$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft File: 7MBefFuSR4uMxDst35ql9slCnyE.mft (raw, json) Hash identifier: BOWP5jbdp3yYkXdC6Gf0z7VDx37dDRsBSBFrh7elHdY= Subject key identifier: 9A:30:40:7F:E9:EF:1F:5A:8A:03:02:5F:B4:2F:F0:55:6D:90:49:D0 Authority key identifier: EC:C0:5E:7C:5B:92:47:8B:8C:C4:3B:2D:DF:9A:A5:F6:C9:42:9F:21 Certificate issuer: /CN=A9190D0D/serialNumber=ECC05E7C5B92478B8CC43B2DDF9AA5F6C9429F21 Certificate serial: 0B1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft Manifest number: 0B17 Signing time: Fri 22 Aug 2025 19:26:38 +0000 Manifest this update: Fri 22 Aug 2025 19:26:37 +0000 Manifest next update: Fri 29 Aug 2025 19:26:37 +0000 Files and hashes: 1: 7MBefFuSR4uMxDst35ql9slCnyE.crl (hash: BOY4HcpQDWrftQrs+PWxr0cIl/iqEw/EtcXHmUlyDeo=) 2: 2791E5FC476811EA943F5A66C4F9AE02.roa (hash: CuzGm85wLiuHxUTSuvnqnZczG2t94ONHHbEKTXpyL78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.crl rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2845 (0xb1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190D0D, serialNumber=ECC05E7C5B92478B8CC43B2DDF9AA5F6C9429F21 Validity Not Before: Aug 22 19:26:37 2025 GMT Not After : Aug 29 19:26:37 2025 GMT Subject: CN=68a8c46e-4cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ff:b2:24:4e:fb:8d:0d:00:5a:07:9a:c3:7e: be:df:ec:65:f1:69:c2:e3:47:64:e7:9b:51:52:9f: 7a:ec:6c:af:e6:db:54:5c:16:89:e3:03:6b:2e:33: 45:62:67:e0:7f:2e:78:93:c8:90:74:62:2a:00:e2: f1:fd:32:58:e2:77:16:74:38:21:a8:e1:40:08:71: 03:57:8e:cf:19:a0:3d:9e:ac:2b:2e:53:91:57:c5: f3:ec:9e:17:45:56:b2:83:1b:3c:23:c6:8d:c7:21: d6:5b:49:58:36:13:a8:6b:b9:c4:14:97:d8:35:f6: a9:69:d6:52:31:65:d6:d7:d5:f2:05:42:a2:e2:16: b4:ef:bf:d1:f9:5c:8c:12:72:82:8a:3e:fa:15:15: b6:a2:f6:18:ca:5c:cf:99:18:ca:dc:85:92:57:6f: e6:56:3c:48:72:63:1e:23:e2:98:e7:94:f6:88:3c: 0c:97:dc:f7:3f:13:dc:5f:1d:a8:35:ee:19:73:1d: 63:22:cb:2d:44:64:83:14:57:80:0e:a1:4c:71:a5: 17:70:ad:cb:d3:48:d1:e0:ac:a5:00:58:6d:37:3d: 81:12:e3:74:4c:51:41:1c:ff:d3:47:85:b7:63:33: 9f:c7:bc:19:d9:b7:a5:aa:7d:9d:37:55:b2:78:80: 87:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:30:40:7F:E9:EF:1F:5A:8A:03:02:5F:B4:2F:F0:55:6D:90:49:D0 X509v3 Authority Key Identifier: keyid:EC:C0:5E:7C:5B:92:47:8B:8C:C4:3B:2D:DF:9A:A5:F6:C9:42:9F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:84:e3:30:73:0e:09:9b:e4:f7:c9:ac:fe:b6:54:52:0f:fe: 