$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft File: NxkwlLzz42Ui-tvxlU7l_51gHg4.mft (raw, json) Hash identifier: NVXr0k8mV/+l1m7M2v7YhmW8tLJI4tBTkFn0sL1rIJ8= Subject key identifier: 6F:66:48:5B:5A:36:57:52:C7:AC:A8:85:8E:DD:D8:EF:09:86:A3:DC Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 0665 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft Manifest number: 065F Signing time: Sun 10 Aug 2025 22:38:08 +0000 Manifest this update: Sun 10 Aug 2025 22:38:08 +0000 Manifest next update: Sun 17 Aug 2025 22:38:08 +0000 Files and hashes: 1: NxkwlLzz42Ui-tvxlU7l_51gHg4.crl (hash: TwVOPX7xZwV+Rgzw+dI0F7aogIvDkihamtk7cqeayr8=) 2: 3A00D342928511EB8B3AAC22C4F9AE02.roa (hash: aj64AT3Eg74eRiHek2DyIpF1DXkedRqzt0byGVydNm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: Aug 10 22:38:08 2025 GMT Not After : Aug 17 22:38:08 2025 GMT Subject: CN=68991f50-6c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:67:73:09:5a:50:8c:f4:d8:5c:38:bd:bc:03: 74:91:c3:e5:b5:4a:46:ee:6a:fa:de:ce:2b:f2:e4: 53:3d:95:e6:a6:38:ca:56:05:1c:ce:89:d4:de:a5: 1d:52:42:0b:7b:c4:55:6b:a1:81:49:34:35:c6:b8: 8f:65:a3:61:0d:02:6f:34:5e:78:66:23:b4:2a:2e: 91:ac:7d:55:a0:a3:63:7a:e1:a1:29:0e:47:58:1d: 10:87:f2:b8:ff:db:34:a3:60:aa:f2:7d:03:d4:37: 3c:71:db:36:04:ad:f8:0b:bf:68:c0:1a:29:6f:ee: 97:3b:e4:2e:e5:88:02:fe:cd:ba:f0:75:12:c0:46: fe:21:88:ac:7f:df:5a:a5:72:e7:b3:39:39:62:07: 48:43:8e:83:9c:64:b2:60:2f:ce:1f:78:85:40:4e: 9e:82:23:49:28:d8:bf:78:27:b2:54:d0:91:34:e2: 22:e4:6c:e7:b3:71:49:6a:94:c4:07:ae:6e:29:7b: 0b:14:65:94:d9:51:fd:8e:4a:fd:c0:ba:7d:14:e5: b9:81:8f:0a:ee:ec:5b:5c:b6:7c:b4:b5:26:92:93: eb:c6:b4:5c:8c:83:83:a9:6b:50:ee:20:ee:f5:23: 20:db:5e:70:3c:85:26:1e:6c:7f:e6:86:4b:83:db: e0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:66:48:5B:5A:36:57:52:C7:AC:A8:85:8E:DD:D8:EF:09:86:A3:DC X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:3d:cc:b5:2c:ad:69:a8:8c:0c:a7:8f:fa:3e:98:8d:22:7d: 0c:a8:47:75:e6:1c:fe:5f:2b:06:0b:40:21:cf:08:34:25:52: d2:bf:72:8e:b9:cf:cf:b2:fd:e9:39:fe:8a:8a:f2:c3:ec:47: 2f:17:24:90:80:ac:48:26:37:0f:32:3f:b5:ca:1b:a3:7d:b2: 25:44:64:da:6c:ab:89:7e:a1:87:ed:cc:98:c3:ce:26:19:45: a8:2e:51:2d:d4:40:a4:f0:8a:78:84:38:30:d4:b0:46:32:dd: fc:d0:00:da:11:28:c0:97:1b:02:5d:56:2d:a6:c3:04:23:0e: 38:13:ef:57:6d:f3:a9:94:65:18:99:cf:dd:44:d8:ca:73:b2: c6:70:71:a3:30:73:42:66:37:32:40:b2:92:ed:87:3e:84:cf: ef:58:35:b9:29:0a:87:d1:a9:22:6c:6e:ec:76:cb:2a:2d:3a: 58:5c:da:97:d0:52:7b:04:ac:6b:53:eb:b0:fb:43:2c:7e:42: f4:a5:c4:2a:14:e6:7d:2d:ee:96:f9:bf:87:9b:29:37:8e:87: 65:ee:f5:dd:05:8b:c6:a5:62:84:9f:19:e7:5b:e2:a6:dd:34: cc:6c:81:7a:75:d1:e3:f9:5b:11:49:7b:74:80:64:08:89:2f: 9a:cc:1c:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjUwODEwMjIzODA4WhcNMjUwODE3MjIzODA4WjAYMRYwFAYD VQQDEw02ODk5MWY1MC02YzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGdzCVpQjPTYXDi9vAN0kcPltUpG7mr63s4r8uRTPZXmpjjKVgUczonU3qUd UkILe8RVa6GBSTQ1xriPZaNhDQJvNF54ZiO0Ki6RrH1VoKNjeuGhKQ5HWB0Qh/K4 /9s0o2Cq8n0D1Dc8cds2BK34C79owBopb+6XO+Qu5YgC/s268HUSwEb+IYisf99a pXLnszk5YgdIQ46DnGSyYC/OH3iFQE6egiNJKNi/eCeyVNCRNOIi5Gzns3FJapTE B65uKXsLFGWU2VH9jkr9wLp9FOW5gY8K7uxbXLZ8tLUmkpPrxrRcjIODqWtQ7iDu 9SMg215wPIUmHmx/5oZLg9vg8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9mSFta NldSx6yohY7d2O8JhqPcMB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDI4NS82RjE1QjU3MjkyODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQy VWktdHZ4bFU3bF81MWdIZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACPcy1LK1pqIwMp4/6PpiNIn0MqEd15hz+XysGC0Ahzwg0JVLSv3KO uc/Psv3pOf6KivLD7EcvFySQgKxIJjcPMj+1yhujfbIlRGTabKuJfqGH7cyYw84m GUWoLlEt1ECk8Ip4hDgw1LBGMt380ADaESjAlxsCXVYtpsMEIw44E+9XbfOplGUY mc/dRNjKc7LGcHGjMHNCZjcyQLKS7Yc+hM/vWDW5KQqH0akibG7sdssqLTpYXNqX 0FJ7BKxrU+uw+0MsfkL0pcQqFOZ9Le6W+b+Hmyk3jodl7vXdBYvGpWKEnxnnW+Km 3TTMbIF6ddHj+VsRSXt0gGQIiS+azBzo -----END CERTIFICATE-----Generated at Mon Aug 11 07:53:34 2025 by rpki-client