$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft File: MxG_l-IbcmqcAFa75KhbH38pXzU.mft (raw, json) Hash identifier: Mp49wqZHtbMEvwXbVcLXF8D/A/mqrDxEpRKU5bAlI3U= Subject key identifier: A5:AD:87:5D:01:9E:EA:C9:FE:86:59:EB:87:FC:AA:15:85:B1:3C:42 Authority key identifier: 33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 Certificate issuer: /CN=A91D7454/serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Certificate serial: 1181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft Manifest number: 1175 Signing time: Sun 24 Aug 2025 17:12:01 +0000 Manifest this update: Sun 24 Aug 2025 17:12:00 +0000 Manifest next update: Sun 31 Aug 2025 17:12:00 +0000 Files and hashes: 1: MxG_l-IbcmqcAFa75KhbH38pXzU.crl (hash: dbhadt3z6twIwXMpUWjB8Z3rV2+rKFhs/MSVccXOKRU=) 2: 51273D9A08EE11E99E30172AC4F9AE02.roa (hash: w5Wibqq/9uZKFdplDNzWfbo2U0mV8bZOoGj0UNzkyfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:12:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4481 (0x1181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7454, serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Validity Not Before: Aug 24 17:12:00 2025 GMT Not After : Aug 31 17:12:00 2025 GMT Subject: CN=68ab47e1-ff07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:24:f7:25:24:cb:4a:10:6f:1a:16:5e:54:80: a3:e0:e9:4b:ae:a1:a9:ed:49:67:fb:f7:9d:7c:05: 9a:55:84:7f:25:db:d0:1e:5a:01:06:93:05:90:93: 90:2c:e4:56:12:83:a3:0d:04:a0:01:5f:38:e8:21: ed:bf:0c:a1:9b:57:ee:41:ba:1e:cb:a2:57:da:08: 65:a0:66:4f:fd:19:90:5f:fa:5d:03:ad:17:78:e5: 1c:a3:e1:9a:58:1a:41:3e:81:3c:37:2a:de:d6:c0: b9:df:34:ab:6e:2d:f6:80:d9:0a:ee:de:49:df:84: 1a:36:6c:7f:a2:d6:cf:b7:fa:90:55:4d:20:60:4a: d6:36:b3:52:52:02:14:be:b0:88:7c:e8:61:42:4f: 3f:aa:75:0e:a9:10:bc:f9:b9:90:da:17:73:35:fa: 6e:da:6a:fd:e7:2a:c9:36:39:c3:f7:57:75:dc:36: 75:37:a1:be:82:5e:43:a4:e9:6c:3e:c4:2a:76:53: 7d:99:61:20:41:4f:d0:79:ae:53:a6:a2:d2:d6:90: de:87:94:83:f3:ed:96:c4:2d:ec:17:42:54:c0:25: a1:f4:f5:6f:2b:6d:1d:40:a9:05:e9:63:af:82:46: ef:b9:40:b4:99:8c:bb:8c:51:c6:3f:a5:59:87:8e: 87:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:AD:87:5D:01:9E:EA:C9:FE:86:59:EB:87:FC:AA:15:85:B1:3C:42 X509v3 Authority Key Identifier: keyid:33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:22:de:e1:5d:4a:d1:1c:a2:d6:00:1b:fa:fa:bd:07:f2:16: f2:47:a3:0e:80:d5:01:ba:a8:64:5c:54:51:85:94:ae:df:07: e4:0e:24:87:7c:84:5a:c2:de:f3:14:04:23:21:de:10:e9:c4: c6:11:6f:ac:a7:39:f6:c1:8d:55:eb:bc:15:51:b2:1c:7c:cb: 06:80:75:dc:9e:e7:81:7f:fc:5c:21:28:31:e8:a3:28:59:3c: 05:e5:b5:3e:0a:5e:ed:09:12:3c:92:e6:f7:a2:97:ea:83:4e: 88:4c:a7:1f:2c:f6:8a:9c:41:80:d7:25:55:78:47:57:5e:65: 1e:dc:6f:8d:49:82:f4:28:fe:0b:1b:27:e7:5c:3d:37:ba:d4: f8:c8:64:93:ef:1b:c4:c7:66:f4:6f:5c:5a:24:1e:09:b2:79: 0c:70:36:a7:b3:11:8b:09:e7:96:0f:b7:6f:7e:42:e7:f6:db: ba:9d:fa:ec:87:73:ee:07:bd:93:61:f2:65:14:e1:0e:d5:89: 8a:fb:79:1d:c7:69:00:7d:e8:ed:38:11:8f:62:03:00:4b:ef: 3f:b8:23:a9:93:f7:bc:f2:09:bc:f8:f7:25:92:92:72:fe:a1: a0:93:b6:79:41:9b:ba:07:0f:e5:87:8f:e4:ca:e1:8c:42:a8: d1:35:59:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc0NTQxMTAvBgNVBAUTKDMzMTFCRjk3RTIxQjcyNkE5QzAwNTZCQkU0QTg1QjFG N0YyOTVGMzUwHhcNMjUwODI0MTcxMjAwWhcNMjUwODMxMTcxMjAwWjAYMRYwFAYD VQQDEw02OGFiNDdlMS1mZjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCT3JSTLShBvGhZeVICj4OlLrqGp7Uln+/edfAWaVYR/JdvQHloBBpMFkJOQ LORWEoOjDQSgAV846CHtvwyhm1fuQboey6JX2ghloGZP/RmQX/pdA60XeOUco+Ga WBpBPoE8Nyre1sC53zSrbi32gNkK7t5J34QaNmx/otbPt/qQVU0gYErWNrNSUgIU vrCIfOhhQk8/qnUOqRC8+bmQ2hdzNfpu2mr95yrJNjnD91d13DZ1N6G+gl5DpOls PsQqdlN9mWEgQU/Qea5TpqLS1pDeh5SD8+2WxC3sF0JUwCWh9PVvK20dQKkF6WOv gkbvuUC0mYy7jFHGP6VZh46HQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWth10B nurJ/oZZ64f8qhWFsTxCMB8GA1UdIwQYMBaAFDMRv5fiG3JqnABWu+SoWx9/KV81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzQ1NC83OUM2MUU3QzA4 RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNtcWNBRmE3NUtoYkgzOHBY elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014R19sLUliY21xY0FGYTc1S2hiSDM4cFh6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzQ1NC83OUM2MUU3QzA4RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNt cWNBRmE3NUtoYkgzOHBYelUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHIt7hXUrRHKLWABv6+r0H8hbyR6MOgNUBuqhkXFRRhZSu3wfkDiSH fIRawt7zFAQjId4Q6cTGEW+spzn2wY1V67wVUbIcfMsGgHXcnueBf/xcISgx6KMo WTwF5bU+Cl7tCRI8kub3opfqg06ITKcfLPaKnEGA1yVVeEdXXmUe3G+NSYL0KP4L GyfnXD03utT4yGST7xvEx2b0b1xaJB4JsnkMcDansxGLCeeWD7dvfkLn9tu6nfrs h3PuB72TYfJlFOEO1YmK+3kdx2kAfejtOBGPYgMAS+8/uCOpk/e88gm8+PclkpJy /qGgk7Z5QZu6Bw/lh4/kyuGMQqjRNVmj -----END CERTIFICATE-----Generated at Sun Aug 24 21:48:17 2025 by rpki-client