$ rpki-client -vvf rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft File: MNcZ-cbTfirJ9NbUsffZeOwqMok.mft (raw, json) Hash identifier: P0VFWQSAVTIddeX7ZhWhV+2B4HNLN7KooOVQ9PqrC0Q= Subject key identifier: FC:EA:06:CE:49:03:94:88:3B:3A:5C:09:30:BA:3E:98:29:57:DB:D2 Authority key identifier: 30:D7:19:F9:C6:D3:7E:2A:C9:F4:D6:D4:B1:F7:D9:78:EC:2A:32:89 Certificate issuer: /CN=A912434D/serialNumber=30D719F9C6D37E2AC9F4D6D4B1F7D978EC2A3289 Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft Manifest number: 0A Signing time: Sat 19 Jul 2025 08:24:29 +0000 Manifest this update: Sat 19 Jul 2025 08:24:28 +0000 Manifest next update: Sat 26 Jul 2025 08:24:28 +0000 Files and hashes: 1: MNcZ-cbTfirJ9NbUsffZeOwqMok.crl (hash: CFUZWFrtj/jUoYLZycHE7eDcHXgmi7jN8h4IVnhg6ew=) 2: CD9B554E58DF11F0A0F08D09C4F9AE02.roa (hash: O8Z/SaLnBNWGRjL6AfyE+33fscQi14WCCS2K6DsHHDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.crl rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912434D, serialNumber=30D719F9C6D37E2AC9F4D6D4B1F7D978EC2A3289 Validity Not Before: Jul 19 08:24:28 2025 GMT Not After : Jul 26 08:24:28 2025 GMT Subject: CN=687b563c-2b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4e:09:14:d0:db:f8:71:86:3c:23:ff:1b:8a: 77:2a:00:fd:c0:42:91:20:16:92:c6:6d:8a:fb:22: 5a:47:6c:b6:04:56:f1:9d:5d:ca:c5:a4:12:71:e0: 77:df:df:93:30:35:da:0a:9d:cc:63:e5:34:47:5e: 89:a4:3b:27:c9:9a:3f:35:d5:98:b3:1a:ab:6f:86: 7a:61:55:d3:92:64:8e:7f:93:ac:88:7e:3d:61:66: 55:4d:0b:df:cf:e4:89:ab:4c:43:53:ff:7c:58:08: d9:93:33:52:6d:72:ec:09:c4:7e:33:68:0b:97:c3: 3a:4e:2d:55:9f:cd:c8:c8:83:28:fd:c2:17:b2:52: 3b:17:9d:32:70:4f:71:55:d3:45:68:dc:87:ee:08: e8:01:f4:8f:62:95:5b:e2:53:c5:5e:ae:6c:a5:a5: 81:6a:fc:77:99:b5:54:e9:81:cb:c1:96:60:b9:2f: 1e:56:98:c2:d3:57:3e:d2:68:be:25:66:fc:b4:40: 58:a6:22:1f:b4:73:d7:c8:0d:da:38:85:f9:ef:1d: 42:48:4c:08:c2:e9:9a:ef:6e:80:4d:de:24:a5:df: e8:be:d1:cc:05:db:c3:bb:c6:03:37:84:2f:16:fb: 97:ed:37:ee:be:b5:d6:e3:b9:19:f3:9a:b4:7d:7b: cd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:EA:06:CE:49:03:94:88:3B:3A:5C:09:30:BA:3E:98:29:57:DB:D2 X509v3 Authority Key Identifier: keyid:30:D7:19:F9:C6:D3:7E:2A:C9:F4:D6:D4:B1:F7:D9:78:EC:2A:32:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:71:66:a3:d8:ea:0b:7a:01:fd:c1:39:97:9b:b1:ef:29:6e: 