$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft File: Nvf123A1uQ_bKShY4vz45rmRgXg.mft (raw, json) Hash identifier: qXQgG4pGGyx/jowtgeOp6a6q/yqXtNtl6QigZwZscGM= Subject key identifier: ED:E5:07:43:02:BF:46:5C:ED:BB:DD:D6:51:B3:D3:FF:29:1D:B9:51 Authority key identifier: 36:F7:F5:DB:70:35:B9:0F:DB:29:28:58:E2:FC:F8:E6:B9:91:81:78 Certificate issuer: /CN=A91CC636/serialNumber=36F7F5DB7035B90FDB292858E2FCF8E6B9918178 Certificate serial: 0170 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft Manifest number: 0170 Signing time: Mon 11 Aug 2025 03:55:15 +0000 Manifest this update: Mon 11 Aug 2025 03:55:14 +0000 Manifest next update: Mon 18 Aug 2025 03:55:14 +0000 Files and hashes: 1: Nvf123A1uQ_bKShY4vz45rmRgXg.crl (hash: A+GVWq7u9R9r6lYKRxBtnlOwIjr62oSo4uckw8gLiPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.crl rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC636, serialNumber=36F7F5DB7035B90FDB292858E2FCF8E6B9918178 Validity Not Before: Aug 11 03:55:14 2025 GMT Not After : Aug 18 03:55:14 2025 GMT Subject: CN=689969a2-143f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:de:c9:d0:5d:eb:b1:62:0c:61:64:a1:d0:bb: d6:25:78:f1:3c:fa:e1:58:9a:ce:3c:25:8d:01:26: d4:36:3d:31:2f:8a:6a:f0:b6:18:cb:e2:fb:27:de: af:2c:ba:f2:7b:7b:60:64:9c:b5:89:d8:3f:98:0b: b9:e2:4f:91:1c:f3:f9:bb:23:87:b2:7f:2b:cd:06: e5:fc:e7:cc:3f:94:8a:df:96:48:71:35:57:a4:6f: bc:10:cd:50:39:7a:49:48:b8:96:e3:d0:f5:65:6a: 64:8a:48:40:f7:db:3e:d2:95:b9:77:4a:4f:4c:d5: e9:95:0d:15:85:cb:69:94:76:41:ff:16:ba:ad:80: 99:b7:cc:e2:e0:d4:be:db:49:a1:9f:ca:96:f6:f3: 81:46:04:dd:a1:b9:06:01:88:f3:d4:3b:af:4d:9d: b6:7c:47:76:f8:78:8c:f2:70:ba:c4:3a:b7:2e:52: 3a:34:8a:12:ad:3f:e3:4a:7e:73:56:be:bd:7f:43: 6c:68:8f:90:b1:93:5c:e5:f5:39:8f:6a:20:94:47: 65:5b:60:72:97:0d:a9:fe:47:e1:4f:d7:a6:aa:a1: d3:39:9b:c8:2d:bd:43:fd:72:a8:4c:8f:5b:83:95: 31:ce:0c:73:eb:51:d5:32:b6:6c:09:60:29:75:ef: 61:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:E5:07:43:02:BF:46:5C:ED:BB:DD:D6:51:B3:D3:FF:29:1D:B9:51 X509v3 Authority Key Identifier: keyid:36:F7:F5:DB:70:35:B9:0F:DB:29:28:58:E2:FC:F8:E6:B9:91:81:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:e5:99:48:4b:29:02:43:75:7d:64:c2:d6:60:33:03:d1:a1: f6:46:31:4e:2f:52:30:a5:2b:1c:2c:37:7a:f8:a2:d3:82:ad: 