$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft File: MGSQ23RcleyGYUmf_IJkZnumf4o.mft (raw, json) Hash identifier: XSa8Y+/bILhGkAF4tgSMV//34DsC/oqHJ3QrPufvhLA= Subject key identifier: 16:2E:E5:1E:CB:69:AF:61:2C:E5:31:A9:24:A5:F3:C5:CE:40:E9:87 Authority key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A Certificate issuer: /CN=A91CE7A4/serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft Manifest number: 94 Signing time: Sun 19 Oct 2025 09:41:06 +0000 Manifest this update: Sun 19 Oct 2025 09:41:06 +0000 Manifest next update: Sun 26 Oct 2025 09:41:06 +0000 Files and hashes: 1: MGSQ23RcleyGYUmf_IJkZnumf4o.crl (hash: yOqC/1yn/I37kvFHyRJtZfP5uz8hwjmk9Vmu+ERsxa8=) 2: 19C407C0CC1011EFBC7E0050C4F9AE02.roa (hash: 0uD06YfXP8jJiypkQtgg/+0Dg/DOv6s8Gpjo5ybB4rE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Validity Not Before: Oct 19 09:41:06 2025 GMT Not After : Oct 26 09:41:06 2025 GMT Subject: CN=68f4b232-c5dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7c:5e:cf:79:a0:51:d9:40:13:84:d9:bb:e0: 49:80:27:b3:0e:55:6a:f9:92:65:a5:6d:0b:54:10: b9:8a:6a:1c:59:80:d8:b4:a2:e2:04:76:5f:34:64: 9d:bc:80:a1:d5:f5:1d:db:f2:ec:fb:a8:96:22:7c: 46:8a:22:7d:4f:04:a3:a4:42:ba:61:25:3b:e0:aa: 28:05:79:24:56:c4:43:4d:91:64:f2:62:a3:51:6d: ed:52:f3:25:28:38:43:1d:82:62:ee:4e:d8:af:e3: da:09:ed:ec:5d:85:a0:85:19:c5:bd:0f:27:39:77: ed:0a:fc:93:29:7a:20:ab:11:37:82:c5:a4:0f:9e: 26:d3:42:5e:97:50:ab:ae:42:be:77:f6:a4:d9:ed: 52:e1:9b:9b:fc:f8:91:20:f5:52:da:98:46:a0:4a: 2a:24:fe:c5:f8:37:bb:b0:a9:2c:4e:f3:dd:0d:3b: 5c:33:09:db:fd:e9:8d:b4:66:2e:e6:c7:2b:e3:fb: 97:f4:f4:46:03:6a:08:cc:40:41:de:6e:96:2d:32: 6e:da:52:0f:5d:e2:83:23:43:fc:a9:5e:50:3d:ac: 8f:19:c9:ab:31:29:fb:8b:e5:f4:cb:f2:22:4b:b1: a6:e9:50:65:1d:7b:62:6e:1c:23:d3:57:62:45:67: 53:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:2E:E5:1E:CB:69:AF:61:2C:E5:31:A9:24:A5:F3:C5:CE:40:E9:87 X509v3 Authority Key Identifier: keyid:30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:b8:aa:37:41:00:36:aa:6f:e9:90:be:fc:f6:fb:39:0a:ad: 0a:9c:29:51:bc:61:b3:c4:70:1f:06:11:39:12:ce:67:9a:73: 5a:9f:73:68:3c:48:04:51:0d:f9:26:e2:67:25:e4:a3:d7:66: 67:8c:6d:0f:20:da:d5:60:e4:1c:fd:f5:4d:4c:5d:f4:25:61: 4a:74:7c:81:f4:f1:dd:80:2f:e3:51:79:4e:ea:7c:9f:4b:98: b5:9f:08:a9:62:90:40:76:32:8e:94:f5:d0:67:0d:d7:42:9f: 38:df:84:66:7d:64:29:8c:41:45:39:6e:54:e3:3d:a6:0a:79: b6:85:5c:f0:ce:55:a1:e3:fa:63:eb:69:c1:cc:ed:6b:06:d9: ed:6d:a9:c6:da:27:af:3e:b5:48:26:84:c1:a9:72:3a:02:89: 4e:f0:49:c5:c9:de:db:11:cb:00:a1:4c:3f:89:9c:39:2f:2c: 7b:1e:99:bf:e7:27:fc:d5:8f:03:38:74:76:cc:19:03:4f:b9: 1f:df:ae:51:e5:17:61:0e:22:fb:9b:bf:ed:8a:66:2e:b4:73: 85:67:61:5c:53:0c:61:3d:88:a3:44:fa:fa:4f:60:23:66:5b: 72:e0:66:85:6e:a3:1a:90:ac:69:fa:4d:cc:30:9e:a7:45:54: 15:ef:a2:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U3QTQxMTAvBgNVBAUTKDMwNjQ5MERCNzQ1Qzk1RUM4NjYxNDk5RkZDODI2NDY2 N0JBNjdGOEEwHhcNMjUxMDE5MDk0MTA2WhcNMjUxMDI2MDk0MTA2WjAYMRYwFAYD VQQDEw02OGY0YjIzMi1jNWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3xez3mgUdlAE4TZu+BJgCezDlVq+ZJlpW0LVBC5imocWYDYtKLiBHZfNGSd vICh1fUd2/Ls+6iWInxGiiJ9TwSjpEK6YSU74KooBXkkVsRDTZFk8mKjUW3tUvMl KDhDHYJi7k7Yr+PaCe3sXYWghRnFvQ8nOXftCvyTKXogqxE3gsWkD54m00Jel1Cr rkK+d/ak2e1S4Zub/PiRIPVS2phGoEoqJP7F+De7sKksTvPdDTtcMwnb/emNtGYu 5scr4/uX9PRGA2oIzEBB3m6WLTJu2lIPXeKDI0P8qV5QPayPGcmrMSn7i+X0y/Ii S7Gm6VBlHXtibhwj01diRWdTJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYu5R7L aa9hLOUxqSSl88XOQOmHMB8GA1UdIwQYMBaAFDBkkNt0XJXshmFJn/yCZGZ7pn+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTdBNC9CODkwREZEMkND MEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xleUdZVW1mX0lKa1pudW1m NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HU1EyM1JjbGV5R1lVbWZfSUprWm51bWY0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTdBNC9CODkwREZEMkNDMEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xl eUdZVW1mX0lKa1pudW1mNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCquKo3QQA2qm/pkL789vs5Cq0KnClRvGGzxHAfBhE5Es5nmnNan3No PEgEUQ35JuJnJeSj12ZnjG0PINrVYOQc/fVNTF30JWFKdHyB9PHdgC/jUXlO6nyf S5i1nwipYpBAdjKOlPXQZw3XQp8434RmfWQpjEFFOW5U4z2mCnm2hVzwzlWh4/pj 62nBzO1rBtntbanG2ievPrVIJoTBqXI6AolO8EnFyd7bEcsAoUw/iZw5Lyx7Hpm/ 5yf81Y8DOHR2zBkDT7kf365R5RdhDiL7m7/timYutHOFZ2FcUwxhPYijRPr6T2Aj Zlty4GaFbqMakKxp+k3MMJ6nRVQV76JT -----END CERTIFICATE-----Generated at Tue Oct 21 12:01:02 2025 by rpki-client