$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: /PJ9bykJBXZcH5xaNY7Js47K7uOQgvexWNx7DhskZhY= Subject key identifier: A0:2E:99:C7:34:EA:1D:52:9B:3E:6D:BB:F5:10:34:33:22:8F:EB:33 Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 0281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 027C Signing time: Sat 23 Aug 2025 01:56:39 +0000 Manifest this update: Sat 23 Aug 2025 01:56:39 +0000 Manifest next update: Sat 30 Aug 2025 01:56:39 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: sPcyfw+MqW6ji2jXp0BiTbpqTG4nX45ke4cKK2HNLLc=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: omp1fXUs+vDBv/MaKIuGTrmCJ5TEGYnfoKG3I8GKsAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: Aug 23 01:56:39 2025 GMT Not After : Aug 30 01:56:39 2025 GMT Subject: CN=68a91fd7-0fa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b2:32:36:ce:f2:e7:fd:f6:09:d1:c9:a3:2f: ba:bf:fb:13:62:1a:c9:0e:0d:4b:29:a0:21:18:ca: 5b:b2:94:d9:d5:8f:37:6e:e4:ba:5a:73:b1:3f:37: 2b:df:88:68:94:0e:f3:49:87:04:ed:ce:31:92:5b: 28:20:54:06:3c:d4:b5:82:8f:8b:40:d6:5b:ee:c7: 5d:d3:56:68:ef:81:74:55:ce:7d:9e:5c:9e:33:7b: 99:62:6b:9c:2e:90:3c:00:82:10:8d:72:ce:a6:76: f2:64:3b:61:34:f6:9f:61:4b:b6:bb:91:bc:fe:cc: 7f:d9:b5:39:27:1d:cf:4d:87:e5:65:3e:0a:c5:c7: 81:b9:47:d8:94:16:f5:db:6b:a1:39:d7:7f:57:be: a2:b1:80:d2:a0:3b:a3:c4:2e:f7:1b:32:45:ff:9f: d4:0e:af:65:31:14:6e:5c:95:23:93:3c:0d:e5:57: 98:f4:bb:7f:ba:fd:fb:e9:0b:13:87:79:ca:ef:a4: 86:f6:bd:f8:db:bd:3f:62:8a:7c:7f:2b:27:b7:03: 76:b2:d9:19:78:4d:14:f3:a3:76:cd:a1:95:dd:4a: 56:30:49:dc:60:8f:ed:fe:ca:72:e9:5d:72:97:1b: 0f:be:fe:d1:31:c3:91:ac:b0:74:3e:bf:14:8a:44: bb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:2E:99:C7:34:EA:1D:52:9B:3E:6D:BB:F5:10:34:33:22:8F:EB:33 X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:46:44:84:a7:24:17:06:02:a6:7f:77:72:8e:b4:7f:09:48: 0b:0d:24:0d:e4:44:1d:89:f0:28:b1:f0:cc:09:d4:b7:82:49: f6:f9:b2:30:0a:26:8e:55:04:74:1a:4e:9b:4c:5e:95:23:d5: 5b:ad:0c:3e:3c:11:99:59:42:06:98:dd:a2:6b:a1:4d:0b:93: 58:8d:6f:12:f5:d3:2b:01:6a:db:96:cf:0d:fc:3a:01:00:02: b1:f9:10:1f:03:05:21:68:fe:b2:61:96:08:7a:d1:f5:4b:01: 2f:74:bc:23:b5:e6:24:73:1b:79:31:88:99:c1:41:dc:9a:06: 2e:36:64:f9:a9:14:89:27:f1:fd:6c:18:ae:97:85:2d:64:7f: 66:de:ef:d7:ba:07:93:cf:16:e7:24:8c:9e:e9:b7:fd:b8:be: 70:da:b5:43:fe:c0:b1:6a:1b:1e:a6:97:9e:d1:29:11:e5:e8: 03:8e:a4:c8:37:d5:6f:2e:c9:6c:c8:b8:d5:f6:44:f2:8e:ec: b9:a6:68:03:ee:d7:8a:7b:3b:14:a6:24:45:4d:71:ca:4e:78: 02:9b:64:61:22:34:41:b0:d2:da:09:c9:9b:02:c4:1e:ff:d4: 4a:7b:60:e8:5d:1e:58:86:89:4f:73:92:f6:91:da:78:5d:26: 0c:8a:6b:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjUwODIzMDE1NjM5WhcNMjUwODMwMDE1NjM5WjAYMRYwFAYD VQQDEw02OGE5MWZkNy0wZmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rIyNs7y5/32CdHJoy+6v/sTYhrJDg1LKaAhGMpbspTZ1Y83buS6WnOxPzcr 34holA7zSYcE7c4xklsoIFQGPNS1go+LQNZb7sdd01Zo74F0Vc59nlyeM3uZYmuc LpA8AIIQjXLOpnbyZDthNPafYUu2u5G8/sx/2bU5Jx3PTYflZT4KxceBuUfYlBb1 22uhOdd/V76isYDSoDujxC73GzJF/5/UDq9lMRRuXJUjkzwN5VeY9Lt/uv376QsT h3nK76SG9r34270/Yop8fysntwN2stkZeE0U86N2zaGV3UpWMEncYI/t/spy6V1y lxsPvv7RMcORrLB0Pr8UikS7owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAumcc0 6h1Smz5tu/UQNDMij+szMB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0RkSEpyQXBgKmf3dyjrR/CUgLDSQN5EQdifAosfDMCdS3gkn2+bIw CiaOVQR0Gk6bTF6VI9VbrQw+PBGZWUIGmN2ia6FNC5NYjW8S9dMrAWrbls8N/DoB AAKx+RAfAwUhaP6yYZYIetH1SwEvdLwjteYkcxt5MYiZwUHcmgYuNmT5qRSJJ/H9 bBiul4UtZH9m3u/XugeTzxbnJIye6bf9uL5w2rVD/sCxahseppee0SkR5egDjqTI N9VvLslsyLjV9kTyjuy5pmgD7teKezsUpiRFTXHKTngCm2RhIjRBsNLaCcmbAsQe /9RKe2DoXR5YholPc5L2kdp4XSYMimuB -----END CERTIFICATE-----Generated at Sun Aug 24 08:51:36 2025 by rpki-client