$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft File: nlE6zE17kAFKhn-1KviSKeALpKw.mft (raw, json) Hash identifier: TvoyRJN4J8J2jm2j8zWy+CVeSuM7U3RSoBSHmSnaWXg= Subject key identifier: F0:AB:B2:69:BD:64:D3:0C:7B:C7:C7:BC:90:FD:A1:A0:A0:E5:04:55 Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft Manifest number: C7 Signing time: Mon 11 Aug 2025 05:59:08 +0000 Manifest this update: Mon 11 Aug 2025 05:59:07 +0000 Manifest next update: Mon 18 Aug 2025 05:59:07 +0000 Files and hashes: 1: nlE6zE17kAFKhn-1KviSKeALpKw.crl (hash: MkeqkwCkDcBTrJnmKsDqD2ApDib/Rqj41GPhgsJPudI=) 2: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (hash: /fW0UzdpOpiVi/4bzpgP5X5TzlzFOgXdGZfbyGjzbdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472, serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Aug 11 05:59:07 2025 GMT Not After : Aug 18 05:59:07 2025 GMT Subject: CN=689986ac-1faa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7d:f8:5f:d8:3b:f2:d8:2d:99:47:41:e6:cc: fa:97:fa:64:47:f0:d3:cd:a0:ca:88:ee:0e:77:78: f2:20:1d:e4:4c:9d:16:4d:83:7e:7a:4f:c7:43:ad: fc:c9:e8:44:95:1e:e0:5e:ab:a1:2d:18:e9:cf:75: c4:95:7f:76:74:52:57:18:ad:4c:36:24:cc:91:9a: bc:ec:b1:78:86:1f:ba:61:b3:a8:c1:76:06:54:66: 0c:7e:25:3c:fd:17:74:c1:ec:7b:f9:b4:10:35:79: 23:60:1c:af:66:57:33:33:d1:52:c7:2c:d3:fd:75: 53:c4:9a:d2:a6:17:60:d9:df:8d:e6:cd:4d:8d:d2: 42:8d:77:91:91:22:f1:5e:71:d3:7f:86:3c:ed:93: a4:63:c1:8d:52:77:b7:5c:2d:7a:7c:c9:f7:73:bc: 06:5c:21:9f:45:90:0c:61:d1:4d:04:db:6b:65:c1: 81:bf:a6:d3:9d:e9:a1:9b:9f:a8:12:48:19:7a:d8: 86:67:05:61:a6:70:57:1a:ba:31:f0:19:48:4d:34: 48:ab:c5:d5:4c:e2:f9:16:e2:e5:6b:ad:5f:66:8e: bc:10:09:1d:d9:bb:ba:62:1f:f1:48:d0:10:c4:6c: a7:d3:f3:78:01:d9:d4:98:d0:b5:9d:5d:2c:a4:56: 61:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:AB:B2:69:BD:64:D3:0C:7B:C7:C7:BC:90:FD:A1:A0:A0:E5:04:55 X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:98:fa:e1:77:94:ad:6e:79:08:1c:f0:e8:e0:a9:73:f8:aa: 6f:fd:52:1a:d7:27:ed:03:f5:40:14:b3:55:77:6f:80:e0:40: c9:15:9e:d7:7a:a8:81:b8:0b:16:92:91:04:74:dd:51:a5:85: 36:62:f8:dc:00:4a:34:87:bd:46:e1:7b:30:c8:6b:7d:4b:81: f0:32:3b:60:fb:32:c9:2e:0d:a7:46:14:c4:f0:a4:c2:b9:83: 56:84:6b:61:fc:80:06:1f:07:60:ea:88:ed:ec:dc:d6:43:95: b7:35:7e:65:8e:77:fd:82:12:9f:c0:80:98:f9:fc:f0:b5:56: 1c:de:94:f6:aa:d8:eb:49:1a:30:4e:4f:8d:1d:b3:56:40:1e: a8:98:df:ea:4f:f5:f9:72:21:18:85:1c:ee:14:8d:0d:5f:a7: c0:c1:65:35:98:ad:21:d7:45:02:0e:89:3d:34:60:74:e3:e1: 7c:47:58:4f:85:9f:54:79:0d:6d:e0:c5:95:f1:87:2c:f0:66: 80:48:5e:e4:3f:cf:4c:ab:d9:d2:7c:8c:2c:4b:08:7c:69:a2: d9:fa:57:86:1d:0e:cc:c8:66:77:46:a1:30:c2:9d:9d:99:06: df:1b:b6:df:dd:d7:e5:32:9e:f7:bd:4a:62:68:5b:33:20:d6: 22:03:8b:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0NzIxMTAvBgNVBAUTKDlFNTEzQUNDNEQ3QjkwMDE0QTg2N0ZCNTJBRjg5MjI5 RTAwQkE0QUMwHhcNMjUwODExMDU1OTA3WhcNMjUwODE4MDU1OTA3WjAYMRYwFAYD VQQDEw02ODk5ODZhYy0xZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqX34X9g78tgtmUdB5sz6l/pkR/DTzaDKiO4Od3jyIB3kTJ0WTYN+ek/HQ638 yehElR7gXquhLRjpz3XElX92dFJXGK1MNiTMkZq87LF4hh+6YbOowXYGVGYMfiU8 /Rd0wex7+bQQNXkjYByvZlczM9FSxyzT/XVTxJrSphdg2d+N5s1NjdJCjXeRkSLx XnHTf4Y87ZOkY8GNUne3XC16fMn3c7wGXCGfRZAMYdFNBNtrZcGBv6bTnemhm5+o EkgZetiGZwVhpnBXGrox8BlITTRIq8XVTOL5FuLla61fZo68EAkd2bu6Yh/xSNAQ xGyn0/N4AdnUmNC1nV0spFZhVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCrsmm9 ZNMMe8fHvJD9oaCg5QRVMB8GA1UdIwQYMBaAFJ5ROsxNe5ABSoZ/tSr4kingC6Ss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ3Mi9FNjJCNzM1QTQ4 MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tBRktobi0xS3ZpU0tlQUxw S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjQ3Mi9FNjJCNzM1QTQ4MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tB Rktobi0xS3ZpU0tlQUxwS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlmPrhd5StbnkIHPDo4Klz+Kpv/VIa1yftA/VAFLNVd2+A4EDJFZ7X eqiBuAsWkpEEdN1RpYU2YvjcAEo0h71G4XswyGt9S4HwMjtg+zLJLg2nRhTE8KTC uYNWhGth/IAGHwdg6ojt7NzWQ5W3NX5ljnf9ghKfwICY+fzwtVYc3pT2qtjrSRow Tk+NHbNWQB6omN/qT/X5ciEYhRzuFI0NX6fAwWU1mK0h10UCDok9NGB04+F8R1hP hZ9UeQ1t4MWV8Ycs8GaASF7kP89Mq9nSfIwsSwh8aaLZ+leGHQ7MyGZ3RqEwwp2d mQbfG7bf3dflMp73vUpiaFszINYiA4vY -----END CERTIFICATE-----Generated at Tue Aug 12 19:11:16 2025 by rpki-client