$ rpki-client -vvf rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft File: NS1M7Db4784NhRINl9keIqNY9Ys.mft (raw, json) Hash identifier: otXw/RfPIdHBa3668vtOgFcBcOY7Oszv93Zj7cauXA4= Subject key identifier: C4:AA:0E:1F:F8:8F:4A:65:AB:25:5E:74:42:0B:D2:63:1B:76:E2:4D Authority key identifier: 35:2D:4C:EC:36:F8:EF:CE:0D:85:12:0D:97:D9:1E:22:A3:58:F5:8B Certificate issuer: /CN=A9151AC7/serialNumber=352D4CEC36F8EFCE0D85120D97D91E22A358F58B Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NS1M7Db4784NhRINl9keIqNY9Ys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft Manifest number: 56 Signing time: Sat 09 Aug 2025 07:41:22 +0000 Manifest this update: Sat 09 Aug 2025 07:41:21 +0000 Manifest next update: Sat 16 Aug 2025 07:41:21 +0000 Files and hashes: 1: NS1M7Db4784NhRINl9keIqNY9Ys.crl (hash: QN6E7IoJatSqL2dkvx7k9ImhDDYNxiYpyDKVsz5L82g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.crl rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NS1M7Db4784NhRINl9keIqNY9Ys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151AC7, serialNumber=352D4CEC36F8EFCE0D85120D97D91E22A358F58B Validity Not Before: Aug 9 07:41:21 2025 GMT Not After : Aug 16 07:41:21 2025 GMT Subject: CN=6896fba2-549c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:84:cb:36:75:c7:59:d8:fb:46:fd:ab:fe:8c: 63:19:01:10:62:62:ec:82:ae:45:f9:72:54:b1:e6: e3:6d:8f:96:39:4f:59:50:76:9f:d8:ea:37:57:2c: 2a:52:0e:c6:08:2d:24:f5:b0:87:be:15:20:77:0d: 1a:e9:2e:ab:f3:e2:5e:4e:4a:47:79:72:61:67:2f: 41:8d:70:cc:84:5d:26:ec:95:f3:99:45:c3:07:41: cd:8c:be:02:76:aa:93:bb:ce:69:ef:28:52:c1:3e: 1b:43:64:65:29:ea:76:77:e5:eb:09:01:02:c9:36: 3b:e8:f7:26:f2:f3:9a:91:cd:37:dc:09:75:2f:6d: 06:95:dc:96:e1:a5:6a:b4:1f:e2:e2:25:82:fd:e8: 33:b3:7f:29:fd:d1:05:70:aa:b1:4a:e2:80:97:92: cb:55:7a:48:25:5d:52:b8:74:30:dd:b7:e5:32:0d: 54:1d:ce:ed:c2:69:90:35:86:fc:c0:cf:d0:b0:6e: aa:44:64:7a:77:91:d5:1f:ea:cb:6d:9c:92:13:fd: 54:c0:dd:36:2f:63:fe:e0:fd:4a:1e:b9:07:4f:de: 59:9a:3e:c4:7c:c3:f1:28:ae:d1:5c:8a:44:6a:25: a6:be:30:c9:38:3e:fe:ae:da:88:ed:24:00:81:6b: 9b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:AA:0E:1F:F8:8F:4A:65:AB:25:5E:74:42:0B:D2:63:1B:76:E2:4D X509v3 Authority Key Identifier: keyid:35:2D:4C:EC:36:F8:EF:CE:0D:85:12:0D:97:D9:1E:22:A3:58:F5:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NS1M7Db4784NhRINl9keIqNY9Ys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:98:42:11:30:c7:d2:3e:ee:e4:25:44:f5:cc:f6:59:54:d9: ee:39:a9:3f:8e:76:b4:db:cf:8b:ca:68:28:ce:4a:57:f0:17: 94:3e:21:66:c3:8b:28:b6:cb:95:a9:ea:5d:67:59:4d:e7:a5: b0:7a:d6:08:82:81:17:b3:52:f2:6f:a2:bb:34:c5:cd:3a:fa: 2c:a2:3e:ab:dd:df:81:c7:93:70:d3:ba:00:4e:59:86:1b:5d: 1c:b7:58:c4:92:27:48:ce:e2:f7:93:5b:a7:95:35:a4:29:71: 72:af:70:29:6a:c9:60:d4:1a:3e:1a:63:4e:34:0a:8d:24:87: 49:63:36:5b:a1:03:bf:db:22:2b:86:3d:89:58:b1:67:1c:15: dc:13:58:30:16:1c:ad:55:92:21:19:cb:ec:81:ae:0e:44:8b: 4d:14:79:06:a8:d8:d3:98:eb:8a:c8:f7:a2:f7:8d:01:24:27: 57:f1:1a:8d:97:58:98:c4:8b:e7:dc:66:a8:9f:a1:34:ca:01: 17:fb:11:97:e6:49:1f:09:fa:27:4b:88:c4:a4:56:e3:fe:47: f6:c9:4f:34:e8:3f:69:f6:35:d8:3f:f7:82:0d:9b:33:cf:f9: a9:ef:d7:c7:2d:e9:1b:61:14:a6:a4:7e:d0:d0:67:a0:5d:7c: 74:df:8c:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MUFDNzExMC8GA1UEBRMoMzUyRDRDRUMzNkY4RUZDRTBEODUxMjBEOTdEOTFFMjJB MzU4RjU4QjAeFw0yNTA4MDkwNzQxMjFaFw0yNTA4MTYwNzQxMjFaMBgxFjAUBgNV BAMTDTY4OTZmYmEyLTU0OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLhMs2dcdZ2PtG/av+jGMZARBiYuyCrkX5clSx5uNtj5Y5T1lQdp/Y6jdXLCpS DsYILST1sIe+FSB3DRrpLqvz4l5OSkd5cmFnL0GNcMyEXSbslfOZRcMHQc2MvgJ2 qpO7zmnvKFLBPhtDZGUp6nZ35esJAQLJNjvo9yby85qRzTfcCXUvbQaV3JbhpWq0 H+LiJYL96DOzfyn90QVwqrFK4oCXkstVekglXVK4dDDdt+UyDVQdzu3CaZA1hvzA z9CwbqpEZHp3kdUf6sttnJIT/VTA3TYvY/7g/UoeuQdP3lmaPsR8w/EortFcikRq Jaa+MMk4Pv6u2ojtJACBa5u1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxKoOH/iP SmWrJV50QgvSYxt24k0wHwYDVR0jBBgwFoAUNS1M7Db4784NhRINl9keIqNY9Ysw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxQUM3LzQxQTQ2QjUwRjM5 NzExRUY5MTAxRDIxMEM0RjlBRTAyL05TMU03RGI0Nzg0TmhSSU5sOWtlSXFOWTlZ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlMxTTdEYjQ3ODROaFJJTmw5a2VJcU5ZOVlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUx QUM3LzQxQTQ2QjUwRjM5NzExRUY5MTAxRDIxMEM0RjlBRTAyL05TMU03RGI0Nzg0 TmhSSU5sOWtlSXFOWTlZcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIWYQhEwx9I+7uQlRPXM9llU2e45qT+OdrTbz4vKaCjOSlfwF5Q+IWbD iyi2y5Wp6l1nWU3npbB61giCgRezUvJvors0xc06+iyiPqvd34HHk3DTugBOWYYb XRy3WMSSJ0jO4veTW6eVNaQpcXKvcClqyWDUGj4aY040Co0kh0ljNluhA7/bIiuG PYlYsWccFdwTWDAWHK1VkiEZy+yBrg5Ei00UeQao2NOY64rI96L3jQEkJ1fxGo2X WJjEi+fcZqifoTTKARf7EZfmSR8J+idLiMSkVuP+R/bJTzToP2n2Ndg/94INmzPP +anv18ct6RthFKakftDQZ6BdfHTfjCQ= -----END CERTIFICATE-----Generated at Sun Aug 10 04:51:23 2025 by rpki-client