$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft File: nssirN4JZ6BYN-WPxzHTV-N2N_g.mft (raw, json) Hash identifier: 1WK3s9AYXtAIYkbt6zXp9VWSrE/pfQ199NONI7BgD/M= Subject key identifier: 08:13:9E:CC:A0:90:8F:21:7D:BD:27:D7:A9:BA:1F:65:D8:D7:86:1D Authority key identifier: 9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 Certificate issuer: /CN=A91C6B27/serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Certificate serial: 0B9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft Manifest number: 0B87 Signing time: Wed 06 Aug 2025 19:15:25 +0000 Manifest this update: Wed 06 Aug 2025 19:15:25 +0000 Manifest next update: Wed 13 Aug 2025 19:15:25 +0000 Files and hashes: 1: nssirN4JZ6BYN-WPxzHTV-N2N_g.crl (hash: 1kRbJeKwbD8SfWiXTv09YwrLw38vY15QFMSUwTdHJR8=) 2: 2B1D3BB2305811EA8D5B6479C4F9AE02.roa (hash: SccF8HRtnWqPr6dbqcwFHPaBm6ma5y4QuMfEodFq0x8=) 3: E4BB99E2336E11EA94623E18C4F9AE02.roa (hash: qucjAVGWpouOPQ3WeFCClp/39PYcY3aBfMI0Mahgzo8=) 4: E5675F48336E11EA94623E18C4F9AE02.roa (hash: SLgBz/egPkek4QY9s+goKoqiOELjoV2wU84pCw7L2Bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2972 (0xb9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6B27, serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Validity Not Before: Aug 6 19:15:25 2025 GMT Not After : Aug 13 19:15:25 2025 GMT Subject: CN=6893a9cd-bb98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:b2:8e:02:30:7c:df:2b:d1:45:ef:3a:bc:0f: f5:8f:89:85:c8:0e:2a:f0:9e:c3:72:7f:36:0d:40: e8:2a:94:10:56:f3:9a:c1:ab:ba:d8:71:fe:49:52: c9:c6:41:49:d2:ac:36:dc:eb:ea:f8:88:f6:04:be: 42:46:40:c1:c4:e3:07:f2:ec:af:06:8a:9a:be:07: 36:66:61:d8:16:c0:35:cf:a7:46:74:24:4d:fd:45: 3b:cd:3f:74:f2:1e:3b:e5:a4:1c:1c:d9:e3:67:91: 55:89:7e:89:bc:f4:7d:2e:82:94:a9:f2:f3:ee:0d: a4:81:9d:8a:7c:3a:b5:b9:29:15:b2:23:88:8f:34: f0:ef:8b:0b:1b:8e:b1:70:d1:ef:03:e0:42:1c:09: ee:e4:15:16:53:28:27:c2:30:82:dc:00:a8:c1:2d: 09:52:88:aa:90:9f:c8:de:b3:af:df:17:8e:64:f9: 4b:a9:99:5b:c5:c2:d9:ee:8c:45:6e:50:5f:0d:21: a1:cb:c7:7f:99:f7:88:d8:35:6e:cd:33:ae:06:71: c0:e8:ba:0f:03:b9:6a:2b:00:5e:73:ea:49:d1:c6: c3:de:57:82:69:26:7f:39:10:36:bd:9f:ba:e4:cc: 08:3a:61:af:fd:6a:0a:8c:62:d3:65:71:02:d7:e0: 75:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:13:9E:CC:A0:90:8F:21:7D:BD:27:D7:A9:BA:1F:65:D8:D7:86:1D X509v3 Authority Key Identifier: