$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft File: mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft (raw, json) Hash identifier: JYZDKltP/aVU55o1vArBiqhveHZ5MQ7ak5N/gJqCzeo= Subject key identifier: 7F:78:FA:F0:75:2C:AB:12:0B:27:09:91:96:AE:B4:BC:04:26:1E:17 Authority key identifier: 9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 Certificate issuer: /CN=A91CB21D/serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft Manifest number: 01D2 Signing time: Sat 09 Aug 2025 03:08:29 +0000 Manifest this update: Sat 09 Aug 2025 03:08:29 +0000 Manifest next update: Sat 16 Aug 2025 03:08:29 +0000 Files and hashes: 1: mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl (hash: Ii9kVr7e9Mre1FMxm4gh4OwlsF+5hO3yx9+8TUxlsRk=) 2: 11F911FAA8D811ED90192E3CC4F9AE02.roa (hash: 1slDbS6OMsVzRicTRklA2Gp5/wmmSnjZBoyP9DPcUVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB21D, serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Validity Not Before: Aug 9 03:08:29 2025 GMT Not After : Aug 16 03:08:29 2025 GMT Subject: CN=6896bbad-195a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e7:f7:7d:52:ea:fb:e5:ca:3f:33:db:63:38: 8c:7c:43:2f:b7:8f:cf:55:de:01:f6:5f:d1:c2:fa: 7c:25:22:12:46:cb:e6:6c:83:46:53:c2:74:b0:4a: fb:26:69:04:c4:5c:f6:f7:73:25:4b:2e:8e:6e:31: e0:c0:ff:4b:2c:4a:62:98:c3:85:15:4b:80:78:74: c1:f0:5f:64:11:7c:02:02:97:40:ae:f4:41:c0:ac: b6:30:ee:40:2a:79:50:b2:9d:5f:75:14:2d:24:af: ce:72:6d:e3:9a:5b:e6:79:01:9c:41:c4:89:35:05: 50:d5:56:d0:c8:14:7f:fd:ad:d1:fd:8a:fd:c6:1d: df:c5:10:f3:c8:47:ed:ef:bb:0b:44:4a:64:a4:e5: 96:b5:a6:0d:f2:6d:ab:b6:13:20:c9:e3:3a:97:34: 1a:f6:0c:58:fa:df:95:7b:89:7f:a2:2e:3d:a0:72: 59:94:81:93:38:02:c1:be:56:38:86:aa:ef:a8:7b: 32:84:d9:5d:c8:70:8b:a4:e6:69:cf:80:5b:9e:1b: 36:cd:b2:3f:43:4a:49:61:17:ca:04:c1:aa:a9:a6: 2e:1e:d9:3c:6e:f2:79:37:f0:13:2f:30:0b:1d:60: af:fe:ce:a1:15:9d:e8:c5:e9:a2:42:65:eb:63:fb: 7c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:78:FA:F0:75:2C:AB:12:0B:27:09:91:96:AE:B4:BC:04:26:1E:17 X509v3 Authority Key Identifier: keyid:9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:3f:12:4f:84:27:38:5e:51:2a:fb:a8:d9:4d:54:de:18:4e: d5:9e:ce:ac:fe:0e:7b:1f:54:13:a9:5e:a2:cf:36:9a:70:8d: b5:06:b8:50:c5:e6:f6:a3:f1:b4:c9:9f:7f:b7:96:0c:da:b5: 8c:a0:f0:87:0a:ae:df:db:56:d7:33:ef:07:cf:1a:d4:48:b8: 10:3e:3d:30:d5:0d:5e:9d:c7:3b:87:87:5b:80:75:a2:99:44: 54:a9:57:0e:b5:de:12:ff:04:31:57:71:44:f2:e4:2b:5c:72: a1:9e:99:49:90:0c:0c:e1:80:86:3e:4e:8d:9a:9c:ab:09:44: 65:96:a4:35:d7:95:d1:9d:80:6b:01:43:41:ea:4c:1f:1f:a9: 72:2b:7d:2f:a0:11:06:a8:f3:80:a2:33:db:2e:fe:55:ea:9e: a9:39:7d:3c:a7:44:05:f4:ff:a6:aa:6d:11:ff:6f:d3:78:af: 16:90:9a:fb:5d:ab:aa:0d:2e:4d:7a:84:a4:65:ce:1e:9b:ca: ab:e0:f2:6b:d4:c0:35:bc:a8:e0:94:a3:bc:8e:da:f5:2d:50: 4a:c8:29:f4:74:25:70:83:13:b5:8c:4c:12:58:8c:b3:21:1d: ea:db:f0:ed:67:a1:69:3b:aa:6b:aa:7b:2e:73:9f:ae:76:4c: a7:ff:84:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IyMUQxMTAvBgNVBAUTKDlCMUU4MTg4Q0U2NDM5N0U4QjQyNDFFNjc1OEQ0MjlE QTBGRjJFNzAwHhcNMjUwODA5MDMwODI5WhcNMjUwODE2MDMwODI5WjAYMRYwFAYD VQQDEw02ODk2YmJhZC0xOTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+f3fVLq++XKPzPbYziMfEMvt4/PVd4B9l/Rwvp8JSISRsvmbINGU8J0sEr7 JmkExFz293MlSy6ObjHgwP9LLEpimMOFFUuAeHTB8F9kEXwCApdArvRBwKy2MO5A KnlQsp1fdRQtJK/Ocm3jmlvmeQGcQcSJNQVQ1VbQyBR//a3R/Yr9xh3fxRDzyEft 77sLREpkpOWWtaYN8m2rthMgyeM6lzQa9gxY+t+Ve4l/oi49oHJZlIGTOALBvlY4 hqrvqHsyhNldyHCLpOZpz4Bbnhs2zbI/Q0pJYRfKBMGqqaYuHtk8bvJ5N/ATLzAL HWCv/s6hFZ3oxemiQmXrY/t8qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH94+vB1 LKsSCycJkZautLwEJh4XMB8GA1UdIwQYMBaAFJsegYjOZDl+i0JB5nWNQp2g/y5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjIxRC82MzJDRDNFNkE3 RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09YNkxRa0htZFkxQ25hRF9M bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL214NkJpTTVrT1g2TFFrSG1kWTFDbmFEX0xuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjIxRC82MzJDRDNFNkE3RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09Y NkxRa0htZFkxQ25hRF9MbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPPxJPhCc4XlEq+6jZTVTeGE7Vns6s/g57H1QTqV6izzaacI21BrhQ xeb2o/G0yZ9/t5YM2rWMoPCHCq7f21bXM+8HzxrUSLgQPj0w1Q1encc7h4dbgHWi mURUqVcOtd4S/wQxV3FE8uQrXHKhnplJkAwM4YCGPk6NmpyrCURllqQ115XRnYBr AUNB6kwfH6lyK30voBEGqPOAojPbLv5V6p6pOX08p0QF9P+mqm0R/2/TeK8WkJr7 XauqDS5NeoSkZc4em8qr4PJr1MA1vKjglKO8jtr1LVBKyCn0dCVwgxO1jEwSWIyz IR3q2/DtZ6FpO6prqnsuc5+udkyn/4Sg -----END CERTIFICATE-----Generated at Sat Aug 9 10:37:47 2025 by rpki-client