$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.mft File: MB6kG5ONf0s895PQEveN06U5cCQ.mft (raw, json) Hash identifier: yxrk0zeTyvxaF77X8FFnJGD1smoprLpANm2g96tJChs= Subject key identifier: BC:73:5D:7A:FF:FE:1F:84:70:ED:1A:D7:65:24:39:AC:41:BB:3F:3B Authority key identifier: 30:1E:A4:1B:93:8D:7F:4B:3C:F7:93:D0:12:F7:8D:D3:A5:39:70:24 Certificate issuer: /CN=A91B1F4F/serialNumber=301EA41B938D7F4B3CF793D012F78DD3A5397024 Certificate serial: 145E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MB6kG5ONf0s895PQEveN06U5cCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.mft Manifest number: 1454 Signing time: Fri 18 Jul 2025 17:02:30 +0000 Manifest this update: Fri 18 Jul 2025 17:02:30 +0000 Manifest next update: Fri 25 Jul 2025 17:02:30 +0000 Files and hashes: 1: MB6kG5ONf0s895PQEveN06U5cCQ.crl (hash: rbN5YOyTn+yXNbZN3gcxEJJBhmlN6DL7qh2jAWjM07U=) 2: 61574192E37A11EB8AF29A5BC4F9AE02.roa (hash: W5cx07cNyMaDMA4R0/MWrV4hAi09Yk83hfS7ozdwiBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.crl rsync://rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MB6kG5ONf0s895PQEveN06U5cCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5214 (0x145e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1F4F, serialNumber=301EA41B938D7F4B3CF793D012F78DD3A5397024 Validity Not Before: Jul 18 17:02:30 2025 GMT Not After : Jul 25 17:02:30 2025 GMT Subject: CN=687a7e26-7d56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:96:c7:d9:c5:f2:30:a2:0c:f8:38:16:ff:26: c4:b1:35:05:fd:50:9f:30:0d:64:7b:0e:5c:51:a2: 49:41:59:7e:c1:e1:3c:a2:09:1d:74:00:fe:b9:bf: be:7b:be:24:4b:49:fc:60:10:e3:e6:82:1b:d8:82: 38:22:cf:f3:d8:34:fd:c3:87:96:82:a2:71:6b:0b: c6:aa:b6:67:3d:d4:c4:c5:9a:7b:40:41:8b:9a:7f: e7:4a:99:42:51:71:e1:4e:19:2b:24:35:4e:14:84: 0c:2b:c0:71:93:74:0f:11:06:43:f0:3d:bd:23:39: 57:c0:e7:bd:8b:20:cd:c1:60:ec:62:57:33:1f:a5: 31:85:01:56:d7:f6:3a:a6:f3:16:6e:4a:46:4e:64: b6:20:0f:96:d2:e5:dd:07:cc:44:68:c4:e6:b2:bf: 18:d6:92:bb:3a:3d:fc:a9:86:ed:d3:29:3b:6a:d9: 7e:24:4b:7f:09:7a:9d:c1:4e:27:1a:50:d5:6b:cf: 32:63:b0:a4:78:80:0f:de:10:c4:ae:76:d3:be:af: 1f:07:b5:09:f3:38:21:bc:85:37:4f:d0:8b:c9:39: 3f:5b:00:5f:d0:b4:d6:02:9a:d5:92:23:b6:3c:e6: fa:87:e2:48:86:74:02:62:12:ec:1b:5f:ab:d8:97: 64:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:73:5D:7A:FF:FE:1F:84:70:ED:1A:D7:65:24:39:AC:41:BB:3F:3B X509v3 Authority Key Identifier: