$ rpki-client -vvf rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft File: w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft (raw, json) Hash identifier: r4NW2TTcRQjuyRna0yARujwE76vr5AdkzYc/U+4mTOA= Subject key identifier: AE:DB:7E:BD:47:D3:D8:51:54:DA:DF:16:9E:95:8C:F2:49:6C:14:04 Authority key identifier: C3:B6:48:EB:2E:23:87:2A:91:8D:05:77:13:0F:35:85:3F:6F:63:9E Certificate issuer: /CN=A9168197/serialNumber=C3B648EB2E23872A918D0577130F35853F6F639E Certificate serial: 072E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft Manifest number: 0728 Signing time: Fri 22 Aug 2025 21:57:46 +0000 Manifest this update: Fri 22 Aug 2025 21:57:46 +0000 Manifest next update: Fri 29 Aug 2025 21:57:46 +0000 Files and hashes: 1: w7ZI6y4jhyqRjQV3Ew81hT9vY54.crl (hash: FomztOtDrqryKzekmvGb6YHBu4CmdBogY2pe2lHpE1I=) 2: 43854B4044D411EB85615640C4F9AE02.roa (hash: kHAZG3jN+HiEy9SCAyuumysCPoFNupJBB0jqW1iCUdg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.crl rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1838 (0x72e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168197, serialNumber=C3B648EB2E23872A918D0577130F35853F6F639E Validity Not Before: Aug 22 21:57:46 2025 GMT Not After : Aug 29 21:57:46 2025 GMT Subject: CN=68a8e7da-c2c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:97:48:16:67:33:75:75:5b:95:b5:3d:c8:e8: f3:7e:3b:13:ed:3b:69:32:2e:6c:cd:36:e7:8f:cb: 8b:bb:d1:a3:cd:05:8c:b4:60:15:96:ce:54:7e:ab: 35:4f:82:b0:10:22:bd:97:94:1d:b7:a7:fa:7c:b1: c9:07:e1:0a:7e:7f:2f:9d:73:76:d7:8d:36:88:53: 5d:1c:ee:c1:51:55:a2:ed:a6:f2:23:fd:17:00:d3: 91:2a:9d:e0:bc:c4:64:47:0d:d1:38:4c:6a:c9:72: bf:25:16:0a:78:d6:57:ce:55:57:a5:45:e2:af:e7: 48:89:48:5f:24:ed:26:60:36:53:82:a8:2c:25:7a: 62:36:06:67:3b:8f:17:69:d3:72:3a:54:dd:a8:77: 9f:08:51:8b:3a:ec:54:63:a1:c7:1a:3a:58:65:87: 61:6b:d9:58:79:68:22:5d:15:29:c0:bd:9d:ad:a9: 9c:28:e9:c5:f5:4a:8d:2c:87:dc:33:04:b9:26:04: 47:62:d3:94:31:a6:2b:1d:a9:93:4e:9d:f1:18:9b: 8f:9c:55:92:2d:f5:1c:c0:a8:09:4d:0b:30:a2:75: 56:de:7c:11:7c:82:d5:dd:77:ed:7e:38:10:e0:15: be:18:52:a7:0f:9a:dc:c3:df:99:3c:b9:30:5e:57: f4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DB:7E:BD:47:D3:D8:51:54:DA:DF:16:9E:95:8C:F2:49:6C:14:04 X509v3 Authority Key Identifier: keyid:C3:B6:48:EB:2E:23:87:2A:91:8D:05:77:13:0F:35:85:3F:6F:63:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7ZI6y4jhyqRjQV3Ew81hT9vY54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168197/A4DDA52444D211EBB1379C3EC4F9AE02/w7ZI6y4jhyqRjQV3Ew81hT9vY54.