$ rpki-client -vvf rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft File: NmIvmQC0aq380FRk8Q1CsTBiUXY.mft (raw, json) Hash identifier: 8IsNapSYhG4lhpP5yZFbEeh8bQ6R8XHYE/MSOLkMlTw= Subject key identifier: D3:50:24:9E:68:47:A8:2C:91:68:D7:6A:F7:8C:72:DF:8E:39:C3:E5 Authority key identifier: 36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 Certificate issuer: /CN=A919CE1D/serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft Manifest number: 0F Signing time: Mon 11 Aug 2025 08:23:07 +0000 Manifest this update: Mon 11 Aug 2025 08:23:07 +0000 Manifest next update: Mon 18 Aug 2025 08:23:07 +0000 Files and hashes: 1: NmIvmQC0aq380FRk8Q1CsTBiUXY.crl (hash: LqelsC7uDM9r+oNMOXeM7qv8i1MufYQFlc/LoBykk+M=) 2: 2518C04062E011F08D04F42EC4F9AE02.roa (hash: YXoQ9r4tej6CnG1FdK26UeZMqNkqakqvZSbUkeab5Z8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 08:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CE1D, serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Validity Not Before: Aug 11 08:23:07 2025 GMT Not After : Aug 18 08:23:07 2025 GMT Subject: CN=6899a86b-e75e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8b:7e:53:af:70:bb:73:0a:ec:69:e4:c2:5c: 5f:bd:fe:77:8c:42:81:ae:61:e8:bb:e2:14:b4:f4: 65:90:b4:9e:e3:c4:22:d4:ca:c4:aa:c7:8c:a9:cf: d2:8e:93:60:ef:d8:69:6d:aa:91:e2:9e:8b:ff:2a: 75:10:d9:be:96:28:d8:2b:65:85:55:f5:da:e6:74: 4f:33:53:f3:27:55:a6:2f:3a:ca:39:29:4e:c9:e5: ac:cf:99:03:26:fc:49:3a:5f:54:7b:b6:14:87:12: 91:39:07:40:65:dc:2e:67:0a:f6:fd:7a:19:f7:ea: 00:b3:bd:9a:3d:3c:41:56:fc:47:c9:b9:37:0a:0f: e2:86:dc:4e:24:e8:93:2d:0c:24:a7:7f:4c:41:5d: 7f:c0:a5:f2:d1:e7:26:de:73:55:dc:a9:ca:23:80: aa:b3:6b:31:ea:5f:41:8d:c5:21:28:c7:1f:aa:1c: 8c:70:d1:1d:16:e3:4d:fb:69:6f:c3:a9:1c:d2:58: 23:ed:3e:56:11:2e:7d:04:ff:c0:b6:96:cb:a4:c6: 9f:34:dd:d9:df:b3:6b:fe:5a:d7:7a:e1:ff:10:63: da:38:89:02:57:bd:1b:ef:11:c0:98:5b:87:e5:e6: d7:cb:ee:b3:75:ba:ff:48:ba:77:5f:1a:36:48:9e: 34:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:50:24:9E:68:47:A8:2C:91:68:D7:6A:F7:8C:72:DF:8E:39:C3:E5 X509v3 Authority Key Identifier: keyid:36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:86:04:15:d6:cd:07:fe:1c:22:9e:35:1d:f7:d5:60:c0:c0: 11:18:b7:d6:7b:98:aa:7f:fa:69:6f:aa:14:c4:bb:21:16:c6: f2:b7:61:a4:bb:af:33:14:e3:46:4f:54:33:c5:c9:dc:10:c7: 4f:f6:19:a8:04:d1:83:ae:c9:74:35:c1:cc:36:1c:73:1d:1a: 86:42:ac:19:77:64:01:e4:b5:87:7c:42:8a:f3:9f:b8:f2:ca: e6:9e:5a:4b:3d:9f:ee:bb:dc:2a:7f:5a:a2:c6:b8:36:6f:af: 58:89:59:87:f0:05:30:4d:89:eb:cb:fc:7b:d8:90:e9:0f:53: 13:76:a0:66:af:9a:e0:47:6b:c0:b4:49:c6:97:d7:91:df:f6: 1c:2c:37:cb:49:ec:50:8f:5e:ce:86:b3:e7:e6:b7:25:c0:b7: 58:5e:06:7d:90:c8:4b:86:c4:43:5f:dc:47:f3:14:e9:40:13: 5a:bc:90:e0:e7:42:49:b8:32:0b:4d:2d:f3:86:86:99:8b:8b: 59:e1:0a:34:26:ab:36:05:89:80:a9:fa:cb:29:d6:f5:97:47: eb:5c:ba:5d:a1:73:13:c7:c2:d4:f9:d3:35:fc:91:dd:a2:eb: 4b:e8:68:d7:54:38:08:97:3c:36:7e:e3:53:e7:4b:1b:eb:20: 4c:b2:6f:2f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 Q0UxRDExMC8GA1UEBRMoMzY2MjJGOTkwMEI0NkFBREZDRDA1NDY0RjEwRDQyQjEz MDYyNTE3NjAeFw0yNTA4MTEwODIzMDdaFw0yNTA4MTgwODIzMDdaMBgxFjAUBgNV BAMTDTY4OTlhODZiLWU3NWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCii35Tr3C7cwrsaeTCXF+9/neMQoGuYei74hS09GWQtJ7jxCLUysSqx4ypz9KO k2Dv2GltqpHinov/KnUQ2b6WKNgrZYVV9drmdE8zU/MnVaYvOso5KU7J5azPmQMm /Ek6X1R7thSHEpE5B0Bl3C5nCvb9ehn36gCzvZo9PEFW/EfJuTcKD+KG3E4k6JMt DCSnf0xBXX/ApfLR5ybec1XcqcojgKqzazHqX0GNxSEoxx+qHIxw0R0W4037aW/D qRzSWCPtPlYRLn0E/8C2lsukxp803dnfs2v+Wtd64f8QY9o4iQJXvRvvEcCYW4fl 5tfL7rN1uv9IundfGjZInjQLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU01AknmhH qCyRaNdq94xy3445w+UwHwYDVR0jBBgwFoAUNmIvmQC0aq380FRk8Q1CsTBiUXYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlDRTFEL0I1NDhEQkUyNjJE RjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEzODBGUms4UTFDc1RCaVVY WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTm1Jdm1RQzBhcTM4MEZSazhRMUNzVEJpVVhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlD RTFEL0I1NDhEQkUyNjJERjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEz ODBGUms4UTFDc1RCaVVYWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABeGBBXWzQf+HCKeNR331WDAwBEYt9Z7mKp/+mlvqhTEuyEWxvK3YaS7 rzMU40ZPVDPFydwQx0/2GagE0YOuyXQ1wcw2HHMdGoZCrBl3ZAHktYd8Qorzn7jy yuaeWks9n+673Cp/WqLGuDZvr1iJWYfwBTBNievL/HvYkOkPUxN2oGavmuBHa8C0 ScaX15Hf9hwsN8tJ7FCPXs6Gs+fmtyXAt1heBn2QyEuGxENf3EfzFOlAE1q8kODn Qkm4MgtNLfOGhpmLi1nhCjQmqzYFiYCp+ssp1vWXR+tcul2hcxPHwtT50zX8kd2i 60voaNdUOAiXPDZ+41PnSxvrIEyyby8= -----END CERTIFICATE-----Generated at Tue Aug 12 18:19:01 2025 by rpki-client