$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft File: nb0ycj1x0bhWzIRJBDf78NpVJWo.mft (raw, json) Hash identifier: 1Md2EVKuTxDQAWAWJCPFATssxqi/yKpFgcQ/JVIUcmg= Subject key identifier: 79:06:78:D5:5C:7A:F7:C8:5C:F7:D6:74:EA:74:76:B3:38:1E:5C:20 Authority key identifier: 9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A Certificate issuer: /CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Certificate serial: 0F62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft Manifest number: 0F5B Signing time: Fri 08 Aug 2025 17:46:40 +0000 Manifest this update: Fri 08 Aug 2025 17:46:39 +0000 Manifest next update: Fri 15 Aug 2025 17:46:39 +0000 Files and hashes: 1: nb0ycj1x0bhWzIRJBDf78NpVJWo.crl (hash: HpU9zedBuLV5t3gq7S5CLv8GwmjqJT+eETIJ48R+plY=) 2: B0DA9FC46FDD11E9BC194664C4F9AE02.roa (hash: Hb9hkw/JGVDNL3WRZDBLo8Md0h4gCqoVhQUhIQUyimQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3938 (0xf62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B41, serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Validity Not Before: Aug 8 17:46:39 2025 GMT Not After : Aug 15 17:46:39 2025 GMT Subject: CN=689637ff-7a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e7:3f:b2:f5:9d:88:bc:a8:06:c8:20:e0:3d: 51:10:70:be:bd:84:d9:dc:3d:86:8d:97:d0:92:06: ce:84:95:29:7b:d6:1f:60:5e:70:54:bd:e5:f8:2c: 0e:7b:92:27:a0:75:02:a1:4b:02:cb:5c:72:80:44: 04:7c:24:6a:bd:cd:11:93:c6:d4:bf:f9:d3:d0:e6: 29:6b:65:b6:b4:36:c9:67:6b:fb:0a:23:74:55:7e: 7d:7a:ae:51:3a:5a:2d:56:c4:19:07:f2:69:df:78: 21:f0:9b:e3:f5:e6:d6:81:08:81:44:4c:2f:e3:c2: 12:a5:e1:23:f3:55:ba:f3:57:3c:c6:71:fe:fa:a7: 4b:ab:1d:ba:21:48:cd:1c:13:d3:67:a2:96:7f:4c: a9:36:12:e8:9f:03:40:ab:74:0f:b4:b3:2c:fe:38: 40:fb:59:0b:6d:65:6f:f8:5c:52:42:e8:b4:21:4a: 15:73:3a:65:0a:f7:ff:35:7d:20:60:ec:7f:fa:17: 3a:8c:cd:ba:5d:7e:39:b0:06:f2:47:93:2a:c0:e7: 74:87:68:9e:c7:89:3e:21:42:71:c8:ba:1d:80:cf: 1e:92:d1:b9:16:c6:53:cb:e7:48:70:e4:92:7e:dd: df:dd:f2:53:c5:99:e6:ff:57:6b:2f:60:f8:ef:75: 31:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:06:78:D5:5C:7A:F7:C8:5C:F7:D6:74:EA:74:76:B3:38:1E:5C:20 X509v3 Authority Key Identifier: keyid:9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:d1:ed:a5:b2:aa:d4:5f:82:fa:d9:17:74:d9:0d:08:af:d0: 98:6a:c3:b1:f1:7c:de:9a:10:80:c4:bb:3d:fd:bd:29:aa:a5: 01:c2:4a:d8:e3:b2:24:cf:c6:21:35:a3:a5:53:cd:49:a7:30: b2:79:83:00:5b:c2:16:75:dc:e7:76:cd:5d:a1:26:52:43:26: eb:87:9d:1c:4b:84:c1:82:04:aa:d4:da:55:fd:ba:10:db:30: 3e:14:5f:49:73:67:9a:43:30:7c:7d:25:94:8b:c0:1c:96:ef: 40:9d:2f:bd:66:68:81:38:5b:10:4e:f0:1d:22:c1:9f:0d:79: 9c:6c:77:12:22:57:c4:cd:50:c9:09:bb:ea:f4:65:bf:e8:cd: a9:c3:a5:35:0f:c8:71:4e:65:be:7d:a7:c8:e1:21:64:97:e7: 54:90:89:e1:fe:21:58:b7:3b:30:95:19:0a:9e:a8:fb:c1:02: ce:de:dc:73:d0:56:dd:fb:df:93:75:06:bf:f2:40:a5:74:e2: 39:ed:dd:7f:0b:ab:83:65:e2:8d:a4:6f:3b:0b:3b:60:fc:45: 0d:b2:3e:37:97:27:1a:81:43:62:0d:d0:3d:27:5c:75:2f:95: 2f:bc:89:e8:40:74:bc:33:04:c8:2b:15:5a:bc:82:dd:a2:f2: 91:5e:12:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCNDExMTAvBgNVBAUTKDlEQkQzMjcyM0Q3MUQxQjg1NkNDODQ0OTA0MzdGQkYw REE1NTI1NkEwHhcNMjUwODA4MTc0NjM5WhcNMjUwODE1MTc0NjM5WjAYMRYwFAYD VQQDEw02ODk2MzdmZi03YTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Oc/svWdiLyoBsgg4D1REHC+vYTZ3D2GjZfQkgbOhJUpe9YfYF5wVL3l+CwO e5InoHUCoUsCy1xygEQEfCRqvc0Rk8bUv/nT0OYpa2W2tDbJZ2v7CiN0VX59eq5R OlotVsQZB/Jp33gh8Jvj9ebWgQiBREwv48ISpeEj81W681c8xnH++qdLqx26IUjN HBPTZ6KWf0ypNhLonwNAq3QPtLMs/jhA+1kLbWVv+FxSQui0IUoVczplCvf/NX0g YOx/+hc6jM26XX45sAbyR5MqwOd0h2iex4k+IUJxyLodgM8ektG5FsZTy+dIcOSS ft3f3fJTxZnm/1drL2D473Ux9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkGeNVc evfIXPfWdOp0drM4HlwgMB8GA1UdIwQYMBaAFJ29MnI9cdG4VsyESQQ3+/DaVSVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUI0MS8zM0QyNTMxNjZG REIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBiaFd6SVJKQkRmNzhOcFZK V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iMHljajF4MGJoV3pJUkpCRGY3OE5wVkpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUI0MS8zM0QyNTMxNjZGREIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBi aFd6SVJKQkRmNzhOcFZKV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA0e2lsqrUX4L62Rd02Q0Ir9CYasOx8XzemhCAxLs9/b0pqqUBwkrY 47Ikz8YhNaOlU81JpzCyeYMAW8IWddznds1doSZSQybrh50cS4TBggSq1NpV/boQ 2zA+FF9Jc2eaQzB8fSWUi8Aclu9AnS+9ZmiBOFsQTvAdIsGfDXmcbHcSIlfEzVDJ Cbvq9GW/6M2pw6U1D8hxTmW+fafI4SFkl+dUkInh/iFYtzswlRkKnqj7wQLO3txz 0Fbd+9+TdQa/8kCldOI57d1/C6uDZeKNpG87Cztg/EUNsj43lycagUNiDdA9J1x1 L5UvvInoQHS8MwTIKxVavILdovKRXhKF -----END CERTIFICATE-----Generated at Sat Aug 9 10:37:18 2025 by rpki-client