$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: nCgwL2TRsRSBZSUIvF2Yue3f8vDxJhKQufEgj2LW2Xg= Subject key identifier: 2A:C5:06:AA:8F:2D:67:9F:55:89:F1:9B:8E:79:41:00:7F:FE:1D:B2 Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 34AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 34AB Signing time: Fri 22 Aug 2025 15:05:45 +0000 Manifest this update: Fri 22 Aug 2025 15:05:44 +0000 Manifest next update: Fri 29 Aug 2025 15:05:44 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: DXr1XwSQzsxvH9+pZag70UFql2c2MkYhdp99+dlECtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:05:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13483 (0x34ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Aug 22 15:05:44 2025 GMT Not After : Aug 29 15:05:44 2025 GMT Subject: CN=68a88749-a663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e5:07:00:b3:b2:b8:e5:78:06:73:9a:e3:c9: 35:6b:f4:98:6e:9b:49:cc:ea:39:da:73:80:16:82: d0:c9:35:73:5b:2f:b4:e5:cf:42:b0:77:d3:f3:79: 2e:9f:e2:15:18:b0:bc:18:70:0b:d6:3e:f4:b7:b6: 8a:2c:79:15:38:e7:a9:7b:b5:ff:37:31:89:f7:a7: e3:e6:75:d7:67:c9:5a:1a:69:33:0e:bd:7a:e2:9b: a4:df:f8:eb:05:16:48:c5:b1:2a:31:05:dd:0e:8f: 2c:ae:26:79:39:bb:01:34:62:9c:46:fa:7e:f6:a6: be:43:e6:a7:70:18:9b:38:b6:7a:f1:15:c2:d3:a7: 21:86:21:78:74:5f:ee:fd:92:df:a8:b6:b9:1e:18: 32:ba:a8:9c:74:0a:9f:25:a7:7f:dd:c5:d8:7d:5c: 0b:a2:18:33:fa:3a:6a:34:d3:d1:09:2c:af:17:d2: 94:cf:8c:e6:78:15:95:08:10:b8:dc:88:76:6e:76: 78:f0:30:7d:22:41:27:be:99:0b:28:13:cb:88:a3: 04:54:44:7f:de:89:5b:f1:5c:22:aa:7b:2c:cf:85: b7:b2:83:5a:db:8b:c0:6f:70:a6:b9:dd:cf:d8:27: 26:ab:78:ad:7e:4b:76:9e:b0:54:fe:18:af:e4:65: 90:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C5:06:AA:8F:2D:67:9F:55:89:F1:9B:8E:79:41:00:7F:FE:1D:B2 X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:33:37:6f:dd:7c:ac:2d:1d:74:e2:41:06:9b:4f:1f:3c:20: 4b:a9:ae:b6:90:9a:69:a6:b4:29:22:3f:59:d7:32:85:26:48: 9d:52:e9:a9:29:6e:1a:d3:41:e5:49:e5:71:c9:08:9c:d3:2e: db:be:69:45:49:3e:62:58:d2:f7:3a:c4:09:87:8d:e5:21:50: 1b:ce:52:cd:59:96:7b:41:0d:4e:ab:12:70:3d:31:3f:db:00: 40:0f:7e:b3:9a:f4:90:d0:a7:c2:24:7c:c4:08:0d:a8:40:74: 54:35:c3:dc:ac:a7:74:a9:48:32:be:48:92:0f:d8:24:c5:ad: 7f:44:81:d3:15:fd:0f:9c:d6:79:46:2a:ee:c3:79:d2:e1:5f: d7:98:b2:de:93:c6:c1:cf:13:2d:a7:5a:cf:09:a6:58:5c:ab: e3:1d:ed:85:59:1f:55:79:30:2e:2c:c3:3f:3c:bd:78:ec:18: a1:02:c1:9e:ba:a1:84:3b:16:53:c2:e1:f3:86:a1:3d:52:c1: b1:ea:d8:bb:ec:eb:7f:32:fe:a9:a7:37:f4:e1:f3:05:d6:0f: 03:65:de:7e:27:59:c9:86:8f:3a:56:83:19:60:32:df:74:fb: ef:cd:fb:52:83:1d:89:68:cb:d4:60:83:ad:09:02:c8:b8:5f: 47:38:aa:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjUwODIyMTUwNTQ0WhcNMjUwODI5MTUwNTQ0WjAYMRYwFAYD VQQDEw02OGE4ODc0OS1hNjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eUHALOyuOV4BnOa48k1a/SYbptJzOo52nOAFoLQyTVzWy+05c9CsHfT83ku n+IVGLC8GHAL1j70t7aKLHkVOOepe7X/NzGJ96fj5nXXZ8laGmkzDr164puk3/jr BRZIxbEqMQXdDo8sriZ5ObsBNGKcRvp+9qa+Q+ancBibOLZ68RXC06chhiF4dF/u /ZLfqLa5HhgyuqicdAqfJad/3cXYfVwLohgz+jpqNNPRCSyvF9KUz4zmeBWVCBC4 3Ih2bnZ48DB9IkEnvpkLKBPLiKMEVER/3olb8Vwiqnssz4W3soNa24vAb3Cmud3P 2Ccmq3itfkt2nrBU/hiv5GWQCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrFBqqP LWefVYnxm455QQB//h2yMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJMzdv3XysLR104kEGm08fPCBLqa62kJppprQpIj9Z1zKFJkidUump KW4a00HlSeVxyQic0y7bvmlFST5iWNL3OsQJh43lIVAbzlLNWZZ7QQ1OqxJwPTE/ 2wBAD36zmvSQ0KfCJHzECA2oQHRUNcPcrKd0qUgyvkiSD9gkxa1/RIHTFf0PnNZ5 Riruw3nS4V/XmLLek8bBzxMtp1rPCaZYXKvjHe2FWR9VeTAuLMM/PL147BihAsGe uqGEOxZTwuHzhqE9UsGx6ti77Ot/Mv6ppzf04fMF1g8DZd5+J1nJho86VoMZYDLf dPvvzftSgx2JaMvUYIOtCQLIuF9HOKoW -----END CERTIFICATE-----Generated at Sat Aug 23 15:17:48 2025 by rpki-client