$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: 7Cscm9OLkKwW8ynahnGK9KMcIdB+Ta0pI4Qlqj/W6Q8= Subject key identifier: B5:27:F5:E2:38:8A:D1:B8:8D:0C:6B:1B:CC:72:41:95:2A:54:8D:8F Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: AF Signing time: Tue 05 Aug 2025 06:50:54 +0000 Manifest this update: Tue 05 Aug 2025 06:50:53 +0000 Manifest next update: Tue 12 Aug 2025 06:50:53 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: YcNBbwAbJqpJOVFCPv0vL/TEvuc0etlxcEwFtmd+nnQ=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: 4Ilw9gY/NOcFcq0qbuj1smp6o0+TRpgSf2CHUKcnvWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Aug 5 06:50:53 2025 GMT Not After : Aug 12 06:50:53 2025 GMT Subject: CN=6891a9ce-94bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:66:d7:4c:74:e1:5c:6c:a2:f5:7a:e0:26:e2: 23:9a:6b:63:de:0d:21:74:f3:f7:11:49:cd:f8:ce: 3b:24:fb:36:b6:8e:6c:bb:e8:71:fd:3f:4d:e3:8d: d3:62:47:a1:01:b9:50:3a:3a:28:85:24:eb:7b:fe: a9:f2:61:1c:8c:0a:a0:47:d3:48:df:47:00:05:fa: c1:74:a2:c0:6d:77:1b:3d:17:e7:e9:55:9c:0f:6c: d7:6d:db:79:af:33:57:80:e4:51:a7:34:55:22:27: ed:f7:5d:0f:72:04:10:e5:b9:db:3c:35:fe:cc:ff: 75:bd:8a:6d:0b:e2:4b:6a:1d:ef:47:78:96:26:04: 4f:8a:7d:2d:a6:7f:1f:e3:ce:d0:cb:83:0e:bc:2d: ff:d3:28:d6:e3:ab:51:c4:fe:6d:24:84:17:ee:6f: b2:9c:9f:65:e7:fc:3c:fc:9e:ba:46:8d:2b:ad:4a: ba:b2:0d:97:bc:f2:92:ef:9f:bb:f7:de:ce:e0:85: 6e:93:af:06:44:40:cd:6f:20:a5:a0:37:56:5a:d5: 33:e0:6b:6b:48:26:46:45:39:af:fe:48:0c:b6:a7: d5:47:14:05:bf:15:d5:92:7f:20:43:35:a9:79:b1: dc:ff:b4:66:3c:4b:a6:26:e3:07:13:55:2d:79:8a: 2e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:27:F5:E2:38:8A:D1:B8:8D:0C:6B:1B:CC:72:41:95:2A:54:8D:8F X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:db:26:9d:c5:d4:73:2c:b8:66:25:b5:92:e7:78:47:73:26: 6c:0d:01:f5:cc:c8:fb:cd:db:31:f7:29:b0:5c:e9:f5:b8:ee: 2e:3b:3b:18:11:19:ed:4c:c8:f4:aa:8a:15:15:51:c9:5e:59: a2:75:cd:84:ae:5e:a1:75:45:e7:c1:d5:7f:e4:c8:eb:f6:73: a4:8c:0c:d1:cd:8c:76:38:0a:db:ec:cd:53:99:90:b1:3c:6f: 3b:e5:ce:dd:64:f9:81:07:ba:2a:a3:11:13:bb:79:bf:74:c8: 76:af:d4:54:4b:84:ab:19:c6:94:a9:16:8d:1d:f4:6f:14:63: df:2d:da:13:27:89:fb:7b:d2:52:e0:38:ef:dc:d6:a7:0b:c6: f6:5f:49:4c:f8:f7:36:16:ea:12:eb:e7:aa:21:ea:0f:08:32: 6b:01:87:f2:cb:07:2a:30:f2:8f:40:06:18:d7:90:fb:37:cb: cf:a0:21:94:e0:35:a3:5c:86:97:bb:c6:cd:6f:e2:b6:19:ed: 62:bb:03:1f:e3:7f:e4:18:38:6b:d6:ad:db:13:7e:c1:15:a4: c4:4d:23:48:cd:df:35:07:70:a5:d6:08:fd:28:48:4d:c7:b0: 5f:51:2d:be:76:7a:d7:58:b1:85:6c:6e:3c:97:1f:b2:41:05: 9d:87:89:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjUwODA1MDY1MDUzWhcNMjUwODEyMDY1MDUzWjAYMRYwFAYD VQQDEw02ODkxYTljZS05NGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mbXTHThXGyi9XrgJuIjmmtj3g0hdPP3EUnN+M47JPs2to5su+hx/T9N443T YkehAblQOjoohSTre/6p8mEcjAqgR9NI30cABfrBdKLAbXcbPRfn6VWcD2zXbdt5 rzNXgORRpzRVIift910PcgQQ5bnbPDX+zP91vYptC+JLah3vR3iWJgRPin0tpn8f 487Qy4MOvC3/0yjW46tRxP5tJIQX7m+ynJ9l5/w8/J66Ro0rrUq6sg2XvPKS75+7 997O4IVuk68GREDNbyCloDdWWtUz4GtrSCZGRTmv/kgMtqfVRxQFvxXVkn8gQzWp ebHc/7RmPEumJuMHE1UteYou7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUn9eI4 itG4jQxrG8xyQZUqVI2PMB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc2yadxdRzLLhmJbWS53hHcyZsDQH1zMj7zdsx9ymwXOn1uO4uOzsY ERntTMj0qooVFVHJXlmidc2Erl6hdUXnwdV/5Mjr9nOkjAzRzYx2OArb7M1TmZCx PG875c7dZPmBB7oqoxETu3m/dMh2r9RUS4SrGcaUqRaNHfRvFGPfLdoTJ4n7e9JS 4Djv3NanC8b2X0lM+Pc2FuoS6+eqIeoPCDJrAYfyywcqMPKPQAYY15D7N8vPoCGU 4DWjXIaXu8bNb+K2Ge1iuwMf43/kGDhr1q3bE37BFaTETSNIzd81B3Cl1gj9KEhN x7BfUS2+dnrXWLGFbG48lx+yQQWdh4nU -----END CERTIFICATE-----Generated at Thu Aug 7 03:20:49 2025 by rpki-client