$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft File: MZdALMHUBvlwfS4iBDY7wNE8Apk.mft (raw, json) Hash identifier: 86He2TqQnx0gE/bA6gmBrV2WcMhsF8BnWABWX2yU5PQ= Subject key identifier: 21:05:E6:F9:AB:17:B9:64:8D:0A:B7:DD:47:C9:13:24:E0:C5:C7:93 Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 Certificate issuer: /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Certificate serial: 03CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft Manifest number: 03CB Signing time: Sat 23 Aug 2025 00:50:59 +0000 Manifest this update: Sat 23 Aug 2025 00:50:58 +0000 Manifest next update: Sat 30 Aug 2025 00:50:58 +0000 Files and hashes: 1: MZdALMHUBvlwfS4iBDY7wNE8Apk.crl (hash: n7OQnLJemJN39CM4bTCl1CkV/6ETFuliG5VV41IgGrU=) 2: 751D2C1A98E611EC849D155FC4F9AE02.roa (hash: CkImo8IsUmsaya0jHXM103+CNWFzYVltZI4TafvBrlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 975 (0x3cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F479C, serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Validity Not Before: Aug 23 00:50:58 2025 GMT Not After : Aug 30 00:50:58 2025 GMT Subject: CN=68a91073-40a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:35:e2:55:6f:fe:c3:79:66:ac:70:97:aa:e8: 62:19:8a:a2:41:78:a0:63:d0:fc:0b:3c:70:a9:cc: 35:8c:b8:f5:a1:ce:5f:43:9f:7a:c5:02:c8:43:4c: 57:81:af:14:39:ea:d0:00:b8:54:3e:8c:8a:f7:ec: 83:ef:5e:3c:ae:0f:b0:39:bb:cd:f6:64:a5:32:e4: f5:d3:b8:08:48:21:d1:97:6b:18:e2:f4:62:10:c0: a2:2a:74:18:a1:04:e0:07:df:70:97:e7:b4:99:77: a6:0d:56:17:0d:d0:51:45:92:77:01:18:99:8b:40: a1:07:59:4d:17:06:24:75:c9:85:1d:6b:8f:09:dc: 0c:d2:26:15:ad:7b:29:2b:21:4d:0c:ff:20:38:df: 31:fa:9f:35:51:d8:69:c7:79:ba:2c:e0:49:61:be: 39:85:73:76:e1:7f:0d:23:ca:b7:dc:ca:93:e4:c2: 68:62:fc:2a:5a:88:7b:56:80:a7:4f:e9:93:0d:18: 67:04:51:52:f7:f1:43:3d:bd:f4:7e:73:de:a4:78: 32:d8:95:73:15:ff:c1:0b:6b:07:74:ec:e2:c6:3e: b2:78:fe:97:ff:af:7e:60:39:04:59:cf:6d:e6:f5: 3b:4b:75:7b:fa:29:a1:7b:51:78:c6:46:b8:60:25: 68:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:05:E6:F9:AB:17:B9:64:8D:0A:B7:DD:47:C9:13:24:E0:C5:C7:93 X509v3 Authority Key Identifier: keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:00:63:5a:e9:be:bc:d8:03:f3:fd:00:12:7c:e6:44:9a:8b: 4e:0b:7f:21:fe:10:2e:ad:56:74:43:94:61:68:1c:fa:32:38: 0b:9b:42:ef:c6:bd:fe:77:1f:c4:a0:63:67:f4:50:38:e9:d4: a5:0f:06:9e:71:60:6a:c0:87:59:d9:87:5a:d3:12:98:d0:07: b9:50:57:e6:fe:1c:6b:e1:75:e8:eb:3f:e4:d7:f0:a5:d0:ac: 7e:38:cf:45:0c:f5:97:3a:af:5d:34:af:dd:a8:54:80:99:ae: 0f:8c:2e:08:23:c1:55:ce:ba:cc:c5:0c:dd:d5:8f:61:8f:20: db:f9:45:e7:66:e7:6b:bf:1f:e1:0a:b6:fc:6e:77:4d:9b:17: 93:a1:1f:61:03:54:85:d6:b3:04:4f:1e:4b:d9:f0:ab:71:8a: ee:80:dc:04:ff:01:a4:bb:0a:7e:97:75:0d:fa:ab:3d:b8:c5: 5c:39:d0:d9:70:67:33:e3:1a:86:87:79:3c:d8:e7:48:b9:db: 15:d7:bd:80:c6:3d:0a:a3:e7:32:05:1d:7f:90:94:a4:7f:34: 76:7d:3b:d0:d9:76:0a:9b:2d:26:5c:c0:cb:d2:00:83:f6:38: 2c:18:c4:a0:37:93:87:f6:ab:43:0e:f3:c1:a0:97:96:a1:d7: 8d:8a:6c:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3OUMxMTAvBgNVBAUTKDMxOTc0MDJDQzFENDA2Rjk3MDdEMkUyMjA0MzYzQkMw RDEzQzAyOTkwHhcNMjUwODIzMDA1MDU4WhcNMjUwODMwMDA1MDU4WjAYMRYwFAYD VQQDEw02OGE5MTA3My00MGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTXiVW/+w3lmrHCXquhiGYqiQXigY9D8Czxwqcw1jLj1oc5fQ596xQLIQ0xX ga8UOerQALhUPoyK9+yD7148rg+wObvN9mSlMuT107gISCHRl2sY4vRiEMCiKnQY oQTgB99wl+e0mXemDVYXDdBRRZJ3ARiZi0ChB1lNFwYkdcmFHWuPCdwM0iYVrXsp KyFNDP8gON8x+p81Udhpx3m6LOBJYb45hXN24X8NI8q33MqT5MJoYvwqWoh7VoCn T+mTDRhnBFFS9/FDPb30fnPepHgy2JVzFf/BC2sHdOzixj6yeP6X/69+YDkEWc9t 5vU7S3V7+imhe1F4xka4YCVoCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEF5vmr F7lkjQq33UfJEyTgxceTMB8GA1UdIwQYMBaAFDGXQCzB1Ab5cH0uIgQ2O8DRPAKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDc5Qy8zMkJGODUwRTk4 RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2bHdmUzRpQkRZN3dORThB cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDc5Qy8zMkJGODUwRTk4RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2 bHdmUzRpQkRZN3dORThBcGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuAGNa6b682APz/QASfOZEmotOC38h/hAurVZ0Q5RhaBz6MjgLm0Lv xr3+dx/EoGNn9FA46dSlDwaecWBqwIdZ2Yda0xKY0Ae5UFfm/hxr4XXo6z/k1/Cl 0Kx+OM9FDPWXOq9dNK/dqFSAma4PjC4II8FVzrrMxQzd1Y9hjyDb+UXnZudrvx/h Crb8bndNmxeToR9hA1SF1rMETx5L2fCrcYrugNwE/wGkuwp+l3UN+qs9uMVcOdDZ cGcz4xqGh3k82OdIudsV172Axj0Ko+cyBR1/kJSkfzR2fTvQ2XYKmy0mXMDL0gCD 9jgsGMSgN5OH9qtDDvPBoJeWodeNimxK -----END CERTIFICATE-----Generated at Sun Aug 24 00:19:34 2025 by rpki-client