$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft File: 7w5JMvxot1LjQokiqT5mq-MfNDE.mft (raw, json) Hash identifier: pp/ZB7fe/ZfzdVGZXt79ZLARIxg/dfATVrNlF/zMCw0= Subject key identifier: F9:B1:C6:80:51:C7:DF:E7:44:51:58:6E:6E:E4:22:98:40:EE:10:FE Authority key identifier: EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31 Certificate issuer: /CN=A91B4B33/serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft Manifest number: E5 Signing time: Sat 23 Aug 2025 05:33:29 +0000 Manifest this update: Sat 23 Aug 2025 05:33:29 +0000 Manifest next update: Sat 30 Aug 2025 05:33:29 +0000 Files and hashes: 1: 7w5JMvxot1LjQokiqT5mq-MfNDE.crl (hash: 0cvKaF7lnhmtyddI3tmsRKtV35DNQ7WfR33pUE82Y1I=) 2: 80741B04221F11EF92A42E1AC4F9AE02.roa (hash: tCXmsiS2pZhfyBR2w7/CD7l4+Sf7uzGB1XazUIv4/b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.crl rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:33:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4B33, serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431 Validity Not Before: Aug 23 05:33:29 2025 GMT Not After : Aug 30 05:33:29 2025 GMT Subject: CN=68a952a9-720e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3e:f8:81:86:07:f4:7c:3d:98:6d:03:9b:55: 99:b4:48:eb:a8:d6:e5:92:e8:f7:63:79:63:84:84: 69:1d:cd:d6:ac:62:86:64:e0:46:23:f7:13:60:d7: 3b:4e:7a:c5:52:bc:d4:f9:f7:19:1c:c9:57:82:ce: 05:21:28:3f:58:31:c0:48:1d:39:2b:c2:dd:5c:f8: 32:1a:9e:61:52:34:4d:f7:26:ad:7b:6d:ea:6a:34: 68:24:6d:7e:4b:f5:5e:d9:f2:f5:ef:6c:50:c1:70: c1:e5:8b:ac:d7:3c:00:e8:a6:d6:16:d8:31:68:99: 8a:f2:bc:a8:6b:ad:29:0c:85:b8:65:10:21:66:1d: 3f:a6:75:89:1c:41:b7:63:c6:a9:28:5e:e5:03:a0: fa:86:66:62:b1:99:b1:8d:9c:6e:b7:30:ed:e3:52: 7e:0c:48:db:2d:d2:1f:3c:00:de:59:56:7b:c2:b3: 3e:6f:37:7a:bd:40:11:92:fc:ec:5c:18:5b:ea:14: 26:7e:bc:c9:9c:17:f8:5e:4f:22:67:ed:14:02:0f: 14:8a:7a:c6:e4:d7:4a:08:1e:28:fe:de:22:52:9f: be:63:d6:3f:00:fb:93:be:bc:8e:38:56:fe:c9:f9: a1:c2:a2:e4:fe:ac:46:b0:b0:d7:55:49:57:9a:2c: 2f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B1:C6:80:51:C7:DF:E7:44:51:58:6E:6E:E4:22:98:40:EE:10:FE X509v3 Authority Key Identifier: keyid:EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:2e:ac:f6:e0:09:e1:4c:c4:e0:58:4d:fa:fc:73:83:f7:c3: cd:5e:df:01:c3:ea:23:68:b0:95:5c:b3:92:46:cc:9c:c5:77: 1c:7e:4e:64:20:88:a9:8f:32:41:4f:83:e8:5b:16:29:35:5b: a1:69:b3:83:c8:c5:81:80:12:78:f4:f0:78:a1:fe:1f:96:46: 9a:3f:49:3b:db:6a:e1:9c:19:52:5d:24:cd:16:8e:0d:da:3c: a2:28:a3:68:a3:69:22:13:d0:b3:d8:50:0b:39:79:fb:ae:4b: e7:81:ca:06:e8:a6:a8:ea:67:b5:93:4b:4e:95:a4:e4:f5:b1: b4:7b:4c:0d:09:68:80:5f:b1:28:71:ab:6b:53:2a:f3:49:b3: a2:7b:6f:51:36:55:aa:77:c9:80:e2:e1:ab:a4:29:61:8c:b5: 3e:2c:bd:cb:28:dc:e7:a3:f7:24:77:f1:68:dc:85:21:44:70: 85:31:ba:6e:3b:fa:9f:78:7b:35:e1:a2:51:bf:70:81:73:e3: 9d:e4:35:8e:b4:cb:dd:6b:0d:21:39:f1:c3:85:a7:ff:fd:1a: 53:ea:a6:70:61:48:67:c7:77:e9:e7:b6:49:96:6c:51:3d:0c: bb:72:ee:d3:29:e3:9e:b1:1a:1c:2c:de:1d:0b:d0:e2:16:f4: dd:0a:bd:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRCMzMxMTAvBgNVBAUTKEVGMEU0OTMyRkM2OEI3NTJFMzQyODkyMkE5M0U2NkFC RTMxRjM0MzEwHhcNMjUwODIzMDUzMzI5WhcNMjUwODMwMDUzMzI5WjAYMRYwFAYD VQQDEw02OGE5NTJhOS03MjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvT74gYYH9Hw9mG0Dm1WZtEjrqNblkuj3Y3ljhIRpHc3WrGKGZOBGI/cTYNc7 TnrFUrzU+fcZHMlXgs4FISg/WDHASB05K8LdXPgyGp5hUjRN9yate23qajRoJG1+ S/Ve2fL172xQwXDB5Yus1zwA6KbWFtgxaJmK8ryoa60pDIW4ZRAhZh0/pnWJHEG3 Y8apKF7lA6D6hmZisZmxjZxutzDt41J+DEjbLdIfPADeWVZ7wrM+bzd6vUARkvzs XBhb6hQmfrzJnBf4Xk8iZ+0UAg8UinrG5NdKCB4o/t4iUp++Y9Y/APuTvryOOFb+ yfmhwqLk/qxGsLDXVUlXmiwvkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmxxoBR x9/nRFFYbm7kIphA7hD+MB8GA1UdIwQYMBaAFO8OSTL8aLdS40KJIqk+ZqvjHzQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEIzMy8xQUNFN0QwNDIy MUUxMUVGOTM0NEEzMDlDNEY5QUUwMi83dzVKTXZ4b3QxTGpRb2tpcVQ1bXEtTWZO REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzd3NUpNdnhvdDFMalFva2lxVDVtcS1NZk5ERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEIzMy8xQUNFN0QwNDIyMUUxMUVGOTM0NEEzMDlDNEY5QUUwMi83dzVKTXZ4b3Qx TGpRb2tpcVQ1bXEtTWZOREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Lqz24AnhTMTgWE36/HOD98PNXt8Bw+ojaLCVXLOSRsycxXccfk5k IIipjzJBT4PoWxYpNVuhabODyMWBgBJ49PB4of4flkaaP0k722rhnBlSXSTNFo4N 2jyiKKNoo2kiE9Cz2FALOXn7rkvngcoG6Kao6me1k0tOlaTk9bG0e0wNCWiAX7Eo catrUyrzSbOie29RNlWqd8mA4uGrpClhjLU+LL3LKNzno/ckd/Fo3IUhRHCFMbpu O/qfeHs14aJRv3CBc+Od5DWOtMvdaw0hOfHDhaf//RpT6qZwYUhnx3fp57ZJlmxR PQy7cu7TKeOesRocLN4dC9DiFvTdCr3P -----END CERTIFICATE-----Generated at Sun Aug 24 00:09:58 2025 by rpki-client