$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft File: MZdALMHUBvlwfS4iBDY7wNE8Apk.mft (raw, json) Hash identifier: 5PUx9y4jYZiFeQHf9VQS6T9AU7zQWy3MjHcKHVQpiok= Subject key identifier: D2:C3:F2:4C:7D:E2:4F:6F:66:7D:EB:AC:5B:E6:21:34:31:F8:EC:0F Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 Certificate issuer: /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Certificate serial: 03AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft Manifest number: 03A8 Signing time: Sun 15 Jun 2025 00:26:21 +0000 Manifest this update: Sun 15 Jun 2025 00:26:21 +0000 Manifest next update: Sun 22 Jun 2025 00:26:21 +0000 Files and hashes: 1: MZdALMHUBvlwfS4iBDY7wNE8Apk.crl (hash: W9h/VOHfEOjgB6d1aqxLj6WNM9AYuZBaYLNHACIrPzc=) 2: 751D2C1A98E611EC849D155FC4F9AE02.roa (hash: CkImo8IsUmsaya0jHXM103+CNWFzYVltZI4TafvBrlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:26:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 940 (0x3ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F479C, serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Validity Not Before: Jun 15 00:26:21 2025 GMT Not After : Jun 22 00:26:21 2025 GMT Subject: CN=684e132d-c2b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:37:7e:85:46:6e:4f:3d:e0:ce:1d:c8:dd:58: c4:81:bc:b8:7a:4e:57:7c:f3:72:1c:41:50:c4:22: 4a:12:46:4d:fa:19:d0:76:e3:52:67:d5:40:86:e6: 53:40:55:ce:69:d1:e4:01:05:ad:27:04:47:ae:49: 04:24:85:85:ff:23:ec:8d:5d:a3:74:0e:e0:be:70: c6:f6:9d:0d:98:5f:af:8f:7a:f1:6e:87:65:1c:3a: 03:75:24:df:2d:30:31:3d:19:77:4d:d9:fa:83:24: 68:c4:5e:67:a9:09:5b:a6:b6:9b:20:d7:fd:28:55: e2:b9:19:42:e8:3d:c5:e5:69:34:ba:bc:37:51:f0: 92:a4:97:72:c2:0c:2e:2e:33:65:b8:0a:74:91:68: 81:c2:33:84:19:dd:90:86:54:2b:c6:ef:df:7d:f4: 44:ac:c7:4c:62:a1:2e:d9:be:87:f6:1e:c8:d6:2f: 42:4c:54:5f:f1:9f:13:f0:b5:cb:dc:28:0f:fd:c0: 55:16:62:a2:28:58:12:15:5f:64:14:7e:47:9e:eb: 4d:40:f5:5e:11:01:a7:8e:f7:ef:af:5e:64:da:09: b1:09:99:33:03:6d:80:e6:43:f1:cb:8a:54:d6:8a: 5e:25:b3:cb:77:c6:e5:98:7b:09:0d:5a:8e:39:aa: ca:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:C3:F2:4C:7D:E2:4F:6F:66:7D:EB:AC:5B:E6:21:34:31:F8:EC:0F X509v3 Authority Key Identifier: keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:00:fe:b8:99:c6:30:e7:98:5f:7c:c6:ff:d2:dc:b6:92:69: 4e:24:b2:3e:dc:e4:53:7e:38:a6:9b:fb:cc:e8:78:52:cb:ae: 6f:40:e5:73:ec:b5:5d:97:e6:a6:f7:2b:84:75:d5:3d:bb:94: 62:0d:65:56:3d:bc:a4:8e:3a:6d:38:27:ec:fc:25:48:f0:5b: a8:d1:1d:4a:74:5f:08:94:73:ec:6f:cc:36:4f:ff:d4:37:19: ad:f1:56:c7:4b:72:7f:c8:31:b6:65:07:2d:16:85:a8:fb:02: 3b:a1:e9:35:f8:07:23:30:0d:09:a0:bc:79:6b:55:89:8a:f4: c4:9d:cc:01:d4:cb:7c:5a:3a:45:cb:d9:3e:25:09:38:fd:91: 3a:96:c5:5b:2d:15:77:c8:04:fe:ed:1e:94:47:2d:c4:69:6e: da:cb:35:1c:db:9a:8f:f7:4e:e3:54:b9:21:42:43:7c:0b:36: 00:fe:9b:11:77:fa:5c:09:54:cd:02:e4:22:8c:f2:b5:f1:94: 10:9c:3c:c3:46:7c:07:0b:17:0b:3f:6f:48:76:95:84:7c:31: ac:09:01:23:5a:45:19:e6:27:b5:28:e1:35:2c:f0:52:aa:45: e0:d2:13:72:5d:42:9d:33:77:52:82:fb:85:9a:23:68:c5:d1: 97:47:27:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3OUMxMTAvBgNVBAUTKDMxOTc0MDJDQzFENDA2Rjk3MDdEMkUyMjA0MzYzQkMw RDEzQzAyOTkwHhcNMjUwNjE1MDAyNjIxWhcNMjUwNjIyMDAyNjIxWjAYMRYwFAYD VQQDEw02ODRlMTMyZC1jMmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTd+hUZuTz3gzh3I3VjEgby4ek5XfPNyHEFQxCJKEkZN+hnQduNSZ9VAhuZT QFXOadHkAQWtJwRHrkkEJIWF/yPsjV2jdA7gvnDG9p0NmF+vj3rxbodlHDoDdSTf LTAxPRl3Tdn6gyRoxF5nqQlbprabINf9KFXiuRlC6D3F5Wk0urw3UfCSpJdywgwu LjNluAp0kWiBwjOEGd2QhlQrxu/fffRErMdMYqEu2b6H9h7I1i9CTFRf8Z8T8LXL 3CgP/cBVFmKiKFgSFV9kFH5HnutNQPVeEQGnjvfvr15k2gmxCZkzA22A5kPxy4pU 1opeJbPLd8blmHsJDVqOOarKdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLD8kx9 4k9vZn3rrFvmITQx+OwPMB8GA1UdIwQYMBaAFDGXQCzB1Ab5cH0uIgQ2O8DRPAKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDc5Qy8zMkJGODUwRTk4 RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2bHdmUzRpQkRZN3dORThB cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDc5Qy8zMkJGODUwRTk4RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2 bHdmUzRpQkRZN3dORThBcGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4AP64mcYw55hffMb/0ty2kmlOJLI+3ORTfjimm/vM6HhSy65vQOVz 7LVdl+am9yuEddU9u5RiDWVWPbykjjptOCfs/CVI8Fuo0R1KdF8IlHPsb8w2T//U Nxmt8VbHS3J/yDG2ZQctFoWo+wI7oek1+AcjMA0JoLx5a1WJivTEncwB1Mt8WjpF y9k+JQk4/ZE6lsVbLRV3yAT+7R6URy3EaW7ayzUc25qP907jVLkhQkN8CzYA/psR d/pcCVTNAuQijPK18ZQQnDzDRnwHCxcLP29IdpWEfDGsCQEjWkUZ5ie1KOE1LPBS qkXg0hNyXUKdM3dSgvuFmiNoxdGXRyfy -----END CERTIFICATE-----Generated at Sun Jun 15 09:43:01 2025 by rpki-client