$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft File: mnPxqRn79GyHLjiAWxZQtfiCdtM.mft (raw, json) Hash identifier: vWheZrB7D1ymWzE8NVAXGbsfxYLHaHaK3WKB5neD19s= Subject key identifier: B7:76:79:46:01:1A:F4:F4:25:2B:28:6C:EA:9F:F5:F3:91:21:77:13 Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 111D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft Manifest number: 0CDC Signing time: Fri 18 Jul 2025 20:49:51 +0000 Manifest this update: Fri 18 Jul 2025 20:49:50 +0000 Manifest next update: Fri 25 Jul 2025 20:49:50 +0000 Files and hashes: 1: mnPxqRn79GyHLjiAWxZQtfiCdtM.crl (hash: KFXU0IrYdCU7wc8un5TOQDb3qmyBbzrrMQ3+Ho1Wv9w=) 2: 1DF0A186321E11F08839AD4FC4F9AE02.roa (hash: nfk++XzyFK4dULDxMkpdqMNyh071+0tU6HxiuuX90jI=) 3: A173B894112711F0845DF16FC4F9AE02.roa (hash: 3CENOgG8lzvvc7h19xhkGA0RtKWssC6nuSD3IRmHv+U=) 4: 24B754BA9B7911EFBA9A2A42C4F9AE02.roa (hash: OE0GQmtT1oUSAp1PhOfnIVxi4IcaA0X4EOEnweGkcfk=) 5: EE9F1FB41AAA11F099EC1E37C4F9AE02.roa (hash: 3h3IIH+ggZFH2qx8kOY/QLivgOIrMNBBpc5Fba+/FR8=) 6: BE7E4E9891F911EF86353E28C4F9AE02.roa (hash: 0eKMiuybEL3RZ9M1FJ5oQARMsUnxdeLLyfCZMIEzPk8=) 7: FA9BC95A548711EF89E24A18C4F9AE02.roa (hash: Lh2x2UhtnOihYNKj9Kn76/xvcicNSKGJ9zs/lJzF/lU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4381 (0x111d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Jul 18 20:49:50 2025 GMT Not After : Jul 25 20:49:50 2025 GMT Subject: CN=687ab36f-613d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:db:1e:6f:f5:ff:24:25:77:0b:8f:05:a0:9b: 46:9f:17:19:e2:7d:b0:be:9b:11:00:e9:42:57:e8: ac:8a:9f:ed:98:e9:98:bb:79:19:e5:c1:5a:30:a1: 0f:4b:7b:c4:38:46:c8:03:7e:10:ba:3c:61:0b:3c: cd:4b:db:16:34:46:10:5a:92:5e:60:60:99:3b:75: 0e:a8:a1:2a:35:d7:96:61:f8:6f:16:fe:9b:4f:9b: f1:d9:91:86:4a:9c:50:c8:bb:da:db:5d:e4:bc:57: 28:41:74:db:2a:8e:a4:91:b8:81:f0:6d:f6:dc:b8: 2a:1b:fb:3f:90:6e:4b:e7:a0:7c:4d:84:ce:89:1d: 3a:a1:e0:ec:33:9f:2a:07:3c:ee:7e:5b:5c:90:47: 79:91:5b:9f:e7:46:64:b7:39:52:e1:d6:75:0b:be: 16:01:68:5c:90:87:f5:b4:f5:88:93:ef:13:46:e5: f6:62:f5:85:c9:48:45:a7:d7:30:2f:34:aa:c1:b3: e8:3c:05:33:bf:e5:b8:3c:36:16:97:54:79:40:f7: 5f:97:a3:1f:75:6d:fb:ff:1c:16:23:07:ea:ba:94: bb:33:52:93:2b:ca:a2:2d:3f:fb:1c:a7:d4:aa:c7: dc:b6:ef:e7:1f:a8:30:fe:1d:80:56:41:e5:79:fc: 