$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: 7k0WZUFOchubOjV6u6OE/gkWbcMUuwbYQ7Y6NStttvs= Subject key identifier: FF:CD:6D:07:07:40:3E:DB:F3:FA:18:FC:30:08:79:42:47:20:A4:B4 Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 0725 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 0725 Signing time: Sun 20 Jul 2025 14:49:49 +0000 Manifest this update: Sun 20 Jul 2025 14:49:49 +0000 Manifest next update: Sun 27 Jul 2025 14:49:49 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: MCaVV318WjG6C3UpQS9WjjWCJuL2+FGL3JLwWgpX6ZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:49:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1829 (0x725) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: Jul 20 14:49:49 2025 GMT Not After : Jul 27 14:49:49 2025 GMT Subject: CN=687d020d-1d0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c3:24:18:4d:3b:e9:46:01:18:6a:17:de:fe: 48:9b:07:1c:0d:2d:10:eb:c1:55:e2:e5:9b:6a:4b: 13:8d:2d:8b:5a:30:6b:e9:a7:65:5a:e8:0d:2e:a2: f3:db:4b:36:f9:16:8b:a0:be:e7:6d:4d:83:28:16: 5f:e8:74:d5:35:58:5b:53:11:c8:c4:59:d1:3b:3a: 50:57:1d:a3:67:ec:81:19:fb:b2:78:59:a3:7f:70: 69:fa:35:38:2e:17:b7:fd:62:69:60:f8:f0:45:c5: 47:54:c6:5f:ee:eb:a3:6b:b9:57:0d:a9:21:e1:ca: 53:95:f6:9b:08:af:ae:c0:b7:33:7c:48:57:2a:ae: 9c:44:bc:df:9f:09:b3:b0:d1:78:61:a6:68:e2:de: 50:92:f8:95:73:a0:4f:fe:96:61:9d:8f:91:4e:45: e0:d3:af:3d:75:17:82:04:f6:c3:84:f8:2d:22:50: 18:e7:1a:85:20:17:dd:e2:84:b5:c7:17:7d:d7:e4: f4:5d:c3:20:94:65:39:84:ce:89:e7:ae:bc:71:25: 9c:8c:26:f8:1a:22:b9:56:61:a3:a6:cd:66:39:c9: 0b:d8:e7:e7:17:93:d3:86:5d:93:51:24:36:cc:cc: 26:01:ce:d7:af:17:dc:06:98:48:1f:25:9e:bf:32: 37:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:CD:6D:07:07:40:3E:DB:F3:FA:18:FC:30:08:79:42:47:20:A4:B4 X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:6d:9c:bd:ad:73:81:b7:dc:7b:8e:5b:ff:d6:d0:9a:c0:8b: 40:a0:95:94:02:96:02:ec:16:15:9e:9e:99:a5:3e:88:be:cc: c6:e0:7f:c2:ce:71:da:e2:5b:ce:79:f7:ec:6f:e6:84:ab:d8: 1e:66:05:57:f2:c9:38:8b:f9:c4:fa:22:4a:f8:11:43:c2:1a: 3b:88:b7:59:7b:43:9c:cb:f9:c3:89:3a:b1:3c:27:aa:f9:c4: 7d:5f:3a:35:ba:76:eb:b8:11:79:c8:d4:24:b3:8b:95:e6:8f: dc:52:1d:43:10:53:bc:62:e2:fa:a1:e5:a7:a4:c7:d6:7b:55: 2a:fc:f0:2b:e6:0d:e4:ee:89:9f:2c:46:63:a1:19:43:96:28: e3:2e:8d:7e:c4:64:dd:58:8d:46:6d:d5:79:0b:a8:5f:66:b6: 31:c3:f2:f0:16:85:74:6b:50:65:2c:d2:02:06:ae:da:8a:3a: 95:eb:3b:6e:8d:a0:f7:54:1d:a2:17:b1:b9:e4:44:5c:45:d9: 8f:f3:c7:6f:c4:1a:95:11:6b:0e:7c:ad:ca:79:2e:49:c1:15: df:8c:e2:a7:e9:bb:04:e3:8a:a1:00:b1:1d:5b:af:85:8e:e8: d5:28:b5:bf:44:bc:4e:a1:8a:57:8d:33:60:bd:9b:57:90:4b: 3e:9e:1d:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjUwNzIwMTQ0OTQ5WhcNMjUwNzI3MTQ0OTQ5WjAYMRYwFAYD VQQDEw02ODdkMDIwZC0xZDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6cMkGE076UYBGGoX3v5ImwccDS0Q68FV4uWbaksTjS2LWjBr6adlWugNLqLz 20s2+RaLoL7nbU2DKBZf6HTVNVhbUxHIxFnROzpQVx2jZ+yBGfuyeFmjf3Bp+jU4 Lhe3/WJpYPjwRcVHVMZf7uuja7lXDakh4cpTlfabCK+uwLczfEhXKq6cRLzfnwmz sNF4YaZo4t5QkviVc6BP/pZhnY+RTkXg0689dReCBPbDhPgtIlAY5xqFIBfd4oS1 xxd91+T0XcMglGU5hM6J5668cSWcjCb4GiK5VmGjps1mOckL2OfnF5PThl2TUSQ2 zMwmAc7XrxfcBphIHyWevzI3MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/NbQcH QD7b8/oY/DAIeUJHIKS0MB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAubZy9rXOBt9x7jlv/1tCawItAoJWUApYC7BYVnp6ZpT6IvszG4H/C znHa4lvOeffsb+aEq9geZgVX8sk4i/nE+iJK+BFDwho7iLdZe0Ocy/nDiTqxPCeq +cR9Xzo1unbruBF5yNQks4uV5o/cUh1DEFO8YuL6oeWnpMfWe1Uq/PAr5g3k7omf LEZjoRlDlijjLo1+xGTdWI1GbdV5C6hfZrYxw/LwFoV0a1BlLNICBq7aijqV6ztu jaD3VB2iF7G55ERcRdmP88dvxBqVEWsOfK3KeS5JwRXfjOKn6bsE44qhALEdW6+F jujVKLW/RLxOoYpXjTNgvZtXkEs+nh1D -----END CERTIFICATE-----Generated at Mon Jul 21 02:07:53 2025 by rpki-client