$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.mft File: 7loKCg1eD1xijRpwW1rGj-8gxG8.mft (raw, json) Hash identifier: 6+Ais3Ji+QQjzwwo4246HQwSrwTRy1ldBSuiqkgXVco= Subject key identifier: 33:27:FB:DA:A1:26:A0:B2:CD:A7:1B:58:8C:7A:FA:78:C8:60:73:A3 Authority key identifier: EE:5A:0A:0A:0D:5E:0F:5C:62:8D:1A:70:5B:5A:C6:8F:EF:20:C4:6F Certificate issuer: /CN=A91AB574/serialNumber=EE5A0A0A0D5E0F5C628D1A705B5AC68FEF20C46F Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7loKCg1eD1xijRpwW1rGj-8gxG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.mft Manifest number: F7 Signing time: Tue 15 Jul 2025 05:27:42 +0000 Manifest this update: Tue 15 Jul 2025 05:27:41 +0000 Manifest next update: Tue 22 Jul 2025 05:27:41 +0000 Files and hashes: 1: 7loKCg1eD1xijRpwW1rGj-8gxG8.crl (hash: MxwhNtLx48zHS55tnUzb62ETKPqDh9YXZQuzaVwTaj0=) 2: 521FC3D8E74211EE9A78EC6EC4F9AE02.roa (hash: Evu2uB2GkC2WPAp+Ym3GMN1P169UzI1o+wjhgoORlbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.crl rsync://rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7loKCg1eD1xijRpwW1rGj-8gxG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 05:27:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB574, serialNumber=EE5A0A0A0D5E0F5C628D1A705B5AC68FEF20C46F Validity Not Before: Jul 15 05:27:41 2025 GMT Not After : Jul 22 05:27:41 2025 GMT Subject: CN=6875e6ce-bce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:67:c8:29:00:02:18:49:c2:ea:d1:4d:48:e9: dd:10:c8:29:f2:a5:32:5f:3a:0b:3c:5f:91:3f:db: 0c:36:b1:f2:66:f9:e9:8f:00:d6:1a:2e:c6:8e:0a: 8e:79:82:1c:4e:8d:be:97:50:16:fa:63:73:81:85: 45:ca:fb:bb:81:62:50:2c:af:a5:33:05:fd:3a:f7: 62:95:c1:f5:57:dd:45:4e:66:c2:cb:e2:cd:c5:14: 8b:d5:25:63:db:59:9c:4d:0f:48:65:f9:b3:01:14: 9b:50:3a:71:8f:34:88:79:d4:b0:78:73:88:fb:7a: f4:a4:78:21:0d:bb:24:13:4d:5f:48:bb:55:e7:d7: d6:b7:a0:26:57:28:e1:70:2f:db:9c:37:c1:c5:2d: 7f:15:3d:f8:78:d5:f1:2a:cd:41:f0:67:f5:aa:eb: 19:d6:66:a0:cb:43:30:02:9d:f1:41:28:02:30:9b: 8f:2c:c5:2d:ee:34:d0:9c:12:9d:60:fb:98:34:d2: 34:a0:0e:7f:8d:a6:1b:a4:d0:ac:64:1d:ae:5d:62: 6a:a3:6a:51:eb:21:51:b1:0f:fd:c7:b2:0c:ce:99: cd:f6:17:1d:17:cd:48:6c:dd:ed:0d:cf:05:75:6d: a2:70:44:76:4f:2d:f5:ec:b7:c0:e5:62:fc:ec:74: d4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:27:FB:DA:A1:26:A0:B2:CD:A7:1B:58:8C:7A:FA:78:C8:60:73:A3 X509v3 Authority Key Identifier: keyid:EE:5A:0A:0A:0D:5E:0F:5C:62:8D:1A:70:5B:5A:C6:8F:EF:20:C4:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7loKCg1eD1xijRpwW1rGj-8gxG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:76:52:7a:01:3f:19:b5:9d:90:6e:c8:aa:f3:3f:cd:40:22: dd:b2:8b:87:94:93:55:9a:6a:85:d4:f2:ee:cd:c9:76:cb:78: c8:62:71:8e:44:72:a5:01:d2:8a:59:0e:15:01:45:4a:38:6b: e2:43:29:36:e1:2d:63:c2:81:cc:0c:5e:e0:a9:b3:10:47:a4: 72:d4:98:0e:ce:13:d6:af:27:2e:11:3e:26:0f:5b:11:5a:a7: 07:5b:c3:73:cf:6e:7a:21:ed:2e:15:99:05:fc:b4:3e:34:bc: 29:c9:aa:9b:41:77:53:b7:ba:46:47:06:bb:6f:22:de:9e:a6: 62:6e:10:61:d3:3d:d0:2a:36:34:77:8b:a6:55:7f:5f:67:d9: c0:33:35:42:e8:4a:5a:a3:f0:51:fb:86:a2:b2:e2:c8:00:db: 90:12:2f:71:5d:73:b0:80:8b:50:9b:47:44:f2:94:8c:30:0a: 06:bf:75:e1:a5:c5:00:1e:c1:e2:c4:ba:f6:51:d5:ef:01:e7: 56:0a:7f:4d:37:df:17:6f:c4:0d:cf:d7:29:bc:f5:97:97:cb: 04:92:85:63:cb:fe:f3:a1:a5:64:0b:88:b0:6d:39:26:ab:67: c6:87:05:85:14:04:7f:62:c3:45:fc:26:5b:38:ca:1f:3b:4a: c0:37:3d:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI1NzQxMTAvBgNVBAUTKEVFNUEwQTBBMEQ1RTBGNUM2MjhEMUE3MDVCNUFDNjhG RUYyMEM0NkYwHhcNMjUwNzE1MDUyNzQxWhcNMjUwNzIyMDUyNzQxWjAYMRYwFAYD VQQDEw02ODc1ZTZjZS1iY2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWfIKQACGEnC6tFNSOndEMgp8qUyXzoLPF+RP9sMNrHyZvnpjwDWGi7GjgqO eYIcTo2+l1AW+mNzgYVFyvu7gWJQLK+lMwX9OvdilcH1V91FTmbCy+LNxRSL1SVj 21mcTQ9IZfmzARSbUDpxjzSIedSweHOI+3r0pHghDbskE01fSLtV59fWt6AmVyjh cC/bnDfBxS1/FT34eNXxKs1B8Gf1qusZ1magy0MwAp3xQSgCMJuPLMUt7jTQnBKd YPuYNNI0oA5/jaYbpNCsZB2uXWJqo2pR6yFRsQ/9x7IMzpnN9hcdF81IbN3tDc8F dW2icER2Ty317LfA5WL87HTUIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMn+9qh JqCyzacbWIx6+njIYHOjMB8GA1UdIwQYMBaAFO5aCgoNXg9cYo0acFtaxo/vIMRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjU3NC9GMDdFQkEyNkU3 NDExMUVFOTNFOEZDNkRDNEY5QUUwMi83bG9LQ2cxZUQxeGlqUnB3VzFyR2otOGd4 RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdsb0tDZzFlRDF4aWpScHdXMXJHai04Z3hHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjU3NC9GMDdFQkEyNkU3NDExMUVFOTNFOEZDNkRDNEY5QUUwMi83bG9LQ2cxZUQx eGlqUnB3VzFyR2otOGd4RzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHdlJ6AT8ZtZ2Qbsiq8z/NQCLdsouHlJNVmmqF1PLuzcl2y3jIYnGO RHKlAdKKWQ4VAUVKOGviQyk24S1jwoHMDF7gqbMQR6Ry1JgOzhPWrycuET4mD1sR WqcHW8Nzz256Ie0uFZkF/LQ+NLwpyaqbQXdTt7pGRwa7byLenqZibhBh0z3QKjY0 d4umVX9fZ9nAMzVC6Epao/BR+4aisuLIANuQEi9xXXOwgItQm0dE8pSMMAoGv3Xh pcUAHsHixLr2UdXvAedWCn9NN98Xb8QNz9cpvPWXl8sEkoVjy/7zoaVkC4iwbTkm q2fGhwWFFAR/YsNF/CZbOMofO0rANz2r -----END CERTIFICATE-----Generated at Wed Jul 16 23:09:47 2025 by rpki-client