$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: BnTrwqObc61aDsqbPB3qMxuo6/H050NdTczv1n41TtM= Subject key identifier: F2:1F:0E:EB:4A:5F:D8:41:B6:E0:FA:08:36:D8:94:5E:92:EA:47:B0 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0D43 Signing time: Wed 06 Aug 2025 18:10:43 +0000 Manifest this update: Wed 06 Aug 2025 18:10:43 +0000 Manifest next update: Wed 13 Aug 2025 18:10:43 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: bSDf5XOGQu3RvmuY0xJ/O7xiCcKsR7InVp1rLZIHooY=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: u1TNJ+cS4eVAcfkpJ21oJA8p8MXvtPlstoexuvgtfIM=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: rShkEGVIbInxuwhM/D99+N9Ifro23DfGNAWpJ5dz2fM=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: TU8TSmPX0pl0lGmdo+pSWKRJSfGRcwunEDD4PcVNXOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 18:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3417 (0xd59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Aug 6 18:10:43 2025 GMT Not After : Aug 13 18:10:43 2025 GMT Subject: CN=68939aa3-a76f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a4:cf:1e:bf:73:2a:a7:2a:9e:93:b3:c6:61: de:7b:75:fc:2d:e3:ea:e5:40:79:55:20:03:65:fd: 4b:83:e1:fd:29:c7:4b:c6:ee:6d:5e:a8:19:a1:74: 10:9a:5e:49:54:97:4c:9c:d7:fa:3d:bd:ab:ca:8b: b7:55:35:dc:f8:ef:18:fe:22:8c:59:37:7b:71:61: 93:24:d5:ca:3d:9f:5f:13:38:15:cf:32:39:2a:39: cc:a2:21:d6:46:d8:e1:47:f6:b5:01:e6:4c:b4:fe: 5f:0d:b4:3f:55:22:b9:6f:c1:7b:26:ae:5c:fc:fc: a7:48:49:2d:ee:e2:33:10:d3:97:cf:d5:d0:b2:4d: bc:ef:ce:02:73:c6:f2:de:dc:39:e0:66:49:ca:bc: c5:b8:2f:9b:3c:20:75:89:ea:6e:8c:18:3a:0b:63: 90:55:4d:91:b7:ec:a4:d3:a1:d0:d0:ac:d7:27:46: a0:3e:10:8d:d6:b4:0a:05:f9:eb:40:97:62:b3:ea: 88:51:d0:4a:54:94:c5:90:b2:56:20:bc:f7:04:eb: 7a:89:a4:29:0c:dd:c2:56:03:72:5e:5b:b9:f1:68: 37:e8:58:c2:8b:14:17:ad:b3:28:7a:86:c8:bc:bb: 09:8c:b9:d5:bf:b2:6e:1d:9c:04:8f:df:84:9b:09: 37:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:1F:0E:EB:4A:5F:D8:41:B6:E0:FA:08:36:D8:94:5E:92:EA:47:B0 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:6b:2c:05:43:43:9b:ab:55:59:11:40:f8:b0:32:72:da:c9: bc:ef:9a:b0:15:f1:92:90:0d:56:7c:08:3a:46:93:17:8b:b3: 7d:4a:c5:98:44:12:1f:01:f9:93:30:ec:07:3a:96:85:21:e5: 7c:4f:80:b6:d9:7c:76:d9:df:65:e1:5f:57:70:f1:c6:e9:b2: 64:ca:ae:f0:9b:ab:48:80:0a:4b:ef:6e:2a:d5:75:d0:0c:31: 74:79:fd:1a:b5:a2:77:a4:ab:87:f8:05:02:7e:cf:a4:96:78: 94:d0:64:4a:ba:5c:5b:12:99:80:58:30:72:5a:4f:bc:41:10: 6f:c7:b5:36:66:02:85:35:d3:39:10:f6:e6:fa:ea:1f:a6:4c: 64:3a:2d:55:2b:66:78:3b:79:09:8c:ec:7a:46:ef:bd:54:1c: 64:66:d1:60:8b:4c:58:36:a7:0a:0e:e1:0c:ce:54:1c:fa:3b: 74:36:57:b1:40:c7:b1:85:43:e1:45:98:e0:f3:59:22:44:28: 79:55:e1:4c:a1:c7:6a:aa:b7:aa:9c:98:e6:aa:b5:77:83:bf: 33:9d:3b:5c:db:0d:d3:dd:38:a4:a9:db:dc:64:67:45:b2:36: 37:48:77:a4:5a:ec:39:f4:13:cf:a1:a6:5a:fa:8d:32:f1:1b: 27:01:ef:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUwODA2MTgxMDQzWhcNMjUwODEzMTgxMDQzWjAYMRYwFAYD VQQDEw02ODkzOWFhMy1hNzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6TPHr9zKqcqnpOzxmHee3X8LePq5UB5VSADZf1Lg+H9KcdLxu5tXqgZoXQQ ml5JVJdMnNf6Pb2ryou3VTXc+O8Y/iKMWTd7cWGTJNXKPZ9fEzgVzzI5KjnMoiHW RtjhR/a1AeZMtP5fDbQ/VSK5b8F7Jq5c/PynSEkt7uIzENOXz9XQsk28784Cc8by 3tw54GZJyrzFuC+bPCB1iepujBg6C2OQVU2Rt+yk06HQ0KzXJ0agPhCN1rQKBfnr QJdis+qIUdBKVJTFkLJWILz3BOt6iaQpDN3CVgNyXlu58Wg36FjCixQXrbMoeobI vLsJjLnVv7JuHZwEj9+Emwk3GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIfDutK X9hBtuD6CDbYlF6S6kewMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqaywFQ0Obq1VZEUD4sDJy2sm875qwFfGSkA1WfAg6RpMXi7N9SsWY RBIfAfmTMOwHOpaFIeV8T4C22Xx22d9l4V9XcPHG6bJkyq7wm6tIgApL724q1XXQ DDF0ef0ataJ3pKuH+AUCfs+klniU0GRKulxbEpmAWDByWk+8QRBvx7U2ZgKFNdM5 EPbm+uofpkxkOi1VK2Z4O3kJjOx6Ru+9VBxkZtFgi0xYNqcKDuEMzlQc+jt0Nlex QMexhUPhRZjg81kiRCh5VeFMocdqqreqnJjmqrV3g78znTtc2w3T3TikqdvcZGdF sjY3SHekWuw59BPPoaZa+o0y8RsnAe+Q -----END CERTIFICATE-----Generated at Thu Aug 7 04:41:49 2025 by rpki-client