$ rpki-client -vvf rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft File: Ps7q_orHtLE44oRfeGEtk9XFMMY.mft (raw, json) Hash identifier: YcGZV58hV779YEv8j4VmYwojE+RhsoVKx2of0KmTzVY= Subject key identifier: 7C:92:62:F7:15:89:D7:BF:D5:61:6B:A1:82:71:8D:E0:44:B2:1F:6C Authority key identifier: 3E:CE:EA:FE:8A:C7:B4:B1:38:E2:84:5F:78:61:2D:93:D5:C5:30:C6 Certificate issuer: /CN=A9186537/serialNumber=3ECEEAFE8AC7B4B138E2845F78612D93D5C530C6 Certificate serial: 0A66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ps7q_orHtLE44oRfeGEtk9XFMMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft Manifest number: 0A5D Signing time: Fri 22 Aug 2025 19:48:59 +0000 Manifest this update: Fri 22 Aug 2025 19:48:58 +0000 Manifest next update: Fri 29 Aug 2025 19:48:58 +0000 Files and hashes: 1: Ps7q_orHtLE44oRfeGEtk9XFMMY.crl (hash: JKsjx8DeKXURyo3gF8LOe2eOIJqz4/hNKtytpqak0Xk=) 2: C50E0D60B31F11EF9044054FC4F9AE02.roa (hash: 1XQOV4wSru0rmXvpwZfW5uyJwqkmGZ4/nFxMyl/NDpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.crl rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ps7q_orHtLE44oRfeGEtk9XFMMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186537, serialNumber=3ECEEAFE8AC7B4B138E2845F78612D93D5C530C6 Validity Not Before: Aug 22 19:48:58 2025 GMT Not After : Aug 29 19:48:58 2025 GMT Subject: CN=68a8c9ab-8bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1c:1a:e2:e2:43:40:bf:9f:9b:a0:fa:ce:2b: c6:a0:d6:18:21:98:db:f9:e2:a3:ab:48:7a:d2:3e: fe:1b:cf:5f:3a:5a:43:52:ce:af:8f:13:da:fb:29: ce:3d:a4:78:00:b1:3f:e3:c9:e1:68:71:97:dd:78: 9c:38:a3:99:a5:c5:08:90:3f:39:c8:65:67:cf:4e: 6c:b0:ba:30:63:f5:0b:2f:e6:af:26:35:6c:4c:62: b0:b5:8f:b7:74:c2:c0:91:07:39:0c:90:c8:44:97: cc:d8:58:1a:1d:bb:88:01:af:96:58:61:56:be:25: 44:f4:fb:92:33:a3:5b:73:bf:9a:44:60:7e:57:f9: 80:5e:a6:d9:09:ca:66:19:72:cf:08:9d:8c:b3:bb: 21:dc:0a:68:0f:f1:58:95:3d:9c:c4:ab:12:3c:c5: 60:82:ae:f8:97:30:55:fe:a8:92:fe:e7:18:7e:cc: 69:4a:f3:58:fd:93:a9:4d:1d:c2:b6:fe:15:fb:22: 00:0c:db:96:1f:96:fc:91:06:36:c2:33:62:f7:b3: 05:cf:73:91:40:b5:27:01:7b:16:e9:c2:1d:fa:02: b9:51:52:0f:0c:1f:3c:bf:ef:67:9d:67:44:6e:07: 0b:e3:cb:02:ea:68:61:37:f1:33:33:2b:a8:20:87: 44:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:92:62:F7:15:89:D7:BF:D5:61:6B:A1:82:71:8D:E0:44:B2:1F:6C X509v3 Authority Key Identifier: