$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: zP/fgklton/Ehb1XSz8OCzRTtEgUQDOGTH/P77dixFo= Subject key identifier: C8:C0:CD:0D:6E:90:FE:FB:B6:00:71:46:32:08:3E:1C:EF:1C:CE:F5 Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 071D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 071D Signing time: Fri 04 Jul 2025 14:55:40 +0000 Manifest this update: Fri 04 Jul 2025 14:55:39 +0000 Manifest next update: Fri 11 Jul 2025 14:55:39 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: +yskDv5oGBsMZKLNq+CfzAWhh2W+tXktoZ6LhIuP3E0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1821 (0x71d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: Jul 4 14:55:39 2025 GMT Not After : Jul 11 14:55:39 2025 GMT Subject: CN=6867eb6c-055a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c9:3d:61:1e:28:13:26:aa:44:d0:a9:b7:fb: ed:18:ec:61:50:08:17:57:5a:78:f6:6c:af:d3:e2: 5d:a6:8a:76:b2:aa:e2:bd:89:a8:8c:b6:7b:85:dc: 4c:31:0d:09:f3:c8:63:34:e3:fd:5d:bb:35:dd:29: a2:14:d9:ee:a8:87:6a:b8:9f:91:3f:69:ff:9d:22: aa:7b:5d:20:c5:19:7e:0e:e0:4c:21:ba:2d:34:f4: 32:35:ef:43:f3:23:10:7b:63:9e:fb:34:f0:0e:45: 25:da:06:3d:12:5b:c0:80:41:28:6a:d5:0e:a1:9e: 33:b0:81:ae:0c:7c:93:f0:c1:8e:23:cb:a8:ab:50: 13:c7:c4:9a:df:30:2a:d4:47:03:05:9c:92:9f:78: 39:c1:f3:fc:1c:a7:f1:f0:87:ad:26:86:f3:55:c0: e4:9a:2c:02:b0:b4:17:65:cc:79:0e:ed:0e:4d:e0: b1:1f:aa:09:c0:6d:a0:4e:64:76:7d:21:18:c4:26: ce:c9:c8:3f:6d:fe:73:2a:a8:b3:3d:c0:88:81:4c: 5d:0f:39:1f:9f:34:3c:38:dd:ea:af:78:ec:b0:e5: 33:2b:6f:ed:3b:c2:ee:8f:f7:3d:a8:61:3a:28:72: 05:94:ed:c4:1e:09:78:9b:65:30:f1:83:60:74:84: d5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C0:CD:0D:6E:90:FE:FB:B6:00:71:46:32:08:3E:1C:EF:1C:CE:F5 X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:17:e8:c6:eb:e1:76:01:48:d2:ca:ab:a9:25:60:f0:df:ab: b4:e5:37:cc:31:76:9c:42:53:ca:e3:5e:cd:a7:d8:db:1d:e3: ef:7c:e5:90:09:83:23:fb:d0:a5:37:58:5b:b1:b9:50:34:d8: 9b:b1:47:fe:9c:fa:70:10:29:b0:9c:cf:e6:7e:a2:77:bd:f8: 2c:54:27:56:13:28:a5:d8:39:22:76:22:87:77:b7:bc:fb:a4: 6d:0a:5e:1b:48:87:d5:2d:24:c8:95:4c:9d:be:71:e3:ef:d4: 8e:be:a6:54:ff:83:0e:13:d2:85:68:f7:95:6b:42:0e:c5:22: 32:ff:03:7e:7f:e6:6a:f5:54:16:32:20:7d:fa:db:1e:d9:c1: ad:4d:21:d3:12:84:76:88:4e:5e:e3:cf:9d:80:18:7c:c6:9d: 56:e6:c5:08:54:dd:24:0f:33:25:4c:c6:ef:46:fd:09:30:62: 67:7a:e3:e5:1d:90:22:a5:7d:2d:f3:ad:41:8e:c3:c5:cc:c8: 5f:2c:71:e6:4b:b1:d7:54:b4:d6:7b:23:41:fd:2a:a7:38:89: 6f:e7:e1:9b:5d:2a:7f:cf:ed:6c:85:46:e2:ff:d8:18:09:c7: 99:1a:aa:c3:39:2c:40:e4:e7:14:ab:c6:b2:e3:60:c7:02:aa: 1b:40:07:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjUwNzA0MTQ1NTM5WhcNMjUwNzExMTQ1NTM5WjAYMRYwFAYD VQQDEw02ODY3ZWI2Yy0wNTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8k9YR4oEyaqRNCpt/vtGOxhUAgXV1p49myv0+Jdpop2sqrivYmojLZ7hdxM MQ0J88hjNOP9Xbs13SmiFNnuqIdquJ+RP2n/nSKqe10gxRl+DuBMIbotNPQyNe9D 8yMQe2Oe+zTwDkUl2gY9ElvAgEEoatUOoZ4zsIGuDHyT8MGOI8uoq1ATx8Sa3zAq 1EcDBZySn3g5wfP8HKfx8IetJobzVcDkmiwCsLQXZcx5Du0OTeCxH6oJwG2gTmR2 fSEYxCbOycg/bf5zKqizPcCIgUxdDzkfnzQ8ON3qr3jssOUzK2/tO8Luj/c9qGE6 KHIFlO3EHgl4m2Uw8YNgdITVdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjAzQ1u kP77tgBxRjIIPhzvHM71MB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqF+jG6+F2AUjSyqupJWDw36u05TfMMXacQlPK417Np9jbHePvfOWQ CYMj+9ClN1hbsblQNNibsUf+nPpwECmwnM/mfqJ3vfgsVCdWEyil2DkidiKHd7e8 +6RtCl4bSIfVLSTIlUydvnHj79SOvqZU/4MOE9KFaPeVa0IOxSIy/wN+f+Zq9VQW MiB9+tse2cGtTSHTEoR2iE5e48+dgBh8xp1W5sUIVN0kDzMlTMbvRv0JMGJneuPl HZAipX0t861BjsPFzMhfLHHmS7HXVLTWeyNB/SqnOIlv5+GbXSp/z+1shUbi/9gY CceZGqrDOSxA5OcUq8ay42DHAqobQAfX -----END CERTIFICATE-----Generated at Fri Jul 4 21:11:59 2025 by rpki-client