1b:d0:d4:5b:d9:ea:11:e7:8a:04:10:2d:13:8e:89:b4:11:10: 58:8a:40:bf:6e:e0:c8:f7:98:c5:21:fc:ee:45:1a:7c:15:cd: b3:a4:3d:ba:9a:52:60:1b:f3:77:b4:64:ef:b9:61:af:82:73: b9:60:a8:7c:fc:fa:3d:c4:88:16:35:80:28:8c:aa:ed:20:d0: c7:aa:da:62:16:6b:95:ee:09:0d:58:32:d5:ae:fa:32:05:78: 77:bc:6e:c1:a3:d9:a9:36:e2:2f:59:60:e3:49:2c:4b:b4:0a: e0:b7:6c:d1:81:e1:9a:37:b7:c2:5d:46:4f:5a:0c:46:31:86: ba:ea:e5:c9:31:48:45:f3:de:7c:04:99:44:58:f0:c9:30:d9: 0d:95:ab:9d:25:6a:d5:19:b2:3d:63:19:74:53:b8:66:8f:39: fa:a1:a3:7e:27:91:b3:39:00:a8:5e:e4:d6:e7:ec:0e:d0:de: 9f:c3:e3:5a:c7:61:16:ef:cb:be:5a:ca:f1:e1:82:c6:7c:bc: e9:95:b8:b8:16:82:84:fe:c1:c8:df:6f:8c:58:2f:5a:a1:ea: 32:65:3d:8b:86:5b:06:08:7f:1f:21:0c:59:3e:19:48:4c:7d: b6:6d:ae:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBEMEQxMTAvBgNVBAUTKEVDQzA1RTdDNUI5MjQ3OEI4Q0M0M0IyRERGOUFBNUY2 Qzk0MjlGMjEwHhcNMjUwODIyMTkyNjM3WhcNMjUwODI5MTkyNjM3WjAYMRYwFAYD VQQDEw02OGE4YzQ2ZS00Y2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0P+yJE77jQ0AWgeaw36+3+xl8WnC40dk55tRUp967Gyv5ttUXBaJ4wNrLjNF Ymfgfy54k8iQdGIqAOLx/TJY4ncWdDghqOFACHEDV47PGaA9nqwrLlORV8Xz7J4X RVaygxs8I8aNxyHWW0lYNhOoa7nEFJfYNfapadZSMWXW19XyBUKi4ha077/R+VyM EnKCij76FRW2ovYYylzPmRjK3IWSV2/mVjxIcmMeI+KY55T2iDwMl9z3PxPcXx2o Ne4Zcx1jIsstRGSDFFeADqFMcaUXcK3L00jR4KylAFhtNz2BEuN0TFFBHP/TR4W3 YzOfx7wZ2belqn2dN1WyeICHxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJowQH/p 7x9aigMCX7Qv8FVtkEnQMB8GA1UdIwQYMBaAFOzAXnxbkkeLjMQ7Ld+apfbJQp8h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEQwRC9GMDM3QkQwODQ3 NjYxMUVBQUJCMTFBNjVDNEY5QUUwMi83TUJlZkZ1U1I0dU14RHN0MzVxbDlzbENu eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdNQmVmRnVTUjR1TXhEc3QzNXFsOXNsQ255RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MEQwRC9GMDM3QkQwODQ3NjYxMUVBQUJCMTFBNjVDNEY5QUUwMi83TUJlZkZ1U1I0 dU14RHN0MzVxbDlzbENueUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8hOMwcw4Jm+T3yaz+tlRSD/4b0NRb2eoR54oEEC0Tjom0ERBYikC/ buDI95jFIfzuRRp8Fc2zpD26mlJgG/N3tGTvuWGvgnO5YKh8/Po9xIgWNYAojKrt INDHqtpiFmuV7gkNWDLVrvoyBXh3vG7Bo9mpNuIvWWDjSSxLtArgt2zRgeGaN7fC XUZPWgxGMYa66uXJMUhF8958BJlEWPDJMNkNlaudJWrVGbI9Yxl0U7hmjzn6oaN+ J5GzOQCoXuTW5+wO0N6fw+Nax2EW78u+Wsrx4YLGfLzplbi4FoKE/sHI32+MWC9a oeoyZT2LhlsGCH8fIQxZPhlITH22ba6H -----END CERTIFICATE-----Generated at Sat Aug 23 19:13:06 2025 by rpki-client