$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: AaAawSIDzbPbrZH0OuSRIlY6vqJOncWPuZHGiStrBvc= Subject key identifier: F8:6C:46:ED:61:98:A2:3B:F2:2D:11:E3:8E:C9:9D:12:47:9C:4F:80 Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: DD Signing time: Wed 06 Aug 2025 15:48:14 +0000 Manifest this update: Wed 06 Aug 2025 15:48:14 +0000 Manifest next update: Wed 13 Aug 2025 15:48:14 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: DDoV8YVaZMISO9I1ecAfQs4X3Y+PGwVO2TL/n2pOAGg=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: fWZETNQO/nq4+BYBCH9MSAL8N1aF88n2/dhae6ZuhiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 15:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Aug 6 15:48:14 2025 GMT Not After : Aug 13 15:48:14 2025 GMT Subject: CN=6893793e-dfa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:22:1d:39:ce:00:cb:89:51:9e:33:ba:71:db: fd:91:2a:08:2c:33:53:c0:b5:a1:e6:e1:d2:43:a6: b9:6b:18:1f:32:f1:27:9a:44:db:8a:46:cc:c0:56: e0:15:4d:61:6b:e2:ff:3f:db:0d:2d:30:1a:84:16: 1f:97:6d:fd:68:7f:ec:de:56:00:31:9e:56:cd:11: e7:5b:65:81:90:ce:5f:2c:df:8b:df:25:ef:ad:f6: f0:b6:de:3c:ef:f3:5d:aa:c5:15:2e:02:e8:2a:4c: 65:74:f2:e4:71:ef:0e:e1:cf:b6:48:23:0a:94:66: d4:bc:b3:62:2c:81:86:c2:49:0d:ce:6a:04:04:37: 7a:67:fb:0f:9d:fb:49:48:a8:7d:b3:02:a1:1c:5d: fd:15:97:65:67:9a:70:83:b2:ac:c3:14:4c:bc:14: 1a:84:97:9a:6b:7c:2f:24:24:7f:5d:aa:39:b5:0c: ec:c8:12:e2:a8:35:e4:8d:3f:06:a2:1c:81:67:04: ff:0a:9f:51:5d:68:14:81:e6:95:c2:1b:d0:9c:33: da:15:03:97:b9:7b:45:e1:fa:da:5b:8c:45:5d:ca: 6d:7e:a8:49:90:02:4e:c6:26:95:90:22:e6:64:62: 30:b6:0d:4c:c3:43:7a:2b:94:f0:d6:25:1f:ce:09: 84:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:6C:46:ED:61:98:A2:3B:F2:2D:11:E3:8E:C9:9D:12:47:9C:4F:80 X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:bd:be:67:e5:64:8e:e5:96:25:c1:8d:2b:77:05:5c:ec:34: 63:40:2d:26:9d:eb:0b:a8:0c:1d:b2:b4:5d:b2:b5:47:dd:ff: 3b:90:6c:9a:2a:19:20:d1:ec:f7:ea:4b:b0:2a:4e:65:ae:05: df:93:d6:9b:68:35:d5:94:6f:67:03:4a:f7:60:43:b0:af:d4: 16:84:29:82:11:82:fe:07:cc:5d:b4:c7:f4:20:29:61:ce:fb: 17:e3:7b:92:42:7d:c2:28:b6:37:67:95:96:c9:26:1d:1b:7b: fc:66:00:1f:74:48:82:6f:b3:e1:46:d9:89:bc:f3:c7:1e:7e: aa:cf:8f:0b:26:a8:3a:63:48:cc:be:69:57:ab:39:30:c0:7f: ae:18:61:e5:11:dd:98:a9:e2:5f:c0:cb:a8:55:9e:43:09:d1: 2a:2e:9e:42:27:4a:31:fc:4c:01:35:f9:00:31:27:f0:5b:3c: ab:b2:68:7e:0f:5b:5a:25:46:16:7c:9e:27:6f:6c:1e:19:20: 55:0e:58:b4:f5:f6:4e:9a:64:b9:89:16:0a:1c:2c:76:7b:30: 47:0f:2e:f6:02:b5:09:61:9d:d9:33:39:e4:07:ac:da:cc:b8: a8:90:3d:e9:4d:ad:83:0a:d6:e4:34:e8:bd:4f:69:29:c3:97: 14:33:60:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjUwODA2MTU0ODE0WhcNMjUwODEzMTU0ODE0WjAYMRYwFAYD VQQDEw02ODkzNzkzZS1kZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyIdOc4Ay4lRnjO6cdv9kSoILDNTwLWh5uHSQ6a5axgfMvEnmkTbikbMwFbg FU1ha+L/P9sNLTAahBYfl239aH/s3lYAMZ5WzRHnW2WBkM5fLN+L3yXvrfbwtt48 7/NdqsUVLgLoKkxldPLkce8O4c+2SCMKlGbUvLNiLIGGwkkNzmoEBDd6Z/sPnftJ SKh9swKhHF39FZdlZ5pwg7KswxRMvBQahJeaa3wvJCR/Xao5tQzsyBLiqDXkjT8G ohyBZwT/Cp9RXWgUgeaVwhvQnDPaFQOXuXtF4fraW4xFXcptfqhJkAJOxiaVkCLm ZGIwtg1Mw0N6K5Tw1iUfzgmEBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhsRu1h mKI78i0R447JnRJHnE+AMB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/vb5n5WSO5ZYlwY0rdwVc7DRjQC0mnesLqAwdsrRdsrVH3f87kGya Khkg0ez36kuwKk5lrgXfk9abaDXVlG9nA0r3YEOwr9QWhCmCEYL+B8xdtMf0IClh zvsX43uSQn3CKLY3Z5WWySYdG3v8ZgAfdEiCb7PhRtmJvPPHHn6qz48LJqg6Y0jM vmlXqzkwwH+uGGHlEd2YqeJfwMuoVZ5DCdEqLp5CJ0ox/EwBNfkAMSfwWzyrsmh+ D1taJUYWfJ4nb2weGSBVDli09fZOmmS5iRYKHCx2ezBHDy72ArUJYZ3ZMznkB6za zLiokD3pTa2DCtbkNOi9T2kpw5cUM2CH -----END CERTIFICATE-----Generated at Fri Aug 8 00:46:55 2025 by rpki-client