$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft File: -E-7QV2aRUM2Lt9yZfU34s_5-CA.mft (raw, json) Hash identifier: HZmkFAXd9RuFFcbdXjwC37dz/t40DqA9lsQx8DnN33A= Subject key identifier: 07:1D:F4:C8:90:44:99:A1:30:E0:2E:43:C7:66:2F:9E:3F:E3:1C:1B Authority key identifier: F8:4F:BB:41:5D:9A:45:43:36:2E:DF:72:65:F5:37:E2:CF:F9:F8:20 Certificate issuer: /CN=A91BCDC6/serialNumber=F84FBB415D9A4543362EDF7265F537E2CFF9F820 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft Manifest number: 0150 Signing time: Sat 23 Aug 2025 04:19:25 +0000 Manifest this update: Sat 23 Aug 2025 04:19:25 +0000 Manifest next update: Sat 30 Aug 2025 04:19:25 +0000 Files and hashes: 1: -E-7QV2aRUM2Lt9yZfU34s_5-CA.crl (hash: EmKXwylHjPRvU8afd3cMR7k+Wo5330GgioITqjc/fK4=) 2: 254E9F807D4A11EEABBD1328C4F9AE02.roa (hash: D3pmccxd7HAcoRpNwl+DNJm+TOWT+mbBNl5xHiUaFnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.crl rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:19:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCDC6, serialNumber=F84FBB415D9A4543362EDF7265F537E2CFF9F820 Validity Not Before: Aug 23 04:19:25 2025 GMT Not After : Aug 30 04:19:25 2025 GMT Subject: CN=68a9414d-7555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:60:27:d3:13:87:f4:d8:b0:9e:4e:85:d2:2f: be:71:cc:34:24:f5:a2:c5:d7:c0:33:17:a2:ee:3e: 31:dc:dd:a4:be:74:a8:24:4e:ff:04:08:62:b1:a4: 9c:2c:a0:8c:68:58:07:29:3a:a7:31:13:21:9a:55: bb:56:87:39:c0:b3:58:b3:28:b0:e4:c2:16:a9:04: 27:3d:3f:71:94:eb:d7:7f:e1:ad:ae:d6:30:ab:91: 1c:6b:04:dd:e6:82:4b:bd:c2:19:5c:31:cc:36:33: b1:62:07:9b:fd:89:52:6c:7b:1a:20:90:9e:1a:38: cb:27:b4:9d:e0:82:fc:12:8c:19:2c:05:88:d9:eb: 08:4a:9c:bd:50:be:45:b3:e6:11:c3:51:3d:7c:17: 14:65:28:61:d6:d1:5b:e0:a5:da:e9:d6:46:85:09: 6c:16:1a:69:52:1c:7a:f3:33:0b:aa:b3:8a:b8:4a: 3e:bc:3f:eb:73:41:02:1a:30:a1:e9:c2:1e:8d:9a: 7a:7d:4b:d3:aa:22:77:da:93:b6:5f:41:2e:2f:22: ec:1c:78:67:d0:bc:07:fd:12:35:2d:a9:0a:40:da: 8f:7d:9c:d0:a0:8c:e7:95:55:ac:eb:ed:39:7d:4f: dd:dc:7d:c4:1c:78:bd:f4:f5:aa:c3:68:b8:2c:ec: ba:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:1D:F4:C8:90:44:99:A1:30:E0:2E:43:C7:66:2F:9E:3F:E3:1C:1B X509v3 Authority Key Identifier: keyid:F8:4F:BB:41:5D:9A:45:43:36:2E:DF:72:65:F5:37:E2:CF:F9:F8:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:00:ab:77:5d:35:a9:af:03:c7:0b:2f:d5:f5:6f:bf:5f:37: 