$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: iqIZtLuvbBt5MZ0rPZutmwu6MejMO+H4G0mVQxdY+Qg= Subject key identifier: A2:0D:0D:54:89:6B:EC:8A:E8:93:BD:9F:07:2B:91:E7:C5:F0:84:76 Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 068E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 0687 Signing time: Wed 02 Jul 2025 15:17:38 +0000 Manifest this update: Wed 02 Jul 2025 15:17:37 +0000 Manifest next update: Wed 09 Jul 2025 15:17:37 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: 7BjJ/LRgQQ5h/0OYnjRkh5U1fhezFNJp85DDkcuYssg=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Jul 2 15:17:37 2025 GMT Not After : Jul 9 15:17:37 2025 GMT Subject: CN=68654d92-b323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7a:f0:b4:07:46:ba:b3:69:7a:fc:c5:1f:f5: b4:c3:54:e4:1e:5d:0a:64:08:dc:b9:98:fd:28:27: 60:8f:30:4b:78:1f:08:e2:7e:eb:20:ab:0f:7f:99: cc:7c:e0:f7:00:72:8d:57:41:34:57:1b:70:a0:66: 19:b3:72:96:b9:ae:4d:9b:2b:97:10:f2:70:90:74: fd:77:cf:8c:74:78:a4:ba:cb:e4:0b:d5:83:50:54: 96:6a:10:7e:d5:5f:ff:4a:92:85:6e:30:4a:91:4e: 9e:e9:ae:aa:55:a4:9e:31:0a:54:68:96:e7:d8:a4: 61:0d:9e:55:f4:02:a9:f4:fc:e8:56:3f:ca:3d:6b: 6c:27:5f:a2:9c:3d:0a:ae:ba:97:91:aa:87:4c:8f: 74:e9:37:48:25:3a:b8:c8:db:3a:3f:b5:77:3d:f9: 8d:d5:96:e3:2b:12:fd:3b:6c:e5:34:1a:f9:69:eb: 3a:84:87:4f:5e:98:17:e6:42:aa:e7:c2:88:f5:c2: 77:3f:6d:a6:79:66:d5:32:d4:29:6b:ad:87:e7:f4: 6b:e6:5d:f9:6f:87:87:cf:e8:8a:bf:2c:f2:82:ea: f9:f0:3e:ed:7c:3b:a4:7e:94:dd:bf:3f:f9:fd:b3: 06:76:64:32:cf:ba:f7:37:4e:58:85:73:58:39:16: f8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0D:0D:54:89:6B:EC:8A:E8:93:BD:9F:07:2B:91:E7:C5:F0:84:76 X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:31:4a:e0:ed:7d:c0:10:e0:7f:7e:f5:65:af:71:a3:b6:8a: 5e:ee:f8:62:76:5d:16:54:92:e1:a3:75:80:13:3d:f6:5b:92: 02:d0:d2:34:78:f4:19:58:79:f6:1b:11:5c:81:3a:11:d3:b4: 0b:9f:c0:90:06:c9:2f:99:dc:9f:a4:bb:7f:58:b4:21:3c:e3: d5:15:34:ca:5e:35:1d:9f:32:a0:1a:6c:73:33:41:8a:b6:36: fc:86:8d:ab:b4:26:69:52:dc:1a:6d:85:8f:54:32:60:0f:1c: 99:f7:5e:47:c8:d2:b0:a8:2d:a1:5b:16:73:a8:eb:9d:f1:14: d2:11:b2:32:0c:7c:a7:55:c1:07:17:21:01:38:98:c0:5b:de: e0:d7:a9:1d:6e:c0:56:bd:15:5a:c5:88:ee:72:21:f1:b8:de: 1b:22:89:68:d2:50:19:74:c7:98:52:8d:b3:ef:e1:62:2a:b1: 6b:71:ef:8e:4b:eb:d7:25:fe:e9:5f:07:60:67:70:58:6d:68: 2d:0d:81:11:4c:72:9b:96:11:e0:32:90:7f:0a:87:3a:1b:9d: 8e:86:f5:f6:45:53:77:e8:8b:63:60:fa:22:0a:f4:4f:f8:5d: aa:69:63:35:4d:9e:b2:5e:7c:a2:fe:61:cd:2e:8f:c4:50:78: 9a:e6:fb:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUwNzAyMTUxNzM3WhcNMjUwNzA5MTUxNzM3WjAYMRYwFAYD VQQDEw02ODY1NGQ5Mi1iMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3rwtAdGurNpevzFH/W0w1TkHl0KZAjcuZj9KCdgjzBLeB8I4n7rIKsPf5nM fOD3AHKNV0E0VxtwoGYZs3KWua5NmyuXEPJwkHT9d8+MdHikusvkC9WDUFSWahB+ 1V//SpKFbjBKkU6e6a6qVaSeMQpUaJbn2KRhDZ5V9AKp9PzoVj/KPWtsJ1+inD0K rrqXkaqHTI906TdIJTq4yNs6P7V3PfmN1ZbjKxL9O2zlNBr5aes6hIdPXpgX5kKq 58KI9cJ3P22meWbVMtQpa62H5/Rr5l35b4eHz+iKvyzygur58D7tfDukfpTdvz/5 /bMGdmQyz7r3N05YhXNYORb4bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKINDVSJ a+yK6JO9nwcrkefF8IR2MB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZMUrg7X3AEOB/fvVlr3Gjtope7vhidl0WVJLho3WAEz32W5IC0NI0 ePQZWHn2GxFcgToR07QLn8CQBskvmdyfpLt/WLQhPOPVFTTKXjUdnzKgGmxzM0GK tjb8ho2rtCZpUtwabYWPVDJgDxyZ915HyNKwqC2hWxZzqOud8RTSEbIyDHynVcEH FyEBOJjAW97g16kdbsBWvRVaxYjuciHxuN4bIolo0lAZdMeYUo2z7+FiKrFrce+O S+vXJf7pXwdgZ3BYbWgtDYERTHKblhHgMpB/Coc6G52OhvX2RVN36ItjYPoiCvRP +F2qaWM1TZ6yXnyi/mHNLo/EUHia5vvy -----END CERTIFICATE-----Generated at Fri Jul 4 01:24:54 2025 by rpki-client