$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: DoYw5P8zYy4ZJ5kp93vsC/e7w2d5WB8gzmO57McDN/I= Subject key identifier: 88:3C:A5:2B:A3:9A:16:70:2B:AF:B1:3B:3E:89:2A:FB:DA:F0:DA:D2 Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 013F Signing time: Sat 09 Aug 2025 04:47:30 +0000 Manifest this update: Sat 09 Aug 2025 04:47:29 +0000 Manifest next update: Sat 16 Aug 2025 04:47:29 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: kmrzuC4N5ZdqSmmQa7Q+kXWB8AJR5tBn3MM+EOthvOg=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: cuDY334MkIVtRBq3o3ujGRQ6jR/z000CC0KgPqw5K+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Aug 9 04:47:29 2025 GMT Not After : Aug 16 04:47:29 2025 GMT Subject: CN=6896d2e2-f80e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f5:72:3f:cc:77:f8:68:b1:f4:d2:e3:ff:a4: f8:2b:ea:2a:1b:6d:66:46:88:9b:5a:bd:3c:d4:bc: 04:dc:79:1c:c5:66:36:13:2c:96:2b:67:fd:20:81: 72:12:5a:d4:18:4a:a0:48:02:a4:9a:fc:42:bf:4f: 58:f7:6e:23:b9:04:9c:32:59:d1:f2:f0:e8:06:a4: 20:b7:07:31:83:9f:2d:0a:4f:e9:77:69:20:40:97: e5:8a:9d:6d:2e:0a:95:90:07:22:75:21:90:f8:c7: 50:1d:d7:1f:66:c7:2d:2e:ab:56:97:1a:a3:16:6f: 49:4b:e8:eb:fa:3e:0a:ba:44:45:8b:91:e2:dd:28: df:5c:84:91:4b:73:9f:cb:66:15:50:2d:27:86:1e: 94:dd:d1:2e:d8:c0:61:f8:ca:33:f6:13:84:6b:ec: af:31:00:97:fc:d2:1c:86:40:3d:a3:b2:6a:94:ec: e4:55:30:03:c8:e8:2a:ab:39:2d:56:5d:02:19:89: 6c:d7:69:1e:98:5e:61:ff:0f:c5:d8:f8:93:31:eb: fa:28:b8:d6:ba:4a:8b:3b:77:98:fb:53:aa:db:ae: 52:1a:7b:b1:3d:8f:db:47:3c:b1:64:97:3b:e5:48: 69:68:fd:a3:d5:ef:42:d9:30:b2:d8:ce:24:68:10: 0a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:3C:A5:2B:A3:9A:16:70:2B:AF:B1:3B:3E:89:2A:FB:DA:F0:DA:D2 X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:77:26:33:86:12:18:09:5d:e9:83:ef:d4:56:96:d3:56:c0: ce:79:29:0f:29:37:2d:88:29:79:71:67:b3:b8:a1:3d:01:97: 6f:af:f7:2b:50:52:ae:84:1f:72:dd:86:11:da:83:c0:fd:07: ab:b3:60:73:2f:12:db:95:3c:02:7a:3c:ac:41:42:82:0e:db: e7:51:c1:ce:fd:17:92:d1:3a:8c:a5:b1:90:c1:c8:87:44:98: 3a:1a:fe:7b:12:7d:fc:26:dd:ea:0a:18:b6:39:e8:25:c7:60: 5b:47:58:01:de:42:47:22:47:eb:c9:40:0c:4e:ba:fa:be:fc: e6:62:47:a6:c4:ca:d6:54:eb:12:de:28:9b:6e:cb:cc:c2:b9: 62:26:bc:ce:da:ed:24:ae:e2:a5:bf:fe:37:ec:98:b3:67:68: 12:74:c4:a9:d2:1c:94:c0:49:0a:21:00:2a:ab:9a:c3:c8:9e: a6:cc:9c:65:71:69:f1:f1:c3:00:f6:a1:cf:eb:38:e4:95:9b: 77:e9:46:d6:87:5e:74:95:be:5d:9b:7c:18:18:7e:f7:73:64: c7:e3:a7:b8:d7:b6:f5:3f:3c:62:26:7a:46:d0:dd:09:77:45: 28:2e:10:6a:02:3d:89:86:88:7e:01:05:e9:0a:23:7e:1f:c7: 11:f5:dc:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjUwODA5MDQ0NzI5WhcNMjUwODE2MDQ0NzI5WjAYMRYwFAYD VQQDEw02ODk2ZDJlMi1mODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvVyP8x3+Gix9NLj/6T4K+oqG21mRoibWr081LwE3HkcxWY2EyyWK2f9IIFy ElrUGEqgSAKkmvxCv09Y924juQScMlnR8vDoBqQgtwcxg58tCk/pd2kgQJflip1t LgqVkAcidSGQ+MdQHdcfZsctLqtWlxqjFm9JS+jr+j4KukRFi5Hi3SjfXISRS3Of y2YVUC0nhh6U3dEu2MBh+Moz9hOEa+yvMQCX/NIchkA9o7JqlOzkVTADyOgqqzkt Vl0CGYls12kemF5h/w/F2PiTMev6KLjWukqLO3eY+1Oq265SGnuxPY/bRzyxZJc7 5UhpaP2j1e9C2TCy2M4kaBAKfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg8pSuj mhZwK6+xOz6JKvva8NrSMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4dyYzhhIYCV3pg+/UVpbTVsDOeSkPKTctiCl5cWezuKE9AZdvr/cr UFKuhB9y3YYR2oPA/Qers2BzLxLblTwCejysQUKCDtvnUcHO/ReS0TqMpbGQwciH RJg6Gv57En38Jt3qChi2Oeglx2BbR1gB3kJHIkfryUAMTrr6vvzmYkemxMrWVOsS 3iibbsvMwrliJrzO2u0kruKlv/437JizZ2gSdMSp0hyUwEkKIQAqq5rDyJ6mzJxl cWnx8cMA9qHP6zjklZt36UbWh150lb5dm3wYGH73c2TH46e417b1PzxiJnpG0N0J d0UoLhBqAj2Jhoh+AQXpCiN+H8cR9dzE -----END CERTIFICATE-----Generated at Mon Aug 11 04:29:40 2025 by rpki-client