$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: hvcuUcYCc02QAwFdsfcAFQrZBKQrUNsko0oWUobAUyU= Subject key identifier: BD:65:C3:75:A9:E1:88:8A:1C:54:7D:04:3F:5D:06:91:F2:97:11:05 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B2F Signing time: Wed 02 Jul 2025 19:25:31 +0000 Manifest this update: Wed 02 Jul 2025 19:25:31 +0000 Manifest next update: Wed 09 Jul 2025 19:25:31 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: Srj8iE+Cp2N/wCspBytZjSwwjEYd+WTeYIsJ+q1hcZY=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: NJ+vu7BB1LSL5IyZI4sxWSXiQvL3uuiHK69WI9ypRDY=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: 1Gen1/T5J9VcUP7yeBxePtjlwSEPjuywH9LIrIKtzGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2877 (0xb3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Jul 2 19:25:31 2025 GMT Not After : Jul 9 19:25:31 2025 GMT Subject: CN=686587ab-ce5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b1:8c:17:96:48:dc:b3:97:ed:05:9c:15:3a: 66:ce:26:82:4f:f1:d9:64:88:58:1f:b9:50:5d:f5: 34:f4:49:a1:0a:1a:d5:6b:bf:a3:0d:61:94:bb:d4: 44:6f:74:cd:51:c0:0f:ce:66:ad:4b:d9:a1:5d:9c: 71:a7:23:1f:53:9e:bf:24:9a:8c:12:74:53:b4:74: b6:d9:b1:4f:c8:af:7d:ab:1e:25:e5:d1:72:71:cf: e6:a4:8a:24:77:70:f8:6e:31:01:bc:b7:fc:64:18: 93:b2:f2:ae:cd:8c:07:72:63:66:de:f1:8d:14:31: 49:9e:ef:8d:ee:3d:70:68:3e:de:f7:5d:f9:5b:5e: bf:91:fd:b6:90:64:dc:3d:05:44:c1:b3:87:3d:c2: 23:6e:bb:6b:4c:95:09:4b:e8:75:0c:d1:c0:fd:eb: 57:6f:38:82:b3:74:14:82:3a:6b:56:a1:5c:53:3a: 05:1a:cf:aa:50:f4:47:3a:98:eb:4b:c2:d2:73:37: 28:f9:f2:d9:88:cc:d8:00:22:c2:51:03:47:a7:01: fc:ed:cd:4e:43:a9:87:ce:9a:ce:50:d3:57:1d:77: 6c:3c:4b:c7:b2:c3:44:d6:c9:c6:35:f7:65:2c:73: 08:26:e7:b8:b9:5e:b7:16:de:22:42:ad:51:64:e0: b2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:65:C3:75:A9:E1:88:8A:1C:54:7D:04:3F:5D:06:91:F2:97:11:05 X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:09:db:42:12:9f:5b:13:35:d0:42:6f:02:c1:fd:22:2b:ac: 76:0c:42:5f:3b:62:92:39:6a:e5:a0:53:5d:2c:f4:49:ac:d9: 82:54:df:1b:cb:16:82:55:a9:a4:10:64:e2:e3:f7:53:16:38: 80:ed:85:97:b3:8b:59:b1:22:57:7f:72:ff:02:bb:55:de:b7: 49:20:a1:6e:b7:28:ef:85:9e:5c:83:c2:23:35:8d:72:10:72: 85:47:7c:e5:31:54:7d:5b:e1:76:ab:c4:18:c8:06:a4:b0:a2: 80:e0:b4:84:fc:b9:01:c6:e3:b9:33:f5:7b:ae:bd:a4:8a:b1: 27:e4:21:b7:6e:8d:6c:70:33:c1:49:12:94:b4:90:0d:af:d7: 68:af:3e:8c:ee:4d:70:65:9e:7e:84:bd:3b:a3:ac:42:33:bc: 55:25:c9:5a:44:69:ea:bc:b9:71:59:9f:d1:a9:39:78:82:38: e1:9f:f2:03:9e:a0:e8:e0:c2:64:59:92:18:30:6e:31:3e:b4: ad:b5:37:52:85:0b:5c:43:a3:94:f1:cc:57:fa:cc:b5:39:99: 05:24:12:6c:aa:51:61:0b:84:25:28:81:a2:89:5b:bc:74:16: 6c:3b:9b:e1:6d:0e:1e:d0:cc:9e:51:78:55:f6:8f:89:1f:ac: 99:39:6e:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwNzAyMTkyNTMxWhcNMjUwNzA5MTkyNTMxWjAYMRYwFAYD VQQDEw02ODY1ODdhYi1jZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7GMF5ZI3LOX7QWcFTpmziaCT/HZZIhYH7lQXfU09EmhChrVa7+jDWGUu9RE b3TNUcAPzmatS9mhXZxxpyMfU56/JJqMEnRTtHS22bFPyK99qx4l5dFycc/mpIok d3D4bjEBvLf8ZBiTsvKuzYwHcmNm3vGNFDFJnu+N7j1waD7e9135W16/kf22kGTc PQVEwbOHPcIjbrtrTJUJS+h1DNHA/etXbziCs3QUgjprVqFcUzoFGs+qUPRHOpjr S8LSczco+fLZiMzYACLCUQNHpwH87c1OQ6mHzprOUNNXHXdsPEvHssNE1snGNfdl LHMIJue4uV63Ft4iQq1RZOCynQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1lw3Wp 4YiKHFR9BD9dBpHylxEFMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATCdtCEp9bEzXQQm8Cwf0iK6x2DEJfO2KSOWrloFNdLPRJrNmCVN8b yxaCVamkEGTi4/dTFjiA7YWXs4tZsSJXf3L/ArtV3rdJIKFutyjvhZ5cg8IjNY1y EHKFR3zlMVR9W+F2q8QYyAaksKKA4LSE/LkBxuO5M/V7rr2kirEn5CG3bo1scDPB SRKUtJANr9dorz6M7k1wZZ5+hL07o6xCM7xVJclaRGnqvLlxWZ/RqTl4gjjhn/ID nqDo4MJkWZIYMG4xPrSttTdShQtcQ6OU8cxX+sy1OZkFJBJsqlFhC4QlKIGiiVu8 dBZsO5vhbQ4e0MyeUXhV9o+JH6yZOW4g -----END CERTIFICATE-----Generated at Wed Jul 2 22:03:51 2025 by rpki-client