5d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:76:79:46:01:1A:F4:F4:25:2B:28:6C:EA:9F:F5:F3:91:21:77:13 X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:4b:ee:32:4c:c1:83:66:d1:b4:33:4e:97:1f:2a:19:46:09: f2:32:6c:79:7b:47:3c:4e:d1:ab:f2:90:9c:36:ac:ef:bd:0e: 91:c9:df:d7:2a:89:82:60:fe:b7:ae:e0:d7:56:52:5a:5d:6f: e0:97:60:e1:fa:b0:52:de:50:ab:0c:18:02:0a:69:34:05:8c: b4:8d:06:ad:30:7a:69:9a:2a:2e:4a:6f:2e:91:70:b1:f3:59: 10:2b:51:f9:a5:9b:72:ba:45:c7:b8:25:5e:68:96:fe:14:8b: a4:9d:99:b9:66:ae:03:97:ca:7d:3a:1e:8a:45:43:4c:3d:2b: c3:3a:2d:2b:d0:98:c5:10:53:a5:bb:1b:d6:94:5a:0e:51:ee: 35:cc:f3:a9:df:56:31:c3:d3:19:ae:d2:3a:f7:fe:93:ef:38: 0c:2c:ad:3d:78:88:99:cb:a0:47:93:1e:85:87:a8:28:bf:3c: 62:b8:50:d2:cf:1b:1e:0a:08:5b:1b:f6:cf:4e:51:36:79:d7: 66:28:7c:8d:15:c9:ad:bf:82:d4:7f:eb:9d:9c:6b:b6:ee:4a: c8:3c:3b:9d:8f:66:60:72:b1:2b:8a:a5:c9:cf:bc:84:62:be: 29:47:36:7a:e4:d9:92:29:47:c5:44:92:00:dc:1c:f3:30:0e: 63:d4:ec:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICER0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwNzE4MjA0OTUwWhcNMjUwNzI1MjA0OTUwWjAYMRYwFAYD VQQDEw02ODdhYjM2Zi02MTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA89seb/X/JCV3C48FoJtGnxcZ4n2wvpsRAOlCV+isip/tmOmYu3kZ5cFaMKEP S3vEOEbIA34QujxhCzzNS9sWNEYQWpJeYGCZO3UOqKEqNdeWYfhvFv6bT5vx2ZGG SpxQyLva213kvFcoQXTbKo6kkbiB8G323LgqG/s/kG5L56B8TYTOiR06oeDsM58q BzzufltckEd5kVuf50ZktzlS4dZ1C74WAWhckIf1tPWIk+8TRuX2YvWFyUhFp9cw LzSqwbPoPAUzv+W4PDYWl1R5QPdfl6MfdW37/xwWIwfqupS7M1KTK8qiLT/7HKfU qsfctu/nH6gw/h2AVkHlefxdxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLd2eUYB GvT0JSsobOqf9fORIXcTMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjEzNC81N0IzRTBCQ0MyQTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlH eUhMamlBV3haUXRmaUNkdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkS+4yTMGDZtG0M06XHyoZRgnyMmx5e0c8TtGr8pCcNqzvvQ6Ryd/X KomCYP63ruDXVlJaXW/gl2Dh+rBS3lCrDBgCCmk0BYy0jQatMHppmiouSm8ukXCx 81kQK1H5pZtyukXHuCVeaJb+FIuknZm5Zq4Dl8p9Oh6KRUNMPSvDOi0r0JjFEFOl uxvWlFoOUe41zPOp31Yxw9MZrtI69/6T7zgMLK09eIiZy6BHkx6Fh6govzxiuFDS zxseCghbG/bPTlE2eddmKHyNFcmtv4LUf+udnGu27krIPDudj2ZgcrEriqXJz7yE Yr4pRzZ65NmSKUfFRJIA3BzzMA5j1OxR -----END CERTIFICATE-----Generated at Sun Jul 20 18:43:18 2025 by rpki-client