYon4oJrdnCv5oQPNn8gkouwCSdN9eR/34OwXAgi+aBGD+WG0rjR+nv5 PGolhpopy/jeX8FVDkqCs3hRwoYMMcpEQ8ICtIPtZrHUAOyuw4NAUb07d6ZjBKgR XL92a1oE+46vCSQxyTe0lzKvs0Te2640uvhONY7O0z+XeEMeFkQi6yVFV8HUUHAy Z++ZKWo3fdNgmEXOoOYigFVyuJPu0TZ44SIsi1BGUl+f+CD5wS8Vt/hxkVgTIVwM T/M/OQpKGRGKjbgDFpzkFFH/VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfARfWi Lce3aoHmf3LzsK9o0PjtMB8GA1UdIwQYMBaAFAfuzEQmqMM9RZC82hLZdQxJBIV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzkwQi85Mjg0MjcwMkU3 MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNhb3d6MUZrTHphRXRsMURFa0Vo WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItN01SQ2Fvd3oxRmtMemFFdGwxREVrRWhYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzkwQi85Mjg0MjcwMkU3MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNhb3d6 MUZrTHphRXRsMURFa0VoWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9hDlrNsWTLStRwMdWt8v8Yom6VdcOvlzRlvD6a4LK5IqUPEAhZZSS 8CiW7tAxTsUnDH4QL9rc+IjennAu6Hy/Ok1yIsR+2ru1dXwiKXXwuUubi4P5/7Ui hsKdQodcbuG+Uk2BmkjX11wA7HLVLEiKEe4OMt5+slzS9LnGwarIplEB5OtwjvvJ at8+ojHRcS3dmy8sUd+UKzDTkNviCL9vhdu4mSHjE1v6ADAAnUGT7lDrpCtO46Y5 0rXJ8fw+JS+O/43USBlDYByOhnu5LbNq3XNZijLAfhwpL+yQIzFUbVZ6s+tjFf5u dIab+Be1l8fTtWNvAbuIYd3tZSgRukUc -----END CERTIFICATE-----Generated at Fri Jul 4 15:41:00 2025 by rpki-client