$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: fCUlMWia7zc0LN/p/CTM7OQAbyyXB7pwET10oH9KXaI= Subject key identifier: A9:07:9A:B8:02:C5:84:FD:7E:AD:8B:99:21:64:A6:5A:D1:90:91:AD Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 0696 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 068F Signing time: Fri 18 Jul 2025 15:15:41 +0000 Manifest this update: Fri 18 Jul 2025 15:15:41 +0000 Manifest next update: Fri 25 Jul 2025 15:15:41 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: +l5uabRH0jo24+a50wTw9jDBrnx5H2KtzP7ZlerCTCo=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: PGlTDpEV17D+1hrLu4fdfibpz1YbRKMAlzpsoNFgyb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1686 (0x696) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB, serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Jul 18 15:15:41 2025 GMT Not After : Jul 25 15:15:41 2025 GMT Subject: CN=687a651d-f09a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:21:6f:d9:16:f6:c1:88:df:10:5b:da:07:b4: ae:f5:ae:98:b1:4f:7f:75:35:56:86:da:48:36:af: 11:1a:68:16:58:1d:3f:33:37:b8:61:d2:b3:13:aa: 67:53:7a:b6:b6:37:1b:19:0d:d0:ef:07:e8:a1:9e: 1c:1e:61:80:2e:00:45:c8:f8:ef:09:d5:c4:92:46: 6d:08:34:c2:9f:cb:89:90:ab:33:c7:96:78:31:9a: 61:eb:e4:39:66:f1:78:82:8c:73:3f:81:bd:b2:72: bc:67:73:3d:4c:db:81:9b:29:a5:3f:47:19:20:09: a2:65:6e:72:b5:94:80:7e:91:32:70:89:2f:fe:ab: c8:86:ce:8d:e0:39:e8:62:2e:2f:f8:23:25:ba:45: 83:ea:fb:00:79:78:58:9a:b0:dc:0c:60:ef:08:04: 34:95:87:d9:2f:99:19:24:75:f8:f4:d2:f4:1e:3e: c4:7f:29:12:6e:88:06:b6:37:e1:a4:78:7a:73:50: 14:cf:0f:41:6c:6b:3b:93:5f:f5:c2:7d:d0:b2:90: 11:cd:e1:39:59:21:de:0f:eb:fb:00:56:0b:8d:29: 41:a1:2f:63:ac:9f:b4:10:aa:25:db:48:c5:d1:40: 0c:dd:df:10:0f:7d:52:c8:dc:53:47:f3:0d:b7:61: 52:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:07:9A:B8:02:C5:84:FD:7E:AD:8B:99:21:64:A6:5A:D1:90:91:AD X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:31:21:a5:0f:75:cb:80:dc:cb:41:83:97:8e:ed:17:64:50: 74:5a:8c:69:9d:e3:fc:56:23:f9:bb:87:03:be:57:9c:b2:a6: a1:44:0f:c5:ef:08:69:5a:0c:39:d3:35:a5:e1:36:79:d0:07: 89:50:98:18:85:fc:40:0a:74:e2:54:b8:4f:86:12:bf:40:d5: 58:cb:8f:2a:45:3a:8b:96:3a:ce:05:13:2b:b4:c9:82:39:2c: b3:8b:05:c9:92:e3:18:86:a9:54:e0:ee:be:7d:de:13:30:fe: e0:49:0d:ac:99:0f:4d:05:96:0a:ae:cc:ba:d4:2c:7d:4e:ab: e6:b9:6a:9a:cb:80:08:0d:61:f0:69:a1:73:2e:c5:90:fb:9a: 33:60:ca:2e:b3:0d:27:58:3e:1d:a4:86:f9:b7:d0:25:a4:03: 18:87:45:54:10:08:a0:03:d3:ae:61:48:17:d1:68:72:b2:a6: 08:35:ef:80:fd:70:f3:e2:f0:08:70:a3:69:a9:32:5c:a3:43: be:4a:73:9a:fd:73:ba:ef:3d:71:e6:6e:c8:7d:d5:5a:02:d8: d6:94:55:27:af:51:2e:73:c7:a7:ef:4a:72:f6:9a:d2:fc:46: f3:65:e2:73:21:7c:d4:25:50:de:57:31:24:0d:fe:95:c2:29: cf:1d:5e:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjUwNzE4MTUxNTQxWhcNMjUwNzI1MTUxNTQxWjAYMRYwFAYD VQQDEw02ODdhNjUxZC1mMDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5iFv2Rb2wYjfEFvaB7Su9a6YsU9/dTVWhtpINq8RGmgWWB0/Mze4YdKzE6pn U3q2tjcbGQ3Q7wfooZ4cHmGALgBFyPjvCdXEkkZtCDTCn8uJkKszx5Z4MZph6+Q5 ZvF4goxzP4G9snK8Z3M9TNuBmymlP0cZIAmiZW5ytZSAfpEycIkv/qvIhs6N4Dno Yi4v+CMlukWD6vsAeXhYmrDcDGDvCAQ0lYfZL5kZJHX49NL0Hj7EfykSbogGtjfh pHh6c1AUzw9BbGs7k1/1wn3QspARzeE5WSHeD+v7AFYLjSlBoS9jrJ+0EKol20jF 0UAM3d8QD31SyNxTR/MNt2FSGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkHmrgC xYT9fq2LmSFkplrRkJGtMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbMSGlD3XLgNzLQYOXju0XZFB0WoxpneP8ViP5u4cDvlecsqahRA/F 7whpWgw50zWl4TZ50AeJUJgYhfxACnTiVLhPhhK/QNVYy48qRTqLljrOBRMrtMmC OSyziwXJkuMYhqlU4O6+fd4TMP7gSQ2smQ9NBZYKrsy61Cx9TqvmuWqay4AIDWHw aaFzLsWQ+5ozYMousw0nWD4dpIb5t9AlpAMYh0VUEAigA9OuYUgX0WhysqYINe+A /XDz4vAIcKNpqTJco0O+SnOa/XO67z1x5m7IfdVaAtjWlFUnr1Euc8en70py9prS /EbzZeJzIXzUJVDeVzEkDf6VwinPHV6A -----END CERTIFICATE-----Generated at Sun Jul 20 15:17:04 2025 by rpki-client