$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft File: mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft (raw, json) Hash identifier: 1vA/5EoHvuhNgmImA+Irb3W2i3+yDfcDkmct11S6+zc= Subject key identifier: 9D:04:C1:77:E0:EE:02:D0:84:97:0C:CD:9F:4C:CD:D8:23:2A:C0:A9 Authority key identifier: 9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 Certificate issuer: /CN=A91F3B6C/serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Certificate serial: 0592 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft Manifest number: 058B Signing time: Tue 22 Jul 2025 23:38:00 +0000 Manifest this update: Tue 22 Jul 2025 23:38:00 +0000 Manifest next update: Tue 29 Jul 2025 23:38:00 +0000 Files and hashes: 1: mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl (hash: Ds6EJkPo+RUuTSZUVfm8Uguns67a5CLsybRJzEJ5jTE=) 2: C4CB04C4E2A911EBB4631960C4F9AE02.roa (hash: w5XSagCBbj7wYrqd/6P5FJGCYb7FRwj35SS+I3gJcAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 23:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1426 (0x592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B6C, serialNumber=9B09E95FE46ABDBC9F9020585F9A583267773FC9 Validity Not Before: Jul 22 23:38:00 2025 GMT Not After : Jul 29 23:38:00 2025 GMT Subject: CN=688020d8-5772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:87:d7:88:da:83:f0:46:f0:32:29:f2:83:63: 45:f6:64:2c:3e:4a:83:79:e2:cc:25:3a:85:7b:84: 9d:96:e9:30:b6:30:19:5c:44:f8:d9:e8:e4:0e:c7: 03:c4:df:77:8c:1d:76:27:3c:64:98:07:20:8a:c9: 74:a1:0b:ab:d3:e5:f5:0d:d4:57:7e:79:e7:e7:b7: 77:8b:88:83:aa:a3:42:7f:04:fe:09:57:0d:f9:1b: e4:df:c5:96:5f:91:44:c2:fd:8b:a3:71:f5:a7:ef: ac:b8:47:ad:a0:e9:38:2e:7f:3b:94:6e:aa:4c:c8: 95:85:74:46:37:e9:e6:e1:1a:9f:40:06:1c:b2:3a: 03:27:55:5d:c6:27:7b:fc:d7:1a:80:2c:4b:5a:b9: 9e:43:aa:fa:47:c3:c0:22:c3:44:a4:fa:a1:15:08: 4b:64:1e:aa:75:d6:3f:b6:cf:69:45:2a:b4:02:2f: b9:7e:76:8d:50:23:b1:fa:34:68:55:a3:5b:f2:8a: de:d3:ce:ae:24:4e:03:d3:a1:db:95:cc:8e:35:48: fd:c5:38:09:76:cb:70:99:78:47:bd:9d:bc:80:5d: 79:d7:5f:9a:20:e8:dd:c9:ef:38:d1:c8:84:4a:55: 52:37:19:bb:bb:9d:f5:bb:53:76:0a:6d:f3:4b:24: ab:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:04:C1:77:E0:EE:02:D0:84:97:0C:CD:9F:4C:CD:D8:23:2A:C0:A9 X509v3 Authority Key Identifier: keyid:9B:09:E9:5F:E4:6A:BD:BC:9F:90:20:58:5F:9A:58:32:67:77:3F:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwnpX-RqvbyfkCBYX5pYMmd3P8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B6C/8B08920AE2A511EBAD13CC35C4F9AE02/mwnpX-RqvbyfkCBYX5pYMmd3P8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:7f:b3:f0:0d:4f:71:24:e7:e0:eb:d9:b6:c9:e9:29:d8:29: