$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft File: nTRubbOcPTMMGv-UBg4VBV_07Rw.mft (raw, json) Hash identifier: 7tXYCX7rrQKU5VqDeIhSIoDanx5V6lbqMRNMmCD+kek= Subject key identifier: 17:DE:7E:01:66:1F:54:09:E8:CD:7E:88:81:BC:00:F3:CA:96:BD:08 Authority key identifier: 9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C Certificate issuer: /CN=A91C2168/serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Certificate serial: 34DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft Manifest number: 34CA Signing time: Fri 08 Aug 2025 14:43:59 +0000 Manifest this update: Fri 08 Aug 2025 14:43:58 +0000 Manifest next update: Fri 15 Aug 2025 14:43:58 +0000 Files and hashes: 1: nTRubbOcPTMMGv-UBg4VBV_07Rw.crl (hash: LWPbPMypIL7BHDV+qWzKcSgeKpDL0h0MHpD8CWzTFxc=) 2: A7098B604A5411F0A2CC9015C4F9AE02.roa (hash: sVPCrnH4ijuCZYxExAGbTpSF6uDYt6PkZ4Y0+gIXmKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13534 (0x34de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2168, serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Validity Not Before: Aug 8 14:43:58 2025 GMT Not After : Aug 15 14:43:58 2025 GMT Subject: CN=68960d2e-d6fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:17:d9:d0:48:2e:a2:f5:03:95:54:b8:e7:53: f4:ef:e4:37:33:f2:77:61:44:09:d3:8d:68:e1:89: e9:97:e3:fb:db:f0:08:65:b9:2b:22:bc:c6:d2:ca: 34:88:ec:48:58:08:22:8d:02:0a:59:55:ed:ec:cd: b9:1a:3d:11:6d:bc:89:c8:13:22:54:cd:75:64:0a: f4:34:a6:ee:ac:f2:21:49:dd:bd:85:fc:61:a3:23: 48:c6:73:07:54:90:04:29:13:f1:8b:b2:1c:fb:c7: 17:36:88:a3:0b:13:ed:6d:8f:8c:50:07:12:f3:21: 4a:2a:ba:87:16:e7:dc:09:58:fd:c4:bd:1b:f9:e7: 59:ec:7c:9f:bd:eb:27:8e:fb:4e:59:8e:f8:a0:47: 28:e6:01:ef:56:fb:88:c8:b0:1a:5d:09:82:5e:b8: 69:0e:aa:9a:ef:55:59:1a:a2:91:00:c7:4d:a2:4f: 5f:0e:f0:e5:6c:d2:ba:ab:e4:b0:fd:0e:9d:f4:51: e3:f0:79:25:7d:ee:07:77:36:1b:32:04:4a:1f:21: a5:51:54:1a:9c:54:3d:16:4c:f0:23:e8:b9:e1:7a: ef:a5:1e:cb:a0:46:d8:33:d8:f7:26:a1:e8:2a:25: dd:14:20:88:4f:d7:d2:31:23:cf:43:be:43:60:50: fb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:DE:7E:01:66:1F:54:09:E8:CD:7E:88:81:BC:00:F3:CA:96:BD:08 X509v3 Authority Key Identifier: keyid:9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:d6:86:f2:e8:98:5a:a2:b9:9f:ca:dd:24:62:88:72:db:6f: 4a:c4:a1:63:44:c2:42:61:84:02:7e:f9:b9:a8:0a:6d:8f:9a: 06:be:3f:ac:b7:fd:fa:69:ad:74:43:66:57:96:2c:5d:b9:1e: 3d:f2:15:4e:e8:92:c2:59:3c:9a:75:42:38:b2:a1:44:d1:29: e3:b0:0b:de:84:68:d7:56:c6:94:ed:1e:7a:69:7c:39:0b:c4: dd:63:8c:62:a8:d7:c7:45:e6:55:b8:9a:c4:57:ba:7e:fc:86: fa:b6:8e:9c:1e:fe:ba:2f:77:5a:3d:ee:9e:ed:94:e2:d2:c7: c3:9b:e6:a5:7b:12:0f:77:20:e3:f1:3d:b9:0e:4a:26:5c:be: df:7a:37:4e:86:42:7d:65:5b:cb:2a:38:60:52:0d:14:69:68: 6f:7b:ff:17:41:86:fa:6d:1f:e9:ce:ab:4d:6f:05:78:3a:01: 5a:12:f4:f2:a0:a0:f8:5c:cb:c4:85:60:98:bf:6b:d1:10:b6: 17:52:1d:d4:2b:85:ab:7b:fb:0b:98:40:91:d4:52:9e:bb:48: 01:c4:d9:f6:b6:50:fa:d7:6f:79:a0:9f:9a:d8:50:0e:39:fb: d2:b3:96:4e:34:3e:5b:4f:a2:26:ef:c2:72:2a:ff:38:b5:75: dc:ed:49:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxNjgxMTAvBgNVBAUTKDlEMzQ2RTZEQjM5QzNEMzMwQzFBRkY5NDA2MEUxNTA1 NUZGNEVEMUMwHhcNMjUwODA4MTQ0MzU4WhcNMjUwODE1MTQ0MzU4WjAYMRYwFAYD VQQDEw02ODk2MGQyZS1kNmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRfZ0EguovUDlVS451P07+Q3M/J3YUQJ041o4Ynpl+P72/AIZbkrIrzG0so0 iOxIWAgijQIKWVXt7M25Gj0RbbyJyBMiVM11ZAr0NKburPIhSd29hfxhoyNIxnMH VJAEKRPxi7Ic+8cXNoijCxPtbY+MUAcS8yFKKrqHFufcCVj9xL0b+edZ7Hyfvesn jvtOWY74oEco5gHvVvuIyLAaXQmCXrhpDqqa71VZGqKRAMdNok9fDvDlbNK6q+Sw /Q6d9FHj8Hklfe4HdzYbMgRKHyGlUVQanFQ9FkzwI+i54XrvpR7LoEbYM9j3JqHo KiXdFCCIT9fSMSPPQ75DYFD7OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfefgFm H1QJ6M1+iIG8APPKlr0IMB8GA1UdIwQYMBaAFJ00bm2znD0zDBr/lAYOFQVf9O0c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjE2OC8yNEM2MkMwNjFE OTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BUTU1Hdi1VQmc0VkJWXzA3 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUnViYk9jUFRNTUd2LVVCZzRWQlZfMDdSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjE2OC8yNEM2MkMwNjFEOTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BU TU1Hdi1VQmc0VkJWXzA3UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDL1oby6Jhaormfyt0kYohy229KxKFjRMJCYYQCfvm5qAptj5oGvj+s t/36aa10Q2ZXlixduR498hVO6JLCWTyadUI4sqFE0SnjsAvehGjXVsaU7R56aXw5 C8TdY4xiqNfHReZVuJrEV7p+/Ib6to6cHv66L3daPe6e7ZTi0sfDm+alexIPdyDj 8T25DkomXL7fejdOhkJ9ZVvLKjhgUg0UaWhve/8XQYb6bR/pzqtNbwV4OgFaEvTy oKD4XMvEhWCYv2vRELYXUh3UK4Wre/sLmECR1FKeu0gBxNn2tlD61295oJ+a2FAO OfvSs5ZOND5bT6Im78JyKv84tXXc7Uno -----END CERTIFICATE-----Generated at Sat Aug 9 01:12:47 2025 by rpki-client