$ rpki-client -vvf rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft File: NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft (raw, json) Hash identifier: /XtkdJ85WrU6oylc0LO4MYsDXziqxhaOAUvmcZTi1Rs= Subject key identifier: 57:31:0F:C2:71:D8:2A:24:E1:45:96:95:97:D7:5C:42:07:EC:B4:BE Authority key identifier: 34:1D:09:02:1C:BF:9F:D3:BB:4C:B8:8E:3D:0E:D1:C7:64:DE:D0:FE Certificate issuer: /CN=A9150EAB/serialNumber=341D09021CBF9FD3BB4CB88E3D0ED1C764DED0FE Certificate serial: 0B20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft Manifest number: 1216 Signing time: Sun 10 Aug 2025 19:17:31 +0000 Manifest this update: Sun 10 Aug 2025 19:17:30 +0000 Manifest next update: Sun 17 Aug 2025 19:17:30 +0000 Files and hashes: 1: NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl (hash: WAaak9uTwtvH4PQ3uiHUgJwPSUk9ewdShrg+qvwSzgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 19:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2848 (0xb20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150EAB, serialNumber=341D09021CBF9FD3BB4CB88E3D0ED1C764DED0FE Validity Not Before: Aug 10 19:17:30 2025 GMT Not After : Aug 17 19:17:30 2025 GMT Subject: CN=6898f04b-b1e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f4:2e:e7:22:28:37:bf:f2:07:7d:ba:d7:aa: 42:45:ab:a6:a4:cc:4b:ad:7d:d3:57:7a:4c:68:00: e9:35:f9:b1:c8:fd:0d:9b:45:18:7c:16:f4:41:0c: a5:96:6a:ca:36:d2:75:d9:8a:75:3b:88:7b:09:40: 23:f9:97:9e:eb:ae:7d:d0:95:96:bf:e3:4c:8b:5b: 5f:73:7a:01:f3:69:e8:c5:59:b1:6e:69:de:2c:c6: 69:84:da:5a:eb:46:84:c6:f3:f8:0b:dc:82:0f:36: 08:07:63:3f:15:09:09:1c:13:2c:0a:3b:da:b7:fe: fd:24:85:dd:f2:70:74:9b:bf:44:9e:75:e9:a9:68: 7e:df:e4:a7:b9:3d:62:f7:7f:34:af:1a:33:77:75: 27:ef:42:0e:ff:8e:4e:f9:de:25:8d:f5:9c:09:50: d0:fe:86:69:38:58:ea:39:83:29:c1:48:11:32:e7: 34:24:e6:1b:52:a0:0b:4f:22:4d:17:3e:a7:8f:87: ec:4d:0b:d3:94:17:7a:c9:1f:45:78:be:79:10:f8: b3:fc:7d:98:ad:28:c8:59:a4:19:f6:84:c8:65:4c: 64:9e:38:5c:e8:a3:d5:41:b5:b0:26:9f:b2:e2:cc: 89:1d:72:3f:10:c8:25:ef:2e:2e:36:f6:2c:46:a3: 04:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:31:0F:C2:71:D8:2A:24:E1:45:96:95:97:D7:5C:42:07:EC:B4:BE X509v3 Authority Key Identifier: keyid:34:1D:09:02:1C:BF:9F:D3:BB:4C:B8:8E:3D:0E:D1:C7:64:DE:D0:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:a0:46:6d:5a:07:8b:7b:4e:0a:46:1c:79:85:82:e7:29:52: 