$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: K6UKkBKr7F9KN4olqT/oPKFfYJhoSa9CJX6m1Et1gSQ= Subject key identifier: 10:28:0C:A8:E4:CC:0C:F9:B6:67:70:C0:C6:6C:72:2E:56:AB:85:9C Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 34AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 34AC Signing time: Sun 24 Aug 2025 15:03:19 +0000 Manifest this update: Sun 24 Aug 2025 15:03:18 +0000 Manifest next update: Sun 31 Aug 2025 15:03:18 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: i1lx1PEI8NhyA9sVklCFJXLSq92y4hqLo2U/gZT5nIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13484 (0x34ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Aug 24 15:03:18 2025 GMT Not After : Aug 31 15:03:18 2025 GMT Subject: CN=68ab29b6-6410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:06:95:8c:e8:99:2d:05:26:7f:56:53:69:bd: 35:3c:49:16:bd:63:9c:8d:58:2b:69:9a:4b:f5:7d: 91:a8:c5:a3:c5:4d:45:3f:9e:6c:e6:f1:ee:c2:e2: b0:69:31:cb:b2:72:45:53:50:25:c9:3a:ff:a9:20: 17:29:bf:1d:f9:40:e4:7c:e5:db:36:2b:59:6f:01: d8:37:c8:8d:b0:eb:d0:e5:4c:9e:83:20:de:30:f9: 1e:7c:9d:90:26:4e:3d:8f:a5:26:31:88:c4:13:ed: e3:76:6d:44:b8:d0:3e:6c:23:c8:94:56:ec:1f:ef: b8:ec:b6:2c:f5:89:13:62:3c:9e:fb:46:59:2c:e1: 86:5e:73:86:e5:3b:4d:2c:0f:e8:68:e3:22:39:c8: 69:9b:89:67:60:0e:99:12:80:17:5d:4d:ff:d9:8e: b2:e8:35:b7:ab:ae:b5:be:8f:21:60:b6:35:9c:53: cd:fc:fd:41:d6:ba:d8:ea:5f:00:14:0d:02:93:5f: 93:d3:3d:29:61:2a:85:a3:b9:6d:71:56:0e:18:e6: c0:4e:35:17:87:b4:66:d3:a4:2e:2b:35:4b:f5:0e: fd:d9:3a:94:b1:5c:74:ff:6f:50:26:87:b2:f9:bc: b0:1f:c6:9e:85:cd:36:e0:da:3c:40:62:26:80:b3: 09:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:28:0C:A8:E4:CC:0C:F9:B6:67:70:C0:C6:6C:72:2E:56:AB:85:9C X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:75:98:a2:66:52:b7:ad:49:61:18:f9:e8:72:28:17:0c:e5: 6b:18:cb:af:68:95:98:dc:56:cd:6c:11:88:af:52:46:4e:ba: 82:86:7e:c2:b3:ed:3b:0c:5d:2a:44:3c:71:da:83:24:fb:8a: 39:d0:c0:25:4d:a5:70:06:b5:51:4a:16:54:9b:f3:53:c4:41: e5:2f:8d:6d:a9:40:2c:22:fd:e7:ba:07:9e:55:b0:c8:10:40: 64:51:58:7e:42:af:16:98:be:81:9b:e3:f3:d3:50:76:ec:e3: 0e:06:03:1d:b1:70:21:fb:75:68:64:8d:61:63:88:d1:83:53: 95:ee:9c:fc:d0:ea:93:e9:24:69:20:2d:18:d1:ba:85:2a:36: 64:8a:36:5f:ea:be:87:4c:b4:33:2f:bc:58:cd:79:1f:49:d2: a9:08:a2:20:3a:a6:e2:cc:e4:9b:8f:c1:9a:1e:77:9b:0c:2a: 77:1f:f9:5a:a6:5b:3e:11:1c:dc:52:f2:ce:14:30:fe:4a:6b: ed:db:e5:b6:94:f3:ca:04:73:0f:0c:9a:b7:db:fc:30:f8:df: 3e:34:ce:4a:d1:6c:74:95:9e:24:91:0a:b7:34:c2:0d:dd:ec: 12:82:64:f8:13:ec:fe:0f:2b:49:9f:09:2d:67:04:3a:e2:94: 39:d9:a0:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjUwODI0MTUwMzE4WhcNMjUwODMxMTUwMzE4WjAYMRYwFAYD VQQDEw02OGFiMjliNi02NDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAaVjOiZLQUmf1ZTab01PEkWvWOcjVgraZpL9X2RqMWjxU1FP55s5vHuwuKw aTHLsnJFU1AlyTr/qSAXKb8d+UDkfOXbNitZbwHYN8iNsOvQ5UyegyDeMPkefJ2Q Jk49j6UmMYjEE+3jdm1EuNA+bCPIlFbsH++47LYs9YkTYjye+0ZZLOGGXnOG5TtN LA/oaOMiOchpm4lnYA6ZEoAXXU3/2Y6y6DW3q661vo8hYLY1nFPN/P1B1rrY6l8A FA0Ck1+T0z0pYSqFo7ltcVYOGObATjUXh7Rm06QuKzVL9Q792TqUsVx0/29QJoey +bywH8aehc024No8QGImgLMJBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAoDKjk zAz5tmdwwMZsci5Wq4WcMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwdZiiZlK3rUlhGPnocigXDOVrGMuvaJWY3FbNbBGIr1JGTrqChn7C s+07DF0qRDxx2oMk+4o50MAlTaVwBrVRShZUm/NTxEHlL41tqUAsIv3nugeeVbDI EEBkUVh+Qq8WmL6Bm+Pz01B27OMOBgMdsXAh+3VoZI1hY4jRg1OV7pz80OqT6SRp IC0Y0bqFKjZkijZf6r6HTLQzL7xYzXkfSdKpCKIgOqbizOSbj8GaHnebDCp3H/la pls+ERzcUvLOFDD+Smvt2+W2lPPKBHMPDJq32/ww+N8+NM5K0Wx0lZ4kkQq3NMIN 3ewSgmT4E+z+DytJnwktZwQ64pQ52aCo -----END CERTIFICATE-----Generated at Sun Aug 24 21:40:51 2025 by rpki-client