$ rpki-client -vvf rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft File: B-7MRCaowz1FkLzaEtl1DEkEhX0.mft (raw, json) Hash identifier: +SZq/1+MsIDu122ZZ8pS+M4WY4iv5YVr1adgWoDk6kk= Subject key identifier: 55:87:53:CE:3F:F9:1D:BA:FE:56:98:C2:9C:9F:4E:AB:10:2D:0B:D6 Authority key identifier: 07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D Certificate issuer: /CN=A914C90B/serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft Manifest number: 012A Signing time: Sun 19 Oct 2025 07:29:07 +0000 Manifest this update: Sun 19 Oct 2025 07:29:06 +0000 Manifest next update: Sun 26 Oct 2025 07:29:06 +0000 Files and hashes: 1: B-7MRCaowz1FkLzaEtl1DEkEhX0.crl (hash: IARNME8s1YQdLJoUxNllgG5nRBn62yNQgJRVe/MYre8=) 2: 306EFA64A87611F089A2B881C4F9AE02.roa (hash: PG1Zg9YWfOZJBdRe/N5qDFjYHzUKz1vx7yczTSRfIp8=) 3: 52BD65B4E7D511EE8C353D2AC4F9AE02.roa (hash: v7bT+lzlhBzHYXIgxw7CXDLlyYjEfCYhNYxtpgDCkMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.crl rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C90B, serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D Validity Not Before: Oct 19 07:29:06 2025 GMT Not After : Oct 26 07:29:06 2025 GMT Subject: CN=68f49343-463c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:64:46:11:81:3f:2e:52:00:9e:62:d0:6b:2e: 2b:b7:8a:b3:fb:12:c2:61:42:79:35:d0:81:d0:ac: e9:00:85:40:d5:79:38:01:84:4a:ce:b9:67:c2:a2: 5d:43:30:7b:b3:0b:77:c2:cf:8a:70:e7:df:6c:9f: f1:4b:c6:fd:e1:43:ae:de:61:c5:01:ec:3c:2f:d5: 05:90:8f:fd:d9:8d:38:30:2b:3c:01:35:41:51:ea: ab:21:7d:91:e9:9d:3c:d0:6f:9d:3d:21:bc:0d:47: e8:99:b4:0c:f4:d8:85:b9:75:69:1a:fe:1c:f2:2f: 58:a3:bf:99:47:49:7e:04:b2:17:70:e4:9f:72:4c: df:31:62:6a:f6:44:dd:50:a8:b6:1c:48:01:22:b0: da:41:fe:c0:26:b4:9d:77:3d:87:ce:d6:58:cb:48: 58:07:2e:bb:a8:a7:c9:24:e2:9b:2f:c1:09:21:7e: 31:ad:eb:91:dc:a3:b2:d2:9a:a3:2d:20:e7:f9:60: 79:cd:f3:3b:ef:7b:21:1a:0a:ad:a9:35:6c:25:45: f9:5a:ae:c0:10:f4:1b:38:fa:93:cd:20:d6:c8:a6: fc:40:4f:e8:f2:fe:fc:40:15:80:53:8d:82:a1:dc: 8b:33:52:58:03:aa:b0:8d:d7:c4:c4:5e:36:f3:e2: 2b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:87:53:CE:3F:F9:1D:BA:FE:56:98:C2:9C:9F:4E:AB:10:2D:0B:D6 X509v3 Authority Key Identifier: keyid:07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:c2:b5:ff:5d:01:4b:63:46:bf:00:bc:75:f1:e1:1d:3c:88: 26:df:44:45:03:d1:4a:6e:8c:54:6a:a0:c3:7d:71:a0:19:50: 56:3f:db:ea:4c:39:f1:2d:f4:53:02:0a:7f:d2:81:6a:7d:1a: 50:6e:5e:7b:21:d0:85:28:9a:1f:05:24:73:74:14:1d:eb:d3: 2c:56:4f:be:c7:a5:b3:eb:1e:84:31:55:a3:1e:09:e5:b4:79: d7:11:6d:f7:f3:48:a7:8b:fa:a4:8f:36:56:03:f9:7b:34:47: e3:81:0f:8d:5b:3b:e7:aa:83:85:b4:b8:09:93:25:52:f4:7d: 8a:b1:8a:2a:98:06:be:79:42:53:5d:46:96:72:cc:fa:9e:7b: eb:22:1d:41:9c:e2:18:a3:a3:6d:62:17:e4:8c:46:aa:e6:57: 73:6c:27:11:b4:f8:6d:6e:8f:ec:74:09:9f:e3:4d:e2:22:a7: 60:cb:46:7d:bf:68:12:20:3a:b1:c8:c5:21:ef:47:d2:b9:7f: fc:50:b0:26:13:04:c3:e2:d0:40:24:ac:09:d9:b5:42:cb:89: ef:c8:c2:cf:a6:f6:bd:22:ff:50:bd:b0:d5:c0:d9:ab:86:f9: 93:61:8f:78:9d:16:90:60:fd:3b:af:d3:3c:01:8a:79:2f:cc: 5c:8d:a6:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM5MEIxMTAvBgNVBAUTKDA3RUVDQzQ0MjZBOEMzM0Q0NTkwQkNEQTEyRDk3NTBD NDkwNDg1N0QwHhcNMjUxMDE5MDcyOTA2WhcNMjUxMDI2MDcyOTA2WjAYMRYwFAYD VQQDEw02OGY0OTM0My00NjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumRGEYE/LlIAnmLQay4rt4qz+xLCYUJ5NdCB0KzpAIVA1Xk4AYRKzrlnwqJd QzB7swt3ws+KcOffbJ/xS8b94UOu3mHFAew8L9UFkI/92Y04MCs8ATVBUeqrIX2R 6Z080G+dPSG8DUfombQM9NiFuXVpGv4c8i9Yo7+ZR0l+BLIXcOSfckzfMWJq9kTd UKi2HEgBIrDaQf7AJrSddz2HztZYy0hYBy67qKfJJOKbL8EJIX4xreuR3KOy0pqj LSDn+WB5zfM773shGgqtqTVsJUX5Wq7AEPQbOPqTzSDWyKb8QE/o8v78QBWAU42C odyLM1JYA6qwjdfExF428+IrXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFWHU84/ +R26/laYwpyfTqsQLQvWMB8GA1UdIwQYMBaAFAfuzEQmqMM9RZC82hLZdQxJBIV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzkwQi85Mjg0MjcwMkU3 MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNhb3d6MUZrTHphRXRsMURFa0Vo WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItN01SQ2Fvd3oxRmtMemFFdGwxREVrRWhYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzkwQi85Mjg0MjcwMkU3MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNhb3d6 MUZrTHphRXRsMURFa0VoWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwwrX/XQFLY0a/ALx18eEdPIgm30RFA9FKboxUaqDDfXGgGVBWP9vq TDnxLfRTAgp/0oFqfRpQbl57IdCFKJofBSRzdBQd69MsVk++x6Wz6x6EMVWjHgnl tHnXEW3380ini/qkjzZWA/l7NEfjgQ+NWzvnqoOFtLgJkyVS9H2KsYoqmAa+eUJT XUaWcsz6nnvrIh1BnOIYo6NtYhfkjEaq5ldzbCcRtPhtbo/sdAmf403iIqdgy0Z9 v2gSIDqxyMUh70fSuX/8ULAmEwTD4tBAJKwJ2bVCy4nvyMLPpva9Iv9QvbDVwNmr hvmTYY94nRaQYP07r9M8AYp5L8xcjaZk -----END CERTIFICATE-----Generated at Mon Oct 20 15:15:19 2025 by rpki-client