keyid:9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:03:e2:34:17:2f:10:d4:d2:e5:5c:35:97:b8:7a:62:37:8d: 98:77:7f:f7:fd:eb:eb:7e:7d:d7:d9:f5:cf:56:25:62:32:6b: 85:3b:e6:7d:6b:27:c5:3d:fe:32:df:83:7a:1c:5d:eb:d3:91: 1b:21:8e:84:1e:6d:16:21:b9:4e:9d:21:a1:b7:6c:2e:c8:92: ab:32:09:7b:8f:6e:66:7c:6d:b8:e9:a4:cf:a8:71:f7:16:2e: 79:58:28:4b:00:89:c2:8b:8e:53:42:75:f6:18:ab:c7:9b:62: 91:c3:e7:f0:4e:42:95:9b:ae:8b:30:c1:8f:99:09:fa:c0:79: 2d:1c:7f:e5:5b:1a:96:d8:8b:52:73:b0:57:9d:4a:3c:fc:90: 6d:18:4d:94:88:e5:1c:ba:5d:b3:f8:77:30:d0:7f:bb:66:9c: a6:96:5a:ef:e1:12:c6:bb:f4:2f:5a:20:64:4e:d2:a0:da:49: 53:4b:55:60:9c:f0:f7:95:74:db:47:51:1f:8a:cd:f9:94:85: da:7a:b5:36:90:e7:d9:c2:52:77:dd:07:85:e0:79:af:a5:5f: 51:d9:fe:af:14:ad:02:93:13:0b:f7:2c:73:2c:19:9e:38:35: 7d:31:a8:97:99:32:20:98:d7:02:44:89:79:05:3f:65:94:aa: 5d:42:7f:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCMjcxMTAvBgNVBAUTKDlFQ0IyMkFDREUwOTY3QTA1ODM3RTU4RkM3MzFEMzU3 RTM3NjM3RjgwHhcNMjUwODA2MTkxNTI1WhcNMjUwODEzMTkxNTI1WjAYMRYwFAYD VQQDEw02ODkzYTljZC1iYjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+7KOAjB83yvRRe86vA/1j4mFyA4q8J7Dcn82DUDoKpQQVvOawau62HH+SVLJ xkFJ0qw23Ovq+Ij2BL5CRkDBxOMH8uyvBoqavgc2ZmHYFsA1z6dGdCRN/UU7zT90 8h475aQcHNnjZ5FViX6JvPR9LoKUqfLz7g2kgZ2KfDq1uSkVsiOIjzTw74sLG46x cNHvA+BCHAnu5BUWUygnwjCC3ACowS0JUoiqkJ/I3rOv3xeOZPlLqZlbxcLZ7oxF blBfDSGhy8d/mfeI2DVuzTOuBnHA6LoPA7lqKwBec+pJ0cbD3leCaSZ/ORA2vZ+6 5MwIOmGv/WoKjGLTZXEC1+B1rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAgTnsyg kI8hfb0n16m6H2XY14YdMB8GA1UdIwQYMBaAFJ7LIqzeCWegWDflj8cx01fjdjf4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkIyNy84MkJGMkJGNDMw NTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2QllOLVdQeHpIVFYtTjJO X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zc2lyTjRKWjZCWU4tV1B4ekhUVi1OMk5fZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkIyNy84MkJGMkJGNDMwNTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2 QllOLVdQeHpIVFYtTjJOX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGA+I0Fy8Q1NLlXDWXuHpiN42Yd3/3/evrfn3X2fXPViViMmuFO+Z9 ayfFPf4y34N6HF3r05EbIY6EHm0WIblOnSGht2wuyJKrMgl7j25mfG246aTPqHH3 Fi55WChLAInCi45TQnX2GKvHm2KRw+fwTkKVm66LMMGPmQn6wHktHH/lWxqW2ItS c7BXnUo8/JBtGE2UiOUcul2z+Hcw0H+7Zpymllrv4RLGu/QvWiBkTtKg2klTS1Vg nPD3lXTbR1Efis35lIXaerU2kOfZwlJ33QeF4HmvpV9R2f6vFK0CkxML9yxzLBme ODV9MaiXmTIgmNcCRIl5BT9llKpdQn+6 -----END CERTIFICATE-----Generated at Fri Aug 8 00:37:16 2025 by rpki-client