$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft File: MGSQ23RcleyGYUmf_IJkZnumf4o.mft (raw, json) Hash identifier: L0vruwpw1Af7Wqdz8jfGwOw7M7gMiXtI1XEmhwV87yQ= Subject key identifier: 92:C4:3B:5C:3A:AE:28:46:B9:77:C4:4C:02:9D:DB:47:3C:5F:9E:99 Authority key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A Certificate issuer: /CN=A91CE7A4/serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft Manifest number: 77 Signing time: Sat 23 Aug 2025 07:01:38 +0000 Manifest this update: Sat 23 Aug 2025 07:01:37 +0000 Manifest next update: Sat 30 Aug 2025 07:01:37 +0000 Files and hashes: 1: MGSQ23RcleyGYUmf_IJkZnumf4o.crl (hash: +cl1Z6a4nEbfG5jW4AhTVm0W8XUL7uP6CC/sa3gb4lQ=) 2: 19C407C0CC1011EFBC7E0050C4F9AE02.roa (hash: 0uD06YfXP8jJiypkQtgg/+0Dg/DOv6s8Gpjo5ybB4rE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Validity Not Before: Aug 23 07:01:37 2025 GMT Not After : Aug 30 07:01:37 2025 GMT Subject: CN=68a96752-225a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2a:fb:62:1f:65:70:63:7d:66:9d:78:4f:a3: 03:89:49:7c:5e:7d:30:f3:88:42:93:0b:df:6f:45: 8c:51:42:c8:41:64:a1:a6:a9:0c:1a:fc:b5:cb:c3: 4f:0c:ad:ba:c0:a3:4e:39:28:d6:d4:0a:9e:b6:ee: 35:06:99:40:d1:a3:86:8c:0f:c2:37:c1:c0:6b:7e: c2:fd:b9:23:23:b2:d8:ea:52:e1:b4:66:ff:3d:b2: 09:2a:25:97:95:61:b7:27:65:df:48:eb:08:2e:e0: d1:1a:f1:71:b1:08:80:5d:74:02:b9:34:d1:37:10: 9f:1c:0e:33:a5:e5:af:dc:3e:fc:77:30:41:f8:90: 82:cd:06:7b:fb:b0:14:70:1e:dc:cb:ac:52:67:59: 32:01:36:6f:43:ba:21:f8:4d:bd:fb:69:86:53:eb: 57:48:f3:64:6d:e3:d0:92:f0:b9:e1:2d:e7:70:28: aa:d1:53:1e:c8:87:09:6b:4a:3b:fb:7e:84:77:16: e8:b0:35:5e:70:ec:94:62:fe:1c:2c:14:46:9e:6f: 64:a3:b2:1b:34:d7:61:65:24:b2:56:1e:fd:6d:4f: 49:ec:5b:ec:4e:7b:90:83:15:67:c7:6d:5f:f5:f0: 6b:b0:b9:de:46:e0:97:ef:02:70:85:f0:f6:ff:50: e6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C4:3B:5C:3A:AE:28:46:B9:77:C4:4C:02:9D:DB:47:3C:5F:9E:99 X509v3 Authority Key Identifier: keyid:30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:b8:9c:6d:cd:54:9c:ce:3b:9c:42:2c:ed:46:9d:17:2c:15: 58:ae:77:2b:32:b5:63:95:6e:fa:03:26:ec:78:4b:19:5c:89: c1:c3:60:43:a5:fd:e0:4e:08:80:f5:31:1d:bd:80:10:e1:e3: be:07:55:0a:21:f1:09:74:4c:5f:fd:fa:b2:23:f2:11:9d:fb: 9e:fa:8f:66:63:23:70:e5:04:51:89:85:b4:dd:4b:fb:16:c4: 57:8c:a3:cc:68:86:8d:ca:39:bd:25:90:06:06:3e:9e:60:57: ad:98:7c:80:7a:16:ae:80:05:ca:9d:d3:83:80:e9:21:5e:c3: 24:37:2b:45:f4:a0:10:52:63:fc:29:6b:c8:bd:36:f8:d0:c7: da:8d:b0:8f:21:9b:ed:17:ce:ef:8c:d6:06:8f:0c:71:ec:76: dc:bd:1f:c9:e5:a8:0b:84:9e:c8:e7:91:5e:1e:26:d1:81:24: 4e:ac:f2:89:cc:b6:47:09:b3:ca:d6:81:31:fe:1e:14:93:79: 54:8b:3a:4c:c6:1c:18:87:92:88:df:68:b6:4b:3e:6e:cb:df: e3:a6:07:03:f0:e6:10:7b:5b:ea:d0:06:01:9f:48:9c:28:92: 5c:a3:96:df:c7:ea:5f:33:27:09:93:12:35:a2:f4:2c:19:cf: fd:42:21:65 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTdBNDExMC8GA1UEBRMoMzA2NDkwREI3NDVDOTVFQzg2NjE0OTlGRkM4MjY0NjY3 QkE2N0Y4QTAeFw0yNTA4MjMwNzAxMzdaFw0yNTA4MzAwNzAxMzdaMBgxFjAUBgNV BAMTDTY4YTk2NzUyLTIyNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnKvtiH2VwY31mnXhPowOJSXxefTDziEKTC99vRYxRQshBZKGmqQwa/LXLw08M rbrAo045KNbUCp627jUGmUDRo4aMD8I3wcBrfsL9uSMjstjqUuG0Zv89sgkqJZeV YbcnZd9I6wgu4NEa8XGxCIBddAK5NNE3EJ8cDjOl5a/cPvx3MEH4kILNBnv7sBRw HtzLrFJnWTIBNm9DuiH4Tb37aYZT61dI82Rt49CS8LnhLedwKKrRUx7IhwlrSjv7 foR3FuiwNV5w7JRi/hwsFEaeb2Sjshs012FlJLJWHv1tT0nsW+xOe5CDFWfHbV/1 8Guwud5G4JfvAnCF8Pb/UOYvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUksQ7XDqu KEa5d8RMAp3bRzxfnpkwHwYDVR0jBBgwFoAUMGSQ23RcleyGYUmf/IJkZnumf4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFN0E0L0I4OTBERkQyQ0Mw RjExRUZBMjc4RkQ0Q0M0RjlBRTAyL01HU1EyM1JjbGV5R1lVbWZfSUprWm51bWY0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTUdTUTIzUmNsZXlHWVVtZl9JSmtabnVtZjRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF N0E0L0I4OTBERkQyQ0MwRjExRUZBMjc4RkQ0Q0M0RjlBRTAyL01HU1EyM1JjbGV5 R1lVbWZfSUprWm51bWY0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJO4nG3NVJzOO5xCLO1GnRcsFViudysytWOVbvoDJux4SxlcicHDYEOl /eBOCID1MR29gBDh474HVQoh8Ql0TF/9+rIj8hGd+576j2ZjI3DlBFGJhbTdS/sW xFeMo8xoho3KOb0lkAYGPp5gV62YfIB6Fq6ABcqd04OA6SFewyQ3K0X0oBBSY/wp a8i9NvjQx9qNsI8hm+0Xzu+M1gaPDHHsdty9H8nlqAuEnsjnkV4eJtGBJE6s8onM tkcJs8rWgTH+HhSTeVSLOkzGHBiHkojfaLZLPm7L3+OmBwPw5hB7W+rQBgGfSJwo klyjlt/H6l8zJwmTEjWi9CwZz/1CIWU= -----END CERTIFICATE-----Generated at Sat Aug 23 14:13:24 2025 by rpki-client