$ rpki-client -vvf rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft File: nkKx9pFGDihG-nHwbcib8sdB25o.mft (raw, json) Hash identifier: VVQj1eQ88b1xupUOURn5MKe9WLgD9ZodC98ovcgv5eI= Subject key identifier: 3C:46:08:65:8E:9B:CA:62:EF:B0:99:98:AC:9F:2D:7E:29:F7:0C:7A Authority key identifier: 9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A Certificate issuer: /CN=A911BCDD/serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft Manifest number: 014B Signing time: Sat 23 Aug 2025 04:23:19 +0000 Manifest this update: Sat 23 Aug 2025 04:23:19 +0000 Manifest next update: Sat 30 Aug 2025 04:23:19 +0000 Files and hashes: 1: nkKx9pFGDihG-nHwbcib8sdB25o.crl (hash: kUbZCR6+fC4czzGsPUsFsAiVvLGU/SemQHPcBxLHQD0=) 2: 5ED417AE869011EEA9011A36C4F9AE02.roa (hash: secqQJuczQrOBoLhJh1bWX70I59NSlP/4Mk301elvvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BCDD, serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Validity Not Before: Aug 23 04:23:19 2025 GMT Not After : Aug 30 04:23:19 2025 GMT Subject: CN=68a94237-1a24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b9:08:9d:51:cc:01:6d:ba:21:91:d8:de:2c: e5:10:81:b3:f2:58:7e:87:f1:6a:8c:79:1a:ac:3c: a8:70:b5:82:58:65:b4:4a:56:5d:f3:cb:5e:d2:7f: 9f:ff:a6:6f:9b:a0:9e:93:61:3f:1a:db:71:31:be: d0:72:7e:c3:6e:d7:f5:37:e8:9e:09:a8:8b:76:39: c0:fd:3e:f1:0c:fb:8d:80:5e:82:28:c9:32:dc:1d: 2a:ca:10:a9:d8:1b:10:99:0a:4d:66:91:19:3c:11: 42:fa:b9:b0:34:38:3e:85:2f:34:0c:2d:54:00:c0: 9f:dd:58:fb:b5:60:0c:cd:f4:07:29:b9:d4:e3:29: 72:71:e4:13:c1:fe:95:70:59:7c:43:84:78:ac:26: 70:4c:9c:4c:c3:97:4a:dc:1a:8a:a9:1f:b0:4c:03: 1a:dc:ee:cd:af:0a:46:29:ed:9d:cc:12:25:01:ba: 51:88:19:cd:46:27:7e:fb:84:39:47:64:2f:ed:39: 41:7d:75:dd:73:2c:66:62:54:d7:60:11:3b:6b:5a: 3f:a5:d8:11:4c:ba:99:20:4c:9c:9a:7f:04:99:19: fa:5a:02:b1:00:df:33:0d:df:1f:78:bc:3c:4b:aa: 3c:4b:52:09:3f:4a:58:a7:2f:d0:6d:c1:cc:db:38: 4c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:46:08:65:8E:9B:CA:62:EF:B0:99:98:AC:9F:2D:7E:29:F7:0C:7A X509v3 Authority Key Identifier: keyid:9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:11:ae:31:1b:eb:da:f3:b2:19:8a:b8:d6:7a:3b:f8:9b:4f: bb:ac:10:11:76:5f:f9:16:bc:98:98:95:a4:c8:91:15:57:f6: 03:f5:6a:9c:73:dd:c0:d2:76:0d:20:08:a3:04:69:1c:7a:57: 5e:4f:c0:e4:5c:e6:b3:e8:86:00:e0:78:83:ca:79:33:a9:75: 4d:4d:7b:ce:e9:bc:b1:23:91:44:cf:94:3e:bc:08:27:0f:ea: aa:ad:ac:6e:92:9b:3a:20:0b:97:dc:75:44:0b:65:78:a0:73: 28:af:b6:32:3e:68:b4:aa:5c:12:25:3f:12:ed:59:be:76:60: 0a:a5:70:21:6a:d6:a1:70:4c:4c:7a:80:20:83:d7:65:16:b0: 2b:67:af:56:a2:75:69:18:cd:21:00:9c:13:41:d7:f6:ee:dc: 43:3c:d1:06:ab:3b:49:36:91:67:fe:37:3f:2f:73:b5:bb:6c: ef:11:3a:39:dc:c3:c2:80:fe:76:2b:7f:dd:40:79:8c:63:e8: d9:9a:07:67:c2:0a:ff:08:2e:5f:60:13:13:7e:6f:f5:4d:6d: 97:0e:4d:19:ca:a8:1b:28:41:de:8b:c2:3c:09:58:47:75:4c: 2d:8d:eb:9c:2a:77:5e:cd:13:d5:32:14:d3:c7:b8:8c:c2:b7: 2d:7b:1d:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDREQxMTAvBgNVBAUTKDlFNDJCMUY2OTE0NjBFMjg0NkZBNzFGMDZEQzg5QkYy Qzc0MURCOUEwHhcNMjUwODIzMDQyMzE5WhcNMjