$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: 4ON5Dwb+1Askn/Yn/k4uEnPuGNnNi2wTeeSdiRJz/9I= Subject key identifier: 7D:9B:50:81:48:32:6F:6A:B8:CC:39:4B:50:32:0B:2C:02:D1:0D:2C Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: C9 Signing time: Wed 02 Jul 2025 15:51:05 +0000 Manifest this update: Wed 02 Jul 2025 15:51:04 +0000 Manifest next update: Wed 09 Jul 2025 15:51:04 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: fOZziAp4u8CnkaB0mJigazFvj0ckrrXsfW2vs9sjlow=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: nEx36xMYEspoRTHpBzsjyglWKve6HGzaUV9gJlWDtWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:51:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Jul 2 15:51:04 2025 GMT Not After : Jul 9 15:51:04 2025 GMT Subject: CN=68655569-2a21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:8b:a4:dc:a1:62:ad:18:74:2c:0f:9e:bd:e4: e9:7e:51:de:20:26:34:a3:0e:ef:41:ae:b2:cb:1f: 2c:4d:a4:d2:2a:d9:a4:70:b2:0a:61:82:53:0b:62: cd:36:23:cf:49:0f:4a:37:e4:f7:ec:4b:ab:88:db: e3:06:9f:d6:e0:99:ec:97:17:07:a4:f6:84:da:0b: 42:cf:cc:b2:da:39:06:0f:fa:43:cc:d7:54:1e:46: 8c:37:c3:12:7d:a5:d2:d9:80:9a:d0:94:00:fb:b9: 67:ac:4d:17:96:52:14:2c:33:16:41:d0:9a:64:37: a3:55:95:af:28:d2:21:8e:51:e6:22:4e:3a:e1:f8: e2:0f:55:87:76:a9:f1:51:6f:71:4f:1b:39:40:27: 7c:c7:27:a9:49:cc:39:5f:df:ca:4b:a6:89:c3:be: 6b:3b:73:9f:ce:14:fa:83:a9:65:6f:ca:9d:de:76: 03:6b:41:b4:6c:25:c3:f2:47:a2:4f:87:46:af:76: d3:0a:42:f2:17:41:40:af:35:c1:e3:88:cd:93:90: 90:5e:ea:55:f0:7e:40:22:84:14:77:46:b6:cb:0a: cc:c3:86:00:01:23:eb:71:a4:89:d2:3f:11:89:94: de:24:9e:f7:ad:f4:e2:47:fe:18:af:23:20:93:18: 78:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:9B:50:81:48:32:6F:6A:B8:CC:39:4B:50:32:0B:2C:02:D1:0D:2C X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:b9:70:4b:36:97:34:80:3e:86:31:0a:bf:4c:e5:9b:41:1f: 6b:e9:e2:20:c2:85:bf:38:03:53:04:dc:57:e0:6d:50:b2:07: 5c:3b:29:ca:72:38:20:b2:13:d4:d5:52:b0:e6:33:26:4a:f4: 52:e7:c2:4c:4d:08:fb:b3:15:40:8e:e0:62:9a:45:01:0c:04: 24:a9:28:f1:f7:27:36:c7:0f:23:7a:43:61:83:81:88:f2:ac: fe:f7:f1:46:ef:cd:ca:68:47:de:93:35:34:86:5d:0e:55:7d: 73:77:ec:b2:f7:5b:f1:19:37:cc:45:13:ed:41:a7:9b:09:1f: 25:ff:8c:5e:ad:a7:8a:84:d8:79:d7:3a:47:4b:82:f1:18:13: 1a:4c:f0:8c:6c:c9:bc:ae:17:f8:49:d5:a6:87:75:7e:0f:cc: 23:96:5b:d9:be:a2:62:c3:9c:4c:bd:6c:bb:af:fe:52:fc:86: da:4f:ae:64:ca:7d:c9:17:f8:e4:a5:a4:78:6d:95:c3:d1:27: ee:b4:b6:95:33:d4:b3:dd:a1:74:5d:b0:af:01:98:40:ed:0a: 12:f4:bc:e9:c7:93:50:32:1b:71:90:85:ec:da:96:1e:cc:f7: 40:09:b1:bb:4f:0d:84:6c:08:32:fd:9e:39:6c:7a:26:b9:93: 97:5a:77:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjUwNzAyMTU1MTA0WhcNMjUwNzA5MTU1MTA0WjAYMRYwFAYD VQQDEw02ODY1NTU2OS0yYTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlouk3KFirRh0LA+eveTpflHeICY0ow7vQa6yyx8sTaTSKtmkcLIKYYJTC2LN NiPPSQ9KN+T37EuriNvjBp/W4JnslxcHpPaE2gtCz8yy2jkGD/pDzNdUHkaMN8MS faXS2YCa0JQA+7lnrE0XllIULDMWQdCaZDejVZWvKNIhjlHmIk464fjiD1WHdqnx UW9xTxs5QCd8xyepScw5X9/KS6aJw75rO3OfzhT6g6llb8qd3nYDa0G0bCXD8kei T4dGr3bTCkLyF0FArzXB44jNk5CQXupV8H5AIoQUd0a2ywrMw4YAASPrcaSJ0j8R iZTeJJ73rfTiR/4YryMgkxh4AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2bUIFI Mm9quMw5S1AyCywC0Q0sMB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjuXBLNpc0gD6GMQq/TOWbQR9r6eIgwoW/OANTBNxX4G1QsgdcOynK cjggshPU1VKw5jMmSvRS58JMTQj7sxVAjuBimkUBDAQkqSjx9yc2xw8jekNhg4GI 8qz+9/FG783KaEfekzU0hl0OVX1zd+yy91vxGTfMRRPtQaebCR8l/4xeraeKhNh5 1zpHS4LxGBMaTPCMbMm8rhf4SdWmh3V+D8wjllvZvqJiw5xMvWy7r/5S/IbaT65k yn3JF/jkpaR4bZXD0SfutLaVM9Sz3aF0XbCvAZhA7QoS9Lzpx5NQMhtxkIXs2pYe zPdACbG7Tw2EbAgy/Z45bHomuZOXWncC -----END CERTIFICATE-----Generated at Thu Jul 3 13:24:53 2025 by rpki-client