$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: 1eWIDqbfjrmG8RPAEhSm6bEFeWgCGrwlgMJWjWXlBYA= Subject key identifier: 13:A1:A6:1F:6F:36:E8:B9:80:41:F1:E1:3F:18:47:A3:AE:0C:0E:E8 Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 0196 Signing time: Sat 09 Aug 2025 03:49:14 +0000 Manifest this update: Sat 09 Aug 2025 03:49:14 +0000 Manifest next update: Sat 16 Aug 2025 03:49:14 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: jppWHFL6K3rQNg2dmcbqP4TmBjDFAF9xG2WT4lMwTgk=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: mBxiRWgEarnzYFat9Qg22lu2bbXA9CIcAcjVQbJnnic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Aug 9 03:49:14 2025 GMT Not After : Aug 16 03:49:14 2025 GMT Subject: CN=6896c53a-6dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:57:5e:2c:b7:86:86:71:19:33:05:0f:f7:23: 7a:6a:8d:f8:8d:5d:ed:96:da:45:1b:b0:8d:8f:ee: 02:76:30:04:9f:c9:de:62:78:d5:e4:b0:39:f8:b2: 1e:00:96:b9:02:49:be:cf:69:ad:c4:86:1d:b2:93: 21:e0:44:ad:27:25:ed:98:c1:da:15:86:d1:0b:c9: 6e:ab:7c:8d:3b:f9:d4:ff:a0:8f:57:45:0d:3f:5e: e7:df:73:a2:96:0d:ed:91:8b:b2:aa:ed:ba:94:02: 86:0b:8e:9b:91:11:30:c7:ca:0c:10:53:e1:15:1d: 57:63:f2:93:4c:cb:d7:f1:07:5e:ca:40:18:6a:cc: 0c:f3:d8:c7:e5:f0:06:aa:3f:83:3b:1f:78:49:93: 3f:5e:11:e6:e5:ee:21:83:d5:5e:48:df:f0:55:24: 6b:a6:e3:5a:25:bb:6a:60:8b:42:89:13:55:b2:8f: ed:35:a6:b3:ba:0c:9e:b3:6f:1a:3a:09:db:89:34: 04:a1:31:dc:c0:fd:b8:18:39:d9:b7:69:4d:31:0b: 88:8c:59:7f:2c:9c:b8:98:54:90:76:c0:1c:d8:94: be:19:6c:cd:e7:74:b8:75:87:5e:8d:b1:47:96:ea: 05:0b:a7:c1:37:1d:42:36:eb:26:bd:c2:97:e8:3b: e1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A1:A6:1F:6F:36:E8:B9:80:41:F1:E1:3F:18:47:A3:AE:0C:0E:E8 X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:ff:9f:b7:01:e6:80:91:8e:46:19:86:e5:6c:5b:a8:8e:87: 59:f1:05:44:d3:4c:47:4c:09:1e:c7:d5:c5:b7:6b:49:61:de: a7:a5:7e:1d:c7:4c:48:e2:66:f8:7c:6c:44:76:91:7d:dc:ec: eb:12:e6:a1:a1:d6:8d:da:72:fe:c9:6d:40:88:90:17:d6:1d: 25:bd:89:ea:a0:dc:05:5e:09:62:0c:64:c0:71:9c:e9:33:58: 8c:6d:77:67:b2:3e:4e:80:e7:2a:ea:da:cb:2a:71:5a:1e:90: b0:3f:32:eb:65:2f:8f:72:e6:fc:cc:77:b0:8d:e9:ba:fa:e0: 61:2a:14:5e:2d:11:ce:1b:80:9d:7d:c2:1a:bf:00:cf:be:2a: a7:0f:23:b5:56:a7:3f:05:21:ad:3a:2c:97:13:b0:43:1e:33: cf:39:14:96:18:b3:4a:39:27:31:ba:5b:c3:c0:26:79:3c:86: 5e:a3:f6:2f:99:83:76:20:9d:8c:86:86:53:95:50:e2:a7:31: 5e:79:1f:5d:82:2f:bc:76:92:ef:87:c0:2a:f2:5e:e4:73:d3: e2:c1:ec:69:fe:70:8c:45:80:b5:ca:6b:86:f7:a9:42:af:7d: ee:20:12:a9:ac:d4:28:b8:70:ee:87:1e:56:b6:79:d6:21:aa: a7:f8:6e:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjUwODA5MDM0OTE0WhcNMjUwODE2MDM0OTE0WjAYMRYwFAYD VQQDEw02ODk2YzUzYS02ZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1deLLeGhnEZMwUP9yN6ao34jV3tltpFG7CNj+4CdjAEn8neYnjV5LA5+LIe AJa5Akm+z2mtxIYdspMh4EStJyXtmMHaFYbRC8luq3yNO/nU/6CPV0UNP17n33Oi lg3tkYuyqu26lAKGC46bkREwx8oMEFPhFR1XY/KTTMvX8QdeykAYaswM89jH5fAG qj+DOx94SZM/XhHm5e4hg9VeSN/wVSRrpuNaJbtqYItCiRNVso/tNaazugyes28a OgnbiTQEoTHcwP24GDnZt2lNMQuIjFl/LJy4mFSQdsAc2JS+GWzN53S4dYdejbFH luoFC6fBNx1CNusmvcKX6DvhZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOhph9v Nui5gEHx4T8YR6OuDA7oMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi/5+3AeaAkY5GGYblbFuojodZ8QVE00xHTAkex9XFt2tJYd6npX4d x0xI4mb4fGxEdpF93OzrEuahodaN2nL+yW1AiJAX1h0lvYnqoNwFXgliDGTAcZzp M1iMbXdnsj5OgOcq6trLKnFaHpCwPzLrZS+Pcub8zHewjem6+uBhKhReLRHOG4Cd fcIavwDPviqnDyO1Vqc/BSGtOiyXE7BDHjPPORSWGLNKOScxulvDwCZ5PIZeo/Yv mYN2IJ2MhoZTlVDipzFeeR9dgi+8dpLvh8Aq8l7kc9Piwexp/nCMRYC1ymuG96lC r33uIBKprNQouHDuhx5WtnnWIaqn+G7P -----END CERTIFICATE-----Generated at Mon Aug 11 04:21:54 2025 by rpki-client