$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: YQsayQkDq/xLt4kC88moqsy8m03ZjuGCwMUQirSeSgQ= Subject key identifier: 15:9F:14:89:9F:F5:1C:F0:28:5D:76:B0:33:9C:9E:8F:E8:BE:48:CA Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: 98 Signing time: Tue 01 Jul 2025 07:04:21 +0000 Manifest this update: Tue 01 Jul 2025 07:04:20 +0000 Manifest next update: Tue 08 Jul 2025 07:04:20 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: CMWobAemhHONGAt/0aNcEK7N+7Udf0lspGVcqz30+oI=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: 7pF3uHzaE+Wewnte+bG2KwxN3eFFLWjZ6eq6MYtYcWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Jul 1 07:04:20 2025 GMT Not After : Jul 8 07:04:20 2025 GMT Subject: CN=68638875-8eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f2:90:20:27:27:6c:36:46:f7:d7:bd:34:bb: 8f:de:d3:a7:9b:61:41:30:c1:54:12:1a:b2:9a:a9: d6:78:ad:08:c1:d4:96:1e:a4:1b:81:b7:a1:50:95: 09:2c:72:87:63:48:a7:37:fe:50:30:e3:92:13:0b: b0:4a:71:43:ec:d3:75:2a:37:ff:79:0a:0e:59:eb: b8:6a:6a:38:2d:a9:ec:6e:2e:a3:10:f2:3c:a5:29: fb:a3:a8:03:71:02:6d:34:67:03:7a:46:4e:52:66: f9:8f:bf:4c:23:b4:da:aa:68:48:3f:c5:95:b1:2c: 36:89:26:f6:6d:a8:e8:b2:1e:97:be:88:af:05:df: a8:2d:e0:ba:0f:87:4a:6b:96:f8:80:2e:15:8a:8c: 0e:5d:42:65:48:0f:18:07:82:97:8f:bc:cb:71:98: 10:4f:5c:39:49:aa:9f:59:c4:cb:df:47:a0:dd:c0: 34:c5:71:73:0e:23:fb:d1:8c:ed:8b:bd:11:b5:94: 1c:55:95:2c:1d:da:a1:4f:2b:01:7b:91:97:a7:13: 51:08:f9:58:60:a9:74:27:2c:b7:ba:5d:c8:d0:4a: 5a:d2:37:2f:3c:aa:21:f7:06:62:0f:80:2a:40:5d: 7e:e1:bc:c7:b9:56:8e:d4:19:2b:7a:ee:f3:9b:65: 16:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:9F:14:89:9F:F5:1C:F0:28:5D:76:B0:33:9C:9E:8F:E8:BE:48:CA X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:71:b0:f2:4f:31:06:67:4f:0a:c9:73:e7:cf:02:71:e6:91: 28:d2:29:d6:a4:f6:8b:63:88:79:9a:2e:3d:c5:cb:0e:96:c9: 47:ee:0c:6b:1c:1c:3d:60:24:ec:80:3f:72:83:cf:d9:2f:ac: b3:9d:62:49:5a:c3:c3:b9:49:89:31:a4:db:c3:d1:9c:69:3b: 26:54:42:0f:e1:45:06:f1:04:bc:26:27:54:df:dc:86:c8:db: 33:23:cc:57:74:1d:f7:b1:da:27:16:6f:e6:f5:85:65:b3:c5: e6:05:58:f3:4f:11:b2:34:af:f6:0a:a0:cd:c6:57:bf:32:cd: 75:f7:70:2a:01:eb:83:cd:09:64:86:e5:8a:dd:08:2d:c5:21: 1b:f4:26:7d:00:68:8d:2b:ac:e2:64:f3:2f:88:ed:2f:ce:22: 0c:5c:28:01:07:62:d9:c2:8b:3b:d5:3d:ad:cd:87:b7:11:49: 70:a7:9c:aa:91:12:6a:1d:1e:41:af:b9:48:7b:43:e8:fd:7e: fa:c1:32:c2:e7:b0:24:8f:46:3d:3c:f0:01:d7:27:cc:51:47: dc:63:70:6c:4a:f5:da:91:5e:62:5f:b6:f1:ba:de:1e:de:21: 81:7b:fd:8a:27:ce:08:30:79:a3:ae:20:32:a7:c3:9c:b0:54: 6d:e5:fa:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDMyMTRFMjYwQTc4RjdEMTY3N0U4MzAxMzdDMTA2NTcz MDAzMUNGNjYwHhcNMjUwNzAxMDcwNDIwWhcNMjUwNzA4MDcwNDIwWjAYMRYwFAYD VQQDEw02ODYzODg3NS04ZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/KQICcnbDZG99e9NLuP3tOnm2FBMMFUEhqymqnWeK0IwdSWHqQbgbehUJUJ LHKHY0inN/5QMOOSEwuwSnFD7NN1Kjf/eQoOWeu4amo4Lansbi6jEPI8pSn7o6gD cQJtNGcDekZOUmb5j79MI7TaqmhIP8WVsSw2iSb2bajosh6XvoivBd+oLeC6D4dK a5b4gC4ViowOXUJlSA8YB4KXj7zLcZgQT1w5SaqfWcTL30eg3cA0xXFzDiP70Yzt i70RtZQcVZUsHdqhTysBe5GXpxNRCPlYYKl0Jyy3ul3I0Epa0jcvPKoh9wZiD4Aq QF1+4bzHuVaO1Bkreu7zm2UWfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWfFImf 9RzwKF12sDOcno/ovkjKMB8GA1UdIwQYMBaAFDIU4mCnj30Wd+gwE3wQZXMAMc9m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8yNzJCNEM3MDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZSWjM2REFUZkJCbGN3QXh6 MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8yNzJCNEM3MDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZS WjM2REFUZkJCbGN3QXh6MlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6cbDyTzEGZ08KyXPnzwJx5pEo0inWpPaLY4h5mi49xcsOlslH7gxr HBw9YCTsgD9yg8/ZL6yznWJJWsPDuUmJMaTbw9GcaTsmVEIP4UUG8QS8JidU39yG yNszI8xXdB33sdonFm/m9YVls8XmBVjzTxGyNK/2CqDNxle/Ms1193AqAeuDzQlk huWK3QgtxSEb9CZ9AGiNK6ziZPMviO0vziIMXCgBB2LZwos71T2tzYe3EUlwp5yq kRJqHR5Br7lIe0Po/X76wTLC57Akj0Y9PPAB1yfMUUfcY3BsSvXakV5iX7bxut4e 3iGBe/2KJ84IMHmjriAyp8OcsFRt5fpo -----END CERTIFICATE-----Generated at Tue Jul 1 16:47:15 2025 by rpki-client