$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: lgEvBxTghUBUTuPR+jyV/k+ZzozN6MOH9ot4sRGgWlA= Subject key identifier: 3E:75:33:A1:49:C3:5B:8A:2B:6D:88:9E:FF:B2:7E:1E:3D:64:CA:D0 Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 0754 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 0754 Signing time: Sat 18 Oct 2025 14:53:57 +0000 Manifest this update: Sat 18 Oct 2025 14:53:56 +0000 Manifest next update: Sat 25 Oct 2025 14:53:56 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: ircDGakm/eSr+RSlA64jkUop/JgLd7PzqKHG9emLY9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1876 (0x754) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: Oct 18 14:53:56 2025 GMT Not After : Oct 25 14:53:56 2025 GMT Subject: CN=68f3aa05-61e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ea:d2:7e:87:83:3e:0d:bd:41:0b:e6:35:d6: 1e:8f:4f:05:12:74:4f:02:09:93:db:81:d0:f2:1f: b3:7d:f1:9b:f6:48:72:01:7e:76:69:f1:61:a4:1d: 58:24:9a:39:53:11:d8:29:4d:09:29:ea:91:94:c8: 16:12:15:84:06:62:d2:a3:09:bc:c4:24:1b:63:eb: 0c:dc:db:6f:5c:cb:24:d3:5a:10:2a:62:19:8d:cf: 4a:d6:f3:ac:38:63:20:33:7c:0d:5e:2b:f6:3b:5c: b7:7f:5a:a7:23:d1:8e:69:9e:fa:22:ce:18:a4:fa: e3:97:a1:ab:5d:a0:26:9b:2f:0a:03:6b:6a:74:14: e4:b0:18:fa:5a:ae:ae:d5:2a:8d:10:1b:11:3b:ea: f4:29:fd:94:2b:c5:7a:c7:c5:07:c7:5c:7c:e7:9f: 41:f1:f8:c7:c7:5e:a1:f4:5c:d5:3e:15:61:b1:1a: 58:07:9d:ac:df:fd:52:fb:c8:c4:5b:e0:f6:16:65: 66:b8:c4:00:d0:e6:63:10:84:ec:5c:13:bc:e7:c3: 9d:f7:92:40:73:1f:2e:32:9d:da:b8:23:0e:06:42: 8b:7b:89:f0:f4:b0:cc:c4:9e:22:8b:fc:1d:45:e6: b9:73:a7:76:6c:8b:fb:7a:40:f9:f9:21:53:a2:6b: e6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:75:33:A1:49:C3:5B:8A:2B:6D:88:9E:FF:B2:7E:1E:3D:64:CA:D0 X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:de:e6:be:54:1a:07:ed:a2:5c:97:7d:45:88:fb:7c:9d:bf: 68:39:ee:9f:f2:9e:48:d2:f8:5b:f5:54:9b:7b:10:97:cd:a2: 44:10:8e:9a:a7:a7:10:15:79:44:8e:a3:e4:3a:57:41:d7:c7: 98:54:1f:0b:b5:a5:0d:dc:22:ee:80:3a:38:44:6d:4e:9c:38: 25:a9:0d:5f:a9:bf:ab:10:b3:0e:47:b4:4a:f1:c2:db:39:a8: 0c:f2:12:1f:ba:8c:b2:46:1f:09:b5:e5:32:5d:9d:65:08:04: 63:1b:57:14:f5:35:f5:c7:48:13:24:fe:a6:28:a0:06:99:63: 57:e6:e0:85:25:18:d8:16:e6:9d:d9:43:97:51:ef:35:c8:20: 00:c8:22:c0:1c:8e:36:72:6e:d5:28:99:46:6e:ae:06:e5:6f: 4b:09:9b:d9:d5:80:de:ac:a6:a8:b3:3a:e8:3c:4f:33:d6:e3: c7:f0:63:a5:85:e9:ab:91:68:f7:72:23:70:41:cd:c7:23:36: 2c:92:14:b1:e4:e3:3c:67:43:52:27:62:a6:b7:0f:0e:46:01: 4a:a9:5d:54:c1:91:dc:8c:4a:d2:aa:02:ba:2b:46:0c:95:f3: c1:ca:2b:3a:ef:ef:6c:e8:f3:c7:90:96:68:53:34:86:d5:ae: 4a:bb:a6:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjUxMDE4MTQ1MzU2WhcNMjUxMDI1MTQ1MzU2WjAYMRYwFAYD VQQDEw02OGYzYWEwNS02MWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwerSfoeDPg29QQvmNdYej08FEnRPAgmT24HQ8h+zffGb9khyAX52afFhpB1Y JJo5UxHYKU0JKeqRlMgWEhWEBmLSowm8xCQbY+sM3NtvXMsk01oQKmIZjc9K1vOs OGMgM3wNXiv2O1y3f1qnI9GOaZ76Is4YpPrjl6GrXaAmmy8KA2tqdBTksBj6Wq6u 1SqNEBsRO+r0Kf2UK8V6x8UHx1x8559B8fjHx16h9FzVPhVhsRpYB52s3/1S+8jE W+D2FmVmuMQA0OZjEITsXBO858Od95JAcx8uMp3auCMOBkKLe4nw9LDMxJ4ii/wd Rea5c6d2bIv7ekD5+SFTomvmNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD51M6FJ w1uKK22Inv+yfh49ZMrQMB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf3ua+VBoH7aJcl31FiPt8nb9oOe6f8p5I0vhb9VSbexCXzaJEEI6a p6cQFXlEjqPkOldB18eYVB8LtaUN3CLugDo4RG1OnDglqQ1fqb+rELMOR7RK8cLb OagM8hIfuoyyRh8JteUyXZ1lCARjG1cU9TX1x0gTJP6mKKAGmWNX5uCFJRjYFuad 2UOXUe81yCAAyCLAHI42cm7VKJlGbq4G5W9LCZvZ1YDerKaoszroPE8z1uPH8GOl hemrkWj3ciNwQc3HIzYskhSx5OM8Z0NSJ2Kmtw8ORgFKqV1UwZHcjErSqgK6K0YM lfPByis67+9s6PPHkJZoUzSG1a5Ku6bZ -----END CERTIFICATE-----Generated at Sat Oct 18 23:36:33 2025 by rpki-client