$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: jIQI5H7XrkaeoF/RCbEGNuyWmzlV35n0CawLZNOuGuU= Subject key identifier: D0:85:8C:10:0C:20:AD:3D:19:BF:43:10:5B:D7:F0:99:D4:C2:6F:77 Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 026F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 026A Signing time: Sat 19 Jul 2025 02:11:51 +0000 Manifest this update: Sat 19 Jul 2025 02:11:50 +0000 Manifest next update: Sat 26 Jul 2025 02:11:50 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: oQi/Zos9VOxJ2WBJOwRAoknIUV3Yv10GJSX4zzwRUNA=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: omp1fXUs+vDBv/MaKIuGTrmCJ5TEGYnfoKG3I8GKsAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: Jul 19 02:11:50 2025 GMT Not After : Jul 26 02:11:50 2025 GMT Subject: CN=687afee6-76ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d4:3f:45:95:c4:49:32:6d:0a:5a:d4:8a:70: 23:71:4e:6f:84:83:aa:87:c5:12:71:7a:7d:e3:e8: af:be:67:54:b9:22:c0:c3:b2:e8:49:4d:80:13:8d: 2f:e5:cc:60:51:fd:2b:25:c1:91:2b:8e:bf:ea:da: cf:aa:e9:4a:1d:1c:6f:5c:8e:0f:a0:d9:43:85:ea: b4:72:79:3d:b7:0d:a5:91:0a:f4:6b:fb:8b:86:71: 23:82:ec:13:03:94:e8:84:d6:9d:32:33:a6:3a:e5: 98:70:4c:b3:b0:36:fa:14:7f:2c:e3:7c:f6:98:36: 9f:6f:95:02:3a:52:56:61:b4:51:42:a7:32:42:8d: 5d:0e:27:7e:29:43:9a:13:ee:8c:1a:79:d7:f5:9b: 07:a6:ad:a9:fa:e8:1d:4f:11:ef:c5:9d:dc:d5:ec: 16:3e:b9:30:5d:21:cb:ef:e3:69:a2:19:32:85:9a: 77:34:89:f4:8a:b4:8b:5c:ec:74:b2:23:5e:4e:3e: 43:65:3a:c6:fb:71:12:d9:2e:26:97:62:b2:9f:91: dc:12:00:93:c6:4e:0d:72:f2:ad:22:72:51:7c:57: ef:c9:c4:fd:cb:b5:92:19:d2:dc:bb:d1:12:c3:fd: 21:0a:fd:2f:13:a4:50:f6:7c:b6:92:72:42:76:5e: ee:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:85:8C:10:0C:20:AD:3D:19:BF:43:10:5B:D7:F0:99:D4:C2:6F:77 X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:71:b0:f5:da:e3:34:33:85:7e:0f:88:d6:2f:2a:a7:cf:3c: 50:83:91:ad:14:5e:9c:a1:f8:05:4b:5c:27:3f:25:36:16:6d: 94:a1:2e:82:7f:35:b3:49:40:69:b5:dc:05:0b:f1:8a:9c:7c: 02:3c:4c:d2:ef:29:d1:d9:d1:fb:0f:d7:5a:c6:7d:39:27:44: 27:48:87:d9:eb:8f:93:09:a1:6d:7e:3e:3a:ce:ac:1e:63:66: 65:c0:ae:f4:04:87:28:c0:1e:7c:65:5e:65:33:f4:c4:5e:7a: e4:8d:6b:90:11:69:2f:c2:68:4d:b4:36:e4:bb:77:03:f0:7f: 0b:49:52:40:b2:37:d0:f4:ce:11:c2:ed:c9:ea:81:a5:97:08: 72:7f:26:cf:79:67:b6:af:7c:be:ae:82:cc:71:db:37:a5:14: c0:c3:f6:6e:25:80:2b:7a:43:e6:07:fb:b0:4e:cf:8b:b5:45: 70:a2:07:17:e4:e2:81:94:0a:23:ad:95:15:00:14:1c:14:c9: be:81:4e:02:af:38:0f:b2:e1:a9:8c:f5:ce:af:33:97:9b:33: 37:17:14:1c:1b:87:a3:20:21:e5:f7:e3:1d:10:02:f7:96:cb: ba:21:73:94:65:bf:a4:0a:c3:41:40:a9:5a:78:b5:24:ca:04: 0b:90:43:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjUwNzE5MDIxMTUwWhcNMjUwNzI2MDIxMTUwWjAYMRYwFAYD VQQDEw02ODdhZmVlNi03NmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNQ/RZXESTJtClrUinAjcU5vhIOqh8UScXp94+ivvmdUuSLAw7LoSU2AE40v 5cxgUf0rJcGRK46/6trPqulKHRxvXI4PoNlDheq0cnk9tw2lkQr0a/uLhnEjguwT A5TohNadMjOmOuWYcEyzsDb6FH8s43z2mDafb5UCOlJWYbRRQqcyQo1dDid+KUOa E+6MGnnX9ZsHpq2p+ugdTxHvxZ3c1ewWPrkwXSHL7+NpohkyhZp3NIn0irSLXOx0 siNeTj5DZTrG+3ES2S4ml2Kyn5HcEgCTxk4NcvKtInJRfFfvycT9y7WSGdLcu9ES w/0hCv0vE6RQ9ny2knJCdl7uiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCFjBAM IK09Gb9DEFvX8JnUwm93MB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQcbD12uM0M4V+D4jWLyqnzzxQg5GtFF6cofgFS1wnPyU2Fm2UoS6C fzWzSUBptdwFC/GKnHwCPEzS7ynR2dH7D9daxn05J0QnSIfZ64+TCaFtfj46zqwe Y2ZlwK70BIcowB58ZV5lM/TEXnrkjWuQEWkvwmhNtDbku3cD8H8LSVJAsjfQ9M4R wu3J6oGllwhyfybPeWe2r3y+roLMcds3pRTAw/ZuJYArekPmB/uwTs+LtUVwogcX 5OKBlAojrZUVABQcFMm+gU4CrzgPsuGpjPXOrzOXmzM3FxQcG4ejICHl9+MdEAL3 lsu6IXOUZb+kCsNBQKlaeLUkygQLkEPY -----END CERTIFICATE-----Generated at Sun Jul 20 07:57:52 2025 by rpki-client