$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: W80uVKEerWjEXab+4jt7gfMsIaG4xACew/jR+Jk8jgQ= Subject key identifier: 6A:1E:00:D9:FC:C4:EF:C2:FB:00:F5:5D:0D:0C:37:55:84:39:13:22 Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: 5F Signing time: Sat 09 Aug 2025 07:39:22 +0000 Manifest this update: Sat 09 Aug 2025 07:39:21 +0000 Manifest next update: Sat 16 Aug 2025 07:39:21 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: t5EZsAEGIXt29XsnC/JwTWLDHP5oa6jMijqLvFZ13S4=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: KZxky345FbSXUrOq6QK1EajrLW8GtjyV/j47aC9IQ2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Aug 9 07:39:21 2025 GMT Not After : Aug 16 07:39:21 2025 GMT Subject: CN=6896fb2a-228a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:67:80:8d:75:7c:53:f7:6f:16:bd:c6:f0:73: fc:9b:2d:a0:36:cf:85:f0:6c:34:3b:a7:62:48:77: ba:81:17:75:2b:22:d4:47:44:8d:b2:0f:6f:d6:b5: ac:53:81:c6:01:af:f6:89:93:b2:67:0b:0f:03:d6: 08:96:47:4b:aa:3e:4e:99:aa:60:4a:bc:40:c8:46: c7:82:f2:c3:80:44:50:a3:fb:da:65:0f:dd:fa:27: c9:99:b5:80:a7:53:29:1b:d5:48:53:7f:7b:8b:dd: 88:01:91:29:68:04:f6:aa:35:dc:a6:0c:1a:1e:c9: 8f:3e:e5:5f:36:0a:f4:39:29:35:98:cf:b0:ca:6e: f5:91:8f:d9:6b:92:e5:5c:47:2d:63:95:27:2b:6e: 40:46:7a:f3:46:93:7c:59:93:a0:72:5f:fc:93:0d: 2c:31:3b:a4:b6:ba:7a:a7:fb:3a:cb:a1:a7:36:dd: 75:12:ed:39:26:fa:8e:e5:92:6f:be:7b:17:24:15: 2a:f4:0c:c1:03:3f:ac:88:99:22:29:4a:0a:1a:fe: 2c:0b:72:3f:70:5b:99:d2:10:3a:af:4e:10:dd:46: 3d:55:ed:25:19:b0:c7:4d:b4:79:4c:ee:11:07:9c: bd:04:06:82:7e:b3:ee:94:82:91:33:fa:42:ae:cb: 19:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:1E:00:D9:FC:C4:EF:C2:FB:00:F5:5D:0D:0C:37:55:84:39:13:22 X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:a5:40:33:44:f6:a1:bf:a7:43:3b:7e:34:15:92:1a:ef:12: e0:6b:23:f2:60:1e:83:01:4b:09:45:94:4d:38:11:7a:b1:87: 76:79:2e:55:e6:9d:9b:fa:83:2b:73:0d:a5:68:3a:c6:96:09: 5a:f5:c7:d0:a8:d3:e6:b4:64:30:5a:de:71:b2:d0:1e:56:ff: 56:59:66:3a:1a:9b:7e:0c:0f:bc:b5:36:11:bc:e3:3b:79:0f: 78:1d:7b:42:9a:db:1f:b0:9e:c3:b5:d1:ed:b5:6e:96:59:cb: 94:42:e9:11:86:7d:1b:43:cb:b4:4b:2d:c4:24:a8:70:9e:19: 2d:de:89:c5:38:56:b2:b0:06:f6:ee:f8:af:1d:20:52:28:e6: 85:b4:3e:4c:86:f2:62:7c:58:8d:1b:69:90:c3:4e:0a:f7:b0: d7:f9:d5:8f:90:40:b6:b6:c0:bf:98:9a:97:6c:ce:bb:a7:0c: a5:ac:dd:a3:6c:64:cd:43:b9:ff:a3:68:f6:1b:d7:fd:9e:6c: 74:92:b8:f2:d2:bb:f8:27:66:68:a7:d7:ec:c4:60:b1:6c:6a: bb:cf:fb:5f:6d:7b:1d:9e:57:76:f2:3b:24:eb:f2:c3:cb:9a: bd:dc:34:b1:54:d9:a5:1c:22:27:d1:2f:00:9f:d8:19:c1:de: f5:78:4f:84 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkM3MjExMC8GA1UEBRMoMzYxNkUwMURBMzMxN0YwOUVFQ0E5OEU3QkM3NTRDQkM5 OTBEN0Q2ODAeFw0yNTA4MDkwNzM5MjFaFw0yNTA4MTYwNzM5MjFaMBgxFjAUBgNV BAMTDTY4OTZmYjJhLTIyOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDZ4CNdXxT928Wvcbwc/ybLaA2z4XwbDQ7p2JId7qBF3UrItRHRI2yD2/WtaxT gcYBr/aJk7JnCw8D1giWR0uqPk6ZqmBKvEDIRseC8sOARFCj+9plD936J8mZtYCn Uykb1UhTf3uL3YgBkSloBPaqNdymDBoeyY8+5V82CvQ5KTWYz7DKbvWRj9lrkuVc Ry1jlScrbkBGevNGk3xZk6ByX/yTDSwxO6S2unqn+zrLoac23XUS7Tkm+o7lkm++ exckFSr0DMEDP6yImSIpSgoa/iwLcj9wW5nSEDqvThDdRj1V7SUZsMdNtHlM7hEH nL0EBoJ+s+6UgpEz+kKuyxl1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUah4A2fzE 78L7APVdDQw3VYQ5EyIwHwYDVR0jBBgwFoAUNhbgHaMxfwnuypjnvHVMvJkNfWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQzcyLzlENUI1MTU2RUNG OTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTmhiZ0hhTXhmd251eXBqbnZIVk12SmtOZldnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky QzcyLzlENUI1MTU2RUNGOTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14Zndu dXlwam52SFZNdkprTmZXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEilQDNE9qG/p0M7fjQVkhrvEuBrI/JgHoMBSwlFlE04EXqxh3Z5LlXm nZv6gytzDaVoOsaWCVr1x9Co0+a0ZDBa3nGy0B5W/1ZZZjoam34MD7y1NhG84zt5 D3gde0Ka2x+wnsO10e21bpZZy5RC6RGGfRtDy7RLLcQkqHCeGS3eicU4VrKwBvbu +K8dIFIo5oW0PkyG8mJ8WI0baZDDTgr3sNf51Y+QQLa2wL+YmpdszrunDKWs3aNs ZM1Duf+jaPYb1/2ebHSSuPLSu/gnZmin1+zEYLFsarvP+19tex2eV3byOyTr8sPL mr3cNLFU2aUcIifRLwCf2BnB3vV4T4Q= -----END CERTIFICATE-----Generated at Sun Aug 10 16:13:16 2025 by rpki-client