$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: 9wfnqdNskyXJN8bY+S4NmdSaDa+hA1h4g2rK5E9lugg= Subject key identifier: 72:4E:21:2D:31:17:BB:6D:53:63:B0:70:8E:A9:65:48:45:1A:E4:48 Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 0755 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 0755 Signing time: Mon 20 Oct 2025 14:52:52 +0000 Manifest this update: Mon 20 Oct 2025 14:52:51 +0000 Manifest next update: Mon 27 Oct 2025 14:52:51 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: 0jD2syNBNEwuY4OdyhmlFgtNFPgkrDOGZVn6zzLGNzk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1877 (0x755) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: Oct 20 14:52:51 2025 GMT Not After : Oct 27 14:52:51 2025 GMT Subject: CN=68f64cc3-e9d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:67:de:3b:a0:7c:b8:1c:d0:3a:8b:7a:88:3d: 87:98:b2:ed:f3:46:1d:5a:7e:f9:36:52:5d:3a:5f: c3:4a:53:07:fa:a6:86:b6:0c:19:49:f7:b5:50:01: 60:60:95:c9:68:5e:6d:c0:03:5e:95:9b:a1:6e:c7: 97:74:91:cf:d2:59:c5:ef:71:89:cb:9a:16:f4:99: bc:b9:6f:bd:c3:62:b7:ce:8c:f4:c9:56:c8:41:bd: a0:68:6a:78:b1:a8:09:54:06:e0:7f:a5:e2:22:86: 23:16:f7:af:99:ff:14:1e:0a:a6:a3:d0:7f:93:51: 03:59:95:38:22:d3:a9:dc:52:02:4f:e1:1b:37:4c: 9f:60:3e:3b:a1:9e:6e:89:68:f3:36:91:20:0f:3b: 95:71:3f:69:0d:9a:28:40:f2:74:1a:29:80:1c:d6: 1b:b8:2f:06:ab:ca:98:7c:27:df:0a:82:a0:2d:4e: 1a:1e:96:6c:20:37:83:94:6f:d6:2a:c6:ab:97:f5: 96:b5:78:1d:fe:45:06:ea:da:da:11:22:85:7a:49: 3f:4a:e3:8f:c8:88:5e:1a:c7:a5:51:8e:55:5f:04: c4:d8:be:d8:96:b6:67:a3:9b:30:33:a8:e0:d5:33: 60:d2:a6:01:14:90:a7:59:a9:01:04:ee:39:82:03: 31:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:4E:21:2D:31:17:BB:6D:53:63:B0:70:8E:A9:65:48:45:1A:E4:48 X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ae:80:45:ea:7b:75:bb:79:81:a9:cb:c0:f6:cf:bf:2a:33: b3:da:00:86:14:6e:34:d9:e5:88:d7:d9:54:d8:41:fc:ab:93: b3:40:45:88:28:ce:86:b7:10:ea:32:2b:19:23:7e:d0:37:6a: 0e:4a:ca:d0:41:96:54:cc:21:62:8d:18:33:23:f7:91:f9:58: 27:5c:ff:f4:c2:9d:10:54:70:a2:25:d9:9f:2f:dd:78:6f:f5: cc:88:8c:4b:e5:d0:aa:72:d0:e6:0f:ee:db:02:6b:85:10:a4: 5b:65:08:d2:6f:9f:3a:dd:a1:e5:d4:61:8d:ca:01:2b:8b:7f: 50:6f:31:fa:be:68:f6:0e:2b:82:73:dd:83:6a:bf:03:8f:3f: f2:36:99:81:78:f0:05:8c:4a:01:a0:85:58:78:74:05:7a:35: ea:0b:c8:37:85:45:7a:4a:d3:9a:b1:85:83:c6:8e:c5:b0:01: 39:5c:f4:da:12:58:53:da:22:fb:2c:11:ee:f1:3d:c3:af:38: 48:0f:02:90:8b:fc:f8:15:58:3a:5e:ff:cf:1b:6b:c3:93:b9: 56:ba:90:2e:d7:57:07:38:9b:0c:17:ad:a1:9d:ad:87:9b:e9: 0f:ff:3f:b3:af:fd:13:62:dd:05:13:70:0c:ba:d5:47:97:e6: 90:b4:3a:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjUxMDIwMTQ1MjUxWhcNMjUxMDI3MTQ1MjUxWjAYMRYwFAYD VQQDEw02OGY2NGNjMy1lOWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42feO6B8uBzQOot6iD2HmLLt80YdWn75NlJdOl/DSlMH+qaGtgwZSfe1UAFg YJXJaF5twANelZuhbseXdJHP0lnF73GJy5oW9Jm8uW+9w2K3zoz0yVbIQb2gaGp4 sagJVAbgf6XiIoYjFvevmf8UHgqmo9B/k1EDWZU4ItOp3FICT+EbN0yfYD47oZ5u iWjzNpEgDzuVcT9pDZooQPJ0GimAHNYbuC8Gq8qYfCffCoKgLU4aHpZsIDeDlG/W Ksarl/WWtXgd/kUG6traESKFekk/SuOPyIheGselUY5VXwTE2L7YlrZno5swM6jg 1TNg0qYBFJCnWakBBO45ggMxPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJOIS0x F7ttU2OwcI6pZUhFGuRIMB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRroBF6nt1u3mBqcvA9s+/KjOz2gCGFG402eWI19lU2EH8q5OzQEWI KM6GtxDqMisZI37QN2oOSsrQQZZUzCFijRgzI/eR+VgnXP/0wp0QVHCiJdmfL914 b/XMiIxL5dCqctDmD+7bAmuFEKRbZQjSb5863aHl1GGNygEri39QbzH6vmj2DiuC c92Dar8Djz/yNpmBePAFjEoBoIVYeHQFejXqC8g3hUV6StOasYWDxo7FsAE5XPTa ElhT2iL7LBHu8T3DrzhIDwKQi/z4FVg6Xv/PG2vDk7lWupAu11cHOJsMF62hna2H m+kP/z+zr/0TYt0FE3AMutVHl+aQtDrI -----END CERTIFICATE-----Generated at Tue Oct 21 15:10:01 2025 by rpki-client