$ rpki-client -vvf rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft File: MnO_dM_TfcKwgKpPGtntXtY-YyA.mft (raw, json) Hash identifier: tOp1rOta9058akfxpafBSS71ACitRgdC8iVKDF9yHP0= Subject key identifier: 3B:27:10:C7:0D:07:1C:FA:B5:17:83:0B:8A:CB:1E:EC:2F:B0:C7:74 Authority key identifier: 32:73:BF:74:CF:D3:7D:C2:B0:80:AA:4F:1A:D9:ED:5E:D6:3E:63:20 Certificate issuer: /CN=A912E3C7/serialNumber=3273BF74CFD37DC2B080AA4F1AD9ED5ED63E6320 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnO_dM_TfcKwgKpPGtntXtY-YyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft Manifest number: 80 Signing time: Mon 11 Aug 2025 06:56:16 +0000 Manifest this update: Mon 11 Aug 2025 06:56:16 +0000 Manifest next update: Mon 18 Aug 2025 06:56:16 +0000 Files and hashes: 1: MnO_dM_TfcKwgKpPGtntXtY-YyA.crl (hash: Hk7bXixV4gvjCsN1j1y8tUPydY49SXsn2YNo1IS2KdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.crl rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnO_dM_TfcKwgKpPGtntXtY-YyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E3C7, serialNumber=3273BF74CFD37DC2B080AA4F1AD9ED5ED63E6320 Validity Not Before: Aug 11 06:56:16 2025 GMT Not After : Aug 18 06:56:16 2025 GMT Subject: CN=68999410-e23a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6e:b9:82:cd:f1:25:71:dd:16:74:b2:8a:2b: 74:c4:10:87:80:62:70:a1:08:01:07:64:ee:d9:14: d9:3f:60:79:bc:a8:8d:e9:ef:a6:49:16:22:7c:eb: 34:fd:42:fa:4f:a7:34:87:f7:8c:22:22:64:e7:fd: c4:1a:f0:74:e8:52:eb:70:1e:e1:72:a9:c4:ff:ed: 1d:cd:50:70:57:3f:36:81:71:b7:e9:ae:2f:c3:3d: 74:c7:48:66:47:a2:0a:6d:bb:0f:9d:da:c0:ad:3e: aa:f5:c7:cb:72:5e:e7:66:54:7e:27:30:e1:e4:02: 97:94:3c:8c:e2:6d:84:37:c9:de:92:67:63:13:59: 1e:92:52:e0:39:34:97:8c:eb:85:b9:1d:0c:94:24: f1:a7:99:fe:4d:94:ad:ee:00:76:70:af:21:61:c6: 6f:30:6b:20:4d:74:8e:be:f4:d7:fe:c1:88:d1:53: 07:be:e6:81:32:2a:b1:4b:af:5a:8e:29:1d:4f:23: 4a:5c:03:fc:b4:b0:e6:c9:33:4d:2b:91:db:0a:b8: 52:9f:c3:1f:29:ea:39:0c:d6:e7:03:a4:9c:16:cf: 94:b2:e4:80:63:b6:38:4f:99:f6:1d:39:25:e0:3b: 5d:3f:de:3b:51:47:f4:7c:b1:d6:21:e7:50:21:6c: 74:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:27:10:C7:0D:07:1C:FA:B5:17:83:0B:8A:CB:1E:EC:2F:B0:C7:74 X509v3 Authority Key Identifier: keyid:32:73:BF:74:CF:D3:7D:C2:B0:80:AA:4F:1A:D9:ED:5E:D6:3E:63:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnO_dM_TfcKwgKpPGtntXtY-YyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:f9:a4:e6:2a:e3:31:6b:61:fa:74:e2:64:31:a5:bc:11:ac: 