$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: jTafMPN604D2tdQft1V5En+a+5gE8ajT7MqVpUogwx4= Subject key identifier: D9:16:F3:FE:31:EB:F4:3D:81:E8:34:4F:E9:F4:17:7D:12:84:97:B7 Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 0262 Signing time: Thu 03 Jul 2025 02:11:32 +0000 Manifest this update: Thu 03 Jul 2025 02:11:31 +0000 Manifest next update: Thu 10 Jul 2025 02:11:31 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: iAeSw3qUuVQcMqHt4uMHm2b1EsBT/TGBCtG2GysjAqU=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: omp1fXUs+vDBv/MaKIuGTrmCJ5TEGYnfoKG3I8GKsAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: Jul 3 02:11:31 2025 GMT Not After : Jul 10 02:11:31 2025 GMT Subject: CN=6865e6d4-f139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4e:7b:ca:e1:ab:d1:21:8c:ba:e0:b1:b8:5f: 12:1b:09:f6:94:ed:1d:57:cd:4d:c3:6b:22:92:6c: 42:fb:6f:56:5f:ac:5f:09:49:70:ea:cc:e4:18:02: 19:ae:30:5d:f9:56:7a:00:65:cd:7f:0d:1b:c6:bb: 09:62:4d:86:db:58:46:fe:d7:ec:53:20:40:7f:82: 05:b6:f1:2e:42:0b:00:84:8c:bc:e2:fd:c0:f2:8d: 31:6b:f2:b0:2d:d0:74:10:01:d8:0a:ae:0a:37:1f: eb:cf:5a:69:60:0c:ce:25:77:6c:10:36:a6:28:4b: 0b:df:1b:47:20:5f:2a:84:bb:bd:10:70:c9:a3:79: 4e:bb:4c:93:b4:e4:ae:83:a4:51:1c:16:3d:0f:ca: 1e:bd:c8:34:4d:b4:1f:95:51:d0:25:21:ff:d7:64: e5:cd:bf:60:2f:31:04:c1:59:10:ec:02:74:67:a2: 53:ed:10:cf:4c:ad:8f:02:1b:0a:88:f0:50:c6:60: 97:4f:e0:a2:e9:d0:06:2c:62:d7:77:be:96:fc:a6: bc:cb:dc:f5:a0:e5:da:bd:59:35:2a:cb:33:64:44: 5d:2a:0f:06:ea:14:29:ef:4f:59:bf:9b:f7:03:31: 0d:24:09:06:3e:57:40:50:ce:c3:00:5c:db:50:04: cf:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:16:F3:FE:31:EB:F4:3D:81:E8:34:4F:E9:F4:17:7D:12:84:97:B7 X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c5:0d:61:52:03:c1:ba:d7:42:ac:e3:30:a7:ff:b5:02:e0: 1c:96:fe:80:49:8f:c9:32:fb:ca:c9:27:86:3a:5a:25:58:dc: ba:08:f3:36:c1:90:22:20:0c:27:25:be:eb:38:1a:50:44:86: f0:e8:a9:74:00:5c:7a:8c:09:eb:c9:a8:82:6b:9b:0b:eb:44: d7:02:55:a5:2a:54:14:90:89:44:9b:c7:a7:bf:be:f5:94:6c: ee:8d:40:bd:b3:b7:ec:0f:81:e1:ca:f4:fd:62:78:e3:25:88: 72:0e:f7:74:fc:8e:a8:75:86:15:84:fc:d1:d8:4e:e2:af:57: e7:c9:0f:20:56:05:59:eb:a1:07:02:ec:c1:d8:82:f7:31:42: f8:db:97:fc:fc:5a:63:74:ac:49:68:34:cb:44:52:f7:0b:58: 33:df:0f:f5:de:9c:4e:74:ea:63:01:05:28:27:50:02:e5:ba: e8:28:95:d8:ed:75:64:ac:a0:4b:48:df:55:ce:e6:ba:e9:7d: c5:31:41:1b:31:e6:de:ea:17:1c:7e:f8:38:35:85:f7:c1:39: 64:1c:c4:9a:2b:b3:b1:21:4e:02:cd:2b:31:17:ef:1a:91:3c: 8c:50:6c:93:70:39:2a:24:2e:2d:2f:7d:85:f9:70:48:4b:d3: 24:df:7b:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjUwNzAzMDIxMTMxWhcNMjUwNzEwMDIxMTMxWjAYMRYwFAYD VQQDEw02ODY1ZTZkNC1mMTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5057yuGr0SGMuuCxuF8SGwn2lO0dV81Nw2sikmxC+29WX6xfCUlw6szkGAIZ rjBd+VZ6AGXNfw0bxrsJYk2G21hG/tfsUyBAf4IFtvEuQgsAhIy84v3A8o0xa/Kw LdB0EAHYCq4KNx/rz1ppYAzOJXdsEDamKEsL3xtHIF8qhLu9EHDJo3lOu0yTtOSu g6RRHBY9D8oevcg0TbQflVHQJSH/12Tlzb9gLzEEwVkQ7AJ0Z6JT7RDPTK2PAhsK iPBQxmCXT+Ci6dAGLGLXd76W/Ka8y9z1oOXavVk1KsszZERdKg8G6hQp709Zv5v3 AzENJAkGPldAUM7DAFzbUATP4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkW8/4x 6/Q9geg0T+n0F30ShJe3MB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9xQ1hUgPButdCrOMwp/+1AuAclv6ASY/JMvvKySeGOlolWNy6CPM2 wZAiIAwnJb7rOBpQRIbw6Kl0AFx6jAnryaiCa5sL60TXAlWlKlQUkIlEm8env771 lGzujUC9s7fsD4HhyvT9YnjjJYhyDvd0/I6odYYVhPzR2E7ir1fnyQ8gVgVZ66EH AuzB2IL3MUL425f8/FpjdKxJaDTLRFL3C1gz3w/13pxOdOpjAQUoJ1AC5broKJXY 7XVkrKBLSN9Vzua66X3FMUEbMebe6hccfvg4NYX3wTlkHMSaK7OxIU4CzSsxF+8a kTyMUGyTcDkqJC4tL32F+XBIS9Mk33tz -----END CERTIFICATE-----Generated at Fri Jul 4 15:02:41 2025 by rpki-client