$ rpki-client -vvf rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft File: mbcL8gJe3c35KkfQTLdWrLBz3EU.mft (raw, json) Hash identifier: 6hDSgDrN67BhRky2W4i1sajYPUcpAhR246XzJ21njOM= Subject key identifier: FC:23:75:0E:7F:01:F2:71:40:6B:EB:6E:FE:F7:87:79:33:9B:98:BC Authority key identifier: 99:B7:0B:F2:02:5E:DD:CD:F9:2A:47:D0:4C:B7:56:AC:B0:73:DC:45 Certificate issuer: /CN=A912C7DC/serialNumber=99B70BF2025EDDCDF92A47D04CB756ACB073DC45 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft Manifest number: 71 Signing time: Tue 05 Aug 2025 07:25:51 +0000 Manifest this update: Tue 05 Aug 2025 07:25:50 +0000 Manifest next update: Tue 12 Aug 2025 07:25:50 +0000 Files and hashes: 1: mbcL8gJe3c35KkfQTLdWrLBz3EU.crl (hash: XU7CDBazigXV14TCwC5LM/549OVaiKBgJnapQulacfo=) 2: E310D7E2C58B11EFBA44DE34C4F9AE02.roa (hash: KRcguCIL3wMi3PwztLJpTVhTUzHmH2MqWyforuoA8o0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.crl rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C7DC, serialNumber=99B70BF2025EDDCDF92A47D04CB756ACB073DC45 Validity Not Before: Aug 5 07:25:50 2025 GMT Not After : Aug 12 07:25:50 2025 GMT Subject: CN=6891b1ff-f8ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7c:42:a0:92:56:19:57:32:f4:d1:cb:78:74: 1b:aa:a8:ae:68:cf:69:4d:80:97:5e:1a:48:cb:46: 20:d5:c7:aa:c6:d7:6c:2a:16:67:a1:6e:ba:dd:37: 32:3e:65:53:f6:2f:36:94:85:ec:81:9e:60:f6:9b: fe:00:8d:2f:c3:14:e5:99:6e:ec:46:64:81:1e:7b: 04:59:97:3e:26:36:e0:ea:9f:4a:5b:03:a9:b0:80: f0:ab:7b:08:7a:d5:3c:60:03:39:a4:00:8a:2f:08: 40:67:40:d2:b4:4d:4d:99:60:52:46:2a:bd:0c:b8: 28:f0:ce:47:4d:51:95:68:77:87:56:c9:3a:f5:33: 68:92:66:54:6c:ab:bb:7e:aa:ca:f5:4f:03:a8:eb: c5:3c:33:41:d9:8e:7d:ad:ec:6b:d8:ce:8c:9c:a6: 00:06:ff:d8:d8:9f:0e:7d:95:10:75:43:ea:7b:bb: 63:9c:70:87:70:9d:10:51:3f:e8:fb:7c:c5:65:ca: a5:39:1c:1f:8e:02:5d:5d:ce:33:91:ec:d5:89:56: 34:56:2e:68:96:87:68:b8:8c:7e:f9:bb:2e:36:f1: 80:ac:25:c9:4a:f6:1d:c2:fb:52:65:1e:03:9c:b4: 21:12:da:ad:fd:68:6c:e1:bd:fc:c3:c7:4b:e2:2f: 74:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:23:75:0E:7F:01:F2:71:40:6B:EB:6E:FE:F7:87:79:33:9B:98:BC X509v3 Authority Key Identifier: keyid:99:B7:0B:F2:02:5E:DD:CD:F9:2A:47:D0:4C:B7:56:AC:B0:73:DC:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mbcL8gJe3c35KkfQTLdWrLBz3EU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C7DC/6DEFDB70C58B11EFB87E5F33C4F9AE02/mbcL8gJe3c35KkfQTLdWrLBz3EU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:04:80:17:85:3f:3b:5d:a7:74:c0:c6:97:64:a9:d3:3e:fe: 