$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: XDmDWJCIAWUrBtQIYKr3Tk8tuBo9G2vWpXJrh+A5Voc= Subject key identifier: F4:7A:17:07:EE:57:45:9B:1A:0A:71:BE:2C:72:7D:79:25:71:E9:19 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2ADB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2AB7 Signing time: Wed 02 Jul 2025 15:41:47 +0000 Manifest this update: Wed 02 Jul 2025 15:41:46 +0000 Manifest next update: Wed 09 Jul 2025 15:41:46 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: 0BuT1Fv4XKZDYfK29PU2AjfYAELZ7ZDMReiFwodiI60=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: h6LaGc6kyZukCUqqYzIxqwzDNG7IrAkyoRHl1/dzGpU=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: fvGOEcDamDrvii5lTVdwqyxJJEnDbSq0cSF/6Idf/Qk=) 4: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: FFTz06zJWJ6iZpeQ1wgw2MSgfSJo5OaRNASidfTNms8=) 5: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: tuJy1jz8I76zoSkWOckZshXRuwxgYv1SGerZsew2KCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10971 (0x2adb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Jul 2 15:41:46 2025 GMT Not After : Jul 9 15:41:46 2025 GMT Subject: CN=6865533b-c0f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:51:6a:85:fd:7f:54:e2:e6:3e:d6:10:83:c3: 47:79:5c:4b:86:0e:f8:9b:71:a2:ea:82:e9:b8:34: 44:d9:76:1c:2e:b3:a4:cc:4a:f6:ff:8e:e2:4d:25: f2:a6:3a:1f:cc:bd:2a:2f:1a:85:3e:14:6d:03:c5: 11:d6:39:92:6e:25:b6:c5:66:a3:73:fc:73:74:fc: ba:bd:1b:5a:df:42:92:5a:d9:8e:02:61:0a:1a:fc: c0:d0:de:0f:02:29:02:bb:f9:2f:62:d7:59:44:aa: b4:26:27:d8:eb:f3:c2:e4:a0:8d:a0:09:68:e2:1f: f6:c5:f5:77:9c:56:35:85:8a:7c:b3:92:44:e4:b8: 48:e3:87:39:3a:36:3f:1b:41:b2:ce:59:12:eb:40: 9c:e2:b6:29:ab:bd:67:94:c7:f4:0f:ab:d9:4e:21: cb:78:9f:8c:a7:11:7b:bd:2c:e1:73:96:d7:f0:fb: 96:e4:71:38:e2:11:03:39:11:3d:a4:e3:ac:d0:83: dd:4b:f9:d1:91:dc:ed:c0:be:68:e7:ac:11:9d:3f: 5f:96:53:48:fa:20:7c:e3:11:f5:a8:3c:ef:f9:8e: 4f:53:67:8c:2d:7a:ed:a5:5c:97:03:ed:af:92:db: a7:aa:a3:b5:8a:e1:64:7d:e2:e4:4d:b4:de:14:89: 47:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:7A:17:07:EE:57:45:9B:1A:0A:71:BE:2C:72:7D:79:25:71:E9:19 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:0e:41:d8:ba:e1:11:b5:d9:48:25:1c:52:bb:4e:0f:23:c1: 77:e9:1e:c7:52:d3:12:1c:37:ab:43:92:84:59:df:f7:6a:9f: 1f:ed:f2:b9:18:e1:8b:16:76:17:76:56:81:9a:c6:25:a4:47: c7:f0:a7:65:26:ef:12:43:38:9e:1b:3f:10:26:40:f7:66:a9: e0:f6:a1:b8:d2:9c:07:2e:d0:f3:24:18:fc:69:cf:b8:66:62: e2:3e:e1:76:6c:8b:4e:18:e6:6a:26:c9:7c:16:b4:89:2c:21: 6f:e4:f9:1a:80:80:60:cf:db:eb:d4:f6:da:5b:aa:9f:12:ba: eb:1d:7a:b8:84:54:2b:12:6e:cf:e5:1e:9f:e6:27:c5:10:0a: f0:01:a5:7b:46:05:e0:da:7c:4f:c2:2c:f2:dc:ad:8f:73:f1: 37:5f:d7:1f:23:83:a9:c3:ba:4d:74:2c:e2:7b:33:34:94:fd: 77:6a:5b:b2:b9:ae:79:fe:48:b7:17:32:e8:0c:6e:63:e2:b3: 9d:3b:a4:c0:e1:69:29:e0:8a:f2:25:3e:c7:96:e2:b2:f9:55: d8:cf:92:8f:c3:83:5e:94:2d:0e:9b:a4:41:ee:4d:e7:14:de: d9:af:43:35:30:45:d8:c3:5d:fc:39:75:32:71:cd:c1:a8:25: 44:a1:31:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUwNzAyMTU0MTQ2WhcNMjUwNzA5MTU0MTQ2WjAYMRYwFAYD VQQDEw02ODY1NTMzYi1jMGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11Fqhf1/VOLmPtYQg8NHeVxLhg74m3Gi6oLpuDRE2XYcLrOkzEr2/47iTSXy pjofzL0qLxqFPhRtA8UR1jmSbiW2xWajc/xzdPy6vRta30KSWtmOAmEKGvzA0N4P AikCu/kvYtdZRKq0JifY6/PC5KCNoAlo4h/2xfV3nFY1hYp8s5JE5LhI44c5OjY/ G0GyzlkS60Cc4rYpq71nlMf0D6vZTiHLeJ+MpxF7vSzhc5bX8PuW5HE44hEDORE9 pOOs0IPdS/nRkdztwL5o56wRnT9fllNI+iB84xH1qDzv+Y5PU2eMLXrtpVyXA+2v ktunqqO1iuFkfeLkTbTeFIlHowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPR6Fwfu V0WbGgpxvixyfXklcekZMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeDkHYuuERtdlIJRxSu04PI8F36R7HUtMSHDerQ5KEWd/3ap8f7fK5 GOGLFnYXdlaBmsYlpEfH8KdlJu8SQzieGz8QJkD3Zqng9qG40pwHLtDzJBj8ac+4 ZmLiPuF2bItOGOZqJsl8FrSJLCFv5PkagIBgz9vr1PbaW6qfErrrHXq4hFQrEm7P 5R6f5ifFEArwAaV7RgXg2nxPwizy3K2Pc/E3X9cfI4Opw7pNdCziezM0lP13aluy ua55/ki3FzLoDG5j4rOdO6TA4Wkp4IryJT7HluKy+VXYz5KPw4NelC0Om6RB7k3n FN7Zr0M1MEXYw138OXUycc3BqCVEoTF3 -----END CERTIFICATE-----Generated at Thu Jul 3 03:45:09 2025 by rpki-client