96:e3:13:58:9a:33:85:5b:14:cc:58:49:69:39:d4:6b:ed:14: 1f:d0:14:3e:56:25:6c:9c:14:05:46:22:ad:ad:f9:9f:fa:c3: 7d:48:30:4e:da:33:28:3b:68:28:40:d3:83:ce:43:9d:6c:78: 92:b5:4a:d9:64:ec:e0:d4:6b:4d:92:c6:52:81:b3:7d:d2:6b: db:8a:56:1b:91:f2:6e:f7:17:b1:bd:f1:37:86:e3:14:ea:fd: 74:b8:2f:b8:ca:8f:2d:2a:49:72:95:8f:9c:d6:d5:48:5d:08: 08:39:42:a3:1a:f1:c9:b8:ad:7f:2f:5d:43:fd:8e:91:19:b9: 79:8c:cc:fc:5c:17:e6:1c:da:d8:e7:9d:ea:22:87:6e:e7:a3: 59:48:0e:81:fd:f7:0e:e4:09:43:74:2f:41:db:6d:e6:fb:dc: 34:69:6f:ef:9e:be:7a:5f:1f:2f:12:92:65:68:3f:72:76:0d: 74:1b:3b:1f:6b:d0:77:40:81:ca:4e:fb:9d:97:b9:4e:4d:0f: f8:7c:75:a2:06:74:d6:fc:cf:52:39:9e:24:e6:f1:4d:8d:05: b6:c0:e7:0f:9d:2a:dc:78:47:01:cc:a8:23:a1:8b:05:13:17: 7e:97:cd:45 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDM0RDExMC8GA1UEBRMoMzBENzE5RjlDNkQzN0UyQUM5RjRENkQ0QjFGN0Q5NzhF QzJBMzI4OTAeFw0yNTA3MTkwODI0MjhaFw0yNTA3MjYwODI0MjhaMBgxFjAUBgNV BAMTDTY4N2I1NjNjLTJiMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyTgkU0Nv4cYY8I/8bincqAP3AQpEgFpLGbYr7IlpHbLYEVvGdXcrFpBJx4Hff 35MwNdoKncxj5TRHXomkOyfJmj811ZizGqtvhnphVdOSZI5/k6yIfj1hZlVNC9/P 5ImrTENT/3xYCNmTM1JtcuwJxH4zaAuXwzpOLVWfzcjIgyj9wheyUjsXnTJwT3FV 00Vo3IfuCOgB9I9ilVviU8VermylpYFq/HeZtVTpgcvBlmC5Lx5WmMLTVz7SaL4l Zvy0QFimIh+0c9fIDdo4hfnvHUJITAjC6ZrvboBN3iSl3+i+0cwF28O7xgM3hC8W +5ftN+6+tdbjuRnzmrR9e835AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/OoGzkkD lIg7OlwJMLo+mClX29IwHwYDVR0jBBgwFoAUMNcZ+cbTfirJ9NbUsffZeOwqMokw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0MzREL0ZDMjA5MTM4NThE RDExRjA4RkFBREU2NkM0RjlBRTAyL01OY1otY2JUZmlySjlOYlVzZmZaZU93cU1v ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTU5jWi1jYlRmaXJKOU5iVXNmZlplT3dxTW9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 MzREL0ZDMjA5MTM4NThERDExRjA4RkFBREU2NkM0RjlBRTAyL01OY1otY2JUZmly SjlOYlVzZmZaZU93cU1vay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJZxZqPY6gt6Af3BOZebse8pbpbjE1iaM4VbFMxYSWk51GvtFB/QFD5W JWycFAVGIq2t+Z/6w31IME7aMyg7aChA04POQ51seJK1Stlk7ODUa02SxlKBs33S a9uKVhuR8m73F7G98TeG4xTq/XS4L7jKjy0qSXKVj5zW1UhdCAg5QqMa8cm4rX8v XUP9jpEZuXmMzPxcF+Yc2tjnneoih27no1lIDoH99w7kCUN0L0Hbbeb73DRpb++e vnpfHy8SkmVoP3J2DXQbOx9r0HdAgcpO+52XuU5ND/h8daIGdNb8z1I5niTm8U2N BbbA5w+dKtx4RwHMqCOhiwUTF36XzUU= -----END CERTIFICATE-----Generated at Mon Jul 21 00:27:03 2025 by rpki-client