$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: Ao/TI6khUb7LvGdSil/Q8P1VHGrC5T2Psj/GSQvoKRk= Subject key identifier: E1:E5:A4:93:96:38:C0:18:38:51:5D:7E:AA:45:58:96:10:79:06:8E Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2B35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2B06 Signing time: Mon 20 Oct 2025 15:45:11 +0000 Manifest this update: Mon 20 Oct 2025 15:45:11 +0000 Manifest next update: Mon 27 Oct 2025 15:45:11 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: yRDX+jyjvYap+Swc3HRveRv2G/0dGfNS/7RGJd8iUAI=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: +HLe66PXx2PeHfF3w62lv44BzlqBqje8fJ2L8YnpkrU=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: W6zfrwj6/OqirsYiKLU78RB1FM66HD+HpTrmcoXxfW0=) 4: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: JIxsUWoaA8dqs4H846TBR0QXM7ZNHktOJjX2Kny5hR4=) 5: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: Gj/dQfmDGUWDK4XHV01NkbElb3DXkLPBPWk0YD6hwjM=) 6: 7523EB28671811F0B26A8C1AC4F9AE02.roa (hash: ppGKOWraeOF8KBxlm/qgPAfA6uqwS+C7Tk6GCScwyjk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 15:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11061 (0x2b35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Oct 20 15:45:11 2025 GMT Not After : Oct 27 15:45:11 2025 GMT Subject: CN=68f65907-596b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e0:47:f5:72:be:3e:3c:dc:8b:74:fc:e6:87: 98:67:22:fb:f4:23:90:13:1a:84:c3:d0:ee:ed:50: b6:0f:5d:5f:0d:d5:68:e6:93:f5:23:49:2b:e8:1b: a4:2d:14:b2:79:9f:bf:47:c0:2f:85:3d:4a:3e:2b: 24:20:7d:b0:95:b5:da:b3:80:4e:2b:92:5a:d4:a9: ae:57:70:fe:bb:22:62:c4:57:7c:5e:08:84:a8:ec: 7d:3a:da:4f:9d:d1:4c:10:05:87:c2:01:57:5f:0a: c2:35:16:d1:5b:84:fd:ad:11:87:f9:0c:34:e4:1c: 56:9f:1f:0d:66:c3:b7:b6:ca:18:81:8e:ec:30:cc: a4:76:95:32:b6:f2:8a:49:0a:4c:1d:15:2c:0b:99: 3d:16:cd:7e:3d:cd:db:73:22:43:f2:ac:65:7a:c5: 85:00:e2:cb:b6:07:6c:cd:09:39:03:1a:6d:13:48: 23:04:88:62:37:69:c5:b3:ae:e8:24:e4:f5:b2:04: e4:8b:f9:e7:f6:4b:a4:ef:f3:db:84:3d:d8:3c:75: 3b:ca:44:17:1a:68:e5:dc:2e:91:fd:78:d5:41:c4: f4:c2:65:2f:86:ca:d6:61:b0:23:19:92:4c:fb:1d: 18:2b:7f:32:82:55:03:bd:68:98:e7:27:7f:fc:d8: c8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E5:A4:93:96:38:C0:18:38:51:5D:7E:AA:45:58:96:10:79:06:8E X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:bd:2c:64:71:8a:39:4b:b5:5e:79:94:6e:69:fa:68:05:33: ad:40:3f:44:45:74:08:9b:90:96:47:c3:23:51:fc:1f:39:3e: 3f:88:aa:0e:79:dc:90:61:40:c1:6f:0f:c4:55:eb:13:3b:e4: 29:4a:16:27:72:1f:14:26:2b:dd:11:b1:27:da:14:02:07:ff: e4:26:74:78:c2:b4:51:c8:71:e2:d1:55:6d:3c:c9:46:05:ce: 5b:fb:79:f6:2d:51:60:77:e6:43:8c:90:34:89:16:f7:b0:6f: 03:ca:eb:0a:11:e0:2a:a4:c9:ad:03:29:6d:a0:6e:50:58:dc: 90:13:ee:26:8e:8f:d4:3a:9e:28:f8:6f:ee:61:9d:0a:92:5e: 20:d9:77:b6:b1:b4:44:f4:9c:c9:5e:90:a2:72:db:4e:26:9e: 41:c7:76:f8:89:a6:5c:4f:7d:c7:56:8c:6e:5f:fc:37:78:46: 51:00:49:49:61:ee:72:31:16:21:53:ff:d6:f0:ee:16:6c:14: 56:b2:a4:80:2f:cb:39:3b:75:28:12:3f:bb:3e:b2:25:a1:7b: 46:ee:de:00:28:7a:7c:80:5b:5f:44:ac:22:81:83:ec:22:ba: ce:3f:8a:1d:9d:e1:50:71:27:32:f6:1f:0f:61:d1:e3:7f:e0: 6c:77:25:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUxMDIwMTU0NTExWhcNMjUxMDI3MTU0NTExWjAYMRYwFAYD VQQDEw02OGY2NTkwNy01OTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuBH9XK+Pjzci3T85oeYZyL79COQExqEw9Du7VC2D11fDdVo5pP1I0kr6Buk LRSyeZ+/R8AvhT1KPiskIH2wlbXas4BOK5Ja1KmuV3D+uyJixFd8XgiEqOx9OtpP ndFMEAWHwgFXXwrCNRbRW4T9rRGH+Qw05BxWnx8NZsO3tsoYgY7sMMykdpUytvKK SQpMHRUsC5k9Fs1+Pc3bcyJD8qxlesWFAOLLtgdszQk5AxptE0gjBIhiN2nFs67o JOT1sgTki/nn9kuk7/PbhD3YPHU7ykQXGmjl3C6R/XjVQcT0wmUvhsrWYbAjGZJM +x0YK38yglUDvWiY5yd//NjInQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHlpJOW OMAYOFFdfqpFWJYQeQaOMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKvSxkcYo5S7VeeZRuafpoBTOtQD9ERXQIm5CWR8MjUfwfOT4/iKoO edyQYUDBbw/EVesTO+QpShYnch8UJivdEbEn2hQCB//kJnR4wrRRyHHi0VVtPMlG Bc5b+3n2LVFgd+ZDjJA0iRb3sG8DyusKEeAqpMmtAyltoG5QWNyQE+4mjo/UOp4o +G/uYZ0Kkl4g2Xe2sbRE9JzJXpCicttOJp5Bx3b4iaZcT33HVoxuX/w3eEZRAElJ Ye5yMRYhU//W8O4WbBRWsqSAL8s5O3UoEj+7PrIloXtG7t4AKHp8gFtfRKwigYPs IrrOP4odneFQcScy9h8PYdHjf+BsdyXU -----END CERTIFICATE-----Generated at Mon Oct 20 19:04:59 2025 by rpki-client