$ rpki-client -vvf rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft File: B-7MRCaowz1FkLzaEtl1DEkEhX0.mft (raw, json) Hash identifier: JuSU8YIWzBcZq8GJTHVxkP6rwl/3Fhhnz49XkC6xGYM= Subject key identifier: 2F:A1:49:B0:7C:58:9A:5B:CE:EC:CA:50:48:83:BE:BA:94:6B:CF:8A Authority key identifier: 07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D Certificate issuer: /CN=A914C90B/serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft Manifest number: 010A Signing time: Sat 23 Aug 2025 05:08:18 +0000 Manifest this update: Sat 23 Aug 2025 05:08:17 +0000 Manifest next update: Sat 30 Aug 2025 05:08:17 +0000 Files and hashes: 1: B-7MRCaowz1FkLzaEtl1DEkEhX0.crl (hash: DH20fXkJ824tqn15d7Ss+Fc4TebeNe4J7DZXhEEFJ3k=) 2: 52BD65B4E7D511EE8C353D2AC4F9AE02.roa (hash: v7bT+lzlhBzHYXIgxw7CXDLlyYjEfCYhNYxtpgDCkMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.crl rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C90B, serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D Validity Not Before: Aug 23 05:08:17 2025 GMT Not After : Aug 30 05:08:17 2025 GMT Subject: CN=68a94cc2-e7d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c2:0e:14:a0:e4:0e:0c:e2:f3:c1:f8:20:60: a5:b9:eb:f4:42:4f:7b:da:ed:c7:5e:22:a4:a7:6a: 65:39:38:c2:4f:61:d3:98:1b:9d:c5:89:45:d7:b4: f5:09:f1:a4:18:32:3d:4d:44:d6:f5:3e:d2:11:05: 6d:f4:56:cb:8b:3d:7c:c4:16:80:c2:48:e1:94:51: 29:a0:f5:a0:d2:aa:72:b2:d8:47:c8:7b:56:48:70: 64:49:7a:b2:e8:70:5a:99:cf:0b:b4:67:a9:6f:a1: 86:44:f3:27:a4:64:55:8e:fe:a1:ec:aa:4d:b5:a4: bf:23:3b:1d:28:8a:fa:5a:2f:25:b2:42:45:87:79: 30:dc:fc:42:77:1b:58:a9:5d:9f:1d:f3:2c:02:d3: 43:05:e4:8f:b7:dd:f1:42:69:d8:9a:52:c3:df:14: 54:16:a3:e5:02:e1:3b:43:e9:9d:d8:73:93:7e:2e: c8:d1:2e:04:91:c5:86:2e:e5:a0:ed:0d:44:70:11: 94:91:c7:fd:b2:79:11:3b:fc:bc:b8:b4:59:f8:c9: 0a:b8:c4:c8:aa:b6:0a:c2:e0:17:c9:b7:60:46:fc: d7:e5:84:a0:98:83:a4:2d:00:c4:17:4c:00:bb:71: 27:07:2a:e7:af:18:85:2f:13:57:c2:83:e7:a5:71: f1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:A1:49:B0:7C:58:9A:5B:CE:EC:CA:50:48:83:BE:BA:94:6B:CF:8A X509v3 Authority Key Identifier: keyid:07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:c2:7a:99:6c:a5:66:8d:69:a4:45:07:b2:16:57:86:8f:db: 56:f7:ec:fc:65:f9:ce:36:13:fb:66:b0:ef:44:90:ab:46:f3: d5:10:34:fa:42:aa:4c:95:20:d6:42:15:20:34:d1:84:23:5a: 0c:25:19:e6:26:47:d6:8a:07:ad:c1:90:50:1b:a2:72:a2:ae: 3c:d8:88:f7:be:54:a1:0c:04:16:47:b9:fa:0f:af:bb:2d:12: 8b:89:ae:ea:a5:55:34:af:c9:5b:f2:2b:39:6b:d2:13:c0:e0: a9:a8:47:db:02:c5:f7:13:63:e0:bf:4e:94:7e:51:85:6e:c5: 61:11:bc:88:5e:85:51:55:a0:0e:1a:cb:2d:ac:d8:f3:aa:7d: 1c:2e:53:f8:54:c2:55:11:4d:0e:4b:e4:37:08:19:50:7f:3a: 56:54:94:a5:ea:bd:8e:5a:d6:cb:75:9f:40:cd:1e:18:d9:62: a3:64:97:b1:a0:8d:f7:4d:05:12:92:3c:98:82:22:9c:53:db: d8:02:81:98:3e:d4:ab:22:bb:4d:5b:5b:ba:2c:4b:b7:1b:02: c9:36:4f:49:be:f8:42:46:3c:55:11:b4:85:9e:61:ba:75:3f: 8e:f7:f6:99:fd:71:64:dc:df:63:67:98:d7:0d:bd:6c:00:f7: cf:ed:1c:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM5MEIxMTAvBgNVBAUTKDA3RUVDQzQ0MjZBOEMzM0Q0NTkwQkNEQTEyRDk3NTBD NDkwNDg1N0QwHhcNMjUwODIzMDUwODE3WhcNMjUwODMwMDUwODE3WjAYMRYwFAYD VQQDEw02OGE5NGNjMi1lN2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9MIOFKDkDgzi88H4IGCluev0Qk972u3HXiKkp2plOTjCT2HTmBudxYlF17T1 CfGkGDI9TUTW9T7SEQVt9FbLiz18xBaAwkjhlFEpoPWg0qpysthHyHtWSHBkSXqy 6HBamc8LtGepb6GGRPMnpGRVjv6h7KpNtaS/IzsdKIr6Wi8lskJFh3kw3PxCdxtY qV2fHfMsAtNDBeSPt93xQmnYmlLD3xRUFqPlAuE7Q+md2HOTfi7I0S4EkcWGLuWg 7Q1EcBGUkcf9snkRO/y8uLRZ+MkKuMTIqrYKwuAXybdgRvzX5YSgmIOkLQDEF0wA u3EnByrnrxiFLxNXwoPnpXHx2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+hSbB8 WJpbzuzKUEiDvrqUa8+KMB8GA1UdIwQYMBaAFAfuzEQmqMM9RZC82hLZdQxJBIV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzkwQi85Mjg0MjcwMkU3 MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNhb3d6MUZrTHphRXRsMURFa0Vo WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItN01SQ2Fvd3oxRmtMemFFdGwxREVrRWhYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzkwQi85Mjg0MjcwMkU3MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNhb3d6 MUZrTHphRXRsMURFa0VoWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApwnqZbKVmjWmkRQeyFleGj9tW9+z8ZfnONhP7ZrDvRJCrRvPVEDT6 QqpMlSDWQhUgNNGEI1oMJRnmJkfWigetwZBQG6Jyoq482Ij3vlShDAQWR7n6D6+7 LRKLia7qpVU0r8lb8is5a9ITwOCpqEfbAsX3E2Pgv06UflGFbsVhEbyIXoVRVaAO GsstrNjzqn0cLlP4VMJVEU0OS+Q3CBlQfzpWVJSl6r2OWtbLdZ9AzR4Y2WKjZJex oI33TQUSkjyYgiKcU9vYAoGYPtSrIrtNW1u6LEu3GwLJNk9JvvhCRjxVEbSFnmG6 dT+O9/aZ/XFk3N9jZ5jXDb1sAPfP7RwO -----END CERTIFICATE-----Generated at Sat Aug 23 20:44:23 2025 by rpki-client