$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft File: MZdALMHUBvlwfS4iBDY7wNE8Apk.mft (raw, json) Hash identifier: cvUDr30JyZ4emtckDjHEhlOrO+1oX6GZTpVsxHitp7w= Subject key identifier: 91:9C:14:60:54:0C:E9:C0:A6:ED:08:1C:7C:21:72:6F:7B:AD:A2:17 Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 Certificate issuer: /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Certificate serial: 03C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft Manifest number: 03C5 Signing time: Mon 11 Aug 2025 00:48:51 +0000 Manifest this update: Mon 11 Aug 2025 00:48:51 +0000 Manifest next update: Mon 18 Aug 2025 00:48:51 +0000 Files and hashes: 1: MZdALMHUBvlwfS4iBDY7wNE8Apk.crl (hash: ZiT+4ArurmqDN2YxPMLLsfsVbsq1n7llJjR3NQlxNtU=) 2: 751D2C1A98E611EC849D155FC4F9AE02.roa (hash: CkImo8IsUmsaya0jHXM103+CNWFzYVltZI4TafvBrlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 969 (0x3c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F479C, serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Validity Not Before: Aug 11 00:48:51 2025 GMT Not After : Aug 18 00:48:51 2025 GMT Subject: CN=68993df3-dd07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cb:e2:a5:73:8a:87:56:79:58:78:46:6d:59: 5a:42:60:ab:0c:5e:e9:79:02:df:63:48:42:73:69: 44:7f:b1:c5:c8:dc:3d:e9:e7:8e:9c:de:fc:cb:c0: cf:ae:a9:64:cd:d4:53:71:3f:3a:e6:10:cf:09:57: 15:ee:46:8a:4c:1d:66:86:c5:36:48:2b:29:6c:5d: f2:b4:58:25:84:46:d4:11:12:b7:ec:3f:53:de:bc: 16:0e:f6:53:4f:d1:e7:4d:37:46:8b:8a:3d:4d:4b: 6c:97:c3:98:a9:8b:83:dc:04:0a:9a:6e:4d:0f:b1: dc:02:66:7d:05:b7:27:65:0c:a9:de:bf:cc:e1:0b: c9:f5:1b:16:39:01:da:21:ec:2c:20:c4:d2:32:ac: 1a:62:24:80:76:14:53:30:7e:0c:ed:2b:f8:7c:bc: d7:58:70:e9:76:fd:d0:a5:c5:99:ed:8c:52:d9:ab: 6b:c5:cc:f4:fb:00:14:88:17:c7:30:be:2c:24:0e: 49:2c:e5:92:51:12:b3:db:af:4d:9f:41:b1:8c:e3: 5f:d6:65:da:73:a6:30:85:cb:99:72:bb:da:9f:ed: a3:2e:c7:07:79:e6:2b:2e:97:e6:1a:22:11:e4:3e: 97:d9:b6:c2:60:d0:c1:2d:ba:f1:8b:d3:cb:b0:57: 07:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9C:14:60:54:0C:E9:C0:A6:ED:08:1C:7C:21:72:6F:7B:AD:A2:17 X509v3 Authority Key Identifier: keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:85:0f:cd:1d:24:60:c1:a5:14:8e:3d:b1:f0:b7:48:f2:0e: ac:98:08:a3:ec:9a:38:ea:f9:82:1b:c3:5b:47:0a:89:14:da: 58:7b:a7:70:b9:0d:0d:e0:73:2b:8d:b0:d1:55:45:96:3d:32: 99:3a:11:36:26:5e:c8:26:51:51:3d:1e:7d:56:6a:d9:ca:43: 34:60:66:64:9a:cd:d7:00:72:9c:61:98:13:6e:7f:fa:68:c8: 4b:47:73:6a:54:21:1f:9a:f0:d9:f4:77:07:90:4f:f0:fb:f9: e8:67:5c:22:72:d5:da:47:19:db:fe:54:b9:ad:11:af:ee:3e: c1:90:e6:2d:48:11:80:d4:88:4f:92:de:8e:1e:dd:ac:f7:47: ab:6c:bd:8f:69:5d:1e:51:2a:5c:b1:bf:fd:03:54:46:9c:6f: 4a:8c:51:51:0e:27:84:ac:ea:64:f7:fe:a5:c0:88:f3:ce:cb: fc:c4:d3:fa:d3:e7:df:05:9f:84:75:9b:57:dc:9d:27:bb:ed: fa:28:cb:37:ba:71:17:17:37:90:8c:2c:91:1b:d5:a9:12:64: 41:61:97:35:ca:ce:5f:e0:7a:32:fd:8c:42:41:77:a8:83:dc: 4f:58:0a:c9:97:42:a8:7f:2e:82:c1:87:d9:6f:c6:aa:d2:83: 88:ce:2e:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3OUMxMTAvBgNVBAUTKDMxOTc0MDJDQzFENDA2Rjk3MDdEMkUyMjA0MzYzQkMw RDEzQzAyOTkwHhcNMjUwODExMDA0ODUxWhcNMjUwODE4MDA0ODUxWjAYMRYwFAYD VQQDEw02ODk5M2RmMy1kZDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsvipXOKh1Z5WHhGbVlaQmCrDF7peQLfY0hCc2lEf7HFyNw96eeOnN78y8DP rqlkzdRTcT865hDPCVcV7kaKTB1mhsU2SCspbF3ytFglhEbUERK37D9T3rwWDvZT T9HnTTdGi4o9TUtsl8OYqYuD3AQKmm5ND7HcAmZ9BbcnZQyp3r/M4QvJ9RsWOQHa IewsIMTSMqwaYiSAdhRTMH4M7Sv4fLzXWHDpdv3QpcWZ7YxS2atrxcz0+wAUiBfH ML4sJA5JLOWSURKz269Nn0GxjONf1mXac6YwhcuZcrvan+2jLscHeeYrLpfmGiIR 5D6X2bbCYNDBLbrxi9PLsFcHCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGcFGBU DOnApu0IHHwhcm97raIXMB8GA1UdIwQYMBaAFDGXQCzB1Ab5cH0uIgQ2O8DRPAKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDc5Qy8zMkJGODUwRTk4 RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2bHdmUzRpQkRZN3dORThB cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDc5Qy8zMkJGODUwRTk4RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2 bHdmUzRpQkRZN3dORThBcGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8hQ/NHSRgwaUUjj2x8LdI8g6smAij7Jo46vmCG8NbRwqJFNpYe6dw uQ0N4HMrjbDRVUWWPTKZOhE2Jl7IJlFRPR59VmrZykM0YGZkms3XAHKcYZgTbn/6 aMhLR3NqVCEfmvDZ9HcHkE/w+/noZ1wictXaRxnb/lS5rRGv7j7BkOYtSBGA1IhP kt6OHt2s90erbL2PaV0eUSpcsb/9A1RGnG9KjFFRDieErOpk9/6lwIjzzsv8xNP6 0+ffBZ+EdZtX3J0nu+36KMs3unEXFzeQjCyRG9WpEmRBYZc1ys5f4Hoy/YxCQXeo g9xPWArJl0Kofy6CwYfZb8aq0oOIzi4y -----END CERTIFICATE-----Generated at Mon Aug 11 04:12:28 2025 by rpki-client