$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft File: MGSQ23RcleyGYUmf_IJkZnumf4o.mft (raw, json) Hash identifier: 8G0yE0Bv0IdTM/W9aSmOKVZOCy4vWJUq96M7Gh7IIiY= Subject key identifier: 49:22:D3:1E:24:DA:B0:0C:4F:0E:E1:A5:D6:C3:5D:09:04:51:B8:1E Authority key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A Certificate issuer: /CN=A91CE7A4/serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft Manifest number: 6E Signing time: Tue 05 Aug 2025 07:29:39 +0000 Manifest this update: Tue 05 Aug 2025 07:29:38 +0000 Manifest next update: Tue 12 Aug 2025 07:29:38 +0000 Files and hashes: 1: MGSQ23RcleyGYUmf_IJkZnumf4o.crl (hash: 6Tuawq0NE/2/7+iP7s49Ob2bcsOkaGdGo8SGPpcZQI0=) 2: 19C407C0CC1011EFBC7E0050C4F9AE02.roa (hash: 0uD06YfXP8jJiypkQtgg/+0Dg/DOv6s8Gpjo5ybB4rE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Validity Not Before: Aug 5 07:29:38 2025 GMT Not After : Aug 12 07:29:38 2025 GMT Subject: CN=6891b2e3-5380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1d:06:23:fe:f5:01:4d:8e:e2:9e:f6:dd:e5: 7c:ee:07:40:4e:92:fc:2d:52:85:2f:d3:1c:50:33: 5c:06:40:eb:04:e0:36:f8:fe:67:5f:32:a1:e5:46: be:38:54:3d:aa:8d:62:ae:a5:b5:fa:7b:44:a4:a6: 9b:60:7e:af:24:e0:9b:64:c0:7c:c4:c5:0b:e9:27: fe:50:cf:20:77:ff:a6:c4:99:7d:1d:df:98:89:0c: 84:52:db:c9:d6:93:e4:36:87:dd:0a:68:cf:6b:5c: ac:8b:fb:da:4c:76:5c:78:7e:03:d8:82:f7:95:30: c7:82:92:30:34:b4:85:8e:bf:01:5c:fc:c1:91:8f: 31:65:2c:43:d2:77:2a:d8:7d:5d:9b:95:92:ac:cb: e5:4d:91:c7:0d:e1:25:70:79:a8:b2:d6:62:07:3a: 26:fb:aa:9b:2d:0a:31:05:de:a4:ff:29:bc:2f:35: 02:22:a7:af:a8:d1:07:55:9e:b4:a1:92:82:13:e8: 41:6e:c8:38:13:cd:73:c1:30:6d:41:ec:08:c3:a8: 6b:32:16:0f:d3:41:00:45:a9:59:96:c3:21:98:cc: 4a:96:57:6d:62:bd:f1:c1:66:7a:20:da:77:26:11: 2e:2d:84:88:aa:63:53:a2:aa:59:3c:9a:9f:a3:8d: 7e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:22:D3:1E:24:DA:B0:0C:4F:0E:E1:A5:D6:C3:5D:09:04:51:B8:1E X509v3 Authority Key Identifier: keyid:30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:54:7f:09:5d:f4:d9:c2:d1:02:51:13:80:8f:9c:35:2a:a4: d2:32:ff:9e:87:7d:7e:a9:66:34:83:10:e0:9d:27:18:d7:cf: 22:0d:e6:0c:30:4b:43:2d:f8:d7:c8:d1:3f:3a:bd:a4:ea:60: 1b:29:6d:75:14:f4:2c:15:13:cc:8e:5e:2f:fe:a9:dd:75:9f: ec:9a:53:33:86:86:99:a7:50:5d:cd:82:ae:2b:3e:df:e8:a5: 78:0a:9e:21:bd:6c:98:8f:da:08:09:48:7d:65:ee:0c:e6:11: 9a:c5:bc:41:75:42:cd:39:6a:a8:01:32:74:6e:44:97:4b:15: 71:c2:24:ca:47:f3:9e:b2:40:d1:89:8e:63:45:4f:0e:de:2a: f5:15:08:ca:ba:c4:4a:ce:ab:ec:6e:9c:08:6a:4a:65:12:b1: da:0d:04:04:84:f2:54:c3:c1:e8:8d:49:0f:e6:55:9b:b8:e9: 26:7d:3a:e0:55:23:bc:d3:8b:80:07:93:77:e8:5e:09:44:cc: d2:85:d8:f2:2d:cf:91:93:db:31:9d:28:8e:1c:87:44:cc:2d: 9e:28:f6:c4:9c:a5:fe:fb:0d:16:4d:06:39:b2:1d:1f:17:f5: 83:7c:38:e3:3a:7a:2f:3d:44:05:64:76:47:b2:72:12:0e:e0: 84:8a:9e:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTdBNDExMC8GA1UEBRMoMzA2NDkwREI3NDVDOTVFQzg2NjE0OTlGRkM4MjY0NjY3 QkE2N0Y4QTAeFw0yNTA4MDUwNzI5MzhaFw0yNTA4MTIwNzI5MzhaMBgxFjAUBgNV BAMTDTY4OTFiMmUzLTUzODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoHQYj/vUBTY7invbd5XzuB0BOkvwtUoUv0xxQM1wGQOsE4Db4/mdfMqHlRr44 VD2qjWKupbX6e0Skpptgfq8k4JtkwHzExQvpJ/5QzyB3/6bEmX0d35iJDIRS28nW k+Q2h90KaM9rXKyL+9pMdlx4fgPYgveVMMeCkjA0tIWOvwFc/MGRjzFlLEPSdyrY fV2blZKsy+VNkccN4SVweaiy1mIHOib7qpstCjEF3qT/KbwvNQIip6+o0QdVnrSh koIT6EFuyDgTzXPBMG1B7AjDqGsyFg/TQQBFqVmWwyGYzEqWV21ivfHBZnog2ncm ES4thIiqY1Oiqlk8mp+jjX7NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSSLTHiTa sAxPDuGl1sNdCQRRuB4wHwYDVR0jBBgwFoAUMGSQ23RcleyGYUmf/IJkZnumf4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFN0E0L0I4OTBERkQyQ0Mw RjExRUZBMjc4RkQ0Q0M0RjlBRTAyL01HU1EyM1JjbGV5R1lVbWZfSUprWm51bWY0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTUdTUTIzUmNsZXlHWVVtZl9JSmtabnVtZjRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF N0E0L0I4OTBERkQyQ0MwRjExRUZBMjc4RkQ0Q0M0RjlBRTAyL01HU1EyM1JjbGV5 R1lVbWZfSUprWm51bWY0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADFUfwld9NnC0QJRE4CPnDUqpNIy/56HfX6pZjSDEOCdJxjXzyIN5gww S0Mt+NfI0T86vaTqYBspbXUU9CwVE8yOXi/+qd11n+yaUzOGhpmnUF3Ngq4rPt/o pXgKniG9bJiP2ggJSH1l7gzmEZrFvEF1Qs05aqgBMnRuRJdLFXHCJMpH856yQNGJ jmNFTw7eKvUVCMq6xErOq+xunAhqSmUSsdoNBASE8lTDweiNSQ/mVZu46SZ9OuBV I7zTi4AHk3foXglEzNKF2PItz5GT2zGdKI4ch0TMLZ4o9sScpf77DRZNBjmyHR8X 9YN8OOM6ei89RAVkdkeychIO4ISKnoY= -----END CERTIFICATE-----Generated at Wed Aug 6 00:54:33 2025 by rpki-client