$ rpki-client -vvf rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft File: nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft (raw, json) Hash identifier: DK3u6LW0ltenwDaVzw6o676xQp1VP5U7hZ+5UovfSHo= Subject key identifier: 97:96:F6:AA:8D:89:AF:AA:DC:E4:4E:9C:CE:C8:92:F8:A6:1B:80:CF Authority key identifier: 9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86 Certificate issuer: /CN=A9175906/serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686 Certificate serial: 0405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft Manifest number: 03FE Signing time: Sat 09 Aug 2025 00:58:30 +0000 Manifest this update: Sat 09 Aug 2025 00:58:30 +0000 Manifest next update: Sat 16 Aug 2025 00:58:30 +0000 Files and hashes: 1: nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl (hash: znzF2N+qXsSkCvP14cUfTKaXlTgfMZEEESq/o7Mo8mo=) 2: 27A6D5CAAF1C11EC94FF9534C4F9AE02.roa (hash: tuiOvz0EtN5gYIcDBljazRXB+32WdpyvWw0LqnkHLT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175906, serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686 Validity Not Before: Aug 9 00:58:30 2025 GMT Not After : Aug 16 00:58:30 2025 GMT Subject: CN=68969d36-f29d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:76:15:13:4d:e0:5e:98:4e:ce:7a:12:08:91: 02:53:75:91:39:5f:69:84:c6:b6:9f:87:93:ee:24: 43:5c:2d:12:7f:c4:e8:18:84:09:c0:b6:b2:76:27: e9:56:68:cd:ad:f8:2a:bc:db:2d:32:09:b3:7a:53: af:bc:e2:2d:9b:91:3e:db:25:b8:29:59:26:a1:77: 1a:6b:6a:99:41:c0:13:99:db:12:9d:77:1c:71:92: 14:2b:17:2a:35:c7:a1:e8:d7:fc:6c:97:0d:2c:3d: a3:82:77:ef:f6:3f:55:01:6a:8c:5a:42:1f:c6:88: 6a:cd:ba:0e:d5:58:6c:88:77:a3:33:ae:40:d3:fa: 21:7e:e6:60:ec:78:23:2b:5f:a6:b0:d5:24:8b:af: d6:0f:ed:a2:8c:50:cb:70:46:0d:a5:80:a8:da:ca: 37:3d:ba:7a:fc:13:77:f2:78:b7:c9:8d:28:ff:7c: 6f:79:0f:0d:98:1f:64:4d:81:5f:ec:4b:f5:9c:35: c9:d8:d6:9e:8f:b5:d0:78:06:3b:f2:19:46:ed:06: cd:2a:92:1b:c3:92:20:c0:ce:75:64:f9:91:f3:a9: 37:22:c1:74:89:41:ca:8d:4e:a8:46:54:e8:08:13: 27:98:98:5d:9a:c0:e5:97:1b:6e:37:00:1e:90:38: 1f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:96:F6:AA:8D:89:AF:AA:DC:E4:4E:9C:CE:C8:92:F8:A6:1B:80:CF X509v3 Authority Key Identifier: keyid:9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:4e:da:8f:cd:c8:a4:41:93:0e:62:38:9a:ae:21:5b:34:ad: c9:62:96:ce:0f:c0:d8:d5:6c:6a:c1:e0:3d:11:8c:31:8c:47: 98:df:19:ab:07:eb:ab:55:17:0c:d5:97:fd:52:bd:fd:eb:27: c5:20:05:96:d6:7f:e7:82:27:ba:67:2b:4e:d8:80:63:99:01: 91:3a:b2:4c:61:94:7f:e0:c1:03:82:1c:eb:a4:d2:71:b6:ed: 10:57:49:61:69:c3:0e:f8:28:1b:42:ef:3d:95:7d:b6:87:5c: 2f:cc:cf:b3:d7:9f:30:36:f4:17:52:75:c2:3b:b0:96:00:f1: d9:c6:97:e0:0a:8d:e5:e9:6e:61:5c:74:11:e2:d0:86:5c:4c: e2:5c:72:b3:f4:a5:39:e6:05:51:aa:bb:70:c5:19:05:cf:a3: 30:e9:f9:93:45:c2:21:6a:a0:ec:c7:f3:ac:aa:37:c7:d0:99: 0e:86:bf:f6:24:07:ed:c6:c1:47:ce:25:02:c7:bb:c4:ff:9a: 70:0f:5d:5c:9f:5f:49:bb:82:00:8c:36:9b:cb:0b:af:74:b9: 26:f2:ac:4a:7a:75:10:15:9f:84:eb:18:a0:e9:7d:5d:2a:f1: 12:70:8d:17:35:e0:b2:a0:04:d5:18:93:7a:96:6c:98:30:2f: a2:a5:d3:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU5MDYxMTAvBgNVBAUTKDlEMUJBQ0Q0MEE4MjU5OTI0Q0QyQzU2OTUxQTQzRTBC Rjg3MkQ2ODYwHhcNMjUwODA5MDA1ODMwWhcNMjUwODE2MDA1ODMwWjAYMRYwFAYD VQQDEw02ODk2OWQzNi1mMjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXYVE03gXphOznoSCJECU3WROV9phMa2n4eT7iRDXC0Sf8ToGIQJwLaydifp VmjNrfgqvNstMgmzelOvvOItm5E+2yW4KVkmoXcaa2qZQcATmdsSnXcccZIUKxcq Nceh6Nf8bJcNLD2jgnfv9j9VAWqMWkIfxohqzboO1VhsiHejM65A0/ohfuZg7Hgj K1+msNUki6/WD+2ijFDLcEYNpYCo2so3Pbp6/BN38ni3yY0o/3xveQ8NmB9kTYFf 7Ev1nDXJ2Naej7XQeAY78hlG7QbNKpIbw5IgwM51ZPmR86k3IsF0iUHKjU6oRlTo CBMnmJhdmsDllxtuNwAekDgfXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJeW9qqN ia+q3OROnM7IkvimG4DPMB8GA1UdIwQYMBaAFJ0brNQKglmSTNLFaVGkPgv4ctaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTkwNi84Q0NDQ0JBNDgz RTcxMUVDQTAwMzRGNkJDNEY5QUUwMi9uUnVzMUFxQ1daSk0wc1ZwVWFRLUNfaHkx b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25SdXMxQXFDV1pKTTBzVnBVYVEtQ19oeTFvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTkwNi84Q0NDQ0JBNDgzRTcxMUVDQTAwMzRGNkJDNEY5QUUwMi9uUnVzMUFxQ1da Sk0wc1ZwVWFRLUNfaHkxb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwTtqPzcikQZMOYjiariFbNK3JYpbOD8DY1WxqweA9EYwxjEeY3xmr B+urVRcM1Zf9Ur396yfFIAWW1n/ngie6ZytO2IBjmQGROrJMYZR/4MEDghzrpNJx tu0QV0lhacMO+CgbQu89lX22h1wvzM+z158wNvQXUnXCO7CWAPHZxpfgCo3l6W5h XHQR4tCGXEziXHKz9KU55gVRqrtwxRkFz6Mw6fmTRcIhaqDsx/OsqjfH0JkOhr/2 JAftxsFHziUCx7vE/5pwD11cn19Ju4IAjDabywuvdLkm8qxKenUQFZ+E6xig6X1d KvEScI0XNeCyoATVGJN6lmyYMC+ipdPj -----END CERTIFICATE-----Generated at Sat Aug 9 14:32:40 2025 by rpki-client