$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft File: 7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft (raw, json) Hash identifier: f3CqCGv7AhI6nkeAj3RHc3GX7g34b19gTQbBdzx//NY= Subject key identifier: 9A:8B:15:A4:A8:62:D1:8E:0E:B7:94:F9:3A:41:DC:A3:63:80:17:C5 Authority key identifier: EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D Certificate issuer: /CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft Manifest number: 011E Signing time: Sat 23 Aug 2025 04:55:09 +0000 Manifest this update: Sat 23 Aug 2025 04:55:09 +0000 Manifest next update: Sat 30 Aug 2025 04:55:09 +0000 Files and hashes: 1: 7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl (hash: zefLN/51rwIQTwfZEE+mgn6pk4wsal24d2FjIkWyQ7g=) 2: 9DDCAB1AC9EC11EE9644540FC4F9AE02.roa (hash: u6J6SPSNjElCImZDre2hX9rdBiRV9plYfnlpPbtxhQc=) 3: 9E40D11CC9EC11EE9644540FC4F9AE02.roa (hash: hR3HemTX8sPR//njNhfSediG0DqzFMWVKhRmgOL4nRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9, serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Validity Not Before: Aug 23 04:55:09 2025 GMT Not After : Aug 30 04:55:09 2025 GMT Subject: CN=68a949ad-f679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:07:21:44:7a:2a:a1:a0:e8:1d:37:d3:14:25: 88:00:a8:19:ad:23:ae:2c:1c:fe:3e:b1:dd:84:b0: 02:71:36:07:63:bd:dc:10:0e:82:2a:cc:55:9c:60: 4e:7a:01:99:62:ce:ae:60:d6:49:3f:3a:ba:58:2f: 58:42:85:b6:1e:84:e9:b8:5a:02:d6:73:32:67:9f: d9:76:7a:3c:ac:ca:31:27:37:3b:3a:d2:11:c5:b9: 45:ef:ae:61:78:74:2a:7c:80:fb:52:13:d2:0c:c3: 43:db:d1:57:7c:24:f4:68:f7:19:45:7c:2c:ba:f3: 0f:d2:f6:0b:91:d1:5f:38:11:ed:80:0e:b5:7a:0d: 3d:32:a3:95:89:ea:cb:ba:6e:46:f8:63:08:1f:ab: 16:45:35:97:e1:05:4b:91:e5:15:fc:c9:8d:c5:5a: d4:d8:52:d0:ae:aa:11:1d:34:e2:44:d6:f5:7f:51: cb:a2:53:8b:c6:5e:7d:f9:35:6b:bb:f1:2c:3c:15: ae:ff:89:f9:90:98:56:ec:34:86:77:f2:27:81:48: 2d:c6:57:07:06:e6:ab:66:32:6a:68:2b:0e:85:d1: 43:b2:7e:ca:db:ec:86:70:6d:d3:ec:38:2c:e7:90: f5:3c:3a:c5:6a:d8:62:79:1e:c2:49:41:eb:b8:ba: 10:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:8B:15:A4:A8:62:D1:8E:0E:B7:94:F9:3A:41:DC:A3:63:80:17:C5 X509v3 Authority Key Identifier: keyid:EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:9b:a7:51:20:74:a2:53:af:e8:1b:85:9d:dd:83:72:ac:4a: 9c:61:07:bf:a0:da:41:fc:7e:62:fd:38:13:b2:2c:0f:62:e7: 4f:76:60:17:81:f6:30:6f:4b:f3:bd:e0:5d:b3:bd:7a:f8:42: 86:d9:4b:e7:af:5f:c6:24:df:24:73:0e:6d:99:30:33:06:ac: 96:df:57:fc:b9:1b:0c:b1:71:f3:f6:05:b3:56:76:69:04:dd: b4:6a:8f:eb:8b:bd:15:78:db:2c:7b:85:b5:bc:83:c8:39:11: 86:98:59:d7:e2:fb:be:1c:da:39:6c:da:58:bc:ce:d6:87:87: e1:27:a1:00:b0:9b:fa:66:43:35:89:c8:2f:e2:a1:67:e0:ed: 8b:80:b4:88:62:39:e0:3e:82:2f:da:b3:bd:66:01:b5:da:dc: c2:d9:f9:9b:4f:28:31:46:c0:d1:fd:6d:c4:81:23:0e:8b:1e: 8c:53:98:17:0d:f3:f4:9a:f5:6c:04:2e:dc:a5:e1:97:e4:e3: a1:82:f9:52:4d:e9:1a:9a:1a:d9:c6:59:2a:8f:a8:7c:29:0b: ef:29:33:cb:12:6a:4a:1e:43:b5:08:41:01:5d:d4:a3:30:e3: 5e:c4:39:1f:fd:06:21:a7:0a:76:b0:cc:fa:c3:22:25:6c:6e: 87:9c:a0:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1QzkxMTAvBgNVBAUTKEVDNjc4REUwRDdCQ0Y4MzlEOTk4QTBGQ0U1QzlFQjc1 RkZDODY3M0QwHhcNMjUwODIzMDQ1NTA5WhcNMjUwODMwMDQ1NTA5WjAYMRYwFAYD VQQDEw02OGE5NDlhZC1mNjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wchRHoqoaDoHTfTFCWIAKgZrSOuLBz+PrHdhLACcTYHY73cEA6CKsxVnGBO egGZYs6uYNZJPzq6WC9YQoW2HoTpuFoC1nMyZ5/Zdno8rMoxJzc7OtIRxblF765h eHQqfID7UhPSDMND29FXfCT0aPcZRXwsuvMP0vYLkdFfOBHtgA61eg09MqOVierL um5G+GMIH6sWRTWX4QVLkeUV/MmNxVrU2FLQrqoRHTTiRNb1f1HLolOLxl59+TVr u/EsPBWu/4n5kJhW7DSGd/IngUgtxlcHBuarZjJqaCsOhdFDsn7K2+yGcG3T7Dgs 55D1PDrFathieR7CSUHruLoQkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqLFaSo YtGODreU+TpB3KNjgBfFMB8GA1UdIwQYMBaAFOxnjeDXvPg52Zig/OXJ63X/yGc9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVDOS83RTJGMTI2OEM5 RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1EblptS0Q4NWNucmRmX0la ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdHZU40TmU4LURuWm1LRDg1Y25yZGZfSVp6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTVDOS83RTJGMTI2OEM5RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1E blptS0Q4NWNucmRmX0laejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4m6dRIHSiU6/oG4Wd3YNyrEqcYQe/oNpB/H5i/TgTsiwPYudPdmAX gfYwb0vzveBds716+EKG2Uvnr1/GJN8kcw5tmTAzBqyW31f8uRsMsXHz9gWzVnZp BN20ao/ri70VeNsse4W1vIPIORGGmFnX4vu+HNo5bNpYvM7Wh4fhJ6EAsJv6ZkM1 icgv4qFn4O2LgLSIYjngPoIv2rO9ZgG12tzC2fmbTygxRsDR/W3EgSMOix6MU5gX DfP0mvVsBC7cpeGX5OOhgvlSTekamhrZxlkqj6h8KQvvKTPLEmpKHkO1CEEBXdSj MONexDkf/QYhpwp2sMz6wyIlbG6HnKAM -----END CERTIFICATE-----Generated at Sat Aug 23 17:51:20 2025 by rpki-client