$ rpki-client -vvf rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft File: nzVmCVwLDAIx0LuWkl4DidHCbFc.mft (raw, json) Hash identifier: yhYFDMgVYtgc9s93+A5qtBHZViWbgs8mpFYpq06iyFs= Subject key identifier: 68:D6:02:71:54:56:F0:60:47:CC:EF:2E:91:7F:DF:11:04:88:7E:66 Authority key identifier: 9F:35:66:09:5C:0B:0C:02:31:D0:BB:96:92:5E:03:89:D1:C2:6C:57 Certificate issuer: /CN=A911403B/serialNumber=9F3566095C0B0C0231D0BB96925E0389D1C26C57 Certificate serial: 0452 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft Manifest number: 044D Signing time: Tue 05 Aug 2025 00:44:50 +0000 Manifest this update: Tue 05 Aug 2025 00:44:50 +0000 Manifest next update: Tue 12 Aug 2025 00:44:50 +0000 Files and hashes: 1: nzVmCVwLDAIx0LuWkl4DidHCbFc.crl (hash: 93z3TOa6ZystJB58uyAosG5A0F1CSa7ZpwtoVotuPcY=) 2: 2D8428C662F511ECA1FC5A6CC4F9AE02.roa (hash: eK751E7R4LxxFW4h/LYCAzYwLSV3p/y1kJ/HUZuDz6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.crl rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1106 (0x452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911403B, serialNumber=9F3566095C0B0C0231D0BB96925E0389D1C26C57 Validity Not Before: Aug 5 00:44:50 2025 GMT Not After : Aug 12 00:44:50 2025 GMT Subject: CN=68915402-176a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:15:99:31:84:7e:93:2f:3a:90:49:5e:31:42: 9e:75:5c:7c:3a:c8:d0:76:40:81:99:e1:0e:e8:86: 06:e3:5d:df:ec:61:eb:4d:33:9e:d9:61:cf:1a:e5: 6f:c8:66:4f:76:55:a1:70:c1:37:c4:c1:47:29:82: 41:bd:e1:c3:21:57:4a:cc:b1:ce:02:ad:f0:27:c6: 06:ea:10:fe:36:b9:8c:a1:f3:b0:5b:b5:59:0d:50: b9:55:c2:ce:f4:ff:3e:c8:8d:fd:fa:ab:bc:78:6a: c0:0f:66:17:ec:e6:72:c5:3d:60:7c:43:d8:bd:a7: d7:6b:2d:aa:10:d9:5a:5c:d5:16:38:bf:1e:c5:93: 0d:8b:4c:f8:70:88:3e:0b:e9:0f:da:f1:63:c3:b9: e3:ae:46:dc:ae:f3:57:35:bf:10:8f:08:33:1e:24: fd:fe:ae:40:33:66:d9:29:be:ea:06:05:f2:a2:8a: 7c:9d:a7:6b:c6:92:3b:9f:b2:a1:96:11:54:54:f5: 6d:70:16:40:ec:3c:fe:b0:a3:4d:d9:5b:e4:93:d7: 7e:7f:83:2b:a4:c6:10:70:56:1d:d8:4f:cd:e6:1e: 33:a4:c4:57:fb:aa:60:d2:2e:3f:14:08:6c:da:e3: 9d:01:72:32:d5:65:ee:86:9c:cf:54:51:1e:86:46: 39:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D6:02:71:54:56:F0:60:47:CC:EF:2E:91:7F:DF:11:04:88:7E:66 X509v3 Authority Key Identifier: keyid:9F:35:66:09:5C:0B:0C:02:31:D0:BB:96:92:5E:03:89:D1:C2:6C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:6e:de:16:65:dd:29:1b:2b:ca:e3:a6:f9:9d:19:18:30:5f: d9:b0:52:d5:6b:65:8f:d5:a2:91:2c:a8:d3:b9:ab:94:e7:d5: 37:2c:0e:30:56:b1:0c:8a:99:9b:f1:69:6c:77:8b:be:b2:62: b8:40:77:4f:81:f6:08:97:d5:2a:3c:c2:ce:28:4b:84:0d:fa: 1d:09:01:f8:98:24:44:9f:e1:36:06:e3:db:2f:20:6a:95:0e: 73:f5:97:20:38:94:31:89:15:bc:d2:dd:e6:f8:3e:9e:6c:84: 01:35:52:7c:95:e1:a8:23:8c:3b:7c:9a:4b:95:ae:04:7b:18: 02:27:2c:67:f7:d6:e5:8d:b2:4d:c8:24:83:de:95:ec:0a:be: 20:7d:91:7f:51:6e:9f:a3:3e:b4:ef:b1:df:85:8f:98:24:16: 5f:10:4e:d7:4a:ab:9d:86:41:9f:01:2a:b8:5e:7a:95:ee:a1: 47:11:6b:4b:c4:02:e8:86:c7:a5:c9:49:6f:02:15:84:28:a8: d3:24:63:c8:76:96:ea:f4:b3:15:c6:a3:d8:f5:c0:7f:92:e0: a6:24:6a:a0:3d:7c:6d:7c:d0:97:f7:4b:e3:a2:a8:82:92:23: 24:3a:70:9d:33:66:af:5f:ec:4f:0c:bd:ec:3f:da:90:b7:be: 8c:e0:ac:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQwM0IxMTAvBgNVBAUTKDlGMzU2NjA5NUMwQjBDMDIzMUQwQkI5NjkyNUUwMzg5 RDFDMjZDNTcwHhcNMjUwODA1MDA0NDUwWhcNMjUwODEyMDA0NDUwWjAYMRYwFAYD VQQDEw02ODkxNTQwMi0xNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBWZMYR+ky86kEleMUKedVx8OsjQdkCBmeEO6IYG413f7GHrTTOe2WHPGuVv yGZPdlWhcME3xMFHKYJBveHDIVdKzLHOAq3wJ8YG6hD+NrmMofOwW7VZDVC5VcLO 9P8+yI39+qu8eGrAD2YX7OZyxT1gfEPYvafXay2qENlaXNUWOL8exZMNi0z4cIg+ C+kP2vFjw7njrkbcrvNXNb8QjwgzHiT9/q5AM2bZKb7qBgXyoop8nadrxpI7n7Kh lhFUVPVtcBZA7Dz+sKNN2Vvkk9d+f4MrpMYQcFYd2E/N5h4zpMRX+6pg0i4/FAhs 2uOdAXIy1WXuhpzPVFEehkY5WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjWAnFU VvBgR8zvLpF/3xEEiH5mMB8GA1UdIwQYMBaAFJ81ZglcCwwCMdC7lpJeA4nRwmxX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDAzQi80QUE3NEI3NDYy REExMUVDQjM3MUM3NjdDNEY5QUUwMi9uelZtQ1Z3TERBSXgwTHVXa2w0RGlkSENi RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL256Vm1DVndMREFJeDBMdVdrbDREaWRIQ2JGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDAzQi80QUE3NEI3NDYyREExMUVDQjM3MUM3NjdDNEY5QUUwMi9uelZtQ1Z3TERB SXgwTHVXa2w0RGlkSENiRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKbt4WZd0pGyvK46b5nRkYMF/ZsFLVa2WP1aKRLKjTuauU59U3LA4w VrEMipmb8Wlsd4u+smK4QHdPgfYIl9UqPMLOKEuEDfodCQH4mCREn+E2BuPbLyBq lQ5z9ZcgOJQxiRW80t3m+D6ebIQBNVJ8leGoI4w7fJpLla4EexgCJyxn99bljbJN yCSD3pXsCr4gfZF/UW6foz6077HfhY+YJBZfEE7XSqudhkGfASq4XnqV7qFHEWtL xALohselyUlvAhWEKKjTJGPIdpbq9LMVxqPY9cB/kuCmJGqgPXxtfNCX90vjoqiC kiMkOnCdM2avX+xPDL3sP9qQt76M4KwM -----END CERTIFICATE-----Generated at Wed Aug 6 19:27:36 2025 by rpki-client