bc:ae:83:69:cf:7f:da:0d:f7:65:0a:52:00:76:2e:38:a3:4d: 08:ed:57:2d:42:ae:3f:bd:7b:34:a7:ae:6e:8e:db:59:64:c4: b1:85:8f:33:83:42:55:46:e0:a8:e0:af:7a:76:df:f0:3f:58: 28:c1:68:f5:d8:a6:c2:b0:26:e1:2f:14:f1:35:d6:9e:98:87: d3:36:b0:9b:19:6c:fe:67:37:d9:a0:fa:ea:de:9a:5e:28:80: e8:80:b4:c5:9f:93:87:20:48:c6:2f:9f:99:60:50:d6:c0:96: 3c:bc:74:a4:aa:b5:d6:7f:91:39:29:15:48:cb:9b:c2:b8:ce: e3:7e:98:91:50:5e:73:6a:34:1d:e6:18:2a:1f:d7:34:87:81: 63:18:6c:43:51:a9:3e:60:9e:a4:f6:d2:d7:25:7f:2c:eb:8b: 1d:7b:94:77:ec:78:28:47:bb:2d:9a:08:45:7c:3e:6a:50:66: 2b:65:b0:ac:67:90:51:01:9d:10:e4:42:50:59:40:2e:25:ae: 7b:c3:bb:ce:c9:ca:26:d7:df:e6:67:3a:8f:4d:30:dd:5e:6a: ba:e0:85:6e:ab:cd:6c:70:4f:05:a6:c0:79:66:78:db:c6:6d: 38:37:45:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNkMxMTAvBgNVBAUTKDlCMDlFOTVGRTQ2QUJEQkM5RjkwMjA1ODVGOUE1ODMy Njc3NzNGQzkwHhcNMjUwNzIyMjMzODAwWhcNMjUwNzI5MjMzODAwWjAYMRYwFAYD VQQDEw02ODgwMjBkOC01NzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYfXiNqD8EbwMinyg2NF9mQsPkqDeeLMJTqFe4SdlukwtjAZXET42ejkDscD xN93jB12JzxkmAcgisl0oQur0+X1DdRXfnnn57d3i4iDqqNCfwT+CVcN+Rvk38WW X5FEwv2Lo3H1p++suEetoOk4Ln87lG6qTMiVhXRGN+nm4RqfQAYcsjoDJ1Vdxid7 /NcagCxLWrmeQ6r6R8PAIsNEpPqhFQhLZB6qddY/ts9pRSq0Ai+5fnaNUCOx+jRo VaNb8ore086uJE4D06HblcyONUj9xTgJdstwmXhHvZ28gF1511+aIOjdye840ciE SlVSNxm7u531u1N2Cm3zSySr+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0EwXfg 7gLQhJcMzZ9MzdgjKsCpMB8GA1UdIwQYMBaAFJsJ6V/kar28n5AgWF+aWDJndz/J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I2Qy84QjA4OTIwQUUy QTUxMUVCQUQxM0NDMzVDNEY5QUUwMi9td25wWC1ScXZieWZrQ0JZWDVwWU1tZDNQ OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL213bnBYLVJxdmJ5ZmtDQllYNXBZTW1kM1A4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I2Qy84QjA4OTIwQUUyQTUxMUVCQUQxM0NDMzVDNEY5QUUwMi9td25wWC1ScXZi eWZrQ0JZWDVwWU1tZDNQOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlf7PwDU9xJOfg69m2yekp2Cm8roNpz3/aDfdlClIAdi44o00I7Vct Qq4/vXs0p65ujttZZMSxhY8zg0JVRuCo4K96dt/wP1gowWj12KbCsCbhLxTxNdae mIfTNrCbGWz+ZzfZoPrq3ppeKIDogLTFn5OHIEjGL5+ZYFDWwJY8vHSkqrXWf5E5 KRVIy5vCuM7jfpiRUF5zajQd5hgqH9c0h4FjGGxDUak+YJ6k9tLXJX8s64sde5R3 7HgoR7stmghFfD5qUGYrZbCsZ5BRAZ0Q5EJQWUAuJa57w7vOycom19/mZzqPTTDd Xmq64IVuq81scE8FpsB5Znjbxm04N0Ui -----END CERTIFICATE-----Generated at Wed Jul 23 12:51:10 2025 by rpki-client