$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft File: nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json) Hash identifier: xHqZdIOPd7gNHYNHkZ9r6UKlvZHng+V+cEoDjxhdXu0= Subject key identifier: 22:2D:33:4C:1E:C1:CE:19:72:F8:09:8B:38:A4:66:BD:7D:2F:9E:53 Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 0805 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft Manifest number: 07FF Signing time: Sun 10 Aug 2025 20:56:21 +0000 Manifest this update: Sun 10 Aug 2025 20:56:20 +0000 Manifest next update: Sun 17 Aug 2025 20:56:20 +0000 Files and hashes: 1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: mA89iEPJCmyroa38zdN+AvYUog5KvvqH9xRnwIsp5Sk=) 2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: ZuNx07Xi3l7zK6QE18qPa3KdYreh+VNjcsKw+zEu9qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4, serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Aug 10 20:56:20 2025 GMT Not After : Aug 17 20:56:20 2025 GMT Subject: CN=68990775-a5dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8f:fb:77:bf:5f:16:6b:65:29:33:82:c4:ab: 53:a6:d3:a3:c4:42:83:e2:33:4a:d6:ba:49:8e:9e: 75:fa:85:f7:90:80:be:56:63:e0:a5:e6:ca:5a:d7: 09:33:b7:c2:fc:ae:e7:a9:48:4a:1c:4f:8f:ca:cd: 4f:b6:cd:0a:66:f6:77:fe:26:6e:2d:e5:2b:29:b8: 7c:93:45:45:f6:51:30:c5:61:ad:82:d6:4b:f7:1a: 87:e8:3b:40:47:a5:03:df:fd:61:13:ed:e5:c8:85: b2:e5:e1:10:ee:fd:4a:d5:d7:77:43:b8:e3:2b:dc: 38:98:7c:cb:ca:97:48:6d:d7:42:9c:a2:38:53:d0: 4c:55:1c:32:74:16:55:41:0d:48:1f:79:c1:0f:03: 09:51:c6:76:7c:71:34:a5:ef:c2:20:56:3d:99:26: 6d:8c:81:66:08:11:5f:59:02:66:d2:6c:2a:f5:3e: 0f:07:16:0a:75:b5:cb:df:d5:b2:7d:77:d3:43:d6: 71:2e:e7:c3:29:71:a3:44:37:74:93:16:12:fe:a7: b3:af:e7:4b:9a:06:fe:2e:d1:af:10:a8:cf:50:58: c7:2b:93:c1:96:46:27:03:4d:38:0d:b1:91:dc:90: 9c:eb:48:22:8f:34:03:90:1e:dd:b3:5f:2e:3c:07: 43:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:2D:33:4C:1E:C1:CE:19:72:F8:09:8B:38:A4:66:BD:7D:2F:9E:53 X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:d8:bc:d2:ae:2c:76:30:f2:05:53:72:1f:ce:d5:c7:8f:e7: 77:ef:fc:99:d1:86:f0:d3:7b:c3:4c:ee:92:a1:d5:c6:77:c1: f8:11:49:26:61:98:7a:d4:77:b8:92:0c:98:65:2d:29:45:d1: aa:0c:27:d1:8f:76:95:b1:e6:b1:36:d5:8b:30:18:cd:c8:9d: 53:fa:76:7c:2e:58:e8:ac:45:07:b9:84:88:a3:00:dc:9f:74: e5:37:d2:f8:8d:92:b0:e1:3b:96:f4:60:31:62:bf:6a:0d:1c: 5c:2c:a2:13:ad:7d:04:d5:ac:4a:3a:e3:24:21:68:ef:18:32: 9d:50:6d:84:65:a3:d2:dc:30:ec:6f:39:ea:d6:26:75:47:c5: 5c:17:fa:e3:e9:a2:5a:91:2c:e2:17:d1:5d:78:4b:d8:a9:fb: 67:ab:ce:24:f9:4c:65:d8:12:9d:91:f5:6a:ab:82:07:ae:76: 0f:09:8b:38:39:c1:be:a6:bf:f8:a7:2a:4b:57:77:4e:b4:ce: 71:4e:af:e8:e4:fe:1e:05:31:65:c0:ee:cd:a3:e8:65:e3:36: bb:45:b7:bc:9f:45:cf:c7:b0:62:3a:55:7c:27:91:34:1a:f5: 1d:24:87:57:dc:78:05:b7:2f:b8:0f:18:4b:a7:9b:95:d8:82: fd:7d:6e:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUwODEwMjA1NjIwWhcNMjUwODE3MjA1NjIwWjAYMRYwFAYD VQQDEw02ODk5MDc3NS1hNWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2o/7d79fFmtlKTOCxKtTptOjxEKD4jNK1rpJjp51+oX3kIC+VmPgpebKWtcJ M7fC/K7nqUhKHE+Pys1Pts0KZvZ3/iZuLeUrKbh8k0VF9lEwxWGtgtZL9xqH6DtA R6UD3/1hE+3lyIWy5eEQ7v1K1dd3Q7jjK9w4mHzLypdIbddCnKI4U9BMVRwydBZV QQ1IH3nBDwMJUcZ2fHE0pe/CIFY9mSZtjIFmCBFfWQJm0mwq9T4PBxYKdbXL39Wy fXfTQ9ZxLufDKXGjRDd0kxYS/qezr+dLmgb+LtGvEKjPUFjHK5PBlkYnA004DbGR 3JCc60gijzQDkB7ds18uPAdDdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCItM0we wc4ZcvgJizikZr19L55TMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RThCNC80QTY1RUFDOEVFODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gz eFV1U01OWTUya1R6Z05JZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl2LzSrix2MPIFU3IfztXHj+d37/yZ0Ybw03vDTO6SodXGd8H4EUkm YZh61He4kgyYZS0pRdGqDCfRj3aVseaxNtWLMBjNyJ1T+nZ8LljorEUHuYSIowDc n3TlN9L4jZKw4TuW9GAxYr9qDRxcLKITrX0E1axKOuMkIWjvGDKdUG2EZaPS3DDs bznq1iZ1R8VcF/rj6aJakSziF9FdeEvYqftnq84k+Uxl2BKdkfVqq4IHrnYPCYs4 OcG+pr/4pypLV3dOtM5xTq/o5P4eBTFlwO7No+hl4za7Rbe8n0XPx7BiOlV8J5E0 GvUdJIdX3HgFty+4DxhLp5uV2IL9fW7T -----END CERTIFICATE-----Generated at Mon Aug 11 04:23:21 2025 by rpki-client