$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft File: MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft (raw, json) Hash identifier: x0hJBa4EpKfCwHNnwo+EknVjaS0unEZFQCwFYFa6ZG0= Subject key identifier: 49:06:16:ED:F1:7F:00:75:68:28:78:B7:B1:35:21:A5:E5:EA:C5:E5 Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft Manifest number: 018D Signing time: Fri 05 Sep 2025 03:55:54 +0000 Manifest this update: Fri 05 Sep 2025 03:55:54 +0000 Manifest next update: Fri 12 Sep 2025 03:55:54 +0000 Files and hashes: 1: MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl (hash: +kW/DHqSN8AZgxEgAoDTwmF910wocvG6FFKesrc9XEc=) 2: 268DF20A940C11EE9B034255C4F9AE02.roa (hash: aCRExS5DnfsTuKFO3j5l5FwgpOm/WlnAPskO0rJLDBs=) 3: 2732E7CE940C11EE9B034255C4F9AE02.roa (hash: DDHSWZe791uy4+U5yKnw8zBiUtA+w+RcnsWDB5ybRyQ=) 4: D29109C4EC6E11EEAEF9610BC4F9AE02.roa (hash: BcLY7oMUnLKfEC6kmeMo8UAfxh3cVF8GTCR1ucwc+GE=) 5: 7474F998377111EE8AFEB74DC4F9AE02.roa (hash: O0JvuW/fAeVeuUsjAYxUZNZozxxHkizgMHqq+vXDxb8=) 6: B0562E7AEC6E11EEB7FC060BC4F9AE02.roa (hash: i5y01FxwrzwvdRLuJ1QWhaUFh0DlOeo/c50i3fKnhnM=) 7: D2093EF4EC6E11EEAEF9610BC4F9AE02.roa (hash: YKptoaPA/kG9oQGSQXRVkcCT64hKQtrNBVoucH+n7WM=) 8: E9874B2A16D011EF90793868C4F9AE02.roa (hash: OMocOIigdUMlThynKaISsjS6m/5nmlE5jKORfpqeU4g=) 9: AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa (hash: F0RV+JTQGhHlnI/6EwNqqM+RL/9QUrqm1TlGHVe9hmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B94, serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Validity Not Before: Sep 5 03:55:54 2025 GMT Not After : Sep 12 03:55:54 2025 GMT Subject: CN=68ba5f4a-7153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:51:4a:00:d2:6d:30:e3:ae:0c:8e:3d:89:b1: de:56:1d:da:f4:90:a9:43:53:70:6e:04:43:f1:a3: a4:f1:c2:aa:39:9b:57:99:4f:c8:83:15:88:27:51: de:75:d0:68:88:6f:e0:7f:98:24:af:9e:f0:24:c4: 80:cd:d5:96:a9:30:e3:28:e9:8d:a9:18:cc:73:89: 66:ce:df:51:39:97:d4:3d:68:cb:3d:2d:11:6f:e6: bb:df:ea:b4:dd:9f:4b:63:9c:3e:16:2c:04:89:51: 8a:d7:01:26:66:de:fa:d4:94:e2:79:33:ac:dd:ec: ae:1e:0c:a1:3b:13:18:c8:4f:25:bb:c6:0d:5d:d9: e3:9f:16:ca:4a:e3:23:d1:a1:e2:7b:28:95:9c:7d: 3a:4c:2a:f1:1e:e8:09:fa:74:f1:a3:43:5b:5d:4b: 2c:c8:a1:d8:8e:81:bf:8a:a8:df:e1:da:9e:54:2f: 42:3b:45:1c:b4:ef:65:53:95:6d:ff:da:62:52:b8: 6e:45:2b:bc:12:ca:fb:1c:e6:6f:31:82:7f:d1:7e: ea:c3:e2:b4:e3:7d:c5:97:f6:e2:ba:81:e4:be:39: 