$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: XVj1AAWUEwFE7Bac22ClIxpyl6xJbQHVelK2RuTKhbY= Subject key identifier: 83:64:E4:0D:67:52:C6:DA:D9:96:77:89:96:0A:CB:B3:E5:62:5C:F1 Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 0555 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 0550 Signing time: Fri 08 Aug 2025 23:52:20 +0000 Manifest this update: Fri 08 Aug 2025 23:52:20 +0000 Manifest next update: Fri 15 Aug 2025 23:52:20 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: OoTkuE2cIPvAKZhLhTuD+i7Nvm/HQXxyJb7CuzHbzPI=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: Y4KIW6waXy9by1Ft4XI4IDDdWRGAFQ3T1gtKYgu91qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1365 (0x555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Aug 8 23:52:20 2025 GMT Not After : Aug 15 23:52:20 2025 GMT Subject: CN=68968db4-3614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:da:a7:a0:83:60:56:d6:46:7d:a4:92:57:83: 43:f5:77:76:a4:ba:bb:45:67:b7:fb:4a:07:04:26: b7:ae:a1:2c:4f:d9:92:4e:ff:35:fe:dc:e7:6f:8d: e3:73:b3:d8:d2:9d:f4:09:04:33:db:2e:57:7f:71: d1:49:70:1a:6a:9b:8a:b7:29:42:76:fa:dd:a8:41: 89:66:b2:58:9d:4f:b6:fe:ce:d3:08:01:e1:44:f3: 50:de:44:ad:78:2b:88:15:4f:9f:5a:04:e1:dd:cd: ef:f7:95:1f:9e:40:2c:4e:d7:75:b5:cd:0c:e4:64: d7:5b:41:e1:cc:75:9f:8b:c7:48:db:cf:b8:64:1b: 4e:3f:5d:58:b8:b2:75:b7:9a:20:02:be:28:dc:1e: 7d:72:93:fe:be:0e:ec:b7:e3:65:b7:18:55:f1:ca: 00:7e:9e:ed:11:f7:63:95:c6:50:32:d2:cc:c6:15: 35:01:c1:20:3d:b2:64:da:31:a0:16:f8:f0:cf:7f: 54:e5:09:5e:47:5e:84:01:f7:f8:78:3b:88:de:c0: bd:3a:5b:cf:f3:8f:6a:3b:66:32:42:df:a5:a3:30: 92:76:ac:07:44:09:a6:24:bc:5d:08:5b:32:ff:17: e6:f5:e2:d3:0a:c6:cd:0d:d7:2d:b7:a8:1c:f1:d9: 03:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:64:E4:0D:67:52:C6:DA:D9:96:77:89:96:0A:CB:B3:E5:62:5C:F1 X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:7f:ed:4c:8b:9e:a9:95:77:ff:c9:1e:6a:59:49:13:b9:a8: 12:78:4c:66:45:d3:b0:6a:6e:a4:25:78:b1:f9:56:28:54:df: 14:57:82:eb:28:41:b6:d7:84:b8:35:1b:6c:89:7d:85:84:2c: 4c:23:9d:64:e5:d0:cc:53:9a:72:12:c3:35:08:03:56:5e:4d: 4f:c9:34:5a:e5:46:0b:0b:2e:4f:43:48:0c:ac:8a:c9:d8:a3: fc:69:38:63:34:56:3c:8f:f3:4f:63:21:ed:fb:c2:cc:6b:db: a4:92:6a:1f:f2:4f:4f:9c:b7:c1:15:58:a7:c9:da:5a:44:74: 6a:8f:b0:c3:42:d5:cd:42:0e:d6:78:df:78:e3:76:08:0d:02: 5f:ea:63:3a:10:c9:52:b6:d4:ca:c1:1c:fd:bc:16:5a:51:1e: 6b:b4:aa:d4:7a:02:a9:bd:2f:23:4a:69:8d:7a:9a:59:03:ea: a2:81:30:a1:5c:24:65:9e:41:81:50:66:6e:fc:df:e3:83:6d: 3a:63:51:98:05:ba:5e:ef:cf:ec:42:c6:f0:79:f2:21:9f:2c: 69:4f:49:bd:eb:5b:eb:a7:78:a0:a4:1b:22:cf:17:c2:c2:a3: 44:ec:d1:22:80:60:d2:5d:06:5b:35:71:7b:e6:db:1e:1b:a7: a3:66:24:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjUwODA4MjM1MjIwWhcNMjUwODE1MjM1MjIwWjAYMRYwFAYD VQQDEw02ODk2OGRiNC0zNjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdqnoINgVtZGfaSSV4ND9Xd2pLq7RWe3+0oHBCa3rqEsT9mSTv81/tznb43j c7PY0p30CQQz2y5Xf3HRSXAaapuKtylCdvrdqEGJZrJYnU+2/s7TCAHhRPNQ3kSt eCuIFU+fWgTh3c3v95UfnkAsTtd1tc0M5GTXW0HhzHWfi8dI28+4ZBtOP11YuLJ1 t5ogAr4o3B59cpP+vg7st+NltxhV8coAfp7tEfdjlcZQMtLMxhU1AcEgPbJk2jGg Fvjwz39U5QleR16EAff4eDuI3sC9OlvP849qO2YyQt+lozCSdqwHRAmmJLxdCFsy /xfm9eLTCsbNDdctt6gc8dkDgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINk5A1n Usba2ZZ3iZYKy7PlYlzxMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhf+1Mi56plXf/yR5qWUkTuagSeExmRdOwam6kJXix+VYoVN8UV4Lr KEG214S4NRtsiX2FhCxMI51k5dDMU5pyEsM1CANWXk1PyTRa5UYLCy5PQ0gMrIrJ 2KP8aThjNFY8j/NPYyHt+8LMa9ukkmof8k9PnLfBFVinydpaRHRqj7DDQtXNQg7W eN9443YIDQJf6mM6EMlSttTKwRz9vBZaUR5rtKrUegKpvS8jSmmNeppZA+qigTCh XCRlnkGBUGZu/N/jg206Y1GYBbpe78/sQsbwefIhnyxpT0m961vrp3igpBsizxfC wqNE7NEigGDSXQZbNXF75tseG6ejZiSm -----END CERTIFICATE-----Generated at Sat Aug 9 22:44:12 2025 by rpki-client