$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft File: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft (raw, json) Hash identifier: dKPWoU2xkV1EuOrkwAO3E3N5xo22mcHlazBU0hiyuaA= Subject key identifier: FD:3D:76:84:8C:25:4C:B0:77:90:88:7C:85:4B:FB:29:30:2F:67:CB Authority key identifier: EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 Certificate issuer: /CN=A917ACF1/serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Certificate serial: 03C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft Manifest number: 03BB Signing time: Sat 23 Aug 2025 00:57:23 +0000 Manifest this update: Sat 23 Aug 2025 00:57:22 +0000 Manifest next update: Sat 30 Aug 2025 00:57:22 +0000 Files and hashes: 1: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl (hash: xZJNaxQtEUrbkaFj2ykez6vwepovss/E+R3qiOiXCNM=) 2: 5895821AB62611ECB410C81DC4F9AE02.roa (hash: hC/jX3h+m4kRJTL+3r4qE/OapWO5r8a4N2e8hzVBff0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 962 (0x3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACF1, serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Validity Not Before: Aug 23 00:57:22 2025 GMT Not After : Aug 30 00:57:22 2025 GMT Subject: CN=68a911f3-3897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7f:24:28:6c:89:c3:38:ad:6d:2b:86:a8:32: 6f:11:01:9a:ca:08:b3:8f:60:a9:29:12:50:14:41: 6a:c0:02:ae:94:82:e1:5b:f1:a2:c8:0a:d5:67:83: 79:fc:b1:da:ea:55:4e:b3:ce:03:10:61:f6:32:30: 41:80:bf:48:23:88:d3:a9:15:e8:2b:96:99:bd:3a: 1b:d2:6e:a9:92:92:11:ce:8f:5d:f9:2e:1d:85:08: 6c:70:ca:f0:60:c4:de:27:fb:d4:33:91:4e:c8:e4: f3:b0:dd:e1:ed:84:2b:b5:b8:44:68:5e:bc:82:8f: d8:86:d0:e5:ec:bc:fc:1f:b7:c0:5e:4b:28:9d:f4: 1b:da:18:0d:81:08:c0:6a:f4:51:e4:b5:a5:fb:f8: e0:99:84:89:bb:bb:f1:76:f1:b5:cb:ac:4d:ff:8f: 0d:12:64:e4:8a:a4:77:20:92:59:51:e1:84:16:be: 63:36:b5:c2:c7:92:3f:00:b0:9e:79:89:ef:59:c9: e8:e5:44:c6:4a:7a:81:da:cf:42:fc:1d:bd:17:31: 05:fa:c0:09:bb:77:6c:0a:81:d0:ae:cd:fd:47:2e: 2f:f8:10:19:20:6f:5a:10:da:21:fb:c6:23:85:9f: 51:a5:45:da:f7:e1:2b:18:73:f1:97:59:ef:05:4e: 3b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:3D:76:84:8C:25:4C:B0:77:90:88:7C:85:4B:FB:29:30:2F:67:CB X509v3 Authority Key Identifier: keyid:EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:93:9c:88:28:cb:17:ea:0a:fb:d9:f7:59:91:15:ec:98:9f: c7:64:ea:12:96:4a:ef:31:a8:e5:ec:37:f3:7a:ba:30:7d:7c: 73:99:7f:d3:c6:bf:8b:e1:72:d7:db:2d:6b:ae:10:ec:9e:11: f6:2d:d9:65:11:6a:28:fc:b9:84:4d:71:43:df:a7:bc:93:62: 80:51:f5:99:9d:05:3c:af:d1:6c:e1:0e:21:0b:dd:d7:0b:55: fa:a9:24:0f:a6:20:8b:ed:11:33:13:14:f9:f9:9c:d9:f9:5b: 29:ab:0b:ca:85:65:34:56:48:81:83:88:43:69:fc:19:c1:89: 9e:e1:b5:47:c0:fd:de:cb:a6:8f:65:a5:9c:be:aa:ea:d7:4f: 20:1d:e0:e1:11:cd:84:79:f0:93:64:30:e8:25:3c:a3:92:53: 4f:14:2f:5c:43:a5:42:fe:df:2e:70:5a:97:29:7a:c3:81:17: a6:f1:b7:ec:65:c1:0e:ba:f2:38:2f:96:93:30:0f:64:21:6d: 3c:8e:ef:76:b0:56:52:61:94:df:75:e6:7a:d6:06:23:ec:1a: 8d:aa:56:01:ab:e3:56:f8:09:71:7f:ed:7b:cc:37:8e:ab:26: d8:f2:74:2a:85:f5:70:c7:cd:70:45:d1:01:42:dd:09:b4:ff: 88:85:42:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDRjExMTAvBgNVBAUTKEVDODRENjBGNzk2QkY0MTZGOEY4MUQxOEJBREEyRkZG ODdDMTVGMjYwHhcNMjUwODIzMDA1NzIyWhcNMjUwODMwMDA1NzIyWjAYMRYwFAYD VQQDEw02OGE5MTFmMy0zODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwn8kKGyJwzitbSuGqDJvEQGaygizj2CpKRJQFEFqwAKulILhW/GiyArVZ4N5 /LHa6lVOs84DEGH2MjBBgL9II4jTqRXoK5aZvTob0m6pkpIRzo9d+S4dhQhscMrw YMTeJ/vUM5FOyOTzsN3h7YQrtbhEaF68go/YhtDl7Lz8H7fAXksonfQb2hgNgQjA avRR5LWl+/jgmYSJu7vxdvG1y6xN/48NEmTkiqR3IJJZUeGEFr5jNrXCx5I/ALCe eYnvWcno5UTGSnqB2s9C/B29FzEF+sAJu3dsCoHQrs39Ry4v+BAZIG9aENoh+8Yj hZ9RpUXa9+ErGHPxl1nvBU47JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP09doSM JUywd5CIfIVL+ykwL2fLMB8GA1UdIwQYMBaAFOyE1g95a/QW+PgdGLraL/+HwV8m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNGMS84NjgzNTUwNkEw MzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlCYjQtQjBZdXRvdl80ZkJY eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdJVFdEM2xyOUJiNC1CMFl1dG92XzRmQlh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNGMS84NjgzNTUwNkEwMzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlC YjQtQjBZdXRvdl80ZkJYeVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXk5yIKMsX6gr72fdZkRXsmJ/HZOoSlkrvMajl7DfzerowfXxzmX/T xr+L4XLX2y1rrhDsnhH2LdllEWoo/LmETXFD36e8k2KAUfWZnQU8r9Fs4Q4hC93X C1X6qSQPpiCL7REzExT5+ZzZ+VspqwvKhWU0VkiBg4hDafwZwYme4bVHwP3ey6aP ZaWcvqrq108gHeDhEc2EefCTZDDoJTyjklNPFC9cQ6VC/t8ucFqXKXrDgRem8bfs ZcEOuvI4L5aTMA9kIW08ju92sFZSYZTfdeZ61gYj7BqNqlYBq+NW+Alxf+17zDeO qybY8nQqhfVwx81wRdEBQt0JtP+IhUJl -----END CERTIFICATE-----Generated at Sat Aug 23 12:41:57 2025 by rpki-client