$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.mft File: mgI7gKvPTmeX04jA3oFgoW6xXf4.mft (raw, json) Hash identifier: iNdWvoRU2cAlUMcu5WAwqSQ8vsM+JsttyIVDLyJVWxM= Subject key identifier: 1B:9A:54:20:D3:79:4E:88:CD:51:64:F7:16:A8:C0:4B:4A:60:29:65 Authority key identifier: 9A:02:3B:80:AB:CF:4E:67:97:D3:88:C0:DE:81:60:A1:6E:B1:5D:FE Certificate issuer: /CN=A91EF6EF/serialNumber=9A023B80ABCF4E6797D388C0DE8160A16EB15DFE Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.mft Manifest number: 19 Signing time: Wed 13 Aug 2025 08:40:23 +0000 Manifest this update: Wed 13 Aug 2025 08:40:22 +0000 Manifest next update: Wed 20 Aug 2025 08:40:22 +0000 Files and hashes: 1: mgI7gKvPTmeX04jA3oFgoW6xXf4.crl (hash: WUgRttB6p65NoUZqphGMP0vb2nqOYU15Wu4MqgNEYho=) 2: 3C15F928579311F0B296C030C4F9AE02.roa (hash: nqk1ux23a4hNUp2hbZ+iR4SaGmMhlfdgLlDN61RvYPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.crl rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 04:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF6EF, serialNumber=9A023B80ABCF4E6797D388C0DE8160A16EB15DFE Validity Not Before: Aug 13 08:40:22 2025 GMT Not After : Aug 20 08:40:22 2025 GMT Subject: CN=689c4f76-2b09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:12:e2:99:65:d0:29:d3:18:a6:fa:61:b5:6c: 97:ee:ce:a5:3d:b1:2e:e2:f1:2a:10:ec:69:65:dd: 25:96:dc:ab:55:6d:6e:7d:f8:2b:2d:36:88:a0:80: bc:7d:c3:cf:66:46:bf:d5:99:4c:38:a1:9c:d5:74: 98:0d:a2:79:c2:64:02:bc:d2:54:37:0c:8a:f8:31: 2d:1c:1e:a7:a1:64:d4:7b:d5:3f:38:81:c8:57:c6: 72:05:11:1d:24:8e:b9:3b:2f:bd:59:7f:42:52:04: c0:e2:18:2b:81:c6:23:33:c3:47:c0:1a:30:ca:6b: 82:ae:32:56:87:65:8e:ce:91:9c:f9:54:5a:d1:c3: a3:a6:0a:76:7f:bf:48:0a:bd:ab:13:ae:6f:17:62: 45:33:68:ff:0b:b1:23:ef:d3:4a:47:28:1a:e2:a7: 9d:8a:90:c5:ef:b7:f1:03:db:dc:b9:b5:2b:f0:f5: ea:f0:e6:6f:9c:1e:8b:7d:5f:8a:0e:8b:66:c9:38: 40:99:5c:04:32:c0:9d:cc:f2:56:ea:fc:71:fe:8e: 47:ab:7d:d2:4f:e7:fb:16:d4:8f:2a:29:f7:08:72: ca:38:90:97:be:2d:89:d6:53:73:d3:f0:c2:22:d9: a5:db:1d:32:94:2d:97:5b:26:66:13:1b:30:f0:fd: ce:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:9A:54:20:D3:79:4E:88:CD:51:64:F7:16:A8:C0:4B:4A:60:29:65 X509v3 Authority Key Identifier: keyid:9A:02:3B:80:AB:CF:4E:67:97:D3:88:C0:DE:81:60:A1:6E:B1:5D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:4e:07:c6:29:94:8e:e9:fc:7b:71:b8:40:9d:fb:d2:6d:07: