$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: VOKh3hapNe3G7ahIJcJugzAmXx8c2YhxnE6dnuPimXg= Subject key identifier: CB:1F:90:6F:9A:41:09:45:57:DE:3F:E6:D5:4B:E5:77:11:C7:C0:DA Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 34AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 4013 Signing time: Fri 22 Aug 2025 14:50:20 +0000 Manifest this update: Fri 22 Aug 2025 14:50:20 +0000 Manifest next update: Fri 29 Aug 2025 14:50:20 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: Av6t48qgulyaUmG/vRw2qmsKr1az58NI0zPVuRuVchY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13485 (0x34ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: Aug 22 14:50:20 2025 GMT Not After : Aug 29 14:50:20 2025 GMT Subject: CN=68a883ac-08f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:86:ff:4d:e3:aa:96:f1:8a:10:0e:49:f2:cb: 8b:a6:3c:70:c1:69:46:13:9c:e1:69:48:7d:83:86: 57:03:59:4f:af:f4:9f:63:0a:25:59:5a:e8:a1:3d: d0:d9:c1:0b:59:54:9d:fc:d3:04:ef:c6:ff:be:34: 34:f2:22:8c:84:72:02:87:f5:45:2a:57:77:59:63: 5c:4f:59:b5:10:a8:d0:c5:56:47:9a:7c:9f:01:b4: 10:2b:25:89:96:ff:8d:70:9e:7d:6c:08:6e:25:92: 17:92:bd:1e:cc:b2:92:2d:28:43:bf:92:3d:a4:6a: cc:0e:8a:0c:ed:99:64:59:47:89:c1:9c:2b:dd:6e: d7:fc:24:6d:60:f7:ea:af:6a:d4:72:43:97:a6:f5: f7:b1:96:5e:77:9f:bc:85:c6:c5:58:1d:a4:48:4e: 55:e9:ec:c4:4e:4e:74:a9:1f:78:58:9c:5e:68:d5: e9:e6:3d:54:e1:a8:e6:56:66:45:35:e2:cd:76:c8: 54:0e:5e:de:56:01:57:ea:f2:a2:cf:94:4f:51:6f: 50:b0:30:cb:b3:f9:c9:e4:b4:db:c5:cb:f7:47:1f: 60:17:2a:03:58:1c:1d:69:6a:dc:bb:fe:8a:f4:49: 73:36:dd:ea:0e:ba:bf:77:51:19:d8:e2:43:e1:02: 70:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1F:90:6F:9A:41:09:45:57:DE:3F:E6:D5:4B:E5:77:11:C7:C0:DA X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:30:c4:a1:35:21:25:65:ef:f5:86:ef:fa:b9:9f:b6:ec:72: 45:14:8b:88:74:70:b3:5c:58:19:c5:ef:15:3a:f6:9a:0a:60: fe:ee:c8:52:a1:d2:e4:65:89:fc:ba:8f:51:eb:6f:47:98:07: 49:61:90:ab:4d:73:d6:89:dc:35:11:ce:d6:6f:5f:35:de:d8: a7:b8:b6:e2:60:c8:a0:d2:c5:47:98:2d:45:e0:69:2d:21:dd: 95:53:08:e2:c2:42:ee:1c:61:36:a4:b2:99:a9:89:af:74:e0: 19:36:12:b1:61:ea:ab:7a:1d:53:bf:e4:69:5d:01:e3:d4:37: 6a:67:8a:55:52:5a:5b:34:10:49:f9:27:11:2c:5a:b6:c8:6d: e1:10:0d:df:e7:c6:bd:ce:73:2a:cb:fb:51:a9:2e:47:a7:e5: 34:c7:c2:a5:95:4c:b8:bc:11:76:55:ac:7a:ed:cf:8b:62:1e: ac:1d:fb:ef:24:1e:c2:e3:eb:cb:cc:ad:6f:b9:76:cb:3f:a1: d7:b0:9c:31:89:e1:fe:81:97:74:30:90:34:9a:da:a0:7b:77: 3c:60:5c:9d:88:78:c9:44:eb:18:48:d1:1c:d3:75:27:71:06: cb:f0:cc:c8:05:b3:41:e5:29:5e:3d:ce:a7:89:64:e4:41:e8: 70:f5:7f:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjUwODIyMTQ1MDIwWhcNMjUwODI5MTQ1MDIwWjAYMRYwFAYD VQQDEw02OGE4ODNhYy0wOGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYb/TeOqlvGKEA5J8suLpjxwwWlGE5zhaUh9g4ZXA1lPr/SfYwolWVrooT3Q 2cELWVSd/NME78b/vjQ08iKMhHICh/VFKld3WWNcT1m1EKjQxVZHmnyfAbQQKyWJ lv+NcJ59bAhuJZIXkr0ezLKSLShDv5I9pGrMDooM7ZlkWUeJwZwr3W7X/CRtYPfq r2rUckOXpvX3sZZed5+8hcbFWB2kSE5V6ezETk50qR94WJxeaNXp5j1U4ajmVmZF NeLNdshUDl7eVgFX6vKiz5RPUW9QsDDLs/nJ5LTbxcv3Rx9gFyoDWBwdaWrcu/6K 9ElzNt3qDrq/d1EZ2OJD4QJwFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsfkG+a QQlFV94/5tVL5XcRx8DaMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTMMShNSElZe/1hu/6uZ+27HJFFIuIdHCzXFgZxe8VOvaaCmD+7shS odLkZYn8uo9R629HmAdJYZCrTXPWidw1Ec7Wb1813tinuLbiYMig0sVHmC1F4Gkt Id2VUwjiwkLuHGE2pLKZqYmvdOAZNhKxYeqreh1Tv+RpXQHj1DdqZ4pVUlpbNBBJ +ScRLFq2yG3hEA3f58a9znMqy/tRqS5Hp+U0x8KllUy4vBF2Vax67c+LYh6sHfvv JB7C4+vLzK1vuXbLP6HXsJwxieH+gZd0MJA0mtqge3c8YFydiHjJROsYSNEc03Un cQbL8MzIBbNB5SlePc6niWTkQehw9X9g -----END CERTIFICATE-----Generated at Sun Aug 24 00:00:15 2025 by rpki-client