$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: SR8OLHrhkXTyVoOAbghIjkJEMnJLt4XMFcubsNI8508= Subject key identifier: 41:12:54:05:38:77:0A:E7:28:F8:44:1F:6B:B7:14:8D:C0:BD:63:2F Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 06A8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 06A1 Signing time: Fri 22 Aug 2025 15:14:40 +0000 Manifest this update: Fri 22 Aug 2025 15:14:39 +0000 Manifest next update: Fri 29 Aug 2025 15:14:39 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: 6kiP9YAck9WCk+OhtIpsMXVAe1pEcBj/fZq+aR6vFc0=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Aug 22 15:14:39 2025 GMT Not After : Aug 29 15:14:39 2025 GMT Subject: CN=68a88960-d502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:45:33:98:a1:74:e5:40:67:98:29:af:4a:e9: 2c:78:69:70:41:0b:ff:89:7f:d3:2a:ae:22:5e:49: 62:d3:34:69:1c:aa:69:3f:2a:d2:d8:58:1f:0b:95: 83:c1:3c:da:f7:aa:64:84:5b:60:7d:54:b3:0d:29: 24:7f:2f:1e:70:3d:b4:a0:9f:58:50:77:05:26:f2: 7c:86:aa:61:48:ec:f6:b4:6d:dd:91:d9:85:07:0e: 77:00:4d:78:37:26:39:c2:19:14:a0:b3:7b:0f:8d: 37:01:63:5c:26:0e:91:24:44:94:b1:b6:22:c4:1a: b1:55:38:89:f7:75:f4:ef:fe:62:75:55:59:84:7d: 96:1e:c4:fd:fb:b0:32:95:27:d2:f8:54:11:6b:48: ff:1a:6c:db:c4:64:e7:47:d7:b1:bc:ef:57:ff:b3: ee:bc:2a:d3:df:db:a2:0b:e4:5a:eb:2c:aa:57:45: 49:a2:9a:b7:a0:4b:e7:b9:d8:58:c5:02:b5:86:32: 9a:f4:d1:a9:41:6e:07:b0:92:52:63:4b:8d:3c:56: a0:0b:01:9e:66:9c:b1:e8:9b:09:5d:3e:c3:a1:47: 2c:94:6c:92:d2:0b:c9:96:ad:c7:b1:90:dd:be:bf: 4e:fd:0c:bd:cf:c5:fb:e1:73:18:70:df:33:48:13: 12:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:12:54:05:38:77:0A:E7:28:F8:44:1F:6B:B7:14:8D:C0:BD:63:2F X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:1b:7d:4f:67:03:1c:94:03:b0:87:ab:9e:12:00:a3:53:ea: 52:fc:d2:6e:ae:a0:35:a6:c5:f2:0d:c3:1c:28:f7:a6:46:16: fa:94:27:1d:6c:8f:73:4a:9a:a7:73:32:b1:9f:f1:7a:ed:75: 37:1a:63:da:eb:15:85:7d:68:b8:81:34:14:9e:62:38:2e:e0: 29:9e:dd:cc:09:f6:51:e2:0e:d4:48:63:d6:58:a7:5d:4f:78: dc:56:64:17:10:74:81:d3:90:05:5d:fc:4d:1d:59:ca:8e:dc: f9:5a:1a:f1:34:f1:6d:40:f3:e4:c6:8c:1b:83:1d:7f:08:21: f7:e2:03:30:67:ab:62:c8:c0:be:73:f7:60:7a:94:fa:70:4a: 0c:47:23:7f:e6:f3:60:10:68:47:26:6f:e0:b4:99:be:88:3a: e0:d3:3b:8e:60:d7:78:c5:36:39:c6:22:a3:40:4c:44:94:f2: f0:f6:b7:a7:ac:fe:44:61:c2:48:35:41:1a:f2:f8:81:23:e7: 2b:e6:d5:e1:fa:b3:49:8d:19:1f:1f:fe:cc:15:42:7d:df:16: 7d:35:96:cc:34:34:49:5d:91:8f:54:f4:f9:de:0e:43:ba:16: 24:6a:b1:25:a8:83:64:c3:fa:c6:84:2d:a8:aa:de:e2:fe:d6: 3e:70:14:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUwODIyMTUxNDM5WhcNMjUwODI5MTUxNDM5WjAYMRYwFAYD VQQDEw02OGE4ODk2MC1kNTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUUzmKF05UBnmCmvSukseGlwQQv/iX/TKq4iXkli0zRpHKppPyrS2FgfC5WD wTza96pkhFtgfVSzDSkkfy8ecD20oJ9YUHcFJvJ8hqphSOz2tG3dkdmFBw53AE14 NyY5whkUoLN7D403AWNcJg6RJESUsbYixBqxVTiJ93X07/5idVVZhH2WHsT9+7Ay lSfS+FQRa0j/GmzbxGTnR9exvO9X/7PuvCrT39uiC+Ra6yyqV0VJopq3oEvnudhY xQK1hjKa9NGpQW4HsJJSY0uNPFagCwGeZpyx6JsJXT7DoUcslGyS0gvJlq3HsZDd vr9O/Qy9z8X74XMYcN8zSBMSswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEESVAU4 dwrnKPhEH2u3FI3AvWMvMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClG31PZwMclAOwh6ueEgCjU+pS/NJurqA1psXyDcMcKPemRhb6lCcd bI9zSpqnczKxn/F67XU3GmPa6xWFfWi4gTQUnmI4LuApnt3MCfZR4g7USGPWWKdd T3jcVmQXEHSB05AFXfxNHVnKjtz5WhrxNPFtQPPkxowbgx1/CCH34gMwZ6tiyMC+ c/dgepT6cEoMRyN/5vNgEGhHJm/gtJm+iDrg0zuOYNd4xTY5xiKjQExElPLw9ren rP5EYcJINUEa8viBI+cr5tXh+rNJjRkfH/7MFUJ93xZ9NZbMNDRJXZGPVPT53g5D uhYkarElqINkw/rGhC2oqt7i/tY+cBTD -----END CERTIFICATE-----Generated at Sun Aug 24 00:55:00 2025 by rpki-client