$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: qeNX5TJdw2t5wB0tAbIhnWGyC948tZ05sbEf8Wx7NF4= Subject key identifier: C7:5D:AE:04:C8:10:02:08:C6:91:1B:4F:1B:E0:BA:50:BF:C4:8D:A6 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2B11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2AE2 Signing time: Fri 22 Aug 2025 15:37:45 +0000 Manifest this update: Fri 22 Aug 2025 15:37:45 +0000 Manifest next update: Fri 29 Aug 2025 15:37:45 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: /y/dH8EHKL40QhRHl11Nqx4eC1bh/ReVjGb4S7KhIUI=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: +HLe66PXx2PeHfF3w62lv44BzlqBqje8fJ2L8YnpkrU=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: W6zfrwj6/OqirsYiKLU78RB1FM66HD+HpTrmcoXxfW0=) 4: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: Gj/dQfmDGUWDK4XHV01NkbElb3DXkLPBPWk0YD6hwjM=) 5: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: JIxsUWoaA8dqs4H846TBR0QXM7ZNHktOJjX2Kny5hR4=) 6: 7523EB28671811F0B26A8C1AC4F9AE02.roa (hash: ppGKOWraeOF8KBxlm/qgPAfA6uqwS+C7Tk6GCScwyjk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11025 (0x2b11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Aug 22 15:37:45 2025 GMT Not After : Aug 29 15:37:45 2025 GMT Subject: CN=68a88ec9-5157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:76:92:8f:e7:31:f7:2e:6b:de:d8:3b:08:c7: 52:6f:f9:84:67:8e:df:43:5d:f3:6c:9d:56:42:94: 9c:fc:4d:c2:71:e8:f6:6d:87:1b:dd:41:05:10:b5: 1a:97:95:51:4d:ff:32:78:6a:75:0a:55:c8:9f:7e: 5c:0b:af:47:26:90:26:1b:6d:ac:39:fc:2a:f2:e6: 76:ff:89:cd:69:b3:7b:e2:56:a6:e0:f3:9f:e0:bf: 02:c6:0b:67:d1:53:19:2c:99:df:f0:ca:b6:70:e6: 37:65:b4:0e:ef:27:2f:cb:fb:f4:71:96:51:61:94: 7d:af:dc:6f:2f:86:98:79:08:aa:a8:50:bf:9d:18: 73:89:e3:c7:99:b1:9a:d8:89:a1:89:eb:a1:db:a1: ea:b4:9e:18:4c:fd:13:04:54:e0:ec:d5:c0:48:17: a3:0a:23:7d:c7:91:63:4d:dc:f9:59:38:62:ba:48: ee:28:ea:03:84:29:8c:3a:0d:d8:65:c3:e0:88:0f: b4:70:3b:65:9a:91:1d:a1:f6:1f:12:56:14:fd:82: c2:5c:fe:49:03:6a:95:54:92:3e:42:ac:1a:6b:6b: 1e:b6:c4:fa:fa:a5:d8:69:1e:bb:5b:c5:61:19:e1: 1a:c1:bd:f6:ef:42:74:5f:23:41:fd:30:2f:bf:ce: 8a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:5D:AE:04:C8:10:02:08:C6:91:1B:4F:1B:E0:BA:50:BF:C4:8D:A6 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:80:9d:0f:05:07:45:21:73:c2:70:ba:e6:e0:53:59:38:ec: 01:20:a9:c1:44:3e:11:a4:c3:30:07:2a:68:51:c0:e5:81:82: 1b:7f:0a:29:0f:65:2c:53:ff:a3:f2:a6:13:10:36:e2:43:ff: 63:17:3b:b9:ad:03:f3:23:c3:2e:c7:29:e2:64:7e:60:75:93: 24:e2:68:d5:cc:54:23:9a:43:54:58:0c:51:23:01:5a:7b:22: fb:3d:82:4e:47:0e:77:f4:57:ad:4b:a6:10:c5:4f:e2:0d:90: 10:f0:e5:93:ed:be:ea:9f:13:88:78:d1:b3:ae:a7:80:66:1b: d2:ce:75:be:3e:39:3e:75:b7:21:14:25:79:e1:52:4b:83:5b: 42:16:5f:62:40:c9:ac:49:2c:9b:48:6a:97:a8:43:1f:8a:2a: 9f:ad:74:5e:a1:e8:bc:7b:93:2b:4c:d1:e8:c7:55:c5:97:6a: 93:18:61:d1:44:c1:89:54:72:ec:eb:d3:d8:48:b2:84:60:42: b2:b3:00:38:1d:ca:63:cb:c8:a0:60:e8:e6:0f:54:94:0b:9f: 7f:c6:e0:df:2d:76:12:32:ab:dd:1f:b2:a9:98:ef:a6:bd:a3: 34:80:46:2a:80:df:b8:3f:22:fb:bf:0a:fb:46:4f:79:7f:54: 9a:93:a6:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUwODIyMTUzNzQ1WhcNMjUwODI5MTUzNzQ1WjAYMRYwFAYD VQQDEw02OGE4OGVjOS01MTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HaSj+cx9y5r3tg7CMdSb/mEZ47fQ13zbJ1WQpSc/E3Ccej2bYcb3UEFELUa l5VRTf8yeGp1ClXIn35cC69HJpAmG22sOfwq8uZ2/4nNabN74lam4POf4L8Cxgtn 0VMZLJnf8Mq2cOY3ZbQO7ycvy/v0cZZRYZR9r9xvL4aYeQiqqFC/nRhziePHmbGa 2Imhieuh26HqtJ4YTP0TBFTg7NXASBejCiN9x5FjTdz5WThiukjuKOoDhCmMOg3Y ZcPgiA+0cDtlmpEdofYfElYU/YLCXP5JA2qVVJI+Qqwaa2setsT6+qXYaR67W8Vh GeEawb3270J0XyNB/TAvv86KOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMddrgTI EAIIxpEbTxvgulC/xI2mMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVgJ0PBQdFIXPCcLrm4FNZOOwBIKnBRD4RpMMwBypoUcDlgYIbfwop D2UsU/+j8qYTEDbiQ/9jFzu5rQPzI8MuxyniZH5gdZMk4mjVzFQjmkNUWAxRIwFa eyL7PYJORw539FetS6YQxU/iDZAQ8OWT7b7qnxOIeNGzrqeAZhvSznW+Pjk+dbch FCV54VJLg1tCFl9iQMmsSSybSGqXqEMfiiqfrXReoei8e5MrTNHox1XFl2qTGGHR RMGJVHLs69PYSLKEYEKyswA4Hcpjy8igYOjmD1SUC59/xuDfLXYSMqvdH7KpmO+m vaM0gEYqgN+4PyL7vwr7Rk95f1Sak6Ze -----END CERTIFICATE-----Generated at Sat Aug 23 18:19:10 2025 by rpki-client