$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft File: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft (raw, json) Hash identifier: BiL1IA4t6YX+7kExuBzbqqIa9IzqMHSHXIXMR2LVfPo= Subject key identifier: 6B:9F:94:36:C2:96:A0:4D:AC:77:8C:A7:FC:F5:65:14:90:FC:47:95 Authority key identifier: 9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 Certificate issuer: /CN=A91E3E80/serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft Manifest number: 09 Signing time: Tue 01 Jul 2025 08:57:02 +0000 Manifest this update: Tue 01 Jul 2025 08:57:01 +0000 Manifest next update: Tue 08 Jul 2025 08:57:01 +0000 Files and hashes: 1: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl (hash: Otw3rbSo0+eZWV28BZDp1k50QsKPwlu6mmBXUYgWL3U=) 2: 1E008B864B7411F09B3DF33BC4F9AE02.roa (hash: ev5mDZ6XFmJ+ji01cNK3sq1eGbo1TIpqJN2vMLDyQBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Validity Not Before: Jul 1 08:57:01 2025 GMT Not After : Jul 8 08:57:01 2025 GMT Subject: CN=6863a2dd-6d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5d:c4:6b:fd:a0:77:44:21:c9:58:cb:9a:b4: 14:5d:93:e5:e5:4d:28:f3:fb:f4:d3:b9:75:99:84: c0:4f:b9:c0:8c:6f:83:86:8a:b6:1b:13:ef:6c:08: 16:4b:18:79:b1:42:31:5f:06:bc:50:e0:4e:8e:93: 08:b0:62:3e:71:93:97:79:2c:83:1a:ea:32:b5:9f: 09:7c:44:bd:03:40:47:ee:ac:d4:c3:b7:3d:3c:28: fe:1e:5e:98:c4:bc:72:bd:45:59:5f:f8:d7:73:6d: 8e:6e:a9:c7:ff:33:53:6a:97:c3:5b:b2:79:24:9c: d2:d4:83:88:94:0b:bb:56:ee:6a:9c:26:ce:7e:23: 89:6d:4e:ab:5c:0b:71:fb:1b:24:75:b1:1a:a5:77: d8:61:6f:66:29:73:6b:cd:72:23:eb:77:01:08:49: f2:c7:0c:1a:9d:8a:39:c9:59:57:b9:8d:f2:a5:9c: 24:b3:64:e6:0a:1f:cb:09:c2:dc:a4:79:90:25:2b: 4d:92:22:f0:e8:30:c5:18:6e:ab:2c:da:1a:f7:b3: f1:e5:09:4c:64:d1:da:b6:65:f5:09:f8:44:25:e3: 5e:b2:a6:c5:bf:cb:ec:ec:89:80:f4:5f:66:b9:c3: 47:6a:88:34:2a:4e:88:02:13:f1:50:a3:c3:81:e9: 1f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:9F:94:36:C2:96:A0:4D:AC:77:8C:A7:FC:F5:65:14:90:FC:47:95 X509v3 Authority Key Identifier: keyid:9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:3f:8c:81:a7:2f:f3:f1:25:8c:64:c9:df:a1:c6:2e:7f:6a: f9:c5:d9:e4:7b:00:a5:e6:8e:61:49:76:d4:6c:da:60:5a:ee: 8a:4e:7d:87:2a:17:81:b1:62:e8:9c:a2:a4:7f:1e:f4:82:f1: 87:43:37:24:ca:28:fc:39:1b:9a:ce:82:70:e5:62:75:7b:68: 04:22:59:0c:0b:cb:59:f3:c6:e5:09:64:d3:ee:ed:61:78:2c: 82:21:7b:4d:cb:89:8b:04:8a:5a:7d:2b:d7:98:ba:aa:45:32: 66:25:f0:86:05:e9:ea:28:68:42:89:b6:19:79:bf:c5:d0:d3: 60:a6:10:40:e5:5e:7f:c2:dc:bf:a4:4d:9d:7e:03:88:76:d7: 53:5c:81:65:cb:cb:bb:95:48:e5:b4:1a:33:2b:74:66:c0:45: 1b:91:6d:4a:02:25:7b:20:8a:53:dd:da:2f:6d:c1:c7:ba:da: 8f:15:cb:e3:32:ae:47:2a:d7:91:c1:b6:49:3e:24:86:c5:5d: 9b:b4:2e:84:73:e4:54:e1:9d:0a:8e:86:a7:11:78:12:fa:ea: 97:e2:e1:5b:05:81:ee:e4:ff:c1:72:0a:fc:05:b9:df:89:65: 97:eb:92:df:60:7f:c8:59:3b:e6:95:51:4c:0a:16:0f:fb:e3: 43:65:5d:ba -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4MDExMC8GA1UEBRMoOUE1ODdFNEVDRjY4RUM3NzI5RDhERTQzNUZGREFBRENF QTVCNDkzOTAeFw0yNTA3MDEwODU3MDFaFw0yNTA3MDgwODU3MDFaMBgxFjAUBgNV BAMTDTY4NjNhMmRkLTZkMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyXcRr/aB3RCHJWMuatBRdk+XlTSjz+/TTuXWZhMBPucCMb4OGirYbE+9sCBZL GHmxQjFfBrxQ4E6OkwiwYj5xk5d5LIMa6jK1nwl8RL0DQEfurNTDtz08KP4eXpjE vHK9RVlf+NdzbY5uqcf/M1Nql8NbsnkknNLUg4iUC7tW7mqcJs5+I4ltTqtcC3H7 GyR1sRqld9hhb2Ypc2vNciPrdwEISfLHDBqdijnJWVe5jfKlnCSzZOYKH8sJwtyk eZAlK02SIvDoMMUYbqss2hr3s/HlCUxk0dq2ZfUJ+EQl416ypsW/y+zsiYD0X2a5 w0dqiDQqTogCE/FQo8OB6R87AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUa5+UNsKW oE2sd4yn/PVlFJD8R5UwHwYDVR0jBBgwFoAUmlh+Ts9o7Hcp2N5DX/2q3OpbSTkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRTgwLzM1NDMzRjIyNEI2 NjExRjBCODg1MjQzOUM0RjlBRTAyL21saC1UczlvN0hjcDJONURYXzJxM09wYlNU ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbWxoLVRzOW83SGNwMk41RFhfMnEzT3BiU1RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RTgwLzM1NDMzRjIyNEI2NjExRjBCODg1MjQzOUM0RjlBRTAyL21saC1UczlvN0hj cDJONURYXzJxM09wYlNUay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADM/jIGnL/PxJYxkyd+hxi5/avnF2eR7AKXmjmFJdtRs2mBa7opOfYcq F4GxYuicoqR/HvSC8YdDNyTKKPw5G5rOgnDlYnV7aAQiWQwLy1nzxuUJZNPu7WF4 LIIhe03LiYsEilp9K9eYuqpFMmYl8IYF6eooaEKJthl5v8XQ02CmEEDlXn/C3L+k TZ1+A4h211NcgWXLy7uVSOW0GjMrdGbARRuRbUoCJXsgilPd2i9twce62o8Vy+My rkcq15HBtkk+JIbFXZu0LoRz5FThnQqOhqcReBL66pfi4VsFge7k/8FyCvwFud+J ZZfrkt9gf8hZO+aVUUwKFg/740NlXbo= -----END CERTIFICATE-----Generated at Wed Jul 2 06:18:00 2025 by rpki-client