$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft File: NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft (raw, json) Hash identifier: nJWKN/Hn25ngCGGODF/8N6rLP/pgtWvcmZfsaDBFtBI= Subject key identifier: 76:FA:0D:FF:F8:34:42:06:18:34:E6:CB:72:FC:EB:08:91:6B:D9:71 Authority key identifier: 34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD Certificate issuer: /CN=A91E8F36/serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft Manifest number: 01F4 Signing time: Thu 07 Aug 2025 02:59:13 +0000 Manifest this update: Thu 07 Aug 2025 02:59:12 +0000 Manifest next update: Thu 14 Aug 2025 02:59:12 +0000 Files and hashes: 1: NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl (hash: Ozka/jwGf7Cvjr18TDr9kNfgyLzFuqWQ5VHJOdnWDak=) 2: AC270A727D0711ED8181DA7FC4F9AE02.roa (hash: iIeWWLVIFJDjrG1ibZP/xl+WAjIK44IJWqOkBlQGCcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8F36, serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Validity Not Before: Aug 7 02:59:12 2025 GMT Not After : Aug 14 02:59:12 2025 GMT Subject: CN=68941681-b4b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3b:93:a3:90:af:90:3f:43:7f:9e:f9:88:9f: 2b:0d:e2:33:5d:a0:9a:5f:6a:4f:b6:ac:69:5d:de: da:8d:ab:e5:67:ac:50:c3:0b:66:74:3b:b2:eb:e5: 5d:89:74:e0:3b:1d:57:e0:c2:1a:8b:95:f7:04:41: 8f:6b:0b:5e:af:93:01:32:29:b2:ee:46:5b:1b:d0: 52:ef:a1:b7:ba:2e:79:96:07:45:84:1e:a8:ba:2d: 4b:0d:fe:98:8d:9a:57:9c:f9:15:b6:85:83:45:b5: a8:29:94:16:99:a8:28:93:a6:cf:72:73:f7:25:e2: fe:12:56:f1:9c:6d:9e:a9:dc:1d:6a:00:c5:dd:48: 9d:ea:7a:2d:95:83:d5:59:6d:cd:d7:a2:44:a2:c9: f1:e9:d1:df:4a:13:e3:45:91:ab:a5:ab:f3:47:57: fe:e5:41:93:0d:52:83:ba:84:43:33:81:e6:85:c7: d3:85:92:68:81:5a:4c:2b:e7:d6:75:e1:48:d6:07: ab:fc:2c:5b:67:32:26:68:76:c5:60:1e:03:5d:7b: 20:85:85:94:e6:d4:75:d2:9d:ce:d6:2e:0d:0a:40: 95:cd:fc:ef:e7:7a:44:59:49:5b:dc:a5:55:7f:d4: e4:a3:2f:56:75:29:7b:b0:11:62:3b:ff:11:f4:4e: 18:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:FA:0D:FF:F8:34:42:06:18:34:E6:CB:72:FC:EB:08:91:6B:D9:71 X509v3 Authority Key Identifier: keyid:34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:a8:34:3d:a4:c9:60:a6:b0:70:7c:5d:cc:9d:ef:21:91:eb: b1:08:05:f2:70:d2:0d:f4:b9:e3:86:6d:9f:e9:c2:9e:09:90: 2d:df:f2:ee:ac:e8:43:f4:5c:4f:d9:c2:a4:fd:f5:be:0a:4b: 15:92:bf:3c:61:06:92:9d:38:ee:63:d3:c0:13:84:ba:c5:82: bd:c2:42:4d:5b:9e:56:64:7b:c4:65:c3:4c:c7:cd:dd:51:d3: 69:29:b8:7b:20:55:c1:1d:ea:b4:a4:6f:16:ff:51:24:20:91: 05:b8:0c:8c:83:32:c7:f0:0e:ab:12:1f:6a:b6:a6:6d:95:12: 9d:d3:75:08:f0:41:00:73:84:d0:a2:56:3f:da:07:6b:0a:92: fe:8a:87:b0:ef:38:49:be:b3:f1:c5:09:33:16:a7:68:64:42: 80:d2:cd:26:8a:ad:5d:d1:2c:95:a7:ab:db:03:b0:94:4d:65: f6:91:16:92:b1:c6:75:38:71:e9:32:7f:de:09:cd:c0:98:62: 06:50:18:ce:ce:53:af:b3:a5:b8:88:52:c1:50:96:0c:0e:c7: 24:ff:c5:42:0b:da:7d:24:04:6c:df:ce:2e:2d:fa:a9:42:a9: b8:88:26:50:61:41:bc:cc:3c:f0:d7:2c:7e:91:2b:8a:b4:45: 03:ab:47:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThGMzYxMTAvBgNVBAUTKDM0RDdENkQ0NDFDMzJEN0M4NzE0MkU5RkU1QzdFQkM0 RjQ3OUIwQ0QwHhcNMjUwODA3MDI1OTEyWhcNMjUwODE0MDI1OTEyWjAYMRYwFAYD VQQDEw02ODk0MTY4MS1iNGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6juTo5CvkD9Df575iJ8rDeIzXaCaX2pPtqxpXd7ajavlZ6xQwwtmdDuy6+Vd iXTgOx1X4MIai5X3BEGPawter5MBMimy7kZbG9BS76G3ui55lgdFhB6oui1LDf6Y jZpXnPkVtoWDRbWoKZQWmagok6bPcnP3JeL+ElbxnG2eqdwdagDF3Uid6notlYPV WW3N16JEosnx6dHfShPjRZGrpavzR1f+5UGTDVKDuoRDM4HmhcfThZJogVpMK+fW deFI1ger/CxbZzImaHbFYB4DXXsghYWU5tR10p3O1i4NCkCVzfzv53pEWUlb3KVV f9Tkoy9WdSl7sBFiO/8R9E4Y9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHb6Df/4 NEIGGDTmy3L86wiRa9lxMB8GA1UdIwQYMBaAFDTX1tRBwy18hxQun+XH68T0ebDN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEYzNi8yNDlGNDE0NjdE MDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExYeUhGQzZmNWNmcnhQUjVz TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OZlcxRUhETFh5SEZDNmY1Y2ZyeFBSNXNNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEYzNi8yNDlGNDE0NjdEMDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExY eUhGQzZmNWNmcnhQUjVzTTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEqDQ9pMlgprBwfF3Mne8hkeuxCAXycNIN9Lnjhm2f6cKeCZAt3/Lu rOhD9FxP2cKk/fW+CksVkr88YQaSnTjuY9PAE4S6xYK9wkJNW55WZHvEZcNMx83d UdNpKbh7IFXBHeq0pG8W/1EkIJEFuAyMgzLH8A6rEh9qtqZtlRKd03UI8EEAc4TQ olY/2gdrCpL+ioew7zhJvrPxxQkzFqdoZEKA0s0miq1d0SyVp6vbA7CUTWX2kRaS scZ1OHHpMn/eCc3AmGIGUBjOzlOvs6W4iFLBUJYMDsck/8VCC9p9JARs384uLfqp Qqm4iCZQYUG8zDzw1yx+kSuKtEUDq0eb -----END CERTIFICATE-----Generated at Fri Aug 8 00:42:35 2025 by rpki-client