$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: /FV1NCsZfndU8iWIZ+TOhBdd7a/JztAWNzGRGRXp0JQ= Subject key identifier: 23:9B:3F:74:02:53:1B:27:D6:0F:61:B6:BB:51:7A:2A:49:D7:45:9E Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: BE Signing time: Tue 09 Sep 2025 06:01:25 +0000 Manifest this update: Tue 09 Sep 2025 06:01:24 +0000 Manifest next update: Tue 16 Sep 2025 06:01:24 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: 193A7I8aSb3iIJuQQ/ayHSHbAYQeCIUJ45G9+9CyLSY=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: OkcwSLx62N14Khc7pixM+04Kss5uqBIS1Fg1GMXXo9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Sep 9 06:01:24 2025 GMT Not After : Sep 16 06:01:24 2025 GMT Subject: CN=68bfc2b4-33cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a0:5d:3b:85:ec:04:10:dc:99:4d:fe:56:bf: a3:8a:26:63:bd:eb:97:71:c3:c9:de:e4:21:24:e3: 9a:43:42:3c:5e:c2:76:09:b8:1a:0f:86:58:1a:a7: bc:f8:7f:be:fc:14:cb:7f:c4:04:49:b4:4f:b7:ac: ec:87:15:5a:5a:cf:ef:8c:c3:f0:4e:7c:55:3e:3f: 30:54:8a:03:77:01:d9:68:bb:5c:42:f1:e9:48:35: d6:09:37:8b:5e:24:8f:42:44:b7:6d:3b:76:67:2c: 40:bd:2c:3e:61:8a:f5:a4:ee:97:76:77:74:03:82: 70:2a:d8:5b:9a:1f:5d:7f:f2:18:b4:d5:ec:2b:33: d9:61:ad:7d:b3:23:1c:14:88:7f:7b:94:cc:42:ed: 54:ce:9e:77:9f:e4:da:98:34:1c:6d:36:5d:a0:1d: a3:bd:2e:00:e0:e5:a4:72:09:00:60:90:d4:5a:e7: 24:df:b6:84:58:ee:43:68:86:9b:ef:41:1f:92:d1: cd:ca:cd:0f:b0:bf:3e:98:e5:cf:26:5d:ee:5d:df: 7f:b0:c2:f1:53:02:a1:05:27:e6:34:e3:7d:ce:f8: c8:dd:92:1f:7c:67:9a:8a:5c:66:b6:1c:cb:ec:0d: 5b:6f:26:31:d6:14:a4:67:00:09:f2:04:e7:6a:91: 28:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9B:3F:74:02:53:1B:27:D6:0F:61:B6:BB:51:7A:2A:49:D7:45:9E X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:08:e1:7f:1a:8b:a0:51:8b:cd:e6:e5:ab:8a:5e:63:e4:83: da:35:2c:fe:d5:79:89:14:92:a3:39:0b:99:42:56:ce:55:93: 5f:ee:98:c5:87:50:63:2b:09:db:9d:36:c2:11:aa:5d:0a:23: 84:e1:3d:75:ab:e3:60:d5:a0:95:34:af:1d:b5:bc:ca:eb:78: 27:e1:ee:0d:aa:0a:ac:24:49:04:b7:e3:51:d7:f3:77:f0:71: dd:f6:58:84:41:32:9b:a3:3d:6f:0b:8c:20:5f:d7:aa:86:a3: ae:7c:90:8a:87:90:af:2b:da:5a:1e:01:0d:2d:c6:61:2f:67: b9:91:68:5d:56:00:1d:57:4b:11:40:ab:7a:16:1b:38:29:32: 2a:24:c4:db:a8:5a:ca:93:7c:0e:9d:65:96:46:46:48:9f:39: a6:95:61:78:b6:8d:8b:23:e0:bb:43:73:f6:06:a4:e4:06:ae: 42:90:77:9c:27:d6:6c:40:8c:32:57:de:f6:d3:50:a0:02:cd: d9:bc:56:af:eb:a1:49:64:b0:10:5b:1e:f8:ab:81:2c:57:ae: ab:dd:e7:64:46:aa:60:f5:0e:02:0a:53:17:60:4d:51:24:c5: 65:f9:a0:c8:c4:b2:74:fc:b9:96:8e:b8:49:a3:eb:02:e7:74: ac:1f:28:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDMyMTRFMjYwQTc4RjdEMTY3N0U4MzAxMzdDMTA2NTcz MDAzMUNGNjYwHhcNMjUwOTA5MDYwMTI0WhcNMjUwOTE2MDYwMTI0WjAYMRYwFAYD VQQDEw02OGJmYzJiNC0zM2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaBdO4XsBBDcmU3+Vr+jiiZjveuXccPJ3uQhJOOaQ0I8XsJ2CbgaD4ZYGqe8 +H++/BTLf8QESbRPt6zshxVaWs/vjMPwTnxVPj8wVIoDdwHZaLtcQvHpSDXWCTeL XiSPQkS3bTt2ZyxAvSw+YYr1pO6Xdnd0A4JwKthbmh9df/IYtNXsKzPZYa19syMc FIh/e5TMQu1Uzp53n+TamDQcbTZdoB2jvS4A4OWkcgkAYJDUWuck37aEWO5DaIab 70EfktHNys0PsL8+mOXPJl3uXd9/sMLxUwKhBSfmNON9zvjI3ZIffGeailxmthzL 7A1bbyYx1hSkZwAJ8gTnapEohwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCObP3QC Uxsn1g9htrtReipJ10WeMB8GA1UdIwQYMBaAFDIU4mCnj30Wd+gwE3wQZXMAMc9m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8yNzJCNEM3MDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZSWjM2REFUZkJCbGN3QXh6 MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8yNzJCNEM3MDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZS WjM2REFUZkJCbGN3QXh6MlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcCOF/GougUYvN5uWril5j5IPaNSz+1XmJFJKjOQuZQlbOVZNf7pjF h1BjKwnbnTbCEapdCiOE4T11q+Ng1aCVNK8dtbzK63gn4e4NqgqsJEkEt+NR1/N3 8HHd9liEQTKboz1vC4wgX9eqhqOufJCKh5CvK9paHgENLcZhL2e5kWhdVgAdV0sR QKt6Fhs4KTIqJMTbqFrKk3wOnWWWRkZInzmmlWF4to2LI+C7Q3P2BqTkBq5CkHec J9ZsQIwyV97201CgAs3ZvFav66FJZLAQWx74q4EsV66r3edkRqpg9Q4CClMXYE1R JMVl+aDIxLJ0/LmWjrhJo+sC53SsHyjO -----END CERTIFICATE-----Generated at Tue Sep 9 13:07:30 2025 by rpki-client