keyid:3E:CE:EA:FE:8A:C7:B4:B1:38:E2:84:5F:78:61:2D:93:D5:C5:30:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ps7q_orHtLE44oRfeGEtk9XFMMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e4:ce:cf:a9:cc:5a:00:6e:91:f8:ae:91:1e:8e:23:63:23:b8: a2:49:d3:7a:d8:d6:c0:1e:c7:f6:b9:b2:72:40:7d:10:03:13: 5e:93:7a:d7:0b:81:5a:ac:a3:13:a9:7e:c2:18:0b:8f:1c:7c: 1a:88:37:9d:db:9f:c4:1d:a1:d1:f1:28:6f:8d:54:5a:21:45: f2:75:f4:a3:07:25:9d:44:b3:0f:5c:f7:aa:07:c8:29:3e:3c: a4:d3:d6:ca:df:fc:45:e0:e5:72:20:52:02:68:2b:7d:91:da: ff:e0:03:fc:e3:42:7a:94:1b:72:a5:8a:9f:9a:0f:bc:e0:a5: 9a:46:18:08:e8:ab:ce:ae:44:d2:3c:39:29:8b:83:34:d4:e1: 2f:24:df:11:b2:e6:ec:24:49:37:4e:7c:6a:89:de:b3:1a:a2: 3c:fa:d0:3d:1d:e0:17:ad:d0:fb:30:ae:46:af:90:15:fe:40: 70:af:ed:21:83:dd:5e:d6:53:d9:3e:86:c3:36:37:c4:1a:e0: b6:da:c3:3d:c0:fd:d4:eb:4b:34:be:fa:21:28:3e:81:53:17: aa:21:74:e6:f1:1f:e8:52:27:40:63:d8:34:9f:29:4a:a8:a0: bc:52:c9:62:70:5e:3e:84:20:a9:02:e0:b8:3c:ca:20:6e:a3: b0:f0:11:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY1MzcxMTAvBgNVBAUTKDNFQ0VFQUZFOEFDN0I0QjEzOEUyODQ1Rjc4NjEyRDkz RDVDNTMwQzYwHhcNMjUwODIyMTk0ODU4WhcNMjUwODI5MTk0ODU4WjAYMRYwFAYD VQQDEw02OGE4YzlhYi04YmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBwa4uJDQL+fm6D6zivGoNYYIZjb+eKjq0h60j7+G89fOlpDUs6vjxPa+ynO PaR4ALE/48nhaHGX3XicOKOZpcUIkD85yGVnz05ssLowY/ULL+avJjVsTGKwtY+3 dMLAkQc5DJDIRJfM2FgaHbuIAa+WWGFWviVE9PuSM6Nbc7+aRGB+V/mAXqbZCcpm GXLPCJ2Ms7sh3ApoD/FYlT2cxKsSPMVggq74lzBV/qiS/ucYfsxpSvNY/ZOpTR3C tv4V+yIADNuWH5b8kQY2wjNi97MFz3ORQLUnAXsW6cId+gK5UVIPDB88v+9nnWdE bgcL48sC6mhhN/EzMyuoIIdEFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHySYvcV ide/1WFroYJxjeBEsh9sMB8GA1UdIwQYMBaAFD7O6v6Kx7SxOOKEX3hhLZPVxTDG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjUzNy9CRUIwRDkxQTZE OUQxMUVBOUE1RjI4MDlDNEY5QUUwMi9QczdxX29ySHRMRTQ0b1JmZUdFdGs5WEZN TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BzN3Ffb3JIdExFNDRvUmZlR0V0azlYRk1NWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjUzNy9CRUIwRDkxQTZEOUQxMUVBOUE1RjI4MDlDNEY5QUUwMi9QczdxX29ySHRM RTQ0b1JmZUdFdGs5WEZNTVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDkzs+pzFoAbpH4rpEejiNjI7iiSdN62NbAHsf2ubJyQH0QAxNek3rX C4FarKMTqX7CGAuPHHwaiDed25/EHaHR8ShvjVRaIUXydfSjByWdRLMPXPeqB8gp Pjyk09bK3/xF4OVyIFICaCt9kdr/4AP840J6lBtypYqfmg+84KWaRhgI6KvOrkTS PDkpi4M01OEvJN8RsubsJEk3Tnxqid6zGqI8+tA9HeAXrdD7MK5Gr5AV/kBwr+0h g91e1lPZPobDNjfEGuC22sM9wP3U60s0vvohKD6BUxeqIXTm8R/oUidAY9g0nylK qKC8UslicF4+hCCpAuC4PMogbqOw8BGi -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:03 2025 by rpki-client