$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: 5O/qRvdmXF52sTlFijS2rm9H3kvmf8HS6qrTEyESHac= Subject key identifier: FE:C8:5C:D7:3D:FD:BF:4F:30:8C:87:4B:E7:AD:2B:D5:91:E2:18:7C Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 029E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 0299 Signing time: Sun 19 Oct 2025 03:46:30 +0000 Manifest this update: Sun 19 Oct 2025 03:46:30 +0000 Manifest next update: Sun 26 Oct 2025 03:46:30 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: vSWg7OnE9Phjn3OhWpGaCe6eAZZBBQwYt5qU/woqHhI=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: omp1fXUs+vDBv/MaKIuGTrmCJ5TEGYnfoKG3I8GKsAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: Oct 19 03:46:30 2025 GMT Not After : Oct 26 03:46:30 2025 GMT Subject: CN=68f45f16-c759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:24:19:c4:87:7d:82:6a:f3:c0:fa:7f:3e:64: ff:fe:6c:46:1c:14:ac:bf:57:79:9f:79:69:a6:75: 8f:ca:48:c7:0d:02:da:f8:e6:ab:d3:ea:91:d6:02: ea:98:13:33:03:14:0a:30:d1:8f:08:d8:a1:ac:43: d2:9e:db:a7:60:06:7e:53:26:4b:a8:4b:30:1a:9c: 98:e7:f8:54:cf:9f:d1:9b:93:a9:ec:e4:c1:ef:bb: f7:76:5a:fa:23:81:cf:c8:06:fc:34:5f:da:8e:1f: 76:05:d3:3f:54:6c:59:fb:27:7f:6c:d3:79:d9:76: 74:aa:31:58:28:e7:e1:d8:95:a2:85:df:4f:d2:20: 37:fd:92:90:3b:02:38:91:e0:c2:90:9b:ea:80:e8: c5:40:9b:4b:87:6d:5a:8d:a4:45:ff:4a:62:6d:57: dd:82:a5:3a:70:51:8f:4a:51:b7:1c:f1:f5:24:c4: 34:af:90:47:80:39:8b:ee:a4:21:ad:19:ae:64:48: 54:87:8a:c1:b1:07:d4:81:46:32:83:36:6d:1a:e9: e4:24:dc:5a:39:fb:3b:e1:c9:af:76:e7:78:3b:e0: 84:e2:67:9a:70:aa:8d:4f:21:b7:c1:55:5f:79:c9: 1c:b6:47:ec:30:f7:19:0c:d1:1e:e3:63:58:4b:a9: a7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C8:5C:D7:3D:FD:BF:4F:30:8C:87:4B:E7:AD:2B:D5:91:E2:18:7C X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:b9:d4:e0:35:39:84:d5:5a:d8:4e:0f:ae:f5:e7:0a:34:13: 66:97:53:47:52:c5:65:ab:eb:96:a4:f4:a2:9c:64:32:04:ed: 5b:77:e3:bd:ef:7c:00:ab:1f:65:4c:57:0e:a5:69:d3:f8:1f: 7f:8f:17:c6:59:43:d6:3b:92:20:9d:ea:40:42:fa:1a:68:ea: aa:8d:cf:c7:5c:89:1c:54:e9:93:93:7e:3e:de:f3:f2:7c:e0: cf:dd:ad:84:2f:ae:30:4f:2f:58:97:aa:13:31:ee:6e:69:24: 00:00:87:2a:a3:3d:43:99:d1:86:d6:33:6a:07:bf:d1:93:aa: e2:8f:eb:33:a5:ea:65:9a:2b:fe:a7:2a:fc:d4:cb:cb:6f:4e: ff:c2:19:cd:28:8a:8c:b5:74:5b:c5:15:48:66:24:6b:f1:cb: a2:f2:2b:73:20:b9:f3:d1:d2:a6:3c:da:0e:3c:5a:91:0d:89: 37:3c:8b:e8:8d:96:17:17:d6:32:62:1a:51:f3:9c:c2:b6:ed: 0f:c8:79:1a:a3:8f:2c:0d:a2:9e:87:7c:bb:a9:86:9c:a5:5d: 1f:6f:2f:14:6f:ab:7a:a3:f0:eb:00:5e:21:27:a8:93:03:95: 74:40:97:e3:99:a6:af:35:32:14:e9:cd:ea:b1:cb:d7:8f:56: 1e:ea:a8:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjUxMDE5MDM0NjMwWhcNMjUxMDI2MDM0NjMwWjAYMRYwFAYD VQQDEw02OGY0NWYxNi1jNzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yQZxId9gmrzwPp/PmT//mxGHBSsv1d5n3lppnWPykjHDQLa+Oar0+qR1gLq mBMzAxQKMNGPCNihrEPSntunYAZ+UyZLqEswGpyY5/hUz5/Rm5Op7OTB77v3dlr6 I4HPyAb8NF/ajh92BdM/VGxZ+yd/bNN52XZ0qjFYKOfh2JWihd9P0iA3/ZKQOwI4 keDCkJvqgOjFQJtLh21ajaRF/0pibVfdgqU6cFGPSlG3HPH1JMQ0r5BHgDmL7qQh rRmuZEhUh4rBsQfUgUYygzZtGunkJNxaOfs74cmvdud4O+CE4meacKqNTyG3wVVf eckctkfsMPcZDNEe42NYS6mnpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7IXNc9 /b9PMIyHS+etK9WR4hh8MB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjudTgNTmE1VrYTg+u9ecKNBNml1NHUsVlq+uWpPSinGQyBO1bd+O9 73wAqx9lTFcOpWnT+B9/jxfGWUPWO5IgnepAQvoaaOqqjc/HXIkcVOmTk34+3vPy fODP3a2EL64wTy9Yl6oTMe5uaSQAAIcqoz1DmdGG1jNqB7/Rk6rij+szpeplmiv+ pyr81MvLb07/whnNKIqMtXRbxRVIZiRr8cui8itzILnz0dKmPNoOPFqRDYk3PIvo jZYXF9YyYhpR85zCtu0PyHkao48sDaKeh3y7qYacpV0fby8Ub6t6o/DrAF4hJ6iT A5V0QJfjmaavNTIU6c3qscvXj1Ye6qgt -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:08 2025 by rpki-client