$ rpki-client -vvf rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft File: MNcZ-cbTfirJ9NbUsffZeOwqMok.mft (raw, json) Hash identifier: lI6wpOl2DArQ054DItRgfs1wHo7JEqBbv0iLMF5dp98= Subject key identifier: E9:28:21:4E:18:7C:7C:27:DE:57:AD:7E:14:D0:A1:DB:61:69:84:C7 Authority key identifier: 30:D7:19:F9:C6:D3:7E:2A:C9:F4:D6:D4:B1:F7:D9:78:EC:2A:32:89 Certificate issuer: /CN=A912434D/serialNumber=30D719F9C6D37E2AC9F4D6D4B1F7D978EC2A3289 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft Manifest number: 23 Signing time: Fri 05 Sep 2025 08:19:59 +0000 Manifest this update: Fri 05 Sep 2025 08:19:58 +0000 Manifest next update: Fri 12 Sep 2025 08:19:58 +0000 Files and hashes: 1: MNcZ-cbTfirJ9NbUsffZeOwqMok.crl (hash: OvhTznuAkusaqGMpQV0iwjEzEyImSkdbMQV+/YXpeh4=) 2: CD9B554E58DF11F0A0F08D09C4F9AE02.roa (hash: O8Z/SaLnBNWGRjL6AfyE+33fscQi14WCCS2K6DsHHDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.crl rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 08:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912434D, serialNumber=30D719F9C6D37E2AC9F4D6D4B1F7D978EC2A3289 Validity Not Before: Sep 5 08:19:58 2025 GMT Not After : Sep 12 08:19:58 2025 GMT Subject: CN=68ba9d2e-1642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:45:5e:da:a0:f3:bc:64:f7:aa:2d:67:27:bf: ac:d1:89:a8:6e:df:f7:b5:0b:be:1b:79:a8:cc:71: bb:73:74:0d:f4:f4:fa:d1:45:7a:99:3c:5f:5e:9f: 96:d0:0e:a8:81:74:4b:99:44:41:05:7c:2e:c9:64: be:65:70:19:53:8c:02:68:67:27:1c:aa:99:2a:66: a9:eb:b7:73:e9:7c:fb:60:68:2f:7c:f6:2a:9f:8b: 0c:b6:d5:61:07:f8:ff:1b:8d:b4:25:9b:5c:eb:88: 5b:97:b5:fc:69:74:b5:dd:de:5e:e7:b1:51:14:80: 5d:83:0f:76:4f:4e:fa:4d:ea:17:2e:52:8d:df:72: 48:09:7d:84:44:f1:3a:49:20:9f:20:03:a9:b4:11: 73:d8:37:22:07:02:10:3d:4b:18:8e:0d:00:8a:c2: 57:09:a5:66:7c:d9:63:15:f6:93:31:f4:12:40:cb: bb:83:ea:17:c3:84:9a:ed:93:c2:f3:da:78:ce:10: c1:1d:00:6f:ea:e4:c7:f4:0c:3c:2f:4c:50:fb:02: e7:70:a5:79:a0:4b:57:45:fc:b9:32:e8:6e:5a:e3: f0:62:e2:99:26:0d:40:89:b3:5b:c7:d2:94:6f:21: bb:7e:65:d4:6d:76:81:b6:fa:20:b0:b1:9e:39:72: 6e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:28:21:4E:18:7C:7C:27:DE:57:AD:7E:14:D0:A1:DB:61:69:84:C7 X509v3 Authority Key Identifier: keyid:30:D7:19:F9:C6:D3:7E:2A:C9:F4:D6:D4:B1:F7:D9:78:EC:2A:32:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b8:db:d4:af:a2:98:5b:6c:99:f1:44:51:50:e3:96:bd:db: