$ rpki-client -vvf rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft File: MxjodUE2Qh4kSmxB3aXezBDaj4E.mft (raw, json) Hash identifier: KnaCLI+aOoRxxyUYkNIagU4yGBa4PTIWnizL7txDa1M= Subject key identifier: 52:A6:67:CD:17:9E:44:6B:F1:AE:25:38:8C:0E:25:00:30:25:59:47 Authority key identifier: 33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81 Certificate issuer: /CN=A91490C8/serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft Manifest number: 0157 Signing time: Thu 21 Aug 2025 04:13:57 +0000 Manifest this update: Thu 21 Aug 2025 04:13:56 +0000 Manifest next update: Thu 28 Aug 2025 04:13:56 +0000 Files and hashes: 1: MxjodUE2Qh4kSmxB3aXezBDaj4E.crl (hash: ibCx4KbXvg9OmpTNfaeDlJ7AiWWYDLFtNZv4+/akNK4=) 2: 2201EFC86E5211EEB027A974C4F9AE02.roa (hash: 4nQ3/xG4CFEbotiusShRvyeKgM0UbijAal8OSC/u9HU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 04:13:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91490C8, serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81 Validity Not Before: Aug 21 04:13:56 2025 GMT Not After : Aug 28 04:13:56 2025 GMT Subject: CN=68a69d05-27c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e9:57:34:e8:a6:0e:6e:33:de:d4:0f:4c:88: 7c:4e:82:1f:1f:31:4d:57:69:03:20:ab:dc:c7:ee: ac:49:4d:78:96:8b:c5:4c:f1:b2:a4:a9:72:fa:02: 70:2d:81:05:37:42:77:40:23:a5:ed:f4:e8:bc:25: b8:59:f9:ff:fc:3d:b4:fa:6e:7a:53:67:65:1d:fd: cd:98:f6:d7:cc:6f:71:29:34:ad:1e:07:9a:2b:71: 76:42:8f:94:5c:19:e4:a2:a6:aa:14:98:7c:ea:40: 05:1e:87:48:2f:04:4a:9f:8f:9b:2b:d0:5c:dc:17: e9:fc:ef:80:2e:e8:0e:44:04:61:9d:2f:cd:24:30: bd:84:dc:f7:26:5f:8e:56:31:51:0e:30:fc:97:29: e6:dd:91:74:c1:04:d0:d2:20:d0:91:37:dc:71:f3: bc:9c:3d:aa:38:1e:92:d7:d9:e3:7e:e7:6d:0d:74: e9:6d:bf:86:f9:5d:de:fa:5b:79:35:bb:3b:49:a5: 35:04:ee:fe:16:f3:17:c4:6f:04:31:77:16:8d:ff: b3:fe:5e:07:82:79:94:25:62:46:d3:96:1d:b1:10: 49:05:ed:59:7d:f1:38:aa:a1:92:c7:5f:d4:f9:f7: 00:f2:a6:15:51:b6:00:7c:d4:0a:2c:e4:60:ee:91: 13:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A6:67:CD:17:9E:44:6B:F1:AE:25:38:8C:0E:25:00:30:25:59:47 X509v3 Authority Key Identifier: keyid:33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:44:d2:7f:30:02:da:e1:be:9b:0a:37:7b:46:de:d6:62:50: 33:bc:cc:05:fd:e8:26:62:49:27:a3:4d:ea:b6:8e:c0:03:0f: 28:fa:8b:21:95:a0:ae:df:f5:7a:6b:7b:34:7d:23:55:65:56: a3:80:db:4a:13:79:ea:1a:f9:2b:89:d6:9f:09:12:75:fb:24: fd:cc:f1:9a:14:08:65:fe:09:d3:91:48:07:4e:98:a7:73:8f: d4:3f:12:31:8f:2a:fa:25:ea:77:18:63:a8:a7:41:47:56:ab: 19:07:8a:8a:76:15:8c:c1:75:7a:07:c5:4b:59:6e:15:5e:58: 10:c2:88:eb:b5:39:c8:2f:69:bc:4d:9f:b1:90:f2:12:90:b1: 2d:ac:de:62:2b:d4:20:ef:7e:58:11:2b:65:e8:0a:bd:8e:b6: f1:c2:ee:1b:f8:e2:77:f0:10:dd:47:61:6f:2f:33:4d:63:f2: 2d:1a:0b:0e:12:10:82:da:25:fa:b0:ac:4e:80:b3:73:b4:92: 12:07:8b:70:9f:a1:40:e0:58:64:7e:80:95:b6:6b:2d:8f:39: ac:0d:28:73:16:a1:69:35:9b:a7:a4:e5:70:e0:b4:af:88:cb: 7a:44:b6:14:3b:87:07:1b:1f:b4:66:fe:fe:7a:d6:03:3a:96: 37:cd:e3:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkwQzgxMTAvBgNVBAUTKDMzMThFODc1NDEzNjQyMUUyNDRBNkM0MUREQTVERUND MTBEQThGODEwHhcNMjUwODIxMDQxMzU2WhcNMjUwODI4MDQxMzU2WjAYMRYwFAYD VQQDEw02OGE2OWQwNS0yN2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyelXNOimDm4z3tQPTIh8ToIfHzFNV2kDIKvcx+6sSU14lovFTPGypKly+gJw LYEFN0J3QCOl7fTovCW4Wfn//D20+m56U2dlHf3NmPbXzG9xKTStHgeaK3F2Qo+U XBnkoqaqFJh86kAFHodILwRKn4+bK9Bc3Bfp/O+ALugORARhnS/NJDC9hNz3Jl+O VjFRDjD8lynm3ZF0wQTQ0iDQkTfccfO8nD2qOB6S19njfudtDXTpbb+G+V3e+lt5 Nbs7SaU1BO7+FvMXxG8EMXcWjf+z/l4HgnmUJWJG05YdsRBJBe1ZffE4qqGSx1/U +fcA8qYVUbYAfNQKLORg7pETQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKmZ80X nkRr8a4lOIwOJQAwJVlHMB8GA1UdIwQYMBaAFDMY6HVBNkIeJEpsQd2l3swQ2o+B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTBDOC9DQzIzMzhEQzZF NTExMUVFQTQ3RTJCNzRDNEY5QUUwMi9NeGpvZFVFMlFoNGtTbXhCM2FYZXpCRGFq NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014am9kVUUyUWg0a1NteEIzYVhlekJEYWo0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTBDOC9DQzIzMzhEQzZFNTExMUVFQTQ3RTJCNzRDNEY5QUUwMi9NeGpvZFVFMlFo NGtTbXhCM2FYZXpCRGFqNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIRNJ/MALa4b6bCjd7Rt7WYlAzvMwF/egmYkkno03qto7AAw8o+osh laCu3/V6a3s0fSNVZVajgNtKE3nqGvkridafCRJ1+yT9zPGaFAhl/gnTkUgHTpin c4/UPxIxjyr6Jep3GGOop0FHVqsZB4qKdhWMwXV6B8VLWW4VXlgQwojrtTnIL2m8 TZ+xkPISkLEtrN5iK9Qg735YEStl6Aq9jrbxwu4b+OJ38BDdR2FvLzNNY/ItGgsO EhCC2iX6sKxOgLNztJISB4twn6FA4FhkfoCVtmstjzmsDShzFqFpNZunpOVw4LSv iMt6RLYUO4cHGx+0Zv7+etYDOpY3zeMX -----END CERTIFICATE-----Generated at Fri Aug 22 16:32:13 2025 by rpki-client