$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft File: 7MBefFuSR4uMxDst35ql9slCnyE.mft (raw, json) Hash identifier: Z9IbOHcoAku/F6zVcKmmdTVU+JB8/HjkzlVVfBd6L34= Subject key identifier: 7A:32:1C:3B:A8:61:8B:B8:03:23:7E:88:1B:E4:28:E6:C1:BE:D6:D0 Authority key identifier: EC:C0:5E:7C:5B:92:47:8B:8C:C4:3B:2D:DF:9A:A5:F6:C9:42:9F:21 Certificate issuer: /CN=A9190D0D/serialNumber=ECC05E7C5B92478B8CC43B2DDF9AA5F6C9429F21 Certificate serial: 0B03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft Manifest number: 0AFD Signing time: Wed 02 Jul 2025 19:34:58 +0000 Manifest this update: Wed 02 Jul 2025 19:34:57 +0000 Manifest next update: Wed 09 Jul 2025 19:34:57 +0000 Files and hashes: 1: 7MBefFuSR4uMxDst35ql9slCnyE.crl (hash: J/rnTrfKtxGt9zocULXbDlTiK5mFVU3f1ViX+yy7wKM=) 2: 2791E5FC476811EA943F5A66C4F9AE02.roa (hash: CuzGm85wLiuHxUTSuvnqnZczG2t94ONHHbEKTXpyL78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.crl rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2819 (0xb03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190D0D, serialNumber=ECC05E7C5B92478B8CC43B2DDF9AA5F6C9429F21 Validity Not Before: Jul 2 19:34:57 2025 GMT Not After : Jul 9 19:34:57 2025 GMT Subject: CN=686589e1-dddd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ac:3f:65:77:3e:ff:1c:c9:cf:82:bd:d2:51: 7d:37:8f:22:d7:6e:c1:53:c1:a7:3a:67:62:1e:91: d1:4e:bd:da:fe:96:c0:7d:e2:64:c6:e2:ac:35:b6: 74:64:a3:97:2e:bb:f8:ad:8b:b1:cf:49:66:f7:2e: d1:75:4f:03:02:5e:11:30:80:49:63:56:4a:f6:ae: 49:e2:ac:e8:15:e2:1f:7f:64:69:c0:d2:35:6e:cc: bf:83:07:fe:e8:bb:8c:ef:a5:10:dc:29:f2:38:fe: 11:dc:fe:3f:16:1f:17:e0:52:9a:b7:13:84:29:1d: ba:90:a3:6d:5a:b7:7f:7b:8d:f0:0c:89:94:0d:38: 4f:e4:42:03:53:83:1f:23:0b:ed:b0:67:97:b1:5a: 47:d6:7a:5b:88:98:32:64:77:5c:8e:0f:d2:af:75: 84:cf:a8:7c:12:6a:4a:02:b7:7a:8d:76:73:06:7c: b1:9c:7b:9a:eb:46:bd:f6:15:47:68:a0:63:9d:99: b8:85:c1:2a:18:fa:5b:14:30:98:64:ca:f2:57:cf: 8b:ef:a9:dd:ce:1a:5e:35:0c:0f:fe:0d:51:93:5f: 94:dc:97:34:0a:2e:2f:bf:64:39:a0:5a:8a:af:ca: 50:40:bf:61:c5:1a:92:15:f5:47:b8:41:eb:59:30: 41:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:32:1C:3B:A8:61:8B:B8:03:23:7E:88:1B:E4:28:E6:C1:BE:D6:D0 X509v3 Authority Key Identifier: keyid:EC:C0:5E:7C:5B:92:47:8B:8C:C4:3B:2D:DF:9A:A5:F6:C9:42:9F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:18:3b:71:93:8c:dc:eb:02:1e:a6:d7:d6:f3:ac:1f:9b:1e: 