$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json) Hash identifier: b1LhdAdwDKi8fVYEQlUO/yLPr5SAvw03oYlk2VpyJC4= Subject key identifier: 4F:93:94:1D:E2:D6:B8:90:06:4D:67:1E:36:17:09:A4:B6:86:66:D4 Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft Manifest number: 1F9D Signing time: Fri 22 Aug 2025 16:07:38 +0000 Manifest this update: Fri 22 Aug 2025 16:07:38 +0000 Manifest next update: Fri 29 Aug 2025 16:07:38 +0000 Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: uyStcG0nA8+84leLsBCyoGQvPVyG0EqciLNKVYaNPw8=) 2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: oRm2blLyiJS/QAfKc6f3YExIUJkkRHUJrPUQp9W2Q+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA, serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: Aug 22 16:07:38 2025 GMT Not After : Aug 29 16:07:38 2025 GMT Subject: CN=68a895ca-8430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:52:6d:3c:3f:c3:6f:16:1a:0d:23:26:0a:7f: 23:3e:b8:d8:25:ed:fe:56:c2:f9:2b:4d:d2:7f:e3: c5:fe:90:ae:af:41:41:fc:ca:8e:42:41:0a:3e:f7: 9d:58:1a:8c:af:b0:8e:12:23:57:2c:6c:9a:cb:0c: d8:8c:e2:82:06:a7:51:00:e3:70:b1:bc:79:3f:46: 92:84:7f:a6:64:fe:38:81:ed:3c:ab:f6:b7:56:5d: 84:ee:8f:1a:3b:94:43:cf:43:a4:bb:c3:f1:d5:a5: 55:2f:9f:63:ff:7a:1d:22:21:19:a2:d4:6b:1f:23: 54:e9:5f:01:3e:62:31:1a:a6:00:71:22:99:bd:8b: 4a:10:8f:f6:90:b8:8a:50:42:6f:a2:2b:e1:2f:26: 74:a0:e9:11:c5:b9:68:86:2d:02:9d:e2:a8:5b:9f: 14:a5:db:51:0e:57:d6:ab:4f:dc:89:df:dc:7b:94: 80:d7:3c:e8:d9:c5:3a:2a:24:c3:eb:91:eb:3c:1d: 60:62:bc:6d:a5:c6:97:80:fe:bd:9b:b7:d0:3c:d5: 4c:57:d8:45:8b:37:a4:11:e0:92:2f:90:2d:32:2b: ea:d8:da:f1:af:28:37:d9:22:26:8a:5f:cf:2f:d4: 05:0b:25:8f:18:0c:b1:4b:e8:e2:86:19:90:06:10: 7d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:93:94:1D:E2:D6:B8:90:06:4D:67:1E:36:17:09:A4:B6:86:66:D4 X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:54:d0:51:94:e0:b9:5f:11:1f:31:f9:17:1c:9e:d1:be:f8: f6:dd:f6:b4:08:1e:54:57:ba:77:03:56:a2:fc:7d:c7:ec:59: 3d:9a:d0:c0:9f:17:2d:70:33:86:14:8b:a6:4b:20:60:c6:96: dd:94:21:5c:54:89:0f:cb:5f:f5:6b:33:9d:98:d4:56:de:bf: e3:cf:8c:40:47:4c:a5:7d:7c:a5:97:bd:72:d6:b7:06:33:01: 93:34:9d:2b:56:0d:5a:21:c3:4f:d9:cf:dc:35:c3:7a:dc:78: ca:51:49:94:c9:65:a7:8b:a0:72:37:af:f3:7f:25:84:c2:d6: 54:29:96:5e:e2:d5:58:e9:00:53:53:62:2a:7c:4c:fe:24:6f: 13:fc:7f:2d:c3:75:f5:64:dc:34:46:2e:65:77:7e:a9:f0:4f: 05:01:72:46:4d:9e:82:c0:a2:20:1d:50:65:e4:6b:9e:0b:30: dc:3c:ca:d4:03:a3:ac:d5:d5:80:b3:d1:96:3b:bc:5a:66:e4: d7:a9:01:d8:b9:69:f2:83:52:0e:b9:03:4a:c7:78:04:01:5b: 45:a7:b6:28:95:c0:8e:0e:dd:9c:41:7c:0d:7b:be:bd:9d:8f: 28:e8:a6:b9:88:6a:e2:22:6d:e6:a6:73:3c:ef:60:73:50:b1: bb:ac:0a:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjUwODIyMTYwNzM4WhcNMjUwODI5MTYwNzM4WjAYMRYwFAYD VQQDEw02OGE4OTVjYS04NDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVJtPD/DbxYaDSMmCn8jPrjYJe3+VsL5K03Sf+PF/pCur0FB/MqOQkEKPved WBqMr7COEiNXLGyaywzYjOKCBqdRAONwsbx5P0aShH+mZP44ge08q/a3Vl2E7o8a O5RDz0Oku8Px1aVVL59j/3odIiEZotRrHyNU6V8BPmIxGqYAcSKZvYtKEI/2kLiK UEJvoivhLyZ0oOkRxblohi0CneKoW58UpdtRDlfWq0/cid/ce5SA1zzo2cU6KiTD 65HrPB1gYrxtpcaXgP69m7fQPNVMV9hFizekEeCSL5AtMivq2Nrxryg32SImil/P L9QFCyWPGAyxS+jihhmQBhB96wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+TlB3i 1riQBk1nHjYXCaS2hmbUMB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj Z3lqRkM2ME83dHpabnk1UEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+VNBRlOC5XxEfMfkXHJ7Rvvj23fa0CB5UV7p3A1ai/H3H7Fk9mtDA nxctcDOGFIumSyBgxpbdlCFcVIkPy1/1azOdmNRW3r/jz4xAR0ylfXyll71y1rcG MwGTNJ0rVg1aIcNP2c/cNcN63HjKUUmUyWWni6ByN6/zfyWEwtZUKZZe4tVY6QBT U2IqfEz+JG8T/H8tw3X1ZNw0Ri5ld36p8E8FAXJGTZ6CwKIgHVBl5GueCzDcPMrU A6Os1dWAs9GWO7xaZuTXqQHYuWnyg1IOuQNKx3gEAVtFp7YolcCODt2cQXwNe769 nY8o6Ka5iGriIm3mpnM872BzULG7rApl -----END CERTIFICATE-----Generated at Sun Aug 24 03:34:36 2025 by rpki-client