53:26:51:35:5f:f6:29:e3:78:70:03:a9:bd:91:89:9c:78:a3: b1:cd:43:9c:93:32:da:c6:2d:a0:a0:65:6e:b8:55:29:c9:79: dd:7d:af:6e:81:7a:41:49:6f:d2:68:dd:c4:80:c6:10:be:c5: a3:14:a9:fd:fa:0e:a6:37:d8:86:bd:78:b1:44:a6:0c:d2:37: 4a:d7:a5:33:d6:39:b5:08:ee:e6:cf:f3:fa:ec:4c:b1:68:75: 22:24:42:d3:90:5e:2f:30:58:5c:35:e1:59:4a:f8:ed:f4:c9: e3:c8:88:e8:d7:e6:3c:a7:76:2b:0d:06:3d:1d:7d:da:b1:14: 70:59:89:fb:68:24:b3:c4:65:f3:05:6f:a8:44:a8:ef:cc:38: a5:53:82:45:e7:37:f0:07:2d:82:91:3c:48:c0:5d:1c:9e:09: 64:94:61:39:88:77:15:c9:00:97:17:7a:a0:b6:2b:99:e6:e5: aa:70:48:d4:62:66:f1:c5:90:30:7e:f5:76:32:6c:9d:49:ec: 23:4a:a8:a5:5e:e8:2e:77:09:36:cf:77:9c:73:a2:fc:b1:a3: 0c:98:31:6c:ea:02:b5:c7:c6:1b:83:eb:ec:f5:58:b8:19:2b: 26:c0:6c:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzdEQzExMC8GA1UEBRMoOTlCNzBCRjIwMjVFRERDREY5MkE0N0QwNENCNzU2QUNC MDczREM0NTAeFw0yNTA4MDUwNzI1NTBaFw0yNTA4MTIwNzI1NTBaMBgxFjAUBgNV BAMTDTY4OTFiMWZmLWY4YWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2fEKgklYZVzL00ct4dBuqqK5oz2lNgJdeGkjLRiDVx6rG12wqFmehbrrdNzI+ ZVP2LzaUheyBnmD2m/4AjS/DFOWZbuxGZIEeewRZlz4mNuDqn0pbA6mwgPCrewh6 1TxgAzmkAIovCEBnQNK0TU2ZYFJGKr0MuCjwzkdNUZVod4dWyTr1M2iSZlRsq7t+ qsr1TwOo68U8M0HZjn2t7GvYzoycpgAG/9jYnw59lRB1Q+p7u2OccIdwnRBRP+j7 fMVlyqU5HB+OAl1dzjOR7NWJVjRWLmiWh2i4jH75uy428YCsJclK9h3C+1JlHgOc tCES2q39aGzhvfzDx0viL3TFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/CN1Dn8B 8nFAa+tu/veHeTObmLwwHwYDVR0jBBgwFoAUmbcL8gJe3c35KkfQTLdWrLBz3EUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDN0RDLzZERUZEQjcwQzU4 QjExRUZCODdFNUYzM0M0RjlBRTAyL21iY0w4Z0plM2MzNUtrZlFUTGRXckxCejNF VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWJjTDhnSmUzYzM1S2tmUVRMZFdyTEJ6M0VVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD N0RDLzZERUZEQjcwQzU4QjExRUZCODdFNUYzM0M0RjlBRTAyL21iY0w4Z0plM2Mz NUtrZlFUTGRXckxCejNFVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK8EgBeFPztdp3TAxpdkqdM+/lMmUTVf9injeHADqb2RiZx4o7HNQ5yT MtrGLaCgZW64VSnJed19r26BekFJb9Jo3cSAxhC+xaMUqf36DqY32Ia9eLFEpgzS N0rXpTPWObUI7ubP8/rsTLFodSIkQtOQXi8wWFw14VlK+O30yePIiOjX5jyndisN Bj0dfdqxFHBZiftoJLPEZfMFb6hEqO/MOKVTgkXnN/AHLYKRPEjAXRyeCWSUYTmI dxXJAJcXeqC2K5nm5apwSNRiZvHFkDB+9XYybJ1J7CNKqKVe6C53CTbPd5xzovyx owyYMWzqArXHxhuD6+z1WLgZKybAbKM= -----END CERTIFICATE-----Generated at Wed Aug 6 11:22:04 2025 by rpki-client