$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: 128xvwKpwRyGX6KUqRJq01OzpLmePCQuO60XLvMbsOw= Subject key identifier: BF:97:40:41:87:CF:3D:1B:1A:8B:A2:DA:D6:C2:1C:1B:80:87:67:29 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 014B Signing time: Sat 23 Aug 2025 04:21:07 +0000 Manifest this update: Sat 23 Aug 2025 04:21:06 +0000 Manifest next update: Sat 30 Aug 2025 04:21:06 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: KrURwqcw4hE+5p35eNceIke/Loe0Zuump0BE5mJflMA=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: 6W6Gywd7YHiIdjjDyCFNskNZyB3wgY++Ir7hfO/X2TY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Aug 23 04:21:06 2025 GMT Not After : Aug 30 04:21:06 2025 GMT Subject: CN=68a941b2-eb61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e0:14:9b:2a:45:27:b2:5d:0c:82:8a:d3:0c: fe:1e:2f:a0:2b:e0:d6:85:c6:51:55:b8:c9:de:74: 59:bd:c3:ad:03:32:74:22:d5:3d:9c:06:bb:88:72: 37:42:73:db:ab:2b:43:34:b7:7c:d1:b2:62:6e:35: b8:3b:1c:12:0f:c6:07:c7:6d:7b:31:a1:6a:c0:4a: 69:99:f8:dd:43:89:2f:9b:cd:78:a1:93:a5:f1:09: 59:84:cf:91:2e:bd:85:f2:28:e4:c6:4a:6f:57:4c: 3e:be:7b:01:e4:da:7e:bf:15:79:02:84:b8:90:9c: d9:1e:b8:52:73:eb:3b:ce:03:ac:2f:37:18:91:22: 1e:1e:5e:62:8d:54:23:16:a3:80:67:58:f1:bc:72: 12:c2:c0:54:fb:b7:8f:43:3c:27:c8:0e:91:6b:5a: 53:60:3b:44:50:c0:15:18:4a:8b:77:49:68:d9:f9: 0b:ef:fe:73:02:d3:e0:81:b5:72:9b:41:b3:68:d9: d7:d4:2f:bb:a1:2d:f8:5f:e1:3b:ef:b2:56:43:2f: f3:90:f4:71:57:f1:45:ec:7f:61:f4:34:63:ba:88: 96:87:e0:89:d7:85:4b:f1:d6:60:c1:ca:8f:da:0a: 2b:9f:fe:fd:60:d3:c8:81:65:84:57:e9:f2:c0:03: 23:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:97:40:41:87:CF:3D:1B:1A:8B:A2:DA:D6:C2:1C:1B:80:87:67:29 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:d9:40:86:cd:13:cc:e6:e8:65:09:15:ab:c9:ec:7b:d1:6f: c1:2f:90:7b:ad:3c:2b:0b:9c:78:4e:74:3f:d1:15:31:03:2c: cb:ff:06:ba:c0:eb:5a:2b:39:29:71:10:67:3c:85:b7:bd:63: 3e:51:c6:64:bd:c5:a2:5a:45:64:a4:54:2d:4a:36:03:71:6d: 3e:a2:40:0e:ab:77:6b:0a:14:9d:93:9a:21:bc:c8:a2:11:3a: 99:d7:ca:fa:16:94:91:51:7c:f4:f0:48:e7:1a:bc:cb:3c:26: 87:85:6d:13:e9:a4:35:e4:75:81:c7:16:32:99:34:cc:f0:f2: 92:d2:14:f2:db:9b:c2:66:0f:e6:08:31:c0:09:4a:7d:e7:1c: 71:ad:d1:a8:b3:1f:20:74:bc:20:53:69:ca:c6:28:06:4c:ca: 77:91:2d:c4:62:f1:f1:8d:b6:38:40:4e:1e:23:4c:63:03:5e: 0d:6b:8a:87:b9:b3:ae:93:35:bf:5f:d6:8c:a5:d7:cd:09:63: 6d:9a:07:49:9c:c3:17:22:5a:f3:58:71:59:42:e4:6b:33:51: c9:66:bf:9d:a8:16:7e:f7:e1:38:cd:8f:81:55:b0:da:99:b3: cc:6e:03:36:41:99:da:57:6d:e3:ab:f2:5a:3a:5e:3d:fe:54: 02:54:27:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjUwODIzMDQyMTA2WhcNMjUwODMwMDQyMTA2WjAYMRYwFAYD VQQDEw02OGE5NDFiMi1lYjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOAUmypFJ7JdDIKK0wz+Hi+gK+DWhcZRVbjJ3nRZvcOtAzJ0ItU9nAa7iHI3 QnPbqytDNLd80bJibjW4OxwSD8YHx217MaFqwEppmfjdQ4kvm814oZOl8QlZhM+R Lr2F8ijkxkpvV0w+vnsB5Np+vxV5AoS4kJzZHrhSc+s7zgOsLzcYkSIeHl5ijVQj FqOAZ1jxvHISwsBU+7ePQzwnyA6Ra1pTYDtEUMAVGEqLd0lo2fkL7/5zAtPggbVy m0GzaNnX1C+7oS34X+E777JWQy/zkPRxV/FF7H9h9DRjuoiWh+CJ14VL8dZgwcqP 2gorn/79YNPIgWWEV+nywAMjnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+XQEGH zz0bGoui2tbCHBuAh2cpMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV2UCGzRPM5uhlCRWryex70W/BL5B7rTwrC5x4TnQ/0RUxAyzL/wa6 wOtaKzkpcRBnPIW3vWM+UcZkvcWiWkVkpFQtSjYDcW0+okAOq3drChSdk5ohvMii ETqZ18r6FpSRUXz08EjnGrzLPCaHhW0T6aQ15HWBxxYymTTM8PKS0hTy25vCZg/m CDHACUp95xxxrdGosx8gdLwgU2nKxigGTMp3kS3EYvHxjbY4QE4eI0xjA14Na4qH ubOukzW/X9aMpdfNCWNtmgdJnMMXIlrzWHFZQuRrM1HJZr+dqBZ+9+E4zY+BVbDa mbPMbgM2QZnaV23jq/JaOl49/lQCVCdS -----END CERTIFICATE-----Generated at Sat Aug 23 19:13:24 2025 by rpki-client