$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft File: mMl-BS19mtU2CVm50-B22t126gE.mft (raw, json) Hash identifier: cajBmEBCibJal3l08lqQwoN8waISuS0Q+QG917TW2ng= Subject key identifier: 95:32:7A:90:24:78:A1:4E:41:EA:36:73:3B:A8:F7:50:40:92:B7:64 Authority key identifier: 98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01 Certificate issuer: /CN=A91CB435/serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01 Certificate serial: 0707 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft Manifest number: 06FA Signing time: Thu 04 Sep 2025 22:13:17 +0000 Manifest this update: Thu 04 Sep 2025 22:13:17 +0000 Manifest next update: Thu 11 Sep 2025 22:13:17 +0000 Files and hashes: 1: mMl-BS19mtU2CVm50-B22t126gE.crl (hash: Av8N/QQNGAlojgR4TaW1MmRMMMX50iJjRtQUmxBw1y0=) 2: F07A52005BEA11EB9863331EC4F9AE02.roa (hash: t/jzVO6L3wgo+QH7mzqB0zSXy5Nwbra0pOtYvgiFmIs=) 3: F1541C9C5BEA11EB9863331EC4F9AE02.roa (hash: bMetSmWwjzP6LMILwQp0327+1V3svzhvOdiLjBriktI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.crl rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1799 (0x707) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB435, serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01 Validity Not Before: Sep 4 22:13:17 2025 GMT Not After : Sep 11 22:13:17 2025 GMT Subject: CN=68ba0efd-6a00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ab:7f:ba:0f:12:4c:03:0f:2f:9d:a0:24:24: 22:1b:59:2b:26:e2:66:f7:16:6e:c7:7b:a9:4c:7d: f9:21:3b:01:01:6a:a9:6d:f8:38:66:57:20:28:ba: a5:9b:38:b8:5e:59:77:fb:3a:80:d7:b0:5e:4e:bc: c0:b6:d4:29:62:32:cf:8a:2f:30:b7:9a:65:02:4c: 6f:bf:89:ab:00:67:67:d2:0d:49:65:27:37:1e:be: 4b:2a:55:48:62:ce:78:4d:87:45:1f:65:c7:19:30: 18:4f:fa:7f:7d:fa:bc:9d:50:2f:34:f5:5e:60:08: 17:09:32:0c:45:90:86:84:aa:b8:19:3d:93:59:b7: 2c:1f:56:3c:75:de:9e:65:23:79:62:12:40:2d:98: 4e:c5:cb:95:6c:ce:c0:a1:c3:3b:da:d2:fe:ba:f0: a9:3b:fa:8d:71:57:8e:98:9f:fd:22:4e:89:4e:fd: 18:97:04:a1:63:44:30:55:ec:46:e9:0b:db:37:61: 80:79:e1:7a:da:75:79:d2:24:6e:5c:8f:94:80:8c: c4:18:78:eb:94:01:30:5c:bf:c6:e7:39:70:6b:0d: 56:a5:4a:60:2c:b7:b2:b9:43:ec:89:4e:65:bf:58: af:37:0c:fe:db:a2:5d:f4:25:dd:00:57:bd:03:b9: be:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:32:7A:90:24:78:A1:4E:41:EA:36:73:3B:A8:F7:50:40:92:B7:64 X509v3 Authority Key Identifier: