$ rpki-client -vvf rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft File: MkzIe8yExoFRzDczpQjHilxbSYo.mft (raw, json) Hash identifier: qvHNjvueAGDruZiV4t7MbZ7t73RUDbGMJ1nQ6SdHq3Y= Subject key identifier: 57:24:57:43:4A:86:42:E9:85:AC:25:0E:E0:08:41:4E:99:50:16:1E Authority key identifier: 32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A Certificate issuer: /CN=A91116E6/serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft Manifest number: EB Signing time: Fri 19 Sep 2025 05:57:30 +0000 Manifest this update: Fri 19 Sep 2025 05:57:30 +0000 Manifest next update: Fri 26 Sep 2025 05:57:30 +0000 Files and hashes: 1: MkzIe8yExoFRzDczpQjHilxbSYo.crl (hash: rl06vBXILctofSrab22me6LK/7CusYzpWtjt7864qxA=) 2: 9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa (hash: jZ8rK9Cjwbx5cGtSyivoYRd59H87vJYDWLCVXZK0EWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 05:57:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116E6, serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Validity Not Before: Sep 19 05:57:30 2025 GMT Not After : Sep 26 05:57:30 2025 GMT Subject: CN=68ccf0ca-f3f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5e:5e:8c:f2:b0:03:00:9f:ac:a7:f1:98:e4: 7a:47:2b:b3:9a:d5:36:bf:78:5d:2c:3c:6e:09:7d: 6f:3e:fe:03:88:8c:1c:56:35:25:70:bb:5a:a4:8f: 35:54:53:fa:12:75:ea:d3:bb:1f:55:9f:a8:c0:e6: 88:0c:3e:4e:0d:41:80:99:be:fc:fb:85:42:c8:af: 64:28:f9:a4:36:71:f6:82:46:e4:3e:d2:77:a7:ad: 63:6b:98:d4:70:f7:eb:59:0d:5f:8c:5f:55:b9:1a: 66:27:bf:6c:45:9e:2c:b6:61:8c:a8:46:3c:45:b5: af:5e:25:7e:a7:d6:f4:ce:e3:9b:03:fe:52:08:b7: 04:ab:83:8a:31:c1:df:43:17:5f:d3:dc:6e:d0:71: 0a:32:b0:fe:56:d2:30:98:56:a3:c7:17:12:0f:8d: 4f:8e:88:79:c6:90:9f:5d:ff:76:11:49:ee:f9:a2: 11:c6:e1:15:1f:57:af:46:d8:15:a3:0c:29:7c:87: 09:c3:59:98:13:fe:c2:ad:e7:dc:d0:ce:b7:e2:db: 8c:1d:25:60:d9:ec:fc:d8:cc:c3:72:18:9a:4b:64: ad:90:e1:a5:68:7b:f6:ef:a4:38:1e:1a:d7:fa:e2: 7f:18:91:66:8b:dd:bd:d2:21:13:50:12:25:bb:a1: 2e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:24:57:43:4A:86:42:E9:85:AC:25:0E:E0:08:41:4E:99:50:16:1E X509v3 Authority Key Identifier: keyid:32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:1f:e7:19:60:d5:fc:a9:46:65:ea:58:48:fd:0d:e3:3d:a6: c8:7e:77:ac:70:a7:06:a3:6c:87:e2:bc:50:2a:25:be:85:a1: 18:52:4d:a9:10:16:45:63:44:1c:96:09:15:02:c3:fa:e3:11: 91:73:6c:63:f7:0d:ff:6a:2e:1c:cd:75:5d:58:a9:92:c4:4d: 06:95:c5:f3:59:33:d4:46:41:0c:4b:05:fd:a4:27:a6:fa:ca: da:f5:a8:ad:54:90:09:d2:e9:f4:31:83:e8:09:e2:0b:2e:c4: 05:d3:d6:53:cc:33:3a:c0:c2:d0:e1:4e:db:48:24:a5:2f:b9: 46:8a:9d:b2:71:b2:a6:4d:f4:62:27:fe:d0:b8:4a:85:7d:8a: d7:03:04:76:93:b9:56:b6:5d:07:54:8f:59:c1:91:3e:d4:d8: 0a:10:14:c3:e7:7e:96:97:f7:4b:87:2b:21:b3:78:39:66:88: e9:5a:38:ce:d4:29:db:26:c6:24:fa:4a:34:2d:62:98:d0:d0: cd:b2:f2:d6:62:11:57:66:8c:6f:82:03:98:7c:be:7f:e0:24: a8:ee:6e:87:e5:5f:37:aa:0d:90:4c:f4:d8:26:b1:e2:be:80: b5:3e:76:ff:2e:5c:95:a0:31:77:6a:7d:32:da:b3:8c:1e:1c: 2e:0d:30:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2RTYxMTAvBgNVBAUTKDMyNENDODdCQ0M4NEM2ODE1MUNDMzczM0E1MDhDNzhB NUM1QjQ5OEEwHhcNMjUwOTE5MDU1NzMwWhcNMjUwOTI2MDU1NzMwWjAYMRYwFAYD VQQDEw02OGNjZjBjYS1mM2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0V5ejPKwAwCfrKfxmOR6RyuzmtU2v3hdLDxuCX1vPv4DiIwcVjUlcLtapI81 VFP6EnXq07sfVZ+owOaIDD5ODUGAmb78+4VCyK9kKPmkNnH2gkbkPtJ3p61ja5jU cPfrWQ1fjF9VuRpmJ79sRZ4stmGMqEY8RbWvXiV+p9b0zuObA/5SCLcEq4OKMcHf Qxdf09xu0HEKMrD+VtIwmFajxxcSD41Pjoh5xpCfXf92EUnu+aIRxuEVH1evRtgV owwpfIcJw1mYE/7Crefc0M634tuMHSVg2ez82MzDchiaS2StkOGlaHv276Q4HhrX +uJ/GJFmi9290iETUBIlu6EuSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFckV0NK hkLphawlDuAIQU6ZUBYeMB8GA1UdIwQYMBaAFDJMyHvMhMaBUcw3M6UIx4pcW0mK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZFNi9EN0QzNjIzODMx RjYxMUVGOTJBRDhEMTBDNEY5QUUwMi9Na3pJZTh5RXhvRlJ6RGN6cFFqSGlseGJT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01rekllOHlFeG9GUnpEY3pwUWpIaWx4YlNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZFNi9EN0QzNjIzODMxRjYxMUVGOTJBRDhEMTBDNEY5QUUwMi9Na3pJZTh5RXhv RlJ6RGN6cFFqSGlseGJTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwH+cZYNX8qUZl6lhI/Q3jPabIfnescKcGo2yH4rxQKiW+haEYUk2p EBZFY0QclgkVAsP64xGRc2xj9w3/ai4czXVdWKmSxE0GlcXzWTPURkEMSwX9pCem +sra9aitVJAJ0un0MYPoCeILLsQF09ZTzDM6wMLQ4U7bSCSlL7lGip2ycbKmTfRi J/7QuEqFfYrXAwR2k7lWtl0HVI9ZwZE+1NgKEBTD536Wl/dLhyshs3g5ZojpWjjO 1CnbJsYk+ko0LWKY0NDNsvLWYhFXZoxvggOYfL5/4CSo7m6H5V83qg2QTPTYJrHi voC1Pnb/LlyVoDF3an0y2rOMHhwuDTCn -----END CERTIFICATE-----Generated at Fri Sep 19 10:43:23 2025 by rpki-client