$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: FlSnZryOTwGDgGUdrIwNgVqCSfU4M2eWNe7sY3Dgkf0= Subject key identifier: 67:0E:97:3E:64:91:40:93:FA:CA:DD:56:74:08:53:2C:61:0B:1E:15 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B4B Signing time: Fri 22 Aug 2025 19:17:29 +0000 Manifest this update: Fri 22 Aug 2025 19:17:29 +0000 Manifest next update: Fri 29 Aug 2025 19:17:29 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: hD7s3Wj530kw6ygqMmoA+GYVOY2hNqb7Uj9B/a3tekc=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: d1wEAtOklHH/pS7iavUcvo62WbDBiArhDOGZCIjBXFU=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: bzYatoV9vXAn/TFneZ8B1b8ytRqlQM8seu8F8tZug0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Aug 22 19:17:29 2025 GMT Not After : Aug 29 19:17:29 2025 GMT Subject: CN=68a8c249-daa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:50:45:45:7e:76:3f:1f:48:e2:4f:60:3b: 23:98:7c:c6:2f:e6:a1:09:3c:11:45:f1:ac:1f:db: 2e:d0:3a:59:97:a7:1f:17:25:e7:98:43:01:c1:4f: 53:06:19:dc:59:5f:83:75:48:88:22:27:d0:53:33: d6:73:b0:97:5f:ed:0d:f0:e6:d6:d1:40:93:e1:cb: 80:30:e3:41:ee:12:46:b5:a0:1c:7a:db:36:44:c7: dd:50:91:82:a4:77:24:d5:85:22:a4:78:66:48:c5: 55:f6:d5:33:4b:0d:10:8a:03:c1:9c:fb:f0:5a:c6: 66:2c:0f:de:8c:70:c6:17:f5:3c:6b:a7:11:40:29: ae:24:4a:ae:1d:de:ea:1e:01:7b:75:3f:f8:31:53: d4:70:6e:3e:42:37:73:51:44:98:4a:32:22:98:f1: 0f:0e:6b:7a:f5:8c:71:b0:a5:f8:78:e9:f2:20:0b: a3:f3:7a:77:35:b3:e7:58:a7:d2:f1:3b:a0:41:32: 10:40:09:96:e2:d8:28:3f:a8:76:26:4a:df:4a:ea: b7:df:d5:ca:41:59:3a:7d:26:e4:ef:0f:91:00:3f: 1e:ef:ba:11:0d:7a:71:96:56:d0:2d:79:99:f3:95: db:cc:4b:99:d5:1c:38:6a:1c:1a:6e:07:93:e8:d9: bc:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:0E:97:3E:64:91:40:93:FA:CA:DD:56:74:08:53:2C:61:0B:1E:15 X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:1f:60:97:e2:e8:1d:6a:60:7f:e8:94:16:e7:62:a0:58:7c: 62:93:53:78:cb:44:ba:94:bb:9f:6d:20:21:9c:a9:7f:e6:62: 94:dc:0e:b3:e2:45:97:10:50:18:cd:28:24:e3:57:79:53:ef: 89:44:ac:30:89:cc:fd:0a:c1:d4:35:ce:80:40:52:cb:78:c8: 36:66:fb:73:9c:22:8b:47:fa:9e:62:19:54:34:5e:78:28:2e: 05:62:d5:d2:d8:fa:e1:4f:62:d0:d0:0a:02:3f:16:b7:57:ec: c2:92:45:69:ed:4d:eb:c9:09:7e:ef:62:06:08:89:99:0e:54: cc:a9:b6:69:3b:50:a5:56:c4:51:22:57:2c:60:ba:8b:42:c9: 2f:81:1a:6d:da:18:e3:64:9a:bb:b7:93:aa:68:94:ae:62:e8: 5d:11:df:09:e3:08:e2:96:ac:9f:6f:49:82:fe:c7:59:b8:9e: 24:e1:a0:d5:b2:8b:06:23:41:37:12:fb:cf:1b:eb:00:11:f1: 0b:2c:03:d0:b1:d9:5b:7e:47:04:0f:31:af:8d:13:47:ca:b9: e1:30:54:8f:80:00:26:1f:94:26:fe:61:c4:1b:8e:19:69:36: 65:5c:26:2b:28:4d:06:4f:63:84:b5:d0:68:4b:19:d6:70:73: 54:97:43:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwODIyMTkxNzI5WhcNMjUwODI5MTkxNzI5WjAYMRYwFAYD VQQDEw02OGE4YzI0OS1kYWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhdQRUV+dj8fSOJPYDsjmHzGL+ahCTwRRfGsH9su0DpZl6cfFyXnmEMBwU9T BhncWV+DdUiIIifQUzPWc7CXX+0N8ObW0UCT4cuAMONB7hJGtaAcets2RMfdUJGC pHck1YUipHhmSMVV9tUzSw0QigPBnPvwWsZmLA/ejHDGF/U8a6cRQCmuJEquHd7q HgF7dT/4MVPUcG4+QjdzUUSYSjIimPEPDmt69YxxsKX4eOnyIAuj83p3NbPnWKfS 8TugQTIQQAmW4tgoP6h2JkrfSuq339XKQVk6fSbk7w+RAD8e77oRDXpxllbQLXmZ 85XbzEuZ1Rw4ahwabgeT6Nm89wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcOlz5k kUCT+srdVnQIUyxhCx4VMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6H2CX4ugdamB/6JQW52KgWHxik1N4y0S6lLufbSAhnKl/5mKU3A6z 4kWXEFAYzSgk41d5U++JRKwwicz9CsHUNc6AQFLLeMg2ZvtznCKLR/qeYhlUNF54 KC4FYtXS2PrhT2LQ0AoCPxa3V+zCkkVp7U3ryQl+72IGCImZDlTMqbZpO1ClVsRR IlcsYLqLQskvgRpt2hjjZJq7t5OqaJSuYuhdEd8J4wjilqyfb0mC/sdZuJ4k4aDV sosGI0E3EvvPG+sAEfELLAPQsdlbfkcEDzGvjRNHyrnhMFSPgAAmH5Qm/mHEG44Z aTZlXCYrKE0GT2OEtdBoSxnWcHNUl0PS -----END CERTIFICATE-----Generated at Sat Aug 23 19:08:12 2025 by rpki-client