keyid:98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:bf:04:83:ed:64:ee:0c:d2:23:ff:d5:4c:4c:d1:f0:17:cb: 8f:d8:06:db:17:3c:bc:92:05:6a:ee:30:c6:c5:1d:77:9e:f5: 93:e2:00:cf:c7:11:99:f1:58:c1:f8:69:29:42:1d:8b:28:d2: 60:01:51:40:99:7d:6e:2d:e5:b0:0e:74:36:ed:f7:a4:02:21: a6:0e:59:a9:cb:98:60:06:34:92:c4:68:90:f8:0f:c1:70:8e: ad:14:64:af:4c:7b:0a:30:87:e4:aa:b6:3f:c8:11:b6:2d:d5: 06:71:77:ca:74:92:12:9f:e1:56:e2:16:de:53:e6:5e:34:09: 5c:df:ea:dd:ca:84:41:9c:cb:c0:a0:12:0d:8f:60:b9:3e:ec: 1d:dd:1a:a4:46:d7:c2:da:1d:ba:b3:d1:70:dc:cb:cd:7a:2b: 52:23:c3:fa:24:a6:89:ba:d3:a5:0f:e4:7c:4f:00:c1:8f:bd: 88:81:4b:58:83:a4:7b:13:ac:32:db:15:c9:77:cf:bf:f8:2f: 08:53:25:a8:97:61:86:9d:4c:fc:fa:7a:5c:fe:eb:d5:94:20: c1:55:b4:b3:48:28:9f:30:db:c7:8b:0b:80:78:24:38:7f:4c: 0d:19:03:41:15:bc:64:1a:14:fb:9d:94:7f:6f:5b:86:1c:a1: 10:c9:4d:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I0MzUxMTAvBgNVBAUTKDk4Qzk3RTA1MkQ3RDlBRDUzNjA5NTlCOUQzRTA3NkRB REQ3NkVBMDEwHhcNMjUwOTA0MjIxMzE3WhcNMjUwOTExMjIxMzE3WjAYMRYwFAYD VQQDEw02OGJhMGVmZC02YTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqt/ug8STAMPL52gJCQiG1krJuJm9xZux3upTH35ITsBAWqpbfg4ZlcgKLql mzi4Xll3+zqA17BeTrzAttQpYjLPii8wt5plAkxvv4mrAGdn0g1JZSc3Hr5LKlVI Ys54TYdFH2XHGTAYT/p/ffq8nVAvNPVeYAgXCTIMRZCGhKq4GT2TWbcsH1Y8dd6e ZSN5YhJALZhOxcuVbM7AocM72tL+uvCpO/qNcVeOmJ/9Ik6JTv0YlwShY0QwVexG 6QvbN2GAeeF62nV50iRuXI+UgIzEGHjrlAEwXL/G5zlwaw1WpUpgLLeyuUPsiU5l v1ivNwz+26Jd9CXdAFe9A7m+kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUyepAk eKFOQeo2czuo91BAkrdkMB8GA1UdIwQYMBaAFJjJfgUtfZrVNglZudPgdtrdduoB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjQzNS9FQzA1OTA0NjVC RTkxMUVCOTY2ODAwMUVDNEY5QUUwMi9tTWwtQlMxOW10VTJDVm01MC1CMjJ0MTI2 Z0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL21NbC1CUzE5bXRVMkNWbTUwLUIyMnQxMjZnRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjQzNS9FQzA1OTA0NjVCRTkxMUVCOTY2ODAwMUVDNEY5QUUwMi9tTWwtQlMxOW10 VTJDVm01MC1CMjJ0MTI2Z0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsvwSD7WTuDNIj/9VMTNHwF8uP2AbbFzy8kgVq7jDGxR13nvWT4gDP xxGZ8VjB+GkpQh2LKNJgAVFAmX1uLeWwDnQ27fekAiGmDlmpy5hgBjSSxGiQ+A/B cI6tFGSvTHsKMIfkqrY/yBG2LdUGcXfKdJISn+FW4hbeU+ZeNAlc3+rdyoRBnMvA oBINj2C5Puwd3RqkRtfC2h26s9Fw3MvNeitSI8P6JKaJutOlD+R8TwDBj72IgUtY g6R7E6wy2xXJd8+/+C8IUyWol2GGnUz8+npc/uvVlCDBVbSzSCifMNvHiwuAeCQ4 f0wNGQNBFbxkGhT7nZR/b1uGHKEQyU3R -----END CERTIFICATE-----Generated at Sat Sep 6 14:24:18 2025 by rpki-client