f0:e0:41:07:06:6a:6e:5d:23:be:80:41:0e:2c:2f:7b:33:2c: 6d:7b:74:67:fe:e4:15:ad:7c:2b:2b:6a:69:4a:31:15:01:c0: 6e:0b:d6:00:e9:5d:87:75:d4:b3:6c:f3:cc:96:84:65:6b:af: df:e8:45:bd:49:b4:e4:b4:41:63:c4:c1:fe:30:80:94:48:9c: ad:7d:98:eb:e5:4d:36:e5:5a:3b:09:bc:a4:b6:cc:dd:85:ef: 19:1b:d0:15:f3:04:c4:06:b7:dd:20:07:3f:7c:d2:70:d9:d2: 3a:80:f5:81:91:e8:50:07:6f:d0:e5:54:fe:bd:33:70:85:25: f8:d7:4e:7f:7a:25:99:25:24:de:2e:30:ea:7b:31:64:87:a0: 26:03:30:46:78:69:71:b7:b2:9f:5a:6c:8c:f5:27:c0:40:4d: 14:5c:cd:a7:20:a7:66:b8:46:13:b6:1f:8a:30:27:53:48:80: bc:2f:e7:e9:4f:0c:11:8b:2f:9d:ce:61:c9:d4:41:54:9e:a3: 74:56:2b:cb:4f:67:f4:cd:be:6a:46:21:44:62:4a:ae:58:9b: d5:2a:be:17:6e:2d:86:b9:74:9a:65:da:3a:2f:f7:93:90:ee: a8:7a:b8:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RjZFRjExMC8GA1UEBRMoOUEwMjNCODBBQkNGNEU2Nzk3RDM4OEMwREU4MTYwQTE2 RUIxNURGRTAeFw0yNTA4MTMwODQwMjJaFw0yNTA4MjAwODQwMjJaMBgxFjAUBgNV BAMTDTY4OWM0Zjc2LTJiMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7EuKZZdAp0xim+mG1bJfuzqU9sS7i8SoQ7Gll3SWW3KtVbW59+CstNoiggLx9 w89mRr/VmUw4oZzVdJgNonnCZAK80lQ3DIr4MS0cHqehZNR71T84gchXxnIFER0k jrk7L71Zf0JSBMDiGCuBxiMzw0fAGjDKa4KuMlaHZY7OkZz5VFrRw6OmCnZ/v0gK vasTrm8XYkUzaP8LsSPv00pHKBrip52KkMXvt/ED29y5tSvw9erw5m+cHot9X4oO i2bJOECZXAQywJ3M8lbq/HH+jkerfdJP5/sW1I8qKfcIcso4kJe+LYnWU3PT8MIi 2aXbHTKULZdbJmYTGzDw/c6NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG5pUINN5 TojNUWT3FqjAS0pgKWUwHwYDVR0jBBgwFoAUmgI7gKvPTmeX04jA3oFgoW6xXf4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGNkVGL0FDQkY2RjJBNTc0 MjExRjBCRURCNDU1Q0M0RjlBRTAyL21nSTdnS3ZQVG1lWDA0akEzb0Znb1c2eFhm NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWdJN2dLdlBUbWVYMDRqQTNvRmdvVzZ4WGY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVG NkVGL0FDQkY2RjJBNTc0MjExRjBCRURCNDU1Q0M0RjlBRTAyL21nSTdnS3ZQVG1l WDA0akEzb0Znb1c2eFhmNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD1OB8YplI7p/HtxuECd+9JtB/DgQQcGam5dI76AQQ4sL3szLG17dGf+ 5BWtfCsramlKMRUBwG4L1gDpXYd11LNs88yWhGVrr9/oRb1JtOS0QWPEwf4wgJRI nK19mOvlTTblWjsJvKS2zN2F7xkb0BXzBMQGt90gBz980nDZ0jqA9YGR6FAHb9Dl VP69M3CFJfjXTn96JZklJN4uMOp7MWSHoCYDMEZ4aXG3sp9abIz1J8BATRRczacg p2a4RhO2H4owJ1NIgLwv5+lPDBGLL53OYcnUQVSeo3RWK8tPZ/TNvmpGIURiSq5Y m9UqvhduLYa5dJpl2jov95OQ7qh6uOs= -----END CERTIFICATE-----Generated at Wed Aug 13 09:49:28 2025 by rpki-client