$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: bvS3SDE8tR9RpsIqP04e9gRYk4E70wXIOqJR9DJ9l3g= Subject key identifier: 6D:0F:25:67:11:A1:E6:93:5B:C2:70:8A:FE:B8:6F:2C:B2:9E:CC:74 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: FF Signing time: Tue 05 Aug 2025 05:54:11 +0000 Manifest this update: Tue 05 Aug 2025 05:54:11 +0000 Manifest next update: Tue 12 Aug 2025 05:54:11 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: k0AQxc2NUFz50YCrTOPDqfQGs5ZgvO51AJ5AFyLRkQY=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: 0dsUVKxnnglNpZZhhpBErhWI1oXUDVFF4BUubObFWiM=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: StZAIMtKvc+DvwzgQ26IlnkW4j9VonIWzSJOuU7IXLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Aug 5 05:54:11 2025 GMT Not After : Aug 12 05:54:11 2025 GMT Subject: CN=68919c83-2bb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bb:0a:15:e4:88:68:90:53:a9:1d:f2:98:8d: 60:f0:62:a2:7a:ad:8b:d3:35:7b:34:45:db:84:44: 5f:a7:36:8c:8d:2a:9f:c7:68:13:38:79:c2:54:14: 80:20:d9:64:86:a5:ad:3e:3e:b1:2a:3f:22:ec:41: 62:c7:05:76:ed:98:05:1b:30:3f:29:ac:66:75:b0: 42:00:0e:a2:23:aa:7f:51:ea:e6:68:bc:47:25:66: 83:b9:be:3f:e9:ae:fc:5a:6e:46:04:42:63:25:92: f2:9d:d3:ac:bd:70:4d:de:8c:ed:d7:68:cf:07:57: 39:6d:69:58:d6:4a:74:ff:39:e9:ab:ce:01:a0:4d: e2:e9:49:56:22:68:b8:6e:36:57:a8:db:56:89:06: 15:e5:00:01:3b:ea:ac:57:ff:b9:ec:3b:1d:0f:7c: cf:58:17:db:d2:6a:ed:1d:39:97:de:97:ab:16:d6: fd:7a:54:16:03:8c:83:df:b7:8e:9e:6c:89:62:f5: 45:ec:a3:51:b7:92:9e:b1:f3:32:ce:17:f0:f0:38: dd:55:62:85:b0:47:f8:a0:da:a4:3f:51:f8:66:42: 9d:d2:17:19:51:a8:54:58:34:ad:36:da:de:f4:a3: b5:3f:49:2e:5f:9c:bc:0b:91:45:5d:96:f2:bf:08: 7d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:0F:25:67:11:A1:E6:93:5B:C2:70:8A:FE:B8:6F:2C:B2:9E:CC:74 X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:3b:5a:8e:02:13:c2:15:5d:1b:4d:ac:d5:82:38:1a:07:bc: 02:49:46:75:7a:97:2f:59:74:c8:01:83:86:86:f4:10:bd:f1: 11:82:72:0a:00:c9:cc:34:f6:1a:66:53:23:dd:df:b4:a2:16: d7:30:71:cd:24:ee:d9:63:8b:93:a6:e1:63:5b:bf:13:c5:ea: 9b:11:e4:30:1c:dd:ab:ac:58:26:f2:23:30:1a:1c:50:c3:54: 96:40:34:0a:bc:43:47:52:70:eb:81:c5:f6:22:50:d1:dc:5f: 76:db:e1:b0:6d:fb:01:a7:08:bd:e7:49:6a:a6:6a:db:b3:59: 68:1a:57:56:b3:6d:ec:ff:a0:65:3d:eb:94:60:34:14:2e:c4: bb:a1:a2:41:95:41:d1:ad:75:2e:d6:27:f1:7f:07:e2:49:ff: 0a:71:9a:2c:bc:01:cb:df:e4:b4:b1:49:f9:fa:0a:75:97:ce: a0:06:b2:47:e7:9b:eb:64:58:d2:31:0d:49:dd:54:ca:2e:6f: a4:e4:7c:24:12:ff:cd:ed:77:8b:1e:95:73:81:0e:ea:8f:05: e5:aa:b5:8d:c2:6c:e5:5a:c3:f5:c8:a3:35:02:09:ee:99:49: f0:7e:a1:a3:b3:da:ed:44:5b:64:6f:09:8e:c6:b5:c6:8d:37: 1f:96:7a:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjUwODA1MDU1NDExWhcNMjUwODEyMDU1NDExWjAYMRYwFAYD VQQDEw02ODkxOWM4My0yYmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bsKFeSIaJBTqR3ymI1g8GKieq2L0zV7NEXbhERfpzaMjSqfx2gTOHnCVBSA INlkhqWtPj6xKj8i7EFixwV27ZgFGzA/KaxmdbBCAA6iI6p/UermaLxHJWaDub4/ 6a78Wm5GBEJjJZLyndOsvXBN3ozt12jPB1c5bWlY1kp0/znpq84BoE3i6UlWImi4 bjZXqNtWiQYV5QABO+qsV/+57DsdD3zPWBfb0mrtHTmX3perFtb9elQWA4yD37eO nmyJYvVF7KNRt5KesfMyzhfw8DjdVWKFsEf4oNqkP1H4ZkKd0hcZUahUWDStNtre 9KO1P0kuX5y8C5FFXZbyvwh97QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0PJWcR oeaTW8Jwiv64byyynsx0MB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1O1qOAhPCFV0bTazVgjgaB7wCSUZ1epcvWXTIAYOGhvQQvfERgnIK AMnMNPYaZlMj3d+0ohbXMHHNJO7ZY4uTpuFjW78TxeqbEeQwHN2rrFgm8iMwGhxQ w1SWQDQKvENHUnDrgcX2IlDR3F922+GwbfsBpwi950lqpmrbs1loGldWs23s/6Bl PeuUYDQULsS7oaJBlUHRrXUu1ifxfwfiSf8KcZosvAHL3+S0sUn5+gp1l86gBrJH 55vrZFjSMQ1J3VTKLm+k5HwkEv/N7XeLHpVzgQ7qjwXlqrWNwmzlWsP1yKM1Agnu mUnwfqGjs9rtRFtkbwmOxrXGjTcflnp1 -----END CERTIFICATE-----Generated at Wed Aug 6 14:09:07 2025 by rpki-client