$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft File: NkbrHzcLfmPR823rNsJHbJbmuug.mft (raw, json) Hash identifier: a4UWqSTy5kiJt4w9r/tKIIZFRTJNETcfr3SBPUQJ1vU= Subject key identifier: BB:CF:FD:A5:2E:DB:D2:8C:FE:7E:A2:5E:A0:B7:BB:7E:20:C4:7F:63 Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 02FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft Manifest number: 02F3 Signing time: Sat 23 Aug 2025 01:32:01 +0000 Manifest this update: Sat 23 Aug 2025 01:32:00 +0000 Manifest next update: Sat 30 Aug 2025 01:32:00 +0000 Files and hashes: 1: NkbrHzcLfmPR823rNsJHbJbmuug.crl (hash: 8OXnZWOyd5d3KevsvMUUR1hCa+DcmT1dGt7qtsPYPMI=) 2: 627A6758DF2A11EEBC440C5EC4F9AE02.roa (hash: q/TcJaaAitP3rzneDoOcxqjjnobWifgs1ChVJEG3jdI=) 3: F3B00CD2666C11EEB1B4711CC4F9AE02.roa (hash: NLX9iBQc5qpA5HiI79qnyQxZYjEiAaFpUSGQqEwDv14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5, serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: Aug 23 01:32:00 2025 GMT Not After : Aug 30 01:32:00 2025 GMT Subject: CN=68a91a10-6020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:86:81:d0:7c:77:67:5f:2f:73:f0:86:05:c8: 31:28:08:69:59:f8:80:78:a2:5f:b1:8d:ce:8c:f2: f4:c5:db:7a:eb:97:db:03:15:ba:ae:83:95:54:ab: 74:8b:5e:d6:94:53:b0:6b:23:0c:79:bf:a4:af:8e: bd:b9:08:93:c9:15:a4:0a:ae:da:a2:91:01:98:e0: 92:3d:8b:2e:fa:67:71:11:07:f1:38:58:4c:7f:bd: ce:3b:86:e3:11:33:0d:fd:06:80:0d:03:6d:5c:ed: 6e:7c:45:21:e0:46:e9:04:0d:78:86:41:45:b4:a2: 3c:49:57:71:bd:0c:0f:b1:8c:58:5d:fa:fa:2c:2e: 3b:06:97:aa:12:4f:d3:59:cc:71:16:2d:2a:a8:99: d2:a4:e3:6b:fb:25:2a:0f:62:9b:35:81:c7:81:8a: 46:83:c8:99:2f:ec:92:80:d3:23:53:bb:08:93:73: ed:12:fb:14:a1:26:0d:6f:56:e3:9b:d6:3f:5c:8e: 78:a1:3a:8e:f2:db:53:59:37:30:06:31:2f:eb:1c: 76:8c:68:75:dc:95:83:ee:af:9f:84:9c:5a:ea:2d: b9:a5:bf:60:eb:60:26:01:08:80:a2:e0:b1:2a:ba: 8d:b4:a1:8f:dd:ea:55:3f:39:45:30:bc:fe:cb:9e: ff:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:CF:FD:A5:2E:DB:D2:8C:FE:7E:A2:5E:A0:B7:BB:7E:20:C4:7F:63 X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:00:18:cb:39:58:2b:d8:6b:10:f8:9a:5a:2f:37:e9:64:46: 50:0f:e8:c6:fc:3d:75:e6:ca:2e:32:7f:cd:cd:a9:ec:d9:e9: b6:28:0a:31:38:fb:4a:04:c8:3c:3f:e5:31:db:ec:10:e0:4f: ea:3f:4a:19:57:cb:30:e2:ee:9a:e5:7a:b9:2b:8e:86:ca:fe: 78:82:f1:db:07:56:9c:07:73:f6:2b:2b:1c:aa:dd:69:77:f4: 5c:59:d8:f4:52:c8:36:a1:7c:e0:af:b8:ae:d9:7f:91:a4:f9: d9:1f:63:45:d5:80:3d:bd:45:2a:69:d4:03:89:5d:76:9c:4d: 42:98:4b:a1:1f:c5:02:71:02:c9:7e:aa:d1:01:48:2d:c1:79: 0b:4e:bc:ba:59:cf:cd:ef:25:79:3f:f0:33:a6:42:7b:26:89: ef:1a:b1:9c:76:b2:c6:3c:32:41:26:ba:7a:57:52:2a:94:ce: 54:8b:3b:f2:f2:f0:16:48:cd:8e:1d:e4:96:94:94:38:56:3e: 05:6c:ab:f4:40:e6:56:9f:70:f0:48:4f:34:5a:ed:f8:82:5c: 98:fc:19:8a:bc:35:9a:55:db:34:d6:8d:92:58:81:90:5e:f5: 43:1b:9d:12:0f:3e:79:81:dd:77:c4:f8:53:50:a9:e5:74:0f: 7d:11:d0:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjUwODIzMDEzMjAwWhcNMjUwODMwMDEzMjAwWjAYMRYwFAYD VQQDEw02OGE5MWExMC02MDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oaB0Hx3Z18vc/CGBcgxKAhpWfiAeKJfsY3OjPL0xdt665fbAxW6roOVVKt0 i17WlFOwayMMeb+kr469uQiTyRWkCq7aopEBmOCSPYsu+mdxEQfxOFhMf73OO4bj ETMN/QaADQNtXO1ufEUh4EbpBA14hkFFtKI8SVdxvQwPsYxYXfr6LC47BpeqEk/T WcxxFi0qqJnSpONr+yUqD2KbNYHHgYpGg8iZL+ySgNMjU7sIk3PtEvsUoSYNb1bj m9Y/XI54oTqO8ttTWTcwBjEv6xx2jGh13JWD7q+fhJxa6i25pb9g62AmAQiAouCx KrqNtKGP3epVPzlFMLz+y57/kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvP/aUu 29KM/n6iXqC3u34gxH9jMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0JFNS82MTFDNTEyQ0YwRjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZt UFI4MjNyTnNKSGJKYm11dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4ABjLOVgr2GsQ+JpaLzfpZEZQD+jG/D115souMn/Nzans2em2KAox OPtKBMg8P+Ux2+wQ4E/qP0oZV8sw4u6a5Xq5K46Gyv54gvHbB1acB3P2Kyscqt1p d/RcWdj0Usg2oXzgr7iu2X+RpPnZH2NF1YA9vUUqadQDiV12nE1CmEuhH8UCcQLJ fqrRAUgtwXkLTry6Wc/N7yV5P/AzpkJ7JonvGrGcdrLGPDJBJrp6V1IqlM5Uizvy 8vAWSM2OHeSWlJQ4Vj4FbKv0QOZWn3DwSE80Wu34glyY/BmKvDWaVds01o2SWIGQ XvVDG50SDz55gd13xPhTUKnldA99EdC0 -----END CERTIFICATE-----Generated at Sat Aug 23 16:35:26 2025 by rpki-client