$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft File: mG5BZ9azgH9J98JgDWD5wmCacJY.mft (raw, json) Hash identifier: AcqxMZeAaei7ln0FTzohGIVVckQgy6JVqE+8vx6fWCc= Subject key identifier: 70:98:94:67:9F:42:F3:A8:02:7F:53:D1:01:E4:85:44:E7:6D:6B:DD Authority key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 Certificate issuer: /CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Certificate serial: 0C48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft Manifest number: 0C42 Signing time: Sun 10 Aug 2025 18:34:26 +0000 Manifest this update: Sun 10 Aug 2025 18:34:26 +0000 Manifest next update: Sun 17 Aug 2025 18:34:26 +0000 Files and hashes: 1: mG5BZ9azgH9J98JgDWD5wmCacJY.crl (hash: iqkRa8dK+NpX/hx9aCa6n/K2yWo92kEZGggCGIJ3xPQ=) 2: 4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa (hash: w2KSsvNhZHM7vSx0ch62iXJXMI5bT8m3Td81LTUblUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3144 (0xc48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3806, serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Validity Not Before: Aug 10 18:34:26 2025 GMT Not After : Aug 17 18:34:26 2025 GMT Subject: CN=6898e632-c27b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:af:75:17:fe:51:a1:1d:59:60:ef:3c:e6:97: 2a:b8:61:d5:ac:a9:d9:15:82:8b:e5:ad:d2:71:63: 7c:97:01:5d:f8:e8:cf:7b:cd:b0:17:84:3b:df:ec: 45:d3:10:1f:ef:2d:af:a8:b1:41:61:ef:d9:c5:20: f7:07:ab:e6:38:80:da:60:ea:f7:34:86:a6:ca:ba: da:2e:86:77:45:74:14:4c:5f:00:ff:a9:78:15:c8: 9d:f5:1f:93:bd:57:d7:cd:1d:f1:79:8d:c2:01:a7: df:e9:cc:e8:9b:6a:0c:58:76:cf:bc:1b:68:a2:76: 03:f3:3e:77:a6:c5:b7:11:15:37:2a:8d:a3:49:b4: 6d:f4:06:9c:9e:c2:a7:28:a5:c0:bf:4a:db:4e:f9: d8:eb:02:6a:1a:78:8a:30:f1:5a:eb:e1:72:66:80: 13:10:45:15:7a:13:0d:af:13:72:3c:8d:68:ca:59: a4:6e:18:f9:d5:53:d5:21:8c:81:cc:45:80:38:a2: 77:b8:13:38:c0:44:3c:97:d1:af:94:60:61:9d:67: 7b:ee:82:db:7e:90:ac:e0:cf:7f:2d:3f:79:72:25: 7d:c4:df:cd:f5:71:4a:a2:8a:4d:ee:8c:d9:31:96: 6b:26:2a:b4:b0:20:2f:78:b7:73:75:e0:64:7d:ab: ba:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:98:94:67:9F:42:F3:A8:02:7F:53:D1:01:E4:85:44:E7:6D:6B:DD X509v3 Authority Key Identifier: keyid:98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:84:13:56:91:f2:fc:95:c8:c8:9e:91:fa:ad:61:26:3e:25: c6:b0:94:12:9b:51:39:3c:46:f1:6d:03:bc:c6:c0:45:cd:a9: 59:a2:79:4d:85:48:13:bc:52:d2:43:79:fe:aa:c6:b8:45:f2: cd:65:31:d7:3b:4a:10:09:d8:9e:6d:e0:47:17:83:e9:07:83: e8:59:2c:b8:b3:ba:e1:4e:51:6a:9c:28:60:8f:e1:4c:7f:f5: 77:20:51:3e:9a:55:61:d7:b9:06:7b:60:93:2a:09:b4:2f:7c: 56:a0:b0:3b:a7:99:dc:0d:42:2d:41:d0:03:3a:80:48:0a:f6: bf:10:8f:4b:25:ad:08:1f:68:d0:52:a8:da:7b:e2:e3:96:35: 91:ef:74:13:dd:4a:4e:6c:0f:b7:9f:c0:6a:c6:0b:af:72:ce: a5:03:aa:cc:40:61:77:6e:14:7b:18:b6:cf:6c:36:69:af:39: 53:4c:c9:0f:11:c8:84:a4:ca:a0:b6:94:4c:96:60:ef:ab:90: af:57:2d:88:4c:15:ae:1d:fb:4b:11:de:0b:92:3b:0f:a3:4e: 0d:e5:36:c0:cd:c2:70:9c:21:69:f5:8b:1c:5c:b8:79:a4:e0: a0:62:33:da:4d:3f:c6:61:1e:b9:63:4c:55:53:bf:7a:a6:b1: 6f:58:3b:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2MDBENjBGOUMy NjA5QTcwOTYwHhcNMjUwODEwMTgzNDI2WhcNMjUwODE3MTgzNDI2WjAYMRYwFAYD VQQDEw02ODk4ZTYzMi1jMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1q91F/5RoR1ZYO885pcquGHVrKnZFYKL5a3ScWN8lwFd+OjPe82wF4Q73+xF 0xAf7y2vqLFBYe/ZxSD3B6vmOIDaYOr3NIamyrraLoZ3RXQUTF8A/6l4Fcid9R+T vVfXzR3xeY3CAaff6czom2oMWHbPvBtoonYD8z53psW3ERU3Ko2jSbRt9AacnsKn KKXAv0rbTvnY6wJqGniKMPFa6+FyZoATEEUVehMNrxNyPI1oylmkbhj51VPVIYyB zEWAOKJ3uBM4wEQ8l9GvlGBhnWd77oLbfpCs4M9/LT95ciV9xN/N9XFKoopN7ozZ MZZrJiq0sCAveLdzdeBkfau6awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCYlGef QvOoAn9T0QHkhUTnbWvdMB8GA1UdIwQYMBaAFJhuQWfWs4B/SffCYA1g+cJgmnCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzgwNi9CNDcyRkUyQTBC N0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdIOUo5OEpnRFdENXdtQ2Fj SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21HNUJaOWF6Z0g5Sjk4SmdEV0Q1d21DYWNKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzgwNi9CNDcyRkUyQTBCN0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdI OUo5OEpnRFdENXdtQ2FjSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZhBNWkfL8lcjInpH6rWEmPiXGsJQSm1E5PEbxbQO8xsBFzalZonlN hUgTvFLSQ3n+qsa4RfLNZTHXO0oQCdiebeBHF4PpB4PoWSy4s7rhTlFqnChgj+FM f/V3IFE+mlVh17kGe2CTKgm0L3xWoLA7p5ncDUItQdADOoBICva/EI9LJa0IH2jQ Uqjae+LjljWR73QT3UpObA+3n8Bqxguvcs6lA6rMQGF3bhR7GLbPbDZprzlTTMkP EciEpMqgtpRMlmDvq5CvVy2ITBWuHftLEd4LkjsPo04N5TbAzcJwnCFp9YscXLh5 pOCgYjPaTT/GYR65Y0xVU796prFvWDu/ -----END CERTIFICATE-----Generated at Mon Aug 11 07:42:42 2025 by rpki-client