$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: AhWCexavDcQ8VLM+LefbFX8cmisOkURJpKf2gGlKuAI= Subject key identifier: E9:71:0A:E2:1F:66:72:FB:B1:29:C9:E0:90:DC:F5:BD:5D:8A:1A:A1 Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 0736 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 0736 Signing time: Fri 22 Aug 2025 14:49:38 +0000 Manifest this update: Fri 22 Aug 2025 14:49:38 +0000 Manifest next update: Fri 29 Aug 2025 14:49:38 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: P9jhsZ9olZ7BKw/iuzcyGlznygOglp1FhBFx/eOzlrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1846 (0x736) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: Aug 22 14:49:38 2025 GMT Not After : Aug 29 14:49:38 2025 GMT Subject: CN=68a88382-0fea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:19:74:c0:fd:9f:56:ba:25:a1:b8:6a:ea:74: 2d:91:e1:4f:8a:35:71:cf:8b:08:9f:15:33:48:a4: d1:88:8f:8c:d8:21:cc:96:60:d2:9b:9a:d6:fa:5d: c3:3a:f5:13:21:9c:45:07:d5:44:7c:8e:72:6d:df: 2a:78:c2:b9:1e:40:b5:3f:64:4d:5b:de:c1:c2:1b: 90:c9:d4:5a:f7:03:3d:e6:e8:2e:df:41:97:71:84: 66:47:b2:14:3e:7b:d7:d4:4a:81:1e:92:e3:2a:b5: ba:43:0e:2f:c8:1d:e4:85:8e:bd:35:56:0e:67:dd: 3a:6c:e5:0b:aa:7b:30:8a:16:a6:04:54:7f:47:28: 5a:94:eb:24:0c:58:0e:06:a0:bc:4d:98:b7:59:9c: 38:72:0b:b4:53:19:ec:5e:67:e9:e0:72:05:b1:53: 0c:d6:f9:bd:4c:19:7c:eb:c2:84:55:f1:8f:4b:f1: e1:b3:7f:0a:ad:36:25:47:ba:e0:52:03:5b:65:3a: 84:c9:91:eb:7c:b4:9f:43:0f:bf:78:51:af:58:06: 4d:8d:0e:13:95:70:30:23:92:0b:ec:27:00:b4:d8: 44:59:04:be:ee:a1:a5:e5:29:0c:2a:d2:ef:3e:bd: 8b:5e:09:03:16:fa:b3:87:cb:2e:19:bf:73:e5:d1: 99:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:71:0A:E2:1F:66:72:FB:B1:29:C9:E0:90:DC:F5:BD:5D:8A:1A:A1 X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:5c:2b:8d:a5:2a:ae:5e:93:02:d6:df:cd:fb:8d:e6:57:79: e8:30:ae:d6:54:3a:c3:fe:61:55:ca:70:8e:80:16:29:25:71: a0:eb:c1:8d:91:91:f5:04:24:a3:63:d6:cb:ac:6d:dd:6c:18: 57:d7:91:3c:7f:a9:cf:1f:a9:3a:42:e0:11:bc:e4:98:fc:9b: 1d:6c:99:7b:3c:72:ca:c5:44:e8:f0:22:06:bd:dc:e3:7e:b2: 5e:2d:39:59:56:8d:63:9d:33:0a:03:a7:08:35:29:95:53:c7: cf:87:85:52:5c:dd:11:47:90:b2:f6:50:55:22:bc:ea:ad:8a: 6a:65:87:e4:78:9e:4e:e8:a1:fb:f5:20:f4:bd:dd:52:a1:62: c1:28:32:9c:df:2b:61:5d:c8:57:81:88:49:cb:e4:c4:9b:5e: 69:c7:0e:c0:97:cd:ca:4e:03:14:08:a7:66:35:1b:87:79:57: 13:ba:e7:55:4c:c0:78:ea:eb:3b:eb:57:3a:de:52:98:d5:61: be:78:ce:35:1a:67:8c:0b:06:f2:04:ad:88:ce:8d:ff:1b:a4: 56:25:d0:65:74:a9:90:19:c2:c9:c1:96:d4:b9:cf:49:f6:39: 12:67:31:4d:5f:48:c5:1f:02:f8:4a:5e:15:67:0a:64:41:8c: 60:74:3f:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjUwODIyMTQ0OTM4WhcNMjUwODI5MTQ0OTM4WjAYMRYwFAYD VQQDEw02OGE4ODM4Mi0wZmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxl0wP2fVrolobhq6nQtkeFPijVxz4sInxUzSKTRiI+M2CHMlmDSm5rW+l3D OvUTIZxFB9VEfI5ybd8qeMK5HkC1P2RNW97BwhuQydRa9wM95ugu30GXcYRmR7IU PnvX1EqBHpLjKrW6Qw4vyB3khY69NVYOZ906bOULqnswihamBFR/RyhalOskDFgO BqC8TZi3WZw4cgu0UxnsXmfp4HIFsVMM1vm9TBl868KEVfGPS/Hhs38KrTYlR7rg UgNbZTqEyZHrfLSfQw+/eFGvWAZNjQ4TlXAwI5IL7CcAtNhEWQS+7qGl5SkMKtLv Pr2LXgkDFvqzh8suGb9z5dGZdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlxCuIf ZnL7sSnJ4JDc9b1dihqhMB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuXCuNpSquXpMC1t/N+43mV3noMK7WVDrD/mFVynCOgBYpJXGg68GN kZH1BCSjY9bLrG3dbBhX15E8f6nPH6k6QuARvOSY/JsdbJl7PHLKxUTo8CIGvdzj frJeLTlZVo1jnTMKA6cINSmVU8fPh4VSXN0RR5Cy9lBVIrzqrYpqZYfkeJ5O6KH7 9SD0vd1SoWLBKDKc3ythXchXgYhJy+TEm15pxw7Al83KTgMUCKdmNRuHeVcTuudV TMB46us761c63lKY1WG+eM41GmeMCwbyBK2Izo3/G6RWJdBldKmQGcLJwZbUuc9J 9jkSZzFNX0jFHwL4Sl4VZwpkQYxgdD9l -----END CERTIFICATE-----Generated at Sat Aug 23 12:23:31 2025 by rpki-client