$ rpki-client -vvf rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft File: MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft (raw, json) Hash identifier: rD1EReUwHAjAxMBcOvBa99eidQjOMXjwtEHW2KhnhVw= Subject key identifier: B1:A0:34:B8:F5:E3:44:E1:B1:42:7F:CE:B7:85:22:77:30:01:78:2C Authority key identifier: 31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF Certificate issuer: /CN=A91222CD/serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF Certificate serial: 1B43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft Manifest number: 1B42 Signing time: Sun 20 Jul 2025 16:18:35 +0000 Manifest this update: Sun 20 Jul 2025 16:18:35 +0000 Manifest next update: Sun 27 Jul 2025 16:18:35 +0000 Files and hashes: 1: MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl (hash: kbfY51KMHmuXRrfmfHSWTVCNkVDFs1Y+2nT3j4YcYuQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6979 (0x1b43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91222CD, serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF Validity Not Before: Jul 20 16:18:35 2025 GMT Not After : Jul 27 16:18:35 2025 GMT Subject: CN=687d16db-5a89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6e:f7:06:f0:3d:a4:19:23:00:63:ae:30:11: 04:0f:7a:fe:42:65:aa:35:9e:c0:e3:4c:2b:40:6d: 71:8c:91:a9:29:26:cc:d0:3d:ed:a0:c8:37:86:7d: 34:67:0c:2c:ad:ec:87:08:d5:35:a5:3d:c2:66:6d: 03:f5:df:31:22:b3:e3:9b:d1:1d:75:c8:7d:84:1b: 85:4b:fb:42:bc:48:07:72:a4:cc:b8:43:b2:b8:7f: 70:e1:35:33:fd:25:83:b9:45:80:fa:5e:69:e5:3c: 6b:bb:c5:76:3e:2d:56:20:0c:fc:ac:d8:4e:8a:e1: 29:79:34:e3:8c:15:8b:a4:a0:f0:9e:de:37:7e:6c: 80:4b:08:16:9c:b1:3a:d2:b9:91:79:03:a6:56:3c: e4:10:04:f5:d4:9a:b2:5a:02:b6:88:74:c5:1f:12: bd:fc:18:f8:5a:16:c0:ee:82:57:1b:7a:18:04:3e: 21:11:6c:2a:15:97:7e:e8:56:a7:16:1b:08:da:ef: e6:e9:ef:5e:65:9b:26:3e:c8:2d:48:39:c4:fd:21: 73:fb:9a:3c:31:80:db:47:92:da:a4:ea:a6:c3:cc: 1b:c8:90:07:36:28:9f:20:54:b9:b9:00:0d:27:1f: 5f:98:21:b9:a0:33:d1:fb:d7:48:51:d3:ed:36:40: 7c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A0:34:B8:F5:E3:44:E1:B1:42:7F:CE:B7:85:22:77:30:01:78:2C X509v3 Authority Key Identifier: keyid:31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:d7:98:82:e3:59:1d:6c:c1:53:29:67:6d:d5:b9:9c:71:d3: ca:2d:8f:ad:13:ea:02:85:4b:e7:a1:72:20:71:7c:7e:a2:4c: eb:e2:4a:45:da:dc:6d:15:b4:af:da:f2:29:dc:39:70:12:9d: af:d8:ac:a7:df:48:f8:7b:e2:37:66:a0:07:1b:7e:91:94:52: c9:34:92:a2:bb:9e:7d:a1:c5:f7:94:f9:29:85:62:91:ad:f0: e2:63:d4:76:23:b3:62:2c:15:28:bc:f5:3c:cd:df:37:f9:7d: 7b:7a:b9:a2:90:85:b6:db:08:7d:15:68:9d:67:fc:03:9d:1c: 8b:28:c0:cc:40:a0:c3:f4:1c:0f:f2:0a:f3:f8:31:57:9d:9a: 9c:7d:0c:ed:b5:bd:56:a0:1a:d6:33:b6:8b:5b:ac:41:28:95: a3:87:f7:85:90:92:02:02:7e:4f:e2:36:c8:35:6e:67:64:f2: c3:41:d9:f1:7e:cc:23:f2:3c:ac:92:3d:0b:d4:c4:1c:3e:b8: bf:10:e9:57:e6:13:ab:d1:db:45:bf:68:d1:82:a6:13:c5:7f: b6:29:f0:2d:ed:ac:13:c6:eb:72:45:80:bd:2d:a8:68:e9:e7: 3e:e1:49:60:3d:67:28:8c:f2:8d:a1:2d:86:db:d0:bf:d4:4f: 3f:b4:0e:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyQ0QxMTAvBgNVBAUTKDMxQjNEOTA0NTdEMUZERjgzQzM1NzRDQkQxN0ZDMjhC MkNERDU2RUYwHhcNMjUwNzIwMTYxODM1WhcNMjUwNzI3MTYxODM1WjAYMRYwFAYD VQQDEw02ODdkMTZkYi01YTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0G73BvA9pBkjAGOuMBEED3r+QmWqNZ7A40wrQG1xjJGpKSbM0D3toMg3hn00 ZwwsreyHCNU1pT3CZm0D9d8xIrPjm9Eddch9hBuFS/tCvEgHcqTMuEOyuH9w4TUz /SWDuUWA+l5p5Txru8V2Pi1WIAz8rNhOiuEpeTTjjBWLpKDwnt43fmyASwgWnLE6 0rmReQOmVjzkEAT11JqyWgK2iHTFHxK9/Bj4WhbA7oJXG3oYBD4hEWwqFZd+6Fan FhsI2u/m6e9eZZsmPsgtSDnE/SFz+5o8MYDbR5LapOqmw8wbyJAHNiifIFS5uQAN Jx9fmCG5oDPR+9dIUdPtNkB8pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGgNLj1 40ThsUJ/zreFIncwAXgsMB8GA1UdIwQYMBaAFDGz2QRX0f34PDV0y9F/woss3Vbv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjJDRC83RTMxMTVDODE2 NUExMUU3QjI3RjlCNDZDNEY5QUUwMi9NYlBaQkZmUl9mZzhOWFRMMFhfQ2l5emRW dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01iUFpCRmZSX2ZnOE5YVEwwWF9DaXl6ZFZ1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjJDRC83RTMxMTVDODE2NUExMUU3QjI3RjlCNDZDNEY5QUUwMi9NYlBaQkZmUl9m ZzhOWFRMMFhfQ2l5emRWdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa15iC41kdbMFTKWdt1bmccdPKLY+tE+oChUvnoXIgcXx+okzr4kpF 2txtFbSv2vIp3DlwEp2v2Kyn30j4e+I3ZqAHG36RlFLJNJKiu559ocX3lPkphWKR rfDiY9R2I7NiLBUovPU8zd83+X17ermikIW22wh9FWidZ/wDnRyLKMDMQKDD9BwP 8grz+DFXnZqcfQzttb1WoBrWM7aLW6xBKJWjh/eFkJICAn5P4jbINW5nZPLDQdnx fswj8jyskj0L1MQcPri/EOlX5hOr0dtFv2jRgqYTxX+2KfAt7awTxutyRYC9Laho 6ec+4UlgPWcojPKNoS2G29C/1E8/tA7+ -----END CERTIFICATE-----Generated at Mon Jul 21 07:05:32 2025 by rpki-client