$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft File: MGSQ23RcleyGYUmf_IJkZnumf4o.mft (raw, json) Hash identifier: rU4AHPQpfjmHjYz9egYqrj0Aewb4lML+8htKL99ysAE= Subject key identifier: 38:64:57:2D:D6:AC:20:DA:CE:C1:C5:28:C3:72:F7:DA:8E:29:98:B7 Authority key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A Certificate issuer: /CN=A91CE7A4/serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft Manifest number: 54 Signing time: Sun 15 Jun 2025 06:19:10 +0000 Manifest this update: Sun 15 Jun 2025 06:19:10 +0000 Manifest next update: Sun 22 Jun 2025 06:19:10 +0000 Files and hashes: 1: MGSQ23RcleyGYUmf_IJkZnumf4o.crl (hash: GaTOkqNmVElrzSNsONw6X763YrGtjkSxSxLktWbfkOE=) 2: 19C407C0CC1011EFBC7E0050C4F9AE02.roa (hash: 0uD06YfXP8jJiypkQtgg/+0Dg/DOv6s8Gpjo5ybB4rE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 06:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Validity Not Before: Jun 15 06:19:10 2025 GMT Not After : Jun 22 06:19:10 2025 GMT Subject: CN=684e65de-7c57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0b:de:51:7a:9b:65:31:76:14:e3:c2:d8:a2: f5:90:1c:e1:be:4e:bf:c0:ac:46:18:88:35:51:ca: bf:4c:85:91:96:9f:98:d5:92:67:33:27:54:84:d2: 15:09:3f:b9:60:27:66:77:68:68:37:53:99:a8:4a: 89:ab:88:58:05:53:4b:4a:97:1c:98:d4:e3:9c:1a: 4d:b9:1e:ea:16:70:65:f6:c2:49:5b:34:3f:69:d6: 75:dc:57:d7:55:1f:26:f9:56:20:44:1c:f3:1c:b8: ec:a6:59:b3:14:e9:cd:cf:78:c9:43:8f:2a:ca:10: 89:34:2f:cd:68:40:10:f8:97:44:42:29:44:36:98: 16:e0:6f:fb:22:a6:4c:bc:f1:8a:6e:21:1b:cb:70: 59:9b:c3:42:fc:26:70:d2:30:f2:39:3e:3f:84:2a: f8:a5:b1:e1:3f:37:35:fe:8d:91:51:04:38:96:1d: b1:18:73:73:c2:6b:69:c3:c6:44:51:23:3a:ab:5e: 8e:2e:c3:5d:63:cb:73:87:01:92:0f:a7:d3:07:7d: da:b3:23:ef:1c:b5:90:51:77:16:b8:99:ae:64:b3: e2:a7:51:77:b4:80:03:9d:88:e1:ad:a6:26:d7:07: 73:07:3f:e4:94:82:8d:45:c4:af:76:6e:06:cf:f6: 87:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:64:57:2D:D6:AC:20:DA:CE:C1:C5:28:C3:72:F7:DA:8E:29:98:B7 X509v3 Authority Key Identifier: keyid:30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:fe:bf:62:74:52:68:47:d5:99:04:0c:2c:fd:33:7e:fa:9c: b6:ea:77:3a:f7:7f:e8:4b:d1:f7:f3:96:76:85:12:f5:ed:bf: df:f1:3d:0c:c8:d1:35:d1:c7:a6:c6:ee:93:2c:68:e1:d3:ee: 39:40:5a:2c:a7:1e:92:96:28:18:e7:79:b0:01:05:48:d7:f5: f9:52:74:d4:8c:63:82:f1:59:62:40:89:37:e0:f9:23:1a:66: 30:3a:1b:af:e8:a8:f1:39:53:0c:69:4d:c1:7a:3d:25:c9:81: fe:38:0e:2a:80:b4:6a:d9:5c:28:9d:26:90:b0:99:a1:aa:87: 88:9d:8d:00:6c:ae:69:92:f8:f0:fd:ed:ce:9a:c3:02:76:ec: ed:33:3d:50:cf:be:0c:a8:b0:d1:a4:de:9e:74:9e:a9:80:44: e9:79:ba:a1:06:25:30:70:ba:0b:1d:a3:41:19:1e:53:cd:0c: 91:ca:15:d3:3c:25:65:88:b8:ca:a8:07:ed:ac:9d:0c:80:27: c1:78:91:90:86:ea:96:69:60:30:18:13:95:32:fd:75:28:25: 76:dd:6d:d2:50:e8:62:fb:dc:1e:97:96:ad:0c:f8:4c:60:10: 0c:07:d0:69:55:19:b4:11:10:52:20:e8:21:50:8a:f8:a7:fe: ee:c5:89:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTdBNDExMC8GA1UEBRMoMzA2NDkwREI3NDVDOTVFQzg2NjE0OTlGRkM4MjY0NjY3 QkE2N0Y4QTAeFw0yNTA2MTUwNjE5MTBaFw0yNTA2MjIwNjE5MTBaMBgxFjAUBgNV BAMTDTY4NGU2NWRlLTdjNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3C95ReptlMXYU48LYovWQHOG+Tr/ArEYYiDVRyr9MhZGWn5jVkmczJ1SE0hUJ P7lgJ2Z3aGg3U5moSomriFgFU0tKlxyY1OOcGk25HuoWcGX2wklbND9p1nXcV9dV Hyb5ViBEHPMcuOymWbMU6c3PeMlDjyrKEIk0L81oQBD4l0RCKUQ2mBbgb/sipky8 8YpuIRvLcFmbw0L8JnDSMPI5Pj+EKvilseE/NzX+jZFRBDiWHbEYc3PCa2nDxkRR IzqrXo4uw11jy3OHAZIPp9MHfdqzI+8ctZBRdxa4ma5ks+KnUXe0gAOdiOGtpibX B3MHP+SUgo1FxK92bgbP9ocRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOGRXLdas INrOwcUow3L32o4pmLcwHwYDVR0jBBgwFoAUMGSQ23RcleyGYUmf/IJkZnumf4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFN0E0L0I4OTBERkQyQ0Mw RjExRUZBMjc4RkQ0Q0M0RjlBRTAyL01HU1EyM1JjbGV5R1lVbWZfSUprWm51bWY0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTUdTUTIzUmNsZXlHWVVtZl9JSmtabnVtZjRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF N0E0L0I4OTBERkQyQ0MwRjExRUZBMjc4RkQ0Q0M0RjlBRTAyL01HU1EyM1JjbGV5 R1lVbWZfSUprWm51bWY0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHH+v2J0UmhH1ZkEDCz9M376nLbqdzr3f+hL0ffzlnaFEvXtv9/xPQzI 0TXRx6bG7pMsaOHT7jlAWiynHpKWKBjnebABBUjX9flSdNSMY4LxWWJAiTfg+SMa ZjA6G6/oqPE5UwxpTcF6PSXJgf44DiqAtGrZXCidJpCwmaGqh4idjQBsrmmS+PD9 7c6awwJ27O0zPVDPvgyosNGk3p50nqmAROl5uqEGJTBwugsdo0EZHlPNDJHKFdM8 JWWIuMqoB+2snQyAJ8F4kZCG6pZpYDAYE5Uy/XUoJXbdbdJQ6GL73B6Xlq0M+Exg EAwH0GlVGbQREFIg6CFQivin/u7Fid0= -----END CERTIFICATE-----Generated at Mon Jun 16 05:18:35 2025 by rpki-client