keyid:30:1E:A4:1B:93:8D:7F:4B:3C:F7:93:D0:12:F7:8D:D3:A5:39:70:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MB6kG5ONf0s895PQEveN06U5cCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:d8:82:22:62:10:df:a0:ee:8d:b7:d3:6a:57:57:b4:24:35: 64:da:11:2c:cc:48:60:16:91:d7:97:76:4d:c4:14:6d:5c:f7: af:39:90:a5:fd:b3:11:56:70:29:c4:ad:f2:a6:d3:b9:bf:71: 1d:f0:a5:7a:7d:88:2b:de:e6:d4:81:e2:d2:7d:7f:4a:bb:1f: b8:30:ec:04:dd:fd:d3:be:7c:bf:6c:9d:23:84:bc:a2:7d:90: 70:d6:ad:b8:ac:d8:31:f5:a4:0d:22:2b:99:29:ce:63:71:46: 4e:62:95:71:76:9b:83:8c:46:84:e6:13:c7:70:c1:43:84:67: 89:82:44:26:2a:51:f6:cb:4a:b3:e9:f1:e8:6d:12:2c:da:46: d9:14:83:2b:d7:dd:03:e0:9c:8e:06:2e:8e:d7:1e:b8:ed:65: 12:a6:b9:10:f6:cd:4a:d8:bc:8d:5e:a8:ba:05:8a:b7:31:cd: 4c:f3:e5:21:b6:09:25:59:36:c3:a6:dd:0a:2d:1f:03:d3:4e: d2:cf:ce:70:3c:e6:bb:05:bf:1c:4a:f2:05:79:48:87:a8:34: 9b:5f:5a:3c:d5:26:70:e6:d1:3f:84:6d:70:e7:6f:c4:e2:51: 9f:b7:6a:ea:f5:30:fe:8f:1e:06:71:38:49:68:54:1a:84:44: cf:51:5a:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGNEYxMTAvBgNVBAUTKDMwMUVBNDFCOTM4RDdGNEIzQ0Y3OTNEMDEyRjc4REQz QTUzOTcwMjQwHhcNMjUwNzE4MTcwMjMwWhcNMjUwNzI1MTcwMjMwWjAYMRYwFAYD VQQDEw02ODdhN2UyNi03ZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJbH2cXyMKIM+DgW/ybEsTUF/VCfMA1kew5cUaJJQVl+weE8ogkddAD+ub++ e74kS0n8YBDj5oIb2II4Is/z2DT9w4eWgqJxawvGqrZnPdTExZp7QEGLmn/nSplC UXHhThkrJDVOFIQMK8Bxk3QPEQZD8D29IzlXwOe9iyDNwWDsYlczH6UxhQFW1/Y6 pvMWbkpGTmS2IA+W0uXdB8xEaMTmsr8Y1pK7Oj38qYbt0yk7atl+JEt/CXqdwU4n GlDVa88yY7CkeIAP3hDErnbTvq8fB7UJ8zghvIU3T9CLyTk/WwBf0LTWAprVkiO2 POb6h+JIhnQCYhLsG1+r2JdkawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxzXXr/ /h+EcO0a12UkOaxBuz87MB8GA1UdIwQYMBaAFDAepBuTjX9LPPeT0BL3jdOlOXAk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUY0Ri8wRkRCOTc0Qzc0 RDcxMUU4QkM4MkQ0MkNDNEY5QUUwMi9NQjZrRzVPTmYwczg5NVBRRXZlTjA2VTVj Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01CNmtHNU9OZjBzODk1UFFFdmVOMDZVNWNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUY0Ri8wRkRCOTc0Qzc0RDcxMUU4QkM4MkQ0MkNDNEY5QUUwMi9NQjZrRzVPTmYw czg5NVBRRXZlTjA2VTVjQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDH2IIiYhDfoO6Nt9NqV1e0JDVk2hEszEhgFpHXl3ZNxBRtXPevOZCl /bMRVnApxK3yptO5v3Ed8KV6fYgr3ubUgeLSfX9Kux+4MOwE3f3Tvny/bJ0jhLyi fZBw1q24rNgx9aQNIiuZKc5jcUZOYpVxdpuDjEaE5hPHcMFDhGeJgkQmKlH2y0qz 6fHobRIs2kbZFIMr190D4JyOBi6O1x647WUSprkQ9s1K2LyNXqi6BYq3Mc1M8+Uh tgklWTbDpt0KLR8D007Sz85wPOa7Bb8cSvIFeUiHqDSbX1o81SZw5tE/hG1w52/E 4lGft2rq9TD+jx4GcThJaFQahETPUVr3 -----END CERTIFICATE-----Generated at Sun Jul 20 11:30:27 2025 by rpki-client