71:06:3e:9a:a4:20:db:1e:3a:a3:32:e7:19:fa:74:7c:b4:84: d5:b3:de:36:9d:9a:22:1b:f6:9e:47:45:63:6d:3b:98:ae:fa: e0:88:63:bf:a9:7d:9e:4f:c8:e2:b6:2d:c3:be:85:98:ee:41: c7:aa:78:a2:f7:99:6b:7f:cf:97:14:05:b7:9c:21:9e:d6:35: d2:ab:17:31:a2:84:ab:d4:60:f2:fc:65:1a:e8:04:a6:6c:51: 82:86:2b:43:e7:d1:37:a9:89:f3:7c:84:6b:26:33:27:bd:c8: 6d:5c:77:32:b1:9f:b8:11:70:a9:e4:c5:69:90:ae:f8:fb:ca: 84:6d:e0:f4:03:4e:9a:3b:31:96:25:be:63:85:5b:41:cf:11: 81:9f:5e:b6:87:b6:07:66:5d:62:a2:7e:d2:98:4b:c9:b8:0e: de:fc:18:a9:b2:f6:fe:eb:8e:5f:e9:90:c3:c0:d8:42:23:b4: 9f:89:b0:50:ef:16:c4:c3:bc:00:df:1f:d9:a7:c0:fe:8c:ff: c7:f2:a9:44:02:61:ff:14:a3:79:1f:0a:9a:05:b1:58:79:fc: fe:3a:47:5a:7f:92:1f:06:31:c0:14:25:05:1d:78:25:e1:51: 91:1b:e0:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFQUIxMTAvBgNVBAUTKDM0MUQwOTAyMUNCRjlGRDNCQjRDQjg4RTNEMEVEMUM3 NjRERUQwRkUwHhcNMjUwODEwMTkxNzMwWhcNMjUwODE3MTkxNzMwWjAYMRYwFAYD VQQDEw02ODk4ZjA0Yi1iMWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvQu5yIoN7/yB32616pCRaumpMxLrX3TV3pMaADpNfmxyP0Nm0UYfBb0QQyl lmrKNtJ12Yp1O4h7CUAj+Zee66590JWWv+NMi1tfc3oB82noxVmxbmneLMZphNpa 60aExvP4C9yCDzYIB2M/FQkJHBMsCjvat/79JIXd8nB0m79EnnXpqWh+3+SnuT1i 9380rxozd3Un70IO/45O+d4ljfWcCVDQ/oZpOFjqOYMpwUgRMuc0JOYbUqALTyJN Fz6nj4fsTQvTlBd6yR9FeL55EPiz/H2YrSjIWaQZ9oTIZUxknjhc6KPVQbWwJp+y 4syJHXI/EMgl7y4uNvYsRqMECQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcxD8Jx 2Cok4UWWlZfXXEIH7LS+MB8GA1UdIwQYMBaAFDQdCQIcv5/Tu0y4jj0O0cdk3tD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEVBQi8xQjJFNzA1MDQ0 NkIxMUVBOURFNTlBNTdDNEY5QUUwMi9OQjBKQWh5X245TzdUTGlPUFE3UngyVGUw UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05CMEpBaHlfbjlPN1RMaU9QUTdSeDJUZTBQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEVBQi8xQjJFNzA1MDQ0NkIxMUVBOURFNTlBNTdDNEY5QUUwMi9OQjBKQWh5X245 TzdUTGlPUFE3UngyVGUwUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCroEZtWgeLe04KRhx5hYLnKVJxBj6apCDbHjqjMucZ+nR8tITVs942 nZoiG/aeR0VjbTuYrvrgiGO/qX2eT8jiti3DvoWY7kHHqnii95lrf8+XFAW3nCGe 1jXSqxcxooSr1GDy/GUa6ASmbFGChitD59E3qYnzfIRrJjMnvchtXHcysZ+4EXCp 5MVpkK74+8qEbeD0A06aOzGWJb5jhVtBzxGBn162h7YHZl1ion7SmEvJuA7e/Bip svb+645f6ZDDwNhCI7SfibBQ7xbEw7wA3x/Zp8D+jP/H8qlEAmH/FKN5HwqaBbFY efz+Okdaf5IfBjHAFCUFHXgl4VGRG+D8 -----END CERTIFICATE-----Generated at Tue Aug 12 18:59:48 2025 by rpki-client