58:a2:66:e9:d7:05:3d:58:f7:ad:ba:80:ff:d7:0b:a0:6b:ec: af:41:3b:00:c0:8a:08:fa:ba:20:3c:ac:dc:60:65:bc:3d:fa: 93:d7:77:e3:e5:f9:2e:a1:91:7b:32:07:ea:4b:bc:88:13:ae: ae:ab:c2:38:57:37:70:46:fe:c9:fb:1e:aa:b3:23:06:f6:83: 8f:e9:3f:a4:6c:67:b3:a5:45:dc:1c:04:1b:47:91:f0:26:7a: b2:00:dc:90:a0:54:da:f2:42:7c:ab:20:54:53:72:a9:1a:63: b5:66:67:1d:2e:17:ed:b4:5b:57:38:a6:81:34:03:47:54:f0: 32:e4:9d:72:9f:01:c5:f5:58:88:48:64:76:33:0e:88:21:e0: b1:57:96:f3:a3:a9:20:1f:31:7f:19:4f:db:51:b7:dd:18:82: 46:1e:cb:b8:72:99:83:a9:a2:7d:8f:f8:d9:8e:20:55:aa:7e: 6a:56:71:26:31:13:35:bf:f0:57:55:fe:d3:be:40:8d:f4:99: 0c:0f:fb:0b:cc:34:a0:8d:be:e8:d4:96:35:4f:c9:f6:e2:2b: f4:97:87:b5:a3:57:10:0b:3d:31:fa:3d:03:fc:b1:17:ab:b4: 31:41:4b:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNEQzYxMTAvBgNVBAUTKEY4NEZCQjQxNUQ5QTQ1NDMzNjJFREY3MjY1RjUzN0Uy Q0ZGOUY4MjAwHhcNMjUwODIzMDQxOTI1WhcNMjUwODMwMDQxOTI1WjAYMRYwFAYD VQQDEw02OGE5NDE0ZC03NTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2An0xOH9Niwnk6F0i++ccw0JPWixdfAMxei7j4x3N2kvnSoJE7/BAhisaSc LKCMaFgHKTqnMRMhmlW7Voc5wLNYsyiw5MIWqQQnPT9xlOvXf+GtrtYwq5EcawTd 5oJLvcIZXDHMNjOxYgeb/YlSbHsaIJCeGjjLJ7Sd4IL8EowZLAWI2esISpy9UL5F s+YRw1E9fBcUZShh1tFb4KXa6dZGhQlsFhppUhx68zMLqrOKuEo+vD/rc0ECGjCh 6cIejZp6fUvTqiJ32pO2X0EuLyLsHHhn0LwH/RI1LakKQNqPfZzQoIznlVWs6+05 fU/d3H3EHHi99PWqw2i4LOy6wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcd9MiQ RJmhMOAuQ8dmL54/4xwbMB8GA1UdIwQYMBaAFPhPu0FdmkVDNi7fcmX1N+LP+fgg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0RDNi84MDEyOEVDODdE NDkxMUVFQjlDNkRDMjZDNEY5QUUwMi8tRS03UVYyYVJVTTJMdDl5WmZVMzRzXzUt Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1FLTdRVjJhUlVNMkx0OXlaZlUzNHNfNS1DQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0RDNi84MDEyOEVDODdENDkxMUVFQjlDNkRDMjZDNEY5QUUwMi8tRS03UVYyYVJV TTJMdDl5WmZVMzRzXzUtQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoAKt3XTWprwPHCy/V9W+/XzdYombp1wU9WPetuoD/1wuga+yvQTsA wIoI+rogPKzcYGW8PfqT13fj5fkuoZF7MgfqS7yIE66uq8I4VzdwRv7J+x6qsyMG 9oOP6T+kbGezpUXcHAQbR5HwJnqyANyQoFTa8kJ8qyBUU3KpGmO1ZmcdLhfttFtX OKaBNANHVPAy5J1ynwHF9ViISGR2Mw6IIeCxV5bzo6kgHzF/GU/bUbfdGIJGHsu4 cpmDqaJ9j/jZjiBVqn5qVnEmMRM1v/BXVf7TvkCN9JkMD/sLzDSgjb7o1JY1T8n2 4iv0l4e1o1cQCz0x+j0D/LEXq7QxQUsp -----END CERTIFICATE-----Generated at Sat Aug 23 18:27:12 2025 by rpki-client