7d:3e:eb:99:c6:6e:3f:0c:d7:be:6e:71:b5:51:11: 64:a0:1a:2c:12:71:dc:b1:2b:23:0a:e5:cb:7c:ce: 0e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:06:16:ED:F1:7F:00:75:68:28:78:B7:B1:35:21:A5:E5:EA:C5:E5 X509v3 Authority Key Identifier: keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:fe:bf:c3:0c:48:b0:e3:54:be:4f:18:48:ed:47:37:b3:78: a7:b2:d6:ce:f7:5a:da:9a:81:a4:55:ec:5d:de:5d:8a:d5:fa: 5a:59:e7:bd:08:72:6d:08:d4:08:46:77:4f:94:fd:68:ae:6a: 04:b9:0c:d2:bd:2f:a5:d7:6c:d0:4e:e6:f5:00:30:a2:5a:7d: ad:27:0c:a3:7d:b9:4c:f6:69:4d:74:a3:41:94:b0:65:57:d6: ae:de:0a:55:6f:e7:4a:98:83:ef:5e:e5:6e:49:dd:80:a8:a8: 84:4e:27:3f:83:7e:45:a3:91:b7:63:6c:83:f1:35:a0:18:70: 4b:92:5a:9e:31:75:3f:64:0d:48:e6:e5:76:82:3e:b5:52:3e: ae:1a:1b:3d:6f:53:26:28:eb:d6:3f:dc:17:6b:b4:96:b5:86: 7e:d4:80:57:36:62:c5:2e:b6:19:ce:51:6f:df:ee:a7:03:9a: a4:ac:6c:79:8e:1c:7c:64:eb:f8:83:6a:03:70:7d:94:24:06: f7:f2:67:27:e4:1e:1b:be:8e:05:ec:c9:33:b9:ae:f5:dc:b6: 7e:64:28:2e:88:dd:00:c5:4a:c5:55:9b:b5:58:97:d1:27:95: 47:1e:75:f5:39:27:37:d3:21:b5:a5:cf:a0:8b:1a:b9:bc:24: 7d:c9:6d:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3 RDREQUE4OTAwHhcNMjUwOTA1MDM1NTU0WhcNMjUwOTEyMDM1NTU0WjAYMRYwFAYD VQQDEw02OGJhNWY0YS03MTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFFKANJtMOOuDI49ibHeVh3a9JCpQ1NwbgRD8aOk8cKqOZtXmU/IgxWIJ1He ddBoiG/gf5gkr57wJMSAzdWWqTDjKOmNqRjMc4lmzt9ROZfUPWjLPS0Rb+a73+q0 3Z9LY5w+FiwEiVGK1wEmZt761JTieTOs3eyuHgyhOxMYyE8lu8YNXdnjnxbKSuMj 0aHieyiVnH06TCrxHugJ+nTxo0NbXUssyKHYjoG/iqjf4dqeVC9CO0UctO9lU5Vt /9piUrhuRSu8Esr7HOZvMYJ/0X7qw+K0433Fl/biuoHkvjl9PuuZxm4/DNe+bnG1 URFkoBosEnHcsSsjCuXLfM4OQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkGFu3x fwB1aCh4t7E1IaXl6sXlMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3 NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0I5NC9DQzc0MUJCNjM3NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJu V2drVVMyWjlPVFI5VGFxSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc/r/DDEiw41S+TxhI7Uc3s3instbO91ramoGkVexd3l2K1fpaWee9 CHJtCNQIRndPlP1ormoEuQzSvS+l12zQTub1ADCiWn2tJwyjfblM9mlNdKNBlLBl V9au3gpVb+dKmIPvXuVuSd2AqKiETic/g35Fo5G3Y2yD8TWgGHBLklqeMXU/ZA1I 5uV2gj61Uj6uGhs9b1MmKOvWP9wXa7SWtYZ+1IBXNmLFLrYZzlFv3+6nA5qkrGx5 jhx8ZOv4g2oDcH2UJAb38mcn5B4bvo4F7Mkzua713LZ+ZCguiN0AxUrFVZu1WJfR J5VHHnX1OSc30yG1pc+gixq5vCR9yW0l -----END CERTIFICATE-----Generated at Sat Sep 6 11:50:01 2025 by rpki-client