$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: ZG/ErBnWHZBiS4misatVb43nFT3vGYFuj2LjLesxoHM= Subject key identifier: 7D:88:F9:19:49:21:19:50:52:6D:D0:46:1E:F6:B0:30:42:79:45:39 Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 06A2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 069B Signing time: Sun 10 Aug 2025 15:11:07 +0000 Manifest this update: Sun 10 Aug 2025 15:11:07 +0000 Manifest next update: Sun 17 Aug 2025 15:11:07 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: Kq0SmI/9Mj7iqN9TnihgNnaoEzNsEtPRP4G2WYueb6A=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Aug 10 15:11:07 2025 GMT Not After : Aug 17 15:11:07 2025 GMT Subject: CN=6898b68b-6a9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e5:ef:81:b1:e9:46:77:51:1b:ab:16:14:1d: 3d:ad:4a:bb:d5:58:22:30:66:c1:86:da:95:ca:01: 01:6a:99:7b:3b:65:18:ac:30:11:37:71:b8:e1:49: 2c:be:a3:6e:3a:8b:2d:91:27:bd:0a:51:b4:21:33: db:75:d6:a1:34:b7:92:88:42:1f:da:b8:60:4e:b3: c5:29:30:25:fd:b4:8b:20:e4:4e:8b:a0:5f:0c:ed: 53:da:f5:76:8d:66:6e:69:0e:fb:b3:f6:26:7c:b2: 5b:bd:7e:42:ea:39:68:0c:50:22:d6:96:3d:23:c4: b2:7a:a3:5c:46:9f:e7:ad:b2:d6:b0:c1:d0:56:68: 41:d1:49:54:f9:5b:14:1b:b1:3b:6d:79:57:c5:43: d5:97:24:7b:87:33:ab:fc:32:09:a4:d5:4e:0b:33: 13:51:92:bf:57:3e:4b:8d:c2:62:8a:28:e9:2a:3b: 15:66:da:ed:65:b5:df:e3:df:91:17:18:50:b1:13: b3:94:07:4c:76:1f:2f:75:7e:a1:98:39:a2:2d:09: f8:d1:29:51:13:10:07:e1:28:3d:bc:c7:4a:f6:2c: dd:7d:47:44:fe:45:41:a4:81:81:45:2c:ed:3c:b2: 61:5d:a6:21:1c:09:e8:36:68:cb:a4:b7:9c:94:dd: 6a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:88:F9:19:49:21:19:50:52:6D:D0:46:1E:F6:B0:30:42:79:45:39 X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:28:5e:c2:60:dd:8f:c0:6d:cb:40:36:07:87:cb:08:db:94: 87:40:07:9b:d3:23:17:4e:3b:1c:e1:b5:b1:c0:1a:fc:93:ae: ce:d9:6a:9b:09:c6:b8:08:02:8b:15:fe:6a:7f:03:d2:b0:45: ca:91:fe:9e:90:c5:a4:66:dc:cf:28:06:a5:e0:e4:ff:9b:63: dd:39:18:b0:68:f0:9a:e2:4d:cb:b3:39:70:9b:6c:98:16:eb: bb:db:df:f5:e8:71:35:f2:e9:6c:66:f0:d0:14:af:f6:41:00: c5:55:93:1c:af:5b:de:86:ea:b9:f1:20:44:2a:e8:68:ed:68: 15:f3:39:ce:5a:80:eb:df:1e:7a:47:fd:72:e9:bc:37:dc:88: 14:38:b8:cc:e4:a9:a2:d8:6d:8b:6b:a9:a6:18:b9:4f:ea:32: 56:35:18:34:11:b3:89:39:52:07:0d:78:76:20:03:d3:40:bb: de:fb:ed:bc:00:20:74:e8:9f:4f:d5:88:49:d9:08:89:50:3d: 1e:52:4b:7d:62:28:a7:6f:fc:6b:ad:56:1e:fa:29:a0:af:67: 2b:00:c7:d5:8d:de:e1:04:f3:1d:95:25:93:27:cf:53:b9:80: 18:ad:80:e0:b7:80:02:57:0e:2e:60:f9:00:7f:ef:d7:b3:d1: af:1f:61:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUwODEwMTUxMTA3WhcNMjUwODE3MTUxMTA3WjAYMRYwFAYD VQQDEw02ODk4YjY4Yi02YTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteXvgbHpRndRG6sWFB09rUq71VgiMGbBhtqVygEBapl7O2UYrDARN3G44Uks vqNuOostkSe9ClG0ITPbddahNLeSiEIf2rhgTrPFKTAl/bSLIOROi6BfDO1T2vV2 jWZuaQ77s/YmfLJbvX5C6jloDFAi1pY9I8SyeqNcRp/nrbLWsMHQVmhB0UlU+VsU G7E7bXlXxUPVlyR7hzOr/DIJpNVOCzMTUZK/Vz5LjcJiiijpKjsVZtrtZbXf49+R FxhQsROzlAdMdh8vdX6hmDmiLQn40SlRExAH4Sg9vMdK9izdfUdE/kVBpIGBRSzt PLJhXaYhHAnoNmjLpLeclN1q0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2I+RlJ IRlQUm3QRh72sDBCeUU5MB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0KF7CYN2PwG3LQDYHh8sI25SHQAeb0yMXTjsc4bWxwBr8k67O2Wqb Cca4CAKLFf5qfwPSsEXKkf6ekMWkZtzPKAal4OT/m2PdORiwaPCa4k3Lszlwm2yY Fuu729/16HE18ulsZvDQFK/2QQDFVZMcr1vehuq58SBEKuho7WgV8znOWoDr3x56 R/1y6bw33IgUOLjM5Kmi2G2La6mmGLlP6jJWNRg0EbOJOVIHDXh2IAPTQLve++28 ACB06J9P1YhJ2QiJUD0eUkt9Yiinb/xrrVYe+imgr2crAMfVjd7hBPMdlSWTJ89T uYAYrYDgt4ACVw4uYPkAf+/Xs9GvH2Hi -----END CERTIFICATE-----Generated at Mon Aug 11 13:06:53 2025 by rpki-client