$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: 4sJs3dvHwyGNmFC8gHbB/KG6bLtAbEagKpWdWb23LF0= Subject key identifier: 2F:32:4F:19:F8:83:B0:AF:DB:BF:CB:1C:1E:E8:3A:CD:6C:39:77:D1 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 06B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 06B1 Signing time: Fri 08 Aug 2025 22:32:36 +0000 Manifest this update: Fri 08 Aug 2025 22:32:36 +0000 Manifest next update: Fri 15 Aug 2025 22:32:36 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: yTBYhImrNzxuKNivOvJRXzfmFS8lvwjBAV6xH5+3ZAc=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: zKqUOk2enQVo+KwTKKBvY1Ib1LdBjKOEZObmTpDLQzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Aug 8 22:32:36 2025 GMT Not After : Aug 15 22:32:36 2025 GMT Subject: CN=68967b04-b71d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:00:91:f3:b5:b0:b0:90:06:4f:44:65:e9:b5: 60:8e:94:ee:96:87:12:c0:9d:fc:74:1f:db:cc:56: 1d:ff:68:b8:fc:ea:9a:65:03:e4:60:d3:91:9f:16: 28:2b:be:5d:7f:0e:94:0d:54:29:1d:a3:6b:3c:04: 96:f4:8f:8b:6f:9f:54:f8:99:60:99:5c:57:63:a6: 24:ec:74:0f:59:82:d7:bd:db:a9:55:68:cd:85:30: 77:57:7b:31:dc:11:df:7d:96:87:bd:54:21:8e:4b: 82:f9:99:56:65:17:55:2e:3d:22:84:89:b5:ee:61: 33:3a:04:08:77:2c:7b:a0:ac:e1:bc:dc:d6:d0:b7: 42:2f:63:73:f8:85:7f:81:e8:c9:74:37:36:70:93: f7:ce:31:97:35:53:8d:a2:0c:d4:fc:d7:33:ba:b9: 93:f2:c9:72:c3:af:87:cb:24:13:8e:2c:21:33:2a: 1b:72:7f:9a:7a:39:67:92:62:eb:cd:be:34:b5:56: 2a:97:49:e5:6c:90:0c:d7:84:51:ff:7c:b7:c6:7e: ed:4c:32:ea:0e:d5:da:4a:e2:a8:b0:e0:54:f4:7b: 76:5e:84:ab:a0:f1:bd:75:6b:b0:47:fa:37:d9:8b: 83:fa:2b:0f:d9:8a:8c:d2:9b:04:92:c4:8b:a2:6a: f8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:32:4F:19:F8:83:B0:AF:DB:BF:CB:1C:1E:E8:3A:CD:6C:39:77:D1 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:07:e3:92:a7:09:89:8c:92:6c:33:75:5d:d6:e1:4b:48:b5: 5a:23:34:b0:ba:b9:a0:0f:8a:dd:dd:27:68:f2:74:0e:33:d3: 6b:de:81:7f:43:ed:f3:3c:c9:a9:d0:fb:be:c2:88:d6:c1:27: fc:32:4b:72:01:0d:c4:b3:e6:09:61:40:f4:85:14:c7:9d:79: 74:9e:bb:d3:4d:d2:3d:62:b2:2b:6b:c1:9d:c3:d3:1b:20:9c: 0a:bd:c5:74:97:80:48:bc:98:8d:38:70:a0:0c:31:7f:ef:50: fa:21:67:d7:7a:e4:a5:ba:98:c2:08:b1:15:11:c4:ff:ee:e3: 61:81:00:c2:7b:39:61:2f:5d:b7:96:e5:1b:96:ed:4b:c5:7f: c6:77:b8:86:e3:77:62:e8:4e:9f:90:39:f4:49:e6:8e:a3:5c: ed:21:c3:3d:b0:aa:d1:23:9e:7a:22:fa:fc:6c:ae:c5:63:fb: 09:96:12:91:75:5f:55:be:83:89:95:99:14:01:79:23:8a:6d: ba:af:e2:a2:33:08:a7:2e:01:07:bf:fa:cf:d0:93:7a:9a:e9: c9:3f:6c:d8:c3:4d:57:b2:44:e0:2f:87:6c:8c:ce:24:74:7e: 2c:29:3a:c9:40:8a:be:44:4f:4f:e6:a2:12:2b:c6:41:66:33: 2d:8b:c4:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjUwODA4MjIzMjM2WhcNMjUwODE1MjIzMjM2WjAYMRYwFAYD VQQDEw02ODk2N2IwNC1iNzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gCR87WwsJAGT0Rl6bVgjpTulocSwJ38dB/bzFYd/2i4/OqaZQPkYNORnxYo K75dfw6UDVQpHaNrPASW9I+Lb59U+JlgmVxXY6Yk7HQPWYLXvdupVWjNhTB3V3sx 3BHffZaHvVQhjkuC+ZlWZRdVLj0ihIm17mEzOgQIdyx7oKzhvNzW0LdCL2Nz+IV/ gejJdDc2cJP3zjGXNVONogzU/NczurmT8slyw6+HyyQTjiwhMyobcn+aejlnkmLr zb40tVYql0nlbJAM14RR/3y3xn7tTDLqDtXaSuKosOBU9Ht2XoSroPG9dWuwR/o3 2YuD+isP2YqM0psEksSLomr4pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8yTxn4 g7Cv27/LHB7oOs1sOXfRMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpB+OSpwmJjJJsM3Vd1uFLSLVaIzSwurmgD4rd3Sdo8nQOM9Nr3oF/ Q+3zPMmp0Pu+wojWwSf8MktyAQ3Es+YJYUD0hRTHnXl0nrvTTdI9YrIra8Gdw9Mb IJwKvcV0l4BIvJiNOHCgDDF/71D6IWfXeuSlupjCCLEVEcT/7uNhgQDCezlhL123 luUblu1LxX/Gd7iG43di6E6fkDn0SeaOo1ztIcM9sKrRI556Ivr8bK7FY/sJlhKR dV9VvoOJlZkUAXkjim26r+KiMwinLgEHv/rP0JN6munJP2zYw01XskTgL4dsjM4k dH4sKTrJQIq+RE9P5qISK8ZBZjMti8SM -----END CERTIFICATE-----Generated at Sun Aug 10 05:37:45 2025 by rpki-client