5d:4a:7b:b9:72:9c:30:b7:18:eb:8d:68:de:0d:0a:43:ba:53: 19:be:e4:06:27:51:30:c6:40:ea:fc:a0:99:e5:e8:6d:49:4c: 05:18:75:83:5d:a3:7f:6d:30:95:7d:eb:ed:6f:46:1d:35:2f: cd:d7:0e:42:6b:bf:ad:a1:e8:50:73:f5:28:cd:4f:2c:52:c6: 37:09:d7:61:24:bd:60:e5:59:26:5a:9b:29:56:c0:59:d4:8b: b6:29:ca:95:ba:f3:da:29:5c:1b:af:0b:2c:ca:3e:3a:f8:19: f1:2e:92:7a:01:b1:6b:86:b6:84:52:0a:ba:8b:e9:1b:38:87: 8a:4c:f9:62:72:75:6e:f1:84:7c:20:59:95:e7:c4:75:a4:eb: ea:97:5e:bc:97:c4:c0:5a:86:65:5f:39:f5:f8:8c:19:4d:48: 64:03:9d:b9:2e:42:95:01:7d:17:2c:38:c1:0e:1f:27:37:b2: dc:49:64:dd:c7:c1:d9:a5:7e:9d:c5:ef:f3:75:e1:37:43:75: aa:59:2e:25:bd:6f:05:14:f0:0e:16:b4:e4:76:83:67:1e:57: 2f:d8:50:38:a5:9d:b5:e3:f1:e5:12:70:40:7a:f9:55:76:3c: ab:f2:d1:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBEMEQxMTAvBgNVBAUTKEVDQzA1RTdDNUI5MjQ3OEI4Q0M0M0IyRERGOUFBNUY2 Qzk0MjlGMjEwHhcNMjUwNzAyMTkzNDU3WhcNMjUwNzA5MTkzNDU3WjAYMRYwFAYD VQQDEw02ODY1ODllMS1kZGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16w/ZXc+/xzJz4K90lF9N48i127BU8GnOmdiHpHRTr3a/pbAfeJkxuKsNbZ0 ZKOXLrv4rYuxz0lm9y7RdU8DAl4RMIBJY1ZK9q5J4qzoFeIff2RpwNI1bsy/gwf+ 6LuM76UQ3CnyOP4R3P4/Fh8X4FKatxOEKR26kKNtWrd/e43wDImUDThP5EIDU4Mf IwvtsGeXsVpH1npbiJgyZHdcjg/Sr3WEz6h8EmpKArd6jXZzBnyxnHua60a99hVH aKBjnZm4hcEqGPpbFDCYZMryV8+L76ndzhpeNQwP/g1Rk1+U3Jc0Ci4vv2Q5oFqK r8pQQL9hxRqSFfVHuEHrWTBBfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoyHDuo YYu4AyN+iBvkKObBvtbQMB8GA1UdIwQYMBaAFOzAXnxbkkeLjMQ7Ld+apfbJQp8h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEQwRC9GMDM3QkQwODQ3 NjYxMUVBQUJCMTFBNjVDNEY5QUUwMi83TUJlZkZ1U1I0dU14RHN0MzVxbDlzbENu eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdNQmVmRnVTUjR1TXhEc3QzNXFsOXNsQ255RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MEQwRC9GMDM3QkQwODQ3NjYxMUVBQUJCMTFBNjVDNEY5QUUwMi83TUJlZkZ1U1I0 dU14RHN0MzVxbDlzbENueUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlGDtxk4zc6wIeptfW86wfmx5dSnu5cpwwtxjrjWjeDQpDulMZvuQG J1EwxkDq/KCZ5ehtSUwFGHWDXaN/bTCVfevtb0YdNS/N1w5Ca7+toehQc/UozU8s UsY3CddhJL1g5VkmWpspVsBZ1Iu2KcqVuvPaKVwbrwssyj46+BnxLpJ6AbFrhraE Ugq6i+kbOIeKTPlicnVu8YR8IFmV58R1pOvql168l8TAWoZlXzn1+IwZTUhkA525 LkKVAX0XLDjBDh8nN7LcSWTdx8HZpX6dxe/zdeE3Q3WqWS4lvW8FFPAOFrTkdoNn Hlcv2FA4pZ214/HlEnBAevlVdjyr8tEE -----END CERTIFICATE-----Generated at Thu Jul 3 05:06:46 2025 by rpki-client