$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft File: NsqppHOp6nOCn3NWgJvBYQOtA64.mft (raw, json) Hash identifier: yT4C7+8URwd9LucA8bnung/6zfWsYlI/cVPWrQ9cLeQ= Subject key identifier: B4:EC:B7:C9:D8:86:6E:1E:B5:E3:F8:2A:5A:5C:D5:FE:DD:3D:11:C1 Authority key identifier: 36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE Certificate issuer: /CN=A9152329/serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft Manifest number: 8A Signing time: Sat 09 Aug 2025 07:01:32 +0000 Manifest this update: Sat 09 Aug 2025 07:01:31 +0000 Manifest next update: Sat 16 Aug 2025 07:01:31 +0000 Files and hashes: 1: NsqppHOp6nOCn3NWgJvBYQOtA64.crl (hash: htsFYdudXH2nu5mto7a4J3mvjcCq6uL3PQFtnt1t9fA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Validity Not Before: Aug 9 07:01:31 2025 GMT Not After : Aug 16 07:01:31 2025 GMT Subject: CN=6896f24c-ad29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d0:74:78:03:48:8b:27:3e:a6:05:9d:d8:85: 30:1a:10:75:56:81:da:75:4e:51:0f:6d:39:bb:4b: 58:83:37:66:66:fe:89:ea:21:73:cb:1d:88:63:97: fa:70:5e:92:c1:7b:3e:e5:46:26:95:58:a6:da:5b: fa:c4:3c:a2:3f:9d:7e:c8:30:4b:1a:df:fb:1b:e1: 17:f5:6b:f0:8e:a5:00:3a:54:1d:9c:06:51:d6:58: db:80:31:6f:52:ba:61:17:89:eb:05:52:ef:f1:43: 23:08:2e:d9:e4:e7:e1:66:28:20:df:cb:78:d6:28: 9e:b3:d4:24:14:a2:19:fa:31:5f:a0:39:3c:c2:39: 39:37:f0:61:2f:b3:18:14:85:cd:66:c2:f4:52:a0: 86:59:34:6b:4e:cc:dc:6d:ef:83:a8:28:13:c4:b9: 53:47:bf:31:20:ef:96:3a:08:d2:38:4c:22:e1:6e: 3e:cd:98:73:b3:a8:e1:8e:36:9d:9a:cb:87:b4:00: cd:2d:89:0e:c3:08:2e:da:b0:19:a1:f8:34:fb:26: e6:12:f3:e2:97:6b:3c:6d:21:b6:78:92:ca:1f:03: e5:78:7f:c1:45:28:5d:75:11:a9:67:9f:89:ba:ee: 23:64:4c:1e:88:cc:c9:39:b0:ae:6a:a0:37:25:0a: d4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:EC:B7:C9:D8:86:6E:1E:B5:E3:F8:2A:5A:5C:D5:FE:DD:3D:11:C1 X509v3 Authority Key Identifier: keyid:36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:6f:f0:86:f6:52:84:52:26:fc:a0:51:7b:03:92:6d:ea:25: 06:f4:91:c0:b5:5f:6e:a9:45:68:7c:ae:4a:50:56:f7:01:7c: fd:f7:2d:10:52:3a:e9:a3:db:85:eb:6b:ab:16:9a:ca:08:34: ea:85:bc:4f:af:d8:a4:6a:ad:9b:59:57:3f:8e:e3:28:02:06: 4b:36:b4:28:05:09:13:fa:c5:12:23:56:a9:20:55:6f:20:61: da:b4:99:91:de:bd:ae:c9:05:73:de:af:3f:ea:2c:c5:83:9d: 12:13:9f:85:e2:e1:da:8f:71:a7:89:14:b6:d6:6a:95:58:f1: e0:98:2b:a2:4e:12:e4:50:c9:40:82:95:86:67:34:b0:f9:dc: a1:a7:93:d2:c0:94:96:6c:6f:15:8c:be:e1:a5:71:41:9b:02: c4:96:2f:79:08:f2:75:93:7f:11:94:8e:ad:1c:dc:a4:9c:48: c2:17:67:a0:e0:4e:79:40:de:53:83:f5:6d:65:41:12:20:87: 1c:74:27:8b:b6:d3:61:77:3e:0c:b5:96:de:1d:4a:c9:9d:b4: f5:78:6e:0b:b2:c2:90:14:ab:dc:ef:ec:96:f0:c5:a6:3d:47: 27:7d:07:eb:c7:fb:77:89:5e:65:38:c9:3f:59:65:cd:fd:1b: 47:cf:41:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzMjkxMTAvBgNVBAUTKDM2Q0FBOUE0NzNBOUVBNzM4MjlGNzM1NjgwOUJDMTYx MDNBRDAzQUUwHhcNMjUwODA5MDcwMTMxWhcNMjUwODE2MDcwMTMxWjAYMRYwFAYD VQQDEw02ODk2ZjI0Yy1hZDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9B0eANIiyc+pgWd2IUwGhB1VoHadU5RD205u0tYgzdmZv6J6iFzyx2IY5f6 cF6SwXs+5UYmlVim2lv6xDyiP51+yDBLGt/7G+EX9WvwjqUAOlQdnAZR1ljbgDFv UrphF4nrBVLv8UMjCC7Z5OfhZigg38t41iies9QkFKIZ+jFfoDk8wjk5N/BhL7MY FIXNZsL0UqCGWTRrTszcbe+DqCgTxLlTR78xIO+WOgjSOEwi4W4+zZhzs6jhjjad msuHtADNLYkOwwgu2rAZofg0+ybmEvPil2s8bSG2eJLKHwPleH/BRShddRGpZ5+J uu4jZEweiMzJObCuaqA3JQrULwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTst8nY hm4eteP4Klpc1f7dPRHBMB8GA1UdIwQYMBaAFDbKqaRzqepzgp9zVoCbwWEDrQOu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjMyOS9EMDg2RDU1RUEy NjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9Oc3FwcEhPcDZuT0NuM05XZ0p2QllRT3RB NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05zcXBwSE9wNm5PQ24zTldnSnZCWVFPdEE2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjMyOS9EMDg2RDU1RUEyNjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9Oc3FwcEhPcDZu T0NuM05XZ0p2QllRT3RBNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVb/CG9lKEUib8oFF7A5Jt6iUG9JHAtV9uqUVofK5KUFb3AXz99y0Q Ujrpo9uF62urFprKCDTqhbxPr9ikaq2bWVc/juMoAgZLNrQoBQkT+sUSI1apIFVv IGHatJmR3r2uyQVz3q8/6izFg50SE5+F4uHaj3GniRS21mqVWPHgmCuiThLkUMlA gpWGZzSw+dyhp5PSwJSWbG8VjL7hpXFBmwLEli95CPJ1k38RlI6tHNyknEjCF2eg 4E55QN5Tg/VtZUESIIccdCeLttNhdz4MtZbeHUrJnbT1eG4LssKQFKvc7+yW8MWm PUcnfQfrx/t3iV5lOMk/WWXN/RtHz0F6 -----END CERTIFICATE-----Generated at Mon Aug 11 07:32:18 2025 by rpki-client