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:b8:7e:99:e4:f6:7e:b0:d2:8e:a1:3b:30:4d:2a:46:d7:9a: c6:fb:ed:fc:7a:9f:7b:46:19:80:2f:df:68:7a:07:de:f9:29: 3c:1c:86:3d:51:4a:a6:03:13:5f:b4:ba:04:1f:07:10:32:ef: 95:d8:df:c2:46:bf:b8:39:54:ea:f8:f3:0e:00:81:67:6b:2e: 08:80:fc:8e:e4:2d:36:6e:4f:04:03:bd:55:3b:52:da:4e:82: f3:ee:8a:61:d7:45:98:39:2e:6e:22:2b:77:a5:95:0d:0b:9d: 43:34:64:d4:72:75:96:33:52:9e:45:a7:c2:46:b9:6f:b9:07: a8:de:dd:19:9f:43:8b:00:ff:85:47:12:96:b5:5f:cb:d1:b6: a9:2e:45:e0:e6:e8:e9:c5:37:29:40:19:24:c4:3c:2a:50:c0: 14:79:68:6d:0d:e5:4c:bb:04:03:10:f4:4d:17:da:2e:f1:4d: 0a:ad:cf:17:d6:fa:a5:d6:84:a3:ec:82:7a:ba:f4:8f:0a:34: e1:85:e1:2f:93:71:97:55:e7:d8:81:d4:d3:7d:9c:ca:98:84: 5c:28:20:4f:d9:89:56:17:82:51:3b:23:5c:92:1b:56:fe:de: 38:05:fa:71:77:3a:fd:12:84:89:77:38:ec:65:4c:ac:ab:9b: a2:f2:eb:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxOTcxMTAvBgNVBAUTKEMzQjY0OEVCMkUyMzg3MkE5MThEMDU3NzEzMEYzNTg1 M0Y2RjYzOUUwHhcNMjUwODIyMjE1NzQ2WhcNMjUwODI5MjE1NzQ2WjAYMRYwFAYD VQQDEw02OGE4ZTdkYS1jMmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5dIFmczdXVblbU9yOjzfjsT7TtpMi5szTbnj8uLu9GjzQWMtGAVls5Ufqs1 T4KwECK9l5Qdt6f6fLHJB+EKfn8vnXN21402iFNdHO7BUVWi7abyI/0XANORKp3g vMRkRw3ROExqyXK/JRYKeNZXzlVXpUXir+dIiUhfJO0mYDZTgqgsJXpiNgZnO48X adNyOlTdqHefCFGLOuxUY6HHGjpYZYdha9lYeWgiXRUpwL2dramcKOnF9UqNLIfc MwS5JgRHYtOUMaYrHamTTp3xGJuPnFWSLfUcwKgJTQswonVW3nwRfILV3XftfjgQ 4BW+GFKnD5rcw9+ZPLkwXlf0jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7bfr1H 09hRVNrfFp6VjPJJbBQEMB8GA1UdIwQYMBaAFMO2SOsuI4cqkY0FdxMPNYU/b2Oe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE5Ny9BNEREQTUyNDQ0 RDIxMUVCQjEzNzlDM0VDNEY5QUUwMi93N1pJNnk0amh5cVJqUVYzRXc4MWhUOXZZ NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c3Wkk2eTRqaHlxUmpRVjNFdzgxaFQ5dlk1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODE5Ny9BNEREQTUyNDQ0RDIxMUVCQjEzNzlDM0VDNEY5QUUwMi93N1pJNnk0amh5 cVJqUVYzRXc4MWhUOXZZNTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhuH6Z5PZ+sNKOoTswTSpG15rG++38ep97RhmAL99oegfe+Sk8HIY9 UUqmAxNftLoEHwcQMu+V2N/CRr+4OVTq+PMOAIFnay4IgPyO5C02bk8EA71VO1La ToLz7oph10WYOS5uIit3pZUNC51DNGTUcnWWM1KeRafCRrlvuQeo3t0Zn0OLAP+F RxKWtV/L0bapLkXg5ujpxTcpQBkkxDwqUMAUeWhtDeVMuwQDEPRNF9ou8U0Krc8X 1vql1oSj7IJ6uvSPCjThheEvk3GXVefYgdTTfZzKmIRcKCBP2YlWF4JROyNckhtW /t44Bfpxdzr9EoSJdzjsZUysq5ui8uuE -----END CERTIFICATE-----Generated at Sat Aug 23 17:15:35 2025 by rpki-client