$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: CJaGNNTwx0S1XBWen0gOrzMmwDWpdDJjJmORlnaYQXo= Subject key identifier: 4F:5B:96:A8:6C:57:7B:82:B4:9C:4C:A6:75:AE:3A:7E:F0:B5:3C:61 Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0CA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0C96 Signing time: Fri 08 Aug 2025 18:29:18 +0000 Manifest this update: Fri 08 Aug 2025 18:29:18 +0000 Manifest next update: Fri 15 Aug 2025 18:29:18 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: 5R2gkElnfyUXgasbtcgT5Nq/jCfF0IY1DrgsqzZ9R0g=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: OT1wU0R1qfUZlPrVStZHI9ZTJpnzI3jWvMhElEQPU9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Aug 8 18:29:18 2025 GMT Not After : Aug 15 18:29:18 2025 GMT Subject: CN=689641fe-24e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0f:40:2e:99:5f:2d:14:c3:78:92:1c:61:a8: ba:fd:e7:18:0e:06:4f:8f:a4:2f:2a:47:73:5d:ac: 29:0d:06:41:19:8c:79:bf:90:80:bd:c1:c4:40:67: 0d:99:2a:26:79:c9:16:da:dc:69:2a:e4:c3:bc:77: 95:a5:4f:4e:25:46:39:1d:f7:16:9b:5c:97:da:37: be:4d:37:f4:2f:74:48:d6:a0:c3:b6:d6:07:02:3f: 27:ca:3b:ce:71:20:c8:23:9b:34:af:d5:42:60:71: c7:df:16:6c:87:57:ba:48:f7:31:69:e2:96:58:07: 0d:6c:92:6e:07:6f:55:2f:ae:3c:10:6e:bd:4d:e6: 30:4a:f3:63:a6:84:47:50:58:fb:cb:80:8f:5f:3b: 91:31:2c:81:2b:5b:ce:39:7f:92:a9:5e:dd:a4:77: 85:00:54:07:45:2f:5e:09:40:05:77:f2:b5:64:6d: 08:ad:08:60:91:73:d2:92:8b:bc:e9:39:06:4f:c3: 96:a4:c4:cd:7a:5e:c5:0b:a1:d9:f8:f1:7b:32:8a: 82:ec:17:de:48:7c:42:69:1f:e3:3e:23:68:e7:87: 4f:b3:50:de:72:6e:8c:5b:1f:0b:72:a2:5b:f8:81: ee:8a:35:8b:ad:8c:fe:a9:64:1f:41:18:d6:79:4e: ec:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:5B:96:A8:6C:57:7B:82:B4:9C:4C:A6:75:AE:3A:7E:F0:B5:3C:61 X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:16:f8:63:de:d4:0d:c8:76:be:5d:f9:46:fa:e4:47:b8:18: 95:be:6a:ab:fe:21:5a:b9:04:f7:f0:53:0c:65:06:4a:43:7b: a5:90:21:18:37:33:5f:58:b6:d0:65:80:4a:9c:a8:eb:b7:1c: 92:5d:12:c9:44:18:dd:c2:a6:ed:1c:08:c5:ff:46:a5:c5:7f: 2a:e2:1b:08:83:85:df:da:fd:2b:f3:7a:cc:d3:1c:72:76:4d: 68:ed:34:94:67:bf:57:1d:5a:01:e7:35:83:5a:75:e0:09:ab: 13:8a:da:00:ab:1f:db:a9:0e:f4:47:18:b2:37:27:bf:5b:6e: e4:58:58:b7:db:0d:ce:79:fd:0e:4a:4b:0d:d2:c4:ff:7d:d0: e4:ee:df:9d:dc:c2:38:73:ff:01:68:c6:3f:89:83:cd:4f:04: cd:67:fd:1f:23:36:fd:6e:2b:f8:9e:a9:2b:a2:64:86:95:61: 40:f5:79:98:fc:bf:b7:f5:30:0c:a1:f7:a1:a2:98:88:0d:b5: 4e:cb:d2:cc:de:6a:02:a2:47:a0:ea:e3:68:32:5c:dc:32:f0: 0d:93:a0:31:65:b6:5b:97:40:09:1d:4f:39:f3:56:f3:d8:88: b7:11:7a:b2:6f:a7:ab:5e:cb:89:13:c1:e6:f1:cf:3e:bb:05: 53:0e:7c:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUwODA4MTgyOTE4WhcNMjUwODE1MTgyOTE4WjAYMRYwFAYD VQQDEw02ODk2NDFmZS0yNGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw9ALplfLRTDeJIcYai6/ecYDgZPj6QvKkdzXawpDQZBGYx5v5CAvcHEQGcN mSomeckW2txpKuTDvHeVpU9OJUY5HfcWm1yX2je+TTf0L3RI1qDDttYHAj8nyjvO cSDII5s0r9VCYHHH3xZsh1e6SPcxaeKWWAcNbJJuB29VL648EG69TeYwSvNjpoRH UFj7y4CPXzuRMSyBK1vOOX+SqV7dpHeFAFQHRS9eCUAFd/K1ZG0IrQhgkXPSkou8 6TkGT8OWpMTNel7FC6HZ+PF7MoqC7BfeSHxCaR/jPiNo54dPs1Decm6MWx8LcqJb +IHuijWLrYz+qWQfQRjWeU7sAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9blqhs V3uCtJxMpnWuOn7wtTxhMB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVFvhj3tQNyHa+XflG+uRHuBiVvmqr/iFauQT38FMMZQZKQ3ulkCEY NzNfWLbQZYBKnKjrtxySXRLJRBjdwqbtHAjF/0alxX8q4hsIg4Xf2v0r83rM0xxy dk1o7TSUZ79XHVoB5zWDWnXgCasTitoAqx/bqQ70RxiyNye/W27kWFi32w3Oef0O SksN0sT/fdDk7t+d3MI4c/8BaMY/iYPNTwTNZ/0fIzb9biv4nqkromSGlWFA9XmY /L+39TAMofehopiIDbVOy9LM3moCokeg6uNoMlzcMvANk6AxZbZbl0AJHU8581bz 2Ii3EXqyb6erXsuJE8Hm8c8+uwVTDnxI -----END CERTIFICATE-----Generated at Sun Aug 10 18:49:02 2025 by rpki-client