$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: 4IjAZzKJTx6gIqtJeEh3/IGropdHeL2m42RznQJlynw= Subject key identifier: 14:A1:BE:6F:39:BD:71:C8:35:71:69:2C:E4:90:B3:57:00:E6:1D:E7 Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: AA Signing time: Tue 05 Aug 2025 06:39:44 +0000 Manifest this update: Tue 05 Aug 2025 06:39:43 +0000 Manifest next update: Tue 12 Aug 2025 06:39:43 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: V0mKbCo1o4UXeoL38w7kwR3yMzacsMhEFFsvUckslNo=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: 7pF3uHzaE+Wewnte+bG2KwxN3eFFLWjZ6eq6MYtYcWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Aug 5 06:39:43 2025 GMT Not After : Aug 12 06:39:43 2025 GMT Subject: CN=6891a72f-4bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c5:6c:83:cc:fc:30:db:cc:59:f5:5f:e0:65: ae:a3:bb:05:ad:35:d0:e5:6f:a6:47:82:12:dd:64: 7e:13:25:e3:5f:bd:d6:08:ad:b4:7a:a3:9c:0e:c2: 07:ae:ac:24:fd:8a:a7:1f:22:5a:04:9d:a7:7c:39: 45:d2:f6:7d:d7:ce:5a:bd:9d:15:82:1c:73:c7:47: 48:bf:9a:79:f6:48:4b:c2:54:77:f2:43:bd:fa:89: 1b:1a:8e:80:a9:f8:b7:ff:11:3c:1d:31:70:ea:91: 5c:bf:ae:a5:84:28:bc:a4:28:99:a7:70:5c:9c:b2: 91:3d:e7:c2:79:dd:69:c5:99:1e:62:6c:03:23:66: be:c8:76:07:a1:2c:2b:86:d0:9b:19:ba:ae:62:29: 25:1a:e4:bc:75:89:be:40:e2:d5:03:45:32:8a:af: 73:c3:be:a4:6a:ad:73:a7:39:f8:5c:e6:5b:7d:80: 8c:cd:70:c3:dc:6b:5f:04:e7:18:b3:9a:d6:44:86: 61:8a:66:09:c7:f8:fc:f6:f1:94:b8:0b:0f:54:0b: d9:c9:dd:bd:fe:a8:f6:d8:c4:a2:fd:bd:d7:a5:42: df:26:6c:ee:42:88:c1:31:d6:ba:9e:5c:22:47:8f: 07:17:48:dc:82:36:6f:57:3b:2d:0c:9e:00:d7:60: 98:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A1:BE:6F:39:BD:71:C8:35:71:69:2C:E4:90:B3:57:00:E6:1D:E7 X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:50:01:b0:64:82:39:17:d8:83:a4:c3:3b:6c:bd:76:e9:00: 28:9b:df:78:bc:b9:9f:cd:dc:bf:19:7c:22:9a:97:08:5b:6d: 30:b1:b7:be:83:15:41:6f:1c:58:49:6a:b7:30:32:78:6e:85: a3:87:20:25:db:60:33:c3:45:ca:ad:1e:63:4b:94:11:1c:0a: d7:77:6e:ff:40:c7:7c:8f:41:9c:1b:c5:7f:46:c8:84:19:19: 3e:d4:3a:82:e7:28:d1:2c:05:af:87:3f:0d:6a:e3:13:63:44: 2a:06:0e:a9:fa:d1:94:8c:79:44:8e:4c:74:c9:0f:44:60:65: 49:7b:5b:16:e2:10:35:00:49:50:47:99:a0:76:ed:5a:8b:97: 32:a6:f8:e1:8a:a4:1a:b1:51:59:4d:bd:d3:19:49:9b:f4:c3: 6b:93:38:03:77:47:8a:1a:7b:bd:66:bf:99:a0:74:9a:c8:f5: f5:47:83:87:91:8f:76:79:2c:56:37:55:ce:25:cc:58:92:67: 7d:1c:85:bf:e7:50:34:94:e8:0f:dc:e6:32:a5:1b:1a:69:4d: ab:bc:74:55:0d:c2:b0:3a:5b:e1:21:4e:bd:56:90:fd:a7:09: f5:4e:22:e4:e4:fa:e9:62:d2:67:58:fe:b4:34:5c:d9:bb:06: e5:84:8f:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDMyMTRFMjYwQTc4RjdEMTY3N0U4MzAxMzdDMTA2NTcz MDAzMUNGNjYwHhcNMjUwODA1MDYzOTQzWhcNMjUwODEyMDYzOTQzWjAYMRYwFAYD VQQDEw02ODkxYTcyZi00YmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48Vsg8z8MNvMWfVf4GWuo7sFrTXQ5W+mR4IS3WR+EyXjX73WCK20eqOcDsIH rqwk/YqnHyJaBJ2nfDlF0vZ9185avZ0Vghxzx0dIv5p59khLwlR38kO9+okbGo6A qfi3/xE8HTFw6pFcv66lhCi8pCiZp3BcnLKRPefCed1pxZkeYmwDI2a+yHYHoSwr htCbGbquYiklGuS8dYm+QOLVA0Uyiq9zw76kaq1zpzn4XOZbfYCMzXDD3GtfBOcY s5rWRIZhimYJx/j89vGUuAsPVAvZyd29/qj22MSi/b3XpULfJmzuQojBMda6nlwi R48HF0jcgjZvVzstDJ4A12CYSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBShvm85 vXHINXFpLOSQs1cA5h3nMB8GA1UdIwQYMBaAFDIU4mCnj30Wd+gwE3wQZXMAMc9m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8yNzJCNEM3MDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZSWjM2REFUZkJCbGN3QXh6 MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8yNzJCNEM3MDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZS WjM2REFUZkJCbGN3QXh6MlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByUAGwZII5F9iDpMM7bL126QAom994vLmfzdy/GXwimpcIW20wsbe+ gxVBbxxYSWq3MDJ4boWjhyAl22Azw0XKrR5jS5QRHArXd27/QMd8j0GcG8V/RsiE GRk+1DqC5yjRLAWvhz8NauMTY0QqBg6p+tGUjHlEjkx0yQ9EYGVJe1sW4hA1AElQ R5mgdu1ai5cypvjhiqQasVFZTb3TGUmb9MNrkzgDd0eKGnu9Zr+ZoHSayPX1R4OH kY92eSxWN1XOJcxYkmd9HIW/51A0lOgP3OYypRsaaU2rvHRVDcKwOlvhIU69VpD9 pwn1TiLk5PrpYtJnWP60NFzZuwblhI9Y -----END CERTIFICATE-----Generated at Thu Aug 7 02:08:24 2025 by rpki-client