16:d9:c6:9d:a2:7e:eb:50:ac:ce:6c:f7:4f:bd:cd:fc:57:75: 88:61:97:08:c5:66:1c:cd:58:9b:0b:dd:4d:c2:1f:64:74:c3: 72:8f:b9:f7:8a:05:87:62:ad:04:5b:53:f7:57:60:cb:0a:83: d0:f6:e7:04:d1:be:ef:f5:c5:78:34:65:dd:86:3f:3b:91:05: b5:92:8c:3c:ff:e3:cf:0c:07:8c:54:e1:a5:cb:19:e3:89:4e: ab:07:ce:48:7e:05:e1:95:1e:43:f9:b3:33:7d:49:64:79:f0: 00:9c:87:43:c1:4b:87:66:37:a8:60:a5:a6:44:8d:e5:17:4a: 04:39:37:2a:97:cb:5a:ff:01:ea:3a:d3:ab:ec:51:6d:0d:2e: ed:99:c9:c7:60:46:3d:3c:43:2e:b4:6f:a3:02:80:de:27:20: e5:ac:f4:5c:8c:ef:6d:ff:f2:13:3f:be:b7:cd:ff:a0:cf:a1: 23:70:35:9e:9e:1b:82:32:ba:88:06:e6:10:48:7b:51:95:1a: 55:7e:9f:c2:59:1a:e5:77:31:3f:eb:89:8c:8d:a6:f3:14:34: f6:2a:fb:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M2MzYxMTAvBgNVBAUTKDM2RjdGNURCNzAzNUI5MEZEQjI5Mjg1OEUyRkNGOEU2 Qjk5MTgxNzgwHhcNMjUwODExMDM1NTE0WhcNMjUwODE4MDM1NTE0WjAYMRYwFAYD VQQDEw02ODk5NjlhMi0xNDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6t7J0F3rsWIMYWSh0LvWJXjxPPrhWJrOPCWNASbUNj0xL4pq8LYYy+L7J96v LLrye3tgZJy1idg/mAu54k+RHPP5uyOHsn8rzQbl/OfMP5SK35ZIcTVXpG+8EM1Q OXpJSLiW49D1ZWpkikhA99s+0pW5d0pPTNXplQ0VhctplHZB/xa6rYCZt8zi4NS+ 20mhn8qW9vOBRgTdobkGAYjz1DuvTZ22fEd2+HiM8nC6xDq3LlI6NIoSrT/jSn5z Vr69f0NsaI+QsZNc5fU5j2oglEdlW2Bylw2p/kfhT9emqqHTOZvILb1D/XKoTI9b g5Uxzgxz61HVMrZsCWApde9hYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3lB0MC v0Zc7bvd1lGz0/8pHblRMB8GA1UdIwQYMBaAFDb39dtwNbkP2ykoWOL8+Oa5kYF4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzYzNi81NEQyN0UyMDQy MzUxMUVFQTg0MEYxNDhDNEY5QUUwMi9OdmYxMjNBMXVRX2JLU2hZNHZ6NDVybVJn WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL052ZjEyM0ExdVFfYktTaFk0dno0NXJtUmdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzYzNi81NEQyN0UyMDQyMzUxMUVFQTg0MEYxNDhDNEY5QUUwMi9OdmYxMjNBMXVR X2JLU2hZNHZ6NDVybVJnWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB5ZlISykCQ3V9ZMLWYDMD0aH2RjFOL1IwpSscLDd6+KLTgq0W2cad on7rUKzObPdPvc38V3WIYZcIxWYczVibC91Nwh9kdMNyj7n3igWHYq0EW1P3V2DL CoPQ9ucE0b7v9cV4NGXdhj87kQW1kow8/+PPDAeMVOGlyxnjiU6rB85IfgXhlR5D +bMzfUlkefAAnIdDwUuHZjeoYKWmRI3lF0oEOTcql8ta/wHqOtOr7FFtDS7tmcnH YEY9PEMutG+jAoDeJyDlrPRcjO9t//ITP763zf+gz6EjcDWenhuCMrqIBuYQSHtR lRpVfp/CWRrldzE/64mMjabzFDT2Kvvv -----END CERTIFICATE-----Generated at Wed Aug 13 04:29:12 2025 by rpki-client