29:59:c0:2d:ee:a7:14:25:c8:a3:9f:bb:04:be:c6:71:52:bf: 5f:ac:c7:88:4b:33:c1:aa:8e:ce:d3:31:79:90:57:1b:67:8d: 81:96:0c:75:53:ec:73:de:80:64:a2:69:0f:77:8c:bc:04:66: 43:da:7c:23:9a:12:e3:0f:a3:4c:68:d6:b4:5c:6c:90:d7:23: d8:3d:74:b5:f1:08:bf:e2:0d:14:54:cf:29:f1:29:b5:40:23: c5:d3:94:b7:2f:65:b4:6b:5a:82:e0:2d:c5:c9:c6:a3:ac:09: 2e:85:0b:9a:02:40:a4:04:c1:80:c8:74:5f:08:fb:3d:83:53: 2d:90:1b:e2:95:37:3a:88:b6:28:5c:c8:06:c0:8c:c4:be:6b: 4c:df:f3:7a:3c:b4:79:b7:78:9b:c5:b9:d9:6a:06:c8:9e:28: 3c:d2:7d:90:c4:6b:83:65:af:cc:d9:a3:a6:5a:d3:3b:12:c6: 3f:19:2b:01:cd:af:a7:52:57:2a:70:bf:6d:63:b6:eb:f9:1a: 8d:60:47:96:08:d5:da:12:19:64:b3:ee:c7:da:fb:b9:b3:c5: bd:bb:8e:cb:7d:d7:0e:4f:83:0a:ec:17:0b:a0:9a:a1:18:e0: e7:53:7b:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzQzcxMTAvBgNVBAUTKDMyNzNCRjc0Q0ZEMzdEQzJCMDgwQUE0RjFBRDlFRDVF RDYzRTYzMjAwHhcNMjUwODExMDY1NjE2WhcNMjUwODE4MDY1NjE2WjAYMRYwFAYD VQQDEw02ODk5OTQxMC1lMjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG65gs3xJXHdFnSyiit0xBCHgGJwoQgBB2Tu2RTZP2B5vKiN6e+mSRYifOs0 /UL6T6c0h/eMIiJk5/3EGvB06FLrcB7hcqnE/+0dzVBwVz82gXG36a4vwz10x0hm R6IKbbsPndrArT6q9cfLcl7nZlR+JzDh5AKXlDyM4m2EN8nekmdjE1keklLgOTSX jOuFuR0MlCTxp5n+TZSt7gB2cK8hYcZvMGsgTXSOvvTX/sGI0VMHvuaBMiqxS69a jikdTyNKXAP8tLDmyTNNK5HbCrhSn8MfKeo5DNbnA6ScFs+UsuSAY7Y4T5n2HTkl 4DtdP947UUf0fLHWIedQIWx0lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsnEMcN Bxz6tReDC4rLHuwvsMd0MB8GA1UdIwQYMBaAFDJzv3TP033CsICqTxrZ7V7WPmMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTNDNy84RTYwOEE4QUIy NjcxMUVGQTU2NUE4NDlDNEY5QUUwMi9Nbk9fZE1fVGZjS3dnS3BQR3RudFh0WS1Z eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uT19kTV9UZmNLd2dLcFBHdG50WHRZLVl5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTNDNy84RTYwOEE4QUIyNjcxMUVGQTU2NUE4NDlDNEY5QUUwMi9Nbk9fZE1fVGZj S3dnS3BQR3RudFh0WS1ZeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx+aTmKuMxa2H6dOJkMaW8EawpWcAt7qcUJcijn7sEvsZxUr9frMeI SzPBqo7O0zF5kFcbZ42Blgx1U+xz3oBkomkPd4y8BGZD2nwjmhLjD6NMaNa0XGyQ 1yPYPXS18Qi/4g0UVM8p8Sm1QCPF05S3L2W0a1qC4C3FycajrAkuhQuaAkCkBMGA yHRfCPs9g1MtkBvilTc6iLYoXMgGwIzEvmtM3/N6PLR5t3ibxbnZagbInig80n2Q xGuDZa/M2aOmWtM7EsY/GSsBza+nUlcqcL9tY7br+RqNYEeWCNXaEhlks+7H2vu5 s8W9u47LfdcOT4MK7BcLoJqhGODnU3sx -----END CERTIFICATE-----Generated at Wed Aug 13 07:40:49 2025 by rpki-client