$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft File: NfIQw_y-8NYqPeiPXz-iThGTdEw.mft (raw, json) Hash identifier: f4ZdNheE7nqbkV/afTT8YgIovuFDCqZsZenfdNeXyNE= Subject key identifier: 4A:02:14:07:0A:E5:58:C4:99:B2:FD:8C:A4:FA:34:CF:4C:CD:E7:F5 Authority key identifier: 35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C Certificate issuer: /CN=A91A1860/serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft Manifest number: 01D2 Signing time: Mon 11 Aug 2025 02:54:28 +0000 Manifest this update: Mon 11 Aug 2025 02:54:27 +0000 Manifest next update: Mon 18 Aug 2025 02:54:27 +0000 Files and hashes: 1: NfIQw_y-8NYqPeiPXz-iThGTdEw.crl (hash: bKxrHGrboSS3YT1GkNKwI+kingYsBOBPsBh90jhj5/U=) 2: 832503DCAD0311ED8DFD5339C4F9AE02.roa (hash: WkJCgrbBmelQA5c6twQaEqrtwUH2ZoyRfcoaWRVuiIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1860, serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Validity Not Before: Aug 11 02:54:27 2025 GMT Not After : Aug 18 02:54:27 2025 GMT Subject: CN=68995b64-a346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a6:0b:4e:32:21:01:c1:f3:f9:9f:70:0a:a5: df:1a:96:82:3c:e9:af:f7:70:21:84:4d:f6:ea:b6: 8d:e7:83:58:b1:02:a2:bc:43:71:da:f6:6e:16:44: 87:1d:19:d2:02:7e:4a:f7:aa:66:e0:39:d4:74:d2: 5b:00:eb:2b:ba:cf:bb:56:c7:54:c4:f3:8a:9d:f9: b4:77:ad:cd:f0:e3:69:73:39:ad:dc:14:e4:73:96: af:65:74:9c:84:67:40:10:54:82:ff:24:78:00:2a: af:d1:df:bf:fb:db:54:43:ff:21:8a:ad:3f:4f:6b: e3:26:c2:6d:d6:51:6e:81:ec:e5:9d:ad:e4:51:f2: ee:0f:45:a0:23:5d:15:78:0b:d4:eb:08:ea:8c:a9: c1:84:99:ac:cf:3a:34:e7:52:46:fb:f0:80:db:cf: 62:64:af:86:d8:e0:3b:fb:a6:9a:2d:ed:f8:94:7d: 71:f1:2f:fc:d0:9f:aa:53:68:bd:d7:7b:d4:98:49: 01:5f:94:02:ae:6f:fe:2b:1e:d3:6c:25:02:b9:50: a9:5d:89:3d:97:8a:c5:33:a2:2f:38:58:93:e9:fc: 5b:4d:c4:94:95:db:27:12:66:3d:58:60:fd:c1:92: 53:f0:0e:41:87:06:47:0e:60:c4:bf:3e:45:15:cc: c2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:02:14:07:0A:E5:58:C4:99:B2:FD:8C:A4:FA:34:CF:4C:CD:E7:F5 X509v3 Authority Key Identifier: keyid:35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:49:f0:75:87:29:a1:d6:f4:d6:e3:36:6c:e8:a3:39:a5:b5: 50:a7:49:2e:52:db:65:c0:ad:5b:a4:db:ee:cd:05:d0:24:aa: 46:a8:24:56:e3:b0:90:03:da:2e:9e:85:80:59:fa:3d:4e:a9: 30:9e:ca:77:5a:44:e1:f3:fb:59:9c:66:b7:80:6c:07:38:53: b9:67:e4:6d:d4:1e:7b:82:5c:fa:21:5d:42:fd:6f:9d:de:5b: ba:57:27:ac:94:d5:82:ce:23:96:26:62:d6:4c:66:9a:91:f7: f1:e3:99:7f:64:ed:92:fa:f7:2a:7a:38:d9:c9:90:30:9d:3f: c6:66:2b:e5:d8:7a:9a:84:16:14:64:d8:bf:cf:65:6b:e2:91: e6:a6:3e:de:9d:1d:19:d3:4e:11:74:a4:3f:73:54:fd:f2:a7: 6a:12:78:3b:dd:1a:71:12:20:e2:f0:b4:b6:50:d3:7f:b7:50: fc:5b:09:76:90:e6:1d:39:cf:54:86:cf:44:6c:f1:c3:f2:03: a2:66:38:fd:45:a9:d4:e5:96:92:e6:56:e2:da:b7:1f:6a:d1: 3b:64:45:cd:99:35:a2:c8:62:f1:45:f6:f2:e0:81:07:98:ea: 5c:5f:1b:e9:52:a3:f6:9d:fa:b3:06:88:bf:c8:2b:6e:f9:ac: 93:6d:72:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NjAxMTAvBgNVBAUTKDM1RjIxMEMzRkNCRUYwRDYyQTNERTg4RjVGM0ZBMjRF MTE5Mzc0NEMwHhcNMjUwODExMDI1NDI3WhcNMjUwODE4MDI1NDI3WjAYMRYwFAYD VQQDEw02ODk5NWI2NC1hMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqYLTjIhAcHz+Z9wCqXfGpaCPOmv93AhhE326raN54NYsQKivENx2vZuFkSH HRnSAn5K96pm4DnUdNJbAOsrus+7VsdUxPOKnfm0d63N8ONpczmt3BTkc5avZXSc hGdAEFSC/yR4ACqv0d+/+9tUQ/8hiq0/T2vjJsJt1lFugezlna3kUfLuD0WgI10V eAvU6wjqjKnBhJmszzo051JG+/CA289iZK+G2OA7+6aaLe34lH1x8S/80J+qU2i9 13vUmEkBX5QCrm/+Kx7TbCUCuVCpXYk9l4rFM6IvOFiT6fxbTcSUldsnEmY9WGD9 wZJT8A5BhwZHDmDEvz5FFczCjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoCFAcK 5VjEmbL9jKT6NM9Mzef1MB8GA1UdIwQYMBaAFDXyEMP8vvDWKj3oj18/ok4Rk3RM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg2MC80MjIyRTY2NEFD RkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThOWXFQZWlQWHotaVRoR1Rk RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mSVF3X3ktOE5ZcVBlaVBYei1pVGhHVGRFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg2MC80MjIyRTY2NEFDRkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThO WXFQZWlQWHotaVRoR1RkRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHSfB1hymh1vTW4zZs6KM5pbVQp0kuUttlwK1bpNvuzQXQJKpGqCRW 47CQA9ounoWAWfo9Tqkwnsp3WkTh8/tZnGa3gGwHOFO5Z+Rt1B57glz6IV1C/W+d 3lu6VyeslNWCziOWJmLWTGaakffx45l/ZO2S+vcqejjZyZAwnT/GZivl2HqahBYU ZNi/z2Vr4pHmpj7enR0Z004RdKQ/c1T98qdqEng73RpxEiDi8LS2UNN/t1D8Wwl2 kOYdOc9Uhs9EbPHD8gOiZjj9RanU5ZaS5lbi2rcfatE7ZEXNmTWiyGLxRfby4IEH mOpcXxvpUqP2nfqzBoi/yCtu+ayTbXKg -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:39 2025 by rpki-client