$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft File: NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft (raw, json) Hash identifier: xi0+WP0mnmm5tFnwd3e36L0aiAiSJSQyDRURa/qUJwA= Subject key identifier: E2:9B:7B:5C:4A:89:F5:AF:A0:75:54:1F:EE:AE:C7:E6:9D:68:2C:81 Authority key identifier: 35:43:3C:9E:C4:08:09:9F:70:18:BC:51:44:1D:22:C4:C1:1F:C3:85 Certificate issuer: /CN=A91E2EFF/serialNumber=35433C9EC408099F7018BC51441D22C4C11FC385 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft Manifest number: 1F Signing time: Sat 09 Aug 2025 08:23:49 +0000 Manifest this update: Sat 09 Aug 2025 08:23:48 +0000 Manifest next update: Sat 16 Aug 2025 08:23:48 +0000 Files and hashes: 1: NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl (hash: Q4UCmRIHqs1t8FLMnvaoViQLc3z+3AOKbz+t/3lJ60U=) 2: 370DA046484A11F0B96B9D10C4F9AE02.roa (hash: 2Lm246NHiIIsj3yU5G9cofOj46hOe93SJKM95sww3VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=35433C9EC408099F7018BC51441D22C4C11FC385 Validity Not Before: Aug 9 08:23:48 2025 GMT Not After : Aug 16 08:23:48 2025 GMT Subject: CN=68970594-c2ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0d:b7:5b:c1:ea:f5:e5:3f:ef:3a:01:f3:f4: 77:b1:cd:32:97:f8:38:97:bc:a9:89:a2:0a:44:27: b5:3a:1a:41:37:6b:fe:b7:4c:c0:0a:2b:c7:d1:d9: 95:6f:d9:5a:37:7b:3b:78:38:9b:29:89:af:28:34: 68:a4:cb:82:ba:9c:83:5b:4c:18:7a:71:f4:8e:60: 7b:46:38:aa:a1:3d:94:36:05:75:d1:ea:c7:ea:da: f8:5f:89:21:3d:ed:3e:6d:d0:72:33:2d:eb:0b:77: 89:41:39:45:d7:29:4e:f8:e1:cc:72:e9:48:78:cd: af:1a:8d:ff:e8:19:93:67:a6:35:96:ad:00:86:fd: a5:a6:73:be:50:41:13:2f:ce:8d:49:68:57:07:b7: 1d:e3:45:4e:dd:58:f4:99:07:ad:42:f4:0d:31:a2: 68:f8:82:68:e9:12:85:96:f4:be:20:6c:3c:c7:cc: 0c:f9:ab:03:b0:9a:40:52:e2:fc:a0:86:b1:51:60: 31:ad:18:1c:79:fc:bf:9d:11:62:76:f4:e2:5f:e7: 18:87:2f:e4:c2:97:35:d2:6e:36:12:7d:fb:2e:0a: 1c:32:c9:2e:47:a6:b2:4c:e2:27:eb:7a:c8:03:a3: 26:ef:78:16:80:16:db:90:d9:54:af:fb:c8:21:52: b3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:9B:7B:5C:4A:89:F5:AF:A0:75:54:1F:EE:AE:C7:E6:9D:68:2C:81 X509v3 Authority Key Identifier: keyid:35:43:3C:9E:C4:08:09:9F:70:18:BC:51:44:1D:22:C4:C1:1F:C3:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:56:13:38:0b:93:9f:36:aa:a3:41:89:20:0b:eb:1f:b9:66: 60:b8:48:a3:d9:9c:5a:95:1f:fb:98:1a:31:c8:dc:bd:36:5e: 9b:76:9f:d3:65:17:53:6d:02:15:2f:aa:24:63:28:7d:dc:52: f7:a2:54:ac:38:7f:64:61:ff:a4:7d:81:2b:7a:be:54:e4:a2: 30:ce:0f:b2:46:f2:4f:6a:55:71:00:c9:ce:a7:69:9a:b6:ac: 90:53:c8:79:f6:95:f5:30:ad:f8:bd:95:dd:5c:48:14:35:3f: e3:3e:d0:c7:0d:70:19:fe:77:54:6f:e1:e5:e7:a6:2f:b9:2e: 5d:0e:8a:47:2a:16:52:39:4f:72:2e:b8:5e:f2:34:df:4c:7d: 55:76:65:8f:e0:6c:26:a4:fb:06:68:52:dd:de:53:52:93:e1: 38:cf:97:45:b8:0e:d8:95:30:f6:3a:3d:bd:12:2e:8d:15:d6: ae:25:6e:2a:6c:6d:c6:e6:c2:26:f7:da:b8:32:c4:e9:db:04: 1b:d6:d4:c3:0d:22:c8:77:f5:95:05:b3:d3:e2:85:40:9c:f6: d0:2a:67:1b:36:3b:05:38:94:17:f9:e9:5a:5d:b2:a5:67:22: e3:1f:18:ab:13:a2:0b:ff:39:36:fc:a1:b4:28:7d:1e:73:e6: 12:61:da:99 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMzU0MzNDOUVDNDA4MDk5RjcwMThCQzUxNDQxRDIyQzRD MTFGQzM4NTAeFw0yNTA4MDkwODIzNDhaFw0yNTA4MTYwODIzNDhaMBgxFjAUBgNV BAMTDTY4OTcwNTk0LWMyY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHDbdbwer15T/vOgHz9HexzTKX+DiXvKmJogpEJ7U6GkE3a/63TMAKK8fR2ZVv 2Vo3ezt4OJspia8oNGiky4K6nINbTBh6cfSOYHtGOKqhPZQ2BXXR6sfq2vhfiSE9 7T5t0HIzLesLd4lBOUXXKU744cxy6Uh4za8ajf/oGZNnpjWWrQCG/aWmc75QQRMv zo1JaFcHtx3jRU7dWPSZB61C9A0xomj4gmjpEoWW9L4gbDzHzAz5qwOwmkBS4vyg hrFRYDGtGBx5/L+dEWJ29OJf5xiHL+TClzXSbjYSffsuChwyyS5HprJM4ifresgD oybveBaAFtuQ2VSv+8ghUrP3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4pt7XEqJ 9a+gdVQf7q7H5p1oLIEwHwYDVR0jBBgwFoAUNUM8nsQICZ9wGLxRRB0ixMEfw4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0FCOTc1QkNFNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL05VTThuc1FJQ1o5d0dMeFJSQjBpeE1FZnc0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlVNOG5zUUlDWjl3R0x4UlJCMGl4TUVmdzRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0FCOTc1QkNFNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL05VTThuc1FJQ1o5 d0dMeFJSQjBpeE1FZnc0VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAChWEzgLk582qqNBiSAL6x+5ZmC4SKPZnFqVH/uYGjHI3L02Xpt2n9Nl F1NtAhUvqiRjKH3cUveiVKw4f2Rh/6R9gSt6vlTkojDOD7JG8k9qVXEAyc6naZq2 rJBTyHn2lfUwrfi9ld1cSBQ1P+M+0McNcBn+d1Rv4eXnpi+5Ll0OikcqFlI5T3Iu uF7yNN9MfVV2ZY/gbCak+wZoUt3eU1KT4TjPl0W4DtiVMPY6Pb0SLo0V1q4lbips bcbmwib32rgyxOnbBBvW1MMNIsh39ZUFs9PihUCc9tAqZxs2OwU4lBf56VpdsqVn IuMfGKsTogv/OTb8obQofR5z5hJh2pk= -----END CERTIFICATE-----Generated at Sun Aug 10 15:59:14 2025 by rpki-client