b3:6f:60:8c:a8:06:41:86:dd:6d:85:35:ff:18:94:e7:1c:fa: 82:9f:65:ee:53:49:0f:13:8e:14:e1:50:b1:74:bc:be:84:5d: e1:c6:45:d2:a1:7e:71:e2:af:81:bd:f2:3b:82:c4:dc:d8:39: c6:d9:ad:9f:61:89:00:9c:65:f8:7d:b4:af:3f:c3:d3:cd:5f: 5d:9e:f3:13:f3:20:07:fb:23:d2:fc:fc:58:d2:db:b6:74:b7: 5d:73:88:14:7a:cb:7b:8b:70:c9:26:ae:f3:de:26:9c:5b:7a: 8f:63:4b:c8:9c:33:63:28:dd:c2:9c:3c:76:49:8a:fa:be:31: 9b:4e:e4:d8:f0:21:02:c8:d6:16:b9:6b:ce:c2:d7:bc:ea:06: 26:e0:09:d8:e4:26:ac:f6:f0:5d:50:ac:e1:96:93:de:87:43: c7:a7:e4:21:bd:3d:11:03:10:23:bb:8c:07:f2:36:cb:63:22: 69:ac:3e:14:84:18:20:c0:4a:d1:fa:71:42:4b:a0:05:e4:a8: db:e3:db:a1:fd:92:be:8a:b3:da:f9:99:57:b8:cc:d4:11:8d: 97:9c:43:e8:b8:fa:9f:7e:41:2e:98:e2:b2:9a:bd:97:82:82: 5f:7f:e4:22 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDM0RDExMC8GA1UEBRMoMzBENzE5RjlDNkQzN0UyQUM5RjRENkQ0QjFGN0Q5NzhF QzJBMzI4OTAeFw0yNTA5MDUwODE5NThaFw0yNTA5MTIwODE5NThaMBgxFjAUBgNV BAMTDTY4YmE5ZDJlLTE2NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0RV7aoPO8ZPeqLWcnv6zRiahu3/e1C74beajMcbtzdA309PrRRXqZPF9en5bQ DqiBdEuZREEFfC7JZL5lcBlTjAJoZyccqpkqZqnrt3PpfPtgaC989iqfiwy21WEH +P8bjbQlm1zriFuXtfxpdLXd3l7nsVEUgF2DD3ZPTvpN6hcuUo3fckgJfYRE8TpJ IJ8gA6m0EXPYNyIHAhA9SxiODQCKwlcJpWZ82WMV9pMx9BJAy7uD6hfDhJrtk8Lz 2njOEMEdAG/q5Mf0DDwvTFD7AudwpXmgS1dF/Lky6G5a4/Bi4pkmDUCJs1vH0pRv Ibt+ZdRtdoG2+iCwsZ45cm5zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6SghThh8 fCfeV61+FNCh22FphMcwHwYDVR0jBBgwFoAUMNcZ+cbTfirJ9NbUsffZeOwqMokw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0MzREL0ZDMjA5MTM4NThE RDExRjA4RkFBREU2NkM0RjlBRTAyL01OY1otY2JUZmlySjlOYlVzZmZaZU93cU1v ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTU5jWi1jYlRmaXJKOU5iVXNmZlplT3dxTW9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 MzREL0ZDMjA5MTM4NThERDExRjA4RkFBREU2NkM0RjlBRTAyL01OY1otY2JUZmly SjlOYlVzZmZaZU93cU1vay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGy429SvophbbJnxRFFQ45a927NvYIyoBkGG3W2FNf8YlOcc+oKfZe5T SQ8TjhThULF0vL6EXeHGRdKhfnHir4G98juCxNzYOcbZrZ9hiQCcZfh9tK8/w9PN X12e8xPzIAf7I9L8/FjS27Z0t11ziBR6y3uLcMkmrvPeJpxbeo9jS8icM2Mo3cKc PHZJivq+MZtO5NjwIQLI1ha5a87C17zqBibgCdjkJqz28F1QrOGWk96HQ8en5CG9 PREDECO7jAfyNstjImmsPhSEGCDAStH6cUJLoAXkqNvj26H9kr6Ks9r5mVe4zNQR jZecQ+i4+p9+QS6Y4rKavZeCgl9/5CI= -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:11 2025 by rpki-client