$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft File: 7sDpmYfcHqnUAviE_NqX4DFFpKA.mft (raw, json) Hash identifier: TIods67sfJzzM7lEDPNx2T4phq3oRojYKBQLPb/44us= Subject key identifier: 3C:5C:0E:07:8E:1A:B3:7A:2F:65:AA:38:41:A8:AF:81:29:F9:CC:4C Authority key identifier: EE:C0:E9:99:87:DC:1E:A9:D4:02:F8:84:FC:DA:97:E0:31:45:A4:A0 Certificate issuer: /CN=A91AE1B5/serialNumber=EEC0E99987DC1EA9D402F884FCDA97E03145A4A0 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft Manifest number: FC Signing time: Sat 23 Aug 2025 05:19:08 +0000 Manifest this update: Sat 23 Aug 2025 05:19:07 +0000 Manifest next update: Sat 30 Aug 2025 05:19:07 +0000 Files and hashes: 1: 7sDpmYfcHqnUAviE_NqX4DFFpKA.crl (hash: ACg7sTSzH4f2hVxOt99RQwsENcIHfB4W3F60IcMNqcQ=) 2: D2A2FF4A003B11EFA6658D0DC4F9AE02.roa (hash: clTuA98QXCvhi5mCW68DYLjtbFWaH5Tnj/x9STwbSAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.crl rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE1B5, serialNumber=EEC0E99987DC1EA9D402F884FCDA97E03145A4A0 Validity Not Before: Aug 23 05:19:07 2025 GMT Not After : Aug 30 05:19:07 2025 GMT Subject: CN=68a94f4b-72e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8a:1f:3a:22:7f:71:0f:66:e2:33:9d:51:cd: b1:ff:e7:d8:08:5d:72:bc:62:bc:ce:f3:8d:d3:39: fc:b6:7a:5f:33:c7:e2:57:96:cf:e7:05:b8:64:73: 78:4f:e7:9f:e8:48:98:94:02:c3:6f:03:5f:f9:bd: 88:a4:8a:4e:fe:4a:43:38:5a:4b:61:e5:a1:e2:c9: 70:ed:06:56:c0:2e:5a:35:2d:a8:ab:3b:ab:a7:28: 53:6c:64:b0:6c:f3:b2:35:2e:fd:91:cb:e0:cf:49: a7:a4:97:c6:2f:11:08:0a:5a:98:79:98:17:55:91: 56:ee:f9:f0:fb:51:ff:0c:fe:10:77:da:fa:91:00: 71:79:4e:fa:13:5b:34:24:9f:84:72:af:79:5e:ae: c5:5b:9a:b8:cd:c8:df:71:07:23:53:7b:da:d4:d8: 88:25:b0:0e:3e:b7:a5:17:1f:4f:f8:0e:03:5d:cd: b0:5c:9f:53:4b:1d:f2:bb:59:5b:f3:72:db:f2:e5: 8a:65:fb:c2:68:6a:8d:f5:32:ef:65:47:f0:b2:90: d6:88:8a:0c:9d:13:5a:71:f2:38:77:96:b2:2f:6f: 8f:93:1c:c8:5b:c8:82:2c:7d:a7:c0:fa:49:c5:20: a3:36:ba:47:5f:bb:8c:63:ca:5f:15:d2:d8:01:c5: f0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:5C:0E:07:8E:1A:B3:7A:2F:65:AA:38:41:A8:AF:81:29:F9:CC:4C X509v3 Authority Key Identifier: keyid:EE:C0:E9:99:87:DC:1E:A9:D4:02:F8:84:FC:DA:97:E0:31:45:A4:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:11:0c:26:18:25:7e:d3:c2:39:a9:be:f3:8a:92:d4:0f:0d: 78:1c:17:98:2d:08:4c:ce:0f:8b:69:41:ca:08:dd:4e:43:87: e4:57:39:a6:ce:c2:ed:aa:73:cb:2a:98:0c:16:21:c2:61:fa: e8:bb:5b:67:d8:13:9b:03:14:39:ca:d4:bc:3a:ca:46:05:0c: 2d:83:b3:32:44:09:3c:46:b6:fe:91:0e:ba:31:13:95:25:80: 1e:d9:86:ba:6e:5c:fd:77:97:f6:8b:53:f9:76:ec:9b:7e:b9: 68:8a:2c:69:9f:26:b9:1a:c7:75:29:b3:6a:92:f1:84:95:37: 4b:91:d1:17:76:ab:22:d4:85:d4:68:fc:5d:c6:8f:71:73:67: 6c:ff:bf:84:91:59:03:81:bc:4b:87:85:14:07:9e:f3:41:f0: 40:1b:9f:05:4c:7c:33:50:63:67:22:e0:95:f9:95:c1:08:d6: 12:17:5a:36:20:00:e4:28:98:2a:89:02:b3:3d:f0:f3:ab:f3: 8a:8a:45:9e:61:d0:f0:80:ab:c6:e6:1e:08:74:70:85:b7:98: e2:4f:62:8b:4d:99:e4:2d:10:e1:90:4d:bd:71:30:b3:87:02: 5e:1c:f6:aa:db:df:12:b8:8f:cf:70:66:8e:b9:f9:fc:13:ca: e3:06:19:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUxQjUxMTAvBgNVBAUTKEVFQzBFOTk5ODdEQzFFQTlENDAyRjg4NEZDREE5N0Uw MzE0NUE0QTAwHhcNMjUwODIzMDUxOTA3WhcNMjUwODMwMDUxOTA3WjAYMRYwFAYD VQQDEw02OGE5NGY0Yi03MmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4ofOiJ/cQ9m4jOdUc2x/+fYCF1yvGK8zvON0zn8tnpfM8fiV5bP5wW4ZHN4 T+ef6EiYlALDbwNf+b2IpIpO/kpDOFpLYeWh4slw7QZWwC5aNS2oqzurpyhTbGSw bPOyNS79kcvgz0mnpJfGLxEIClqYeZgXVZFW7vnw+1H/DP4Qd9r6kQBxeU76E1s0 JJ+Ecq95Xq7FW5q4zcjfcQcjU3va1NiIJbAOPrelFx9P+A4DXc2wXJ9TSx3yu1lb 83Lb8uWKZfvCaGqN9TLvZUfwspDWiIoMnRNacfI4d5ayL2+PkxzIW8iCLH2nwPpJ xSCjNrpHX7uMY8pfFdLYAcXwoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxcDgeO GrN6L2WqOEGor4Ep+cxMMB8GA1UdIwQYMBaAFO7A6ZmH3B6p1AL4hPzal+AxRaSg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTFCNS84QjQwNUU1RTAw M0IxMUVGOTExQjhGNjhDNEY5QUUwMi83c0RwbVlmY0hxblVBdmlFX05xWDRERkZw S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdzRHBtWWZjSHFuVUF2aUVfTnFYNERGRnBLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTFCNS84QjQwNUU1RTAwM0IxMUVGOTExQjhGNjhDNEY5QUUwMi83c0RwbVlmY0hx blVBdmlFX05xWDRERkZwS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYEQwmGCV+08I5qb7zipLUDw14HBeYLQhMzg+LaUHKCN1OQ4fkVzmm zsLtqnPLKpgMFiHCYfrou1tn2BObAxQ5ytS8OspGBQwtg7MyRAk8Rrb+kQ66MROV JYAe2Ya6blz9d5f2i1P5duybfrloiixpnya5Gsd1KbNqkvGElTdLkdEXdqsi1IXU aPxdxo9xc2ds/7+EkVkDgbxLh4UUB57zQfBAG58FTHwzUGNnIuCV+ZXBCNYSF1o2 IADkKJgqiQKzPfDzq/OKikWeYdDwgKvG5h4IdHCFt5jiT2KLTZnkLRDhkE29cTCz hwJeHPaq298SuI/PcGaOufn8E8rjBhkf -----END CERTIFICATE-----Generated at Sat Aug 23 20:20:09 2025 by rpki-client