$ rpki-client -vvf rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft File: nr2hI9nugwlDBaEYDCoIBX_lQGo.mft (raw, json) Hash identifier: QXCarTIFbYCXpG8Ciq9t/qcvp1GFoKHdptcunyd5BZQ= Subject key identifier: 3B:80:52:5A:D9:C9:F7:A6:24:31:9B:89:3B:E3:0C:39:AD:A2:55:B7 Authority key identifier: 9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A Certificate issuer: /CN=A91425C3/serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft Manifest number: 0E Signing time: Thu 07 Aug 2025 08:47:50 +0000 Manifest this update: Thu 07 Aug 2025 08:47:49 +0000 Manifest next update: Thu 14 Aug 2025 08:47:49 +0000 Files and hashes: 1: nr2hI9nugwlDBaEYDCoIBX_lQGo.crl (hash: hQgVJenMLgGj1SBuyQEg4qik+2RpzBzgaFRFjqr8llI=) 2: CD603AAA6B2B11F0B21D7F0EC4F9AE02.roa (hash: I4V72owrg5qiCod5LgKXA3su1gxxiAdnYcB+BZWhJ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91425C3, serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A Validity Not Before: Aug 7 08:47:49 2025 GMT Not After : Aug 14 08:47:49 2025 GMT Subject: CN=68946835-b5ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ad:bb:5e:d2:bd:47:a4:04:d7:ae:11:ec:76: ab:f4:25:ac:38:22:92:da:34:a4:3f:4d:29:87:f8: aa:58:3e:ad:ca:38:3c:3e:eb:87:01:a8:fe:d9:f6: fe:45:aa:d4:2f:89:70:48:e9:5c:1e:95:d5:a2:33: 24:8c:0b:97:59:d9:70:c3:ca:e0:fd:18:4c:2b:8d: 20:39:c6:00:46:90:28:2b:61:d9:53:5e:74:42:6f: 00:e2:ec:6f:89:55:44:45:40:c0:68:fe:70:e1:37: 5f:c7:31:c9:d0:ec:b7:bf:fc:07:9f:71:d5:29:7b: 14:0b:e3:c0:dc:eb:64:79:f4:53:5d:c2:25:06:af: 51:8e:c0:ee:3a:8d:e1:35:ed:59:70:f2:de:c9:2a: 78:1c:97:13:31:33:c3:bc:09:4f:d3:a4:2f:23:fa: 69:8d:2d:23:f9:43:fc:05:be:ba:cd:8e:fb:21:fa: c7:bb:af:bb:91:be:a0:d4:69:17:cc:9a:d9:bf:06: 68:a3:c8:8a:1c:81:03:96:45:9e:5f:79:6c:e6:f2: 15:9e:67:03:81:81:29:41:ed:7e:f9:5d:88:84:16: 5b:74:68:f8:d1:2b:3a:1e:25:59:dd:60:11:f4:03: fe:9e:d8:b2:32:03:8f:21:df:38:6f:e8:44:7e:88: ec:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:80:52:5A:D9:C9:F7:A6:24:31:9B:89:3B:E3:0C:39:AD:A2:55:B7 X509v3 Authority Key Identifier: keyid:9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:7c:01:1d:27:3c:b2:21:85:bf:e1:21:fc:6f:b5:8e:a5:d0: f2:55:c8:bd:29:b4:46:b1:32:71:30:98:87:97:d4:7b:f9:5f: cc:53:6a:22:2a:6d:90:f3:b6:dc:35:19:b6:ef:fd:74:90:c5: a3:3f:a8:c2:c3:16:f3:f8:c0:f0:38:d7:3f:be:71:33:f1:c7: 31:cb:77:70:12:86:39:65:29:fa:4d:75:d4:e3:64:ad:64:f0: c3:6d:3a:bd:fc:4e:aa:28:29:2e:e6:ff:15:7c:bd:e6:a4:11: f2:55:31:fa:f5:08:07:c8:6b:e5:88:b0:8d:b2:e9:6a:8b:18: 70:11:1a:be:85:e5:40:73:a6:4c:93:a2:9e:01:be:9d:9d:49: 20:cf:7c:5b:d9:c2:9f:8d:f1:a5:44:0b:69:80:fc:11:ec:7c: 01:b3:95:35:3b:5f:e9:c9:19:c9:aa:91:9f:a8:9a:aa:f9:26: 7c:98:b6:e3:f7:84:04:ac:c7:fa:91:f8:f8:95:65:5c:a4:fb: 73:5c:46:9e:20:7f:eb:43:51:40:41:f6:44:5e:25:77:7b:d3: 3d:e8:88:80:64:c5:02:7b:f4:dc:b9:a9:11:ea:6b:15:ab:f7: 0c:9a:81:17:7a:88:a3:5b:13:94:bd:a8:5f:a8:f3:c3:13:06: 12:30:86:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjVDMzExMC8GA1UEBRMoOUVCREExMjNEOUVFODMwOTQzMDVBMTE4MEMyQTA4MDU3 RkU1NDA2QTAeFw0yNTA4MDcwODQ3NDlaFw0yNTA4MTQwODQ3NDlaMBgxFjAUBgNV BAMTDTY4OTQ2ODM1LWI1YWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHrbte0r1HpATXrhHsdqv0Jaw4IpLaNKQ/TSmH+KpYPq3KODw+64cBqP7Z9v5F qtQviXBI6VweldWiMySMC5dZ2XDDyuD9GEwrjSA5xgBGkCgrYdlTXnRCbwDi7G+J VURFQMBo/nDhN1/HMcnQ7Le//AefcdUpexQL48Dc62R59FNdwiUGr1GOwO46jeE1 7Vlw8t7JKngclxMxM8O8CU/TpC8j+mmNLSP5Q/wFvrrNjvsh+se7r7uRvqDUaRfM mtm/BmijyIocgQOWRZ5feWzm8hWeZwOBgSlB7X75XYiEFlt0aPjRKzoeJVndYBH0 A/6e2LIyA48h3zhv6ER+iOwxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUO4BSWtnJ 96YkMZuJO+MMOa2iVbcwHwYDVR0jBBgwFoAUnr2hI9nugwlDBaEYDCoIBX/lQGow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyNUMzLzIzMjZDNjNFNjYw NDExRjBBNEM1MTkyQkM0RjlBRTAyL25yMmhJOW51Z3dsREJhRVlEQ29JQlhfbFFH by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbnIyaEk5bnVnd2xEQmFFWURDb0lCWF9sUUdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy NUMzLzIzMjZDNjNFNjYwNDExRjBBNEM1MTkyQkM0RjlBRTAyL25yMmhJOW51Z3ds REJhRVlEQ29JQlhfbFFHby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFl8AR0nPLIhhb/hIfxvtY6l0PJVyL0ptEaxMnEwmIeX1Hv5X8xTaiIq bZDzttw1Gbbv/XSQxaM/qMLDFvP4wPA41z++cTPxxzHLd3AShjllKfpNddTjZK1k 8MNtOr38TqooKS7m/xV8veakEfJVMfr1CAfIa+WIsI2y6WqLGHARGr6F5UBzpkyT op4Bvp2dSSDPfFvZwp+N8aVEC2mA/BHsfAGzlTU7X+nJGcmqkZ+omqr5JnyYtuP3 hASsx/qR+PiVZVyk+3NcRp4gf+tDUUBB9kReJXd70z3oiIBkxQJ79Ny5qRHqaxWr 9wyagRd6iKNbE5S9qF+o88MTBhIwhuA= -----END CERTIFICATE-----Generated at Sat Aug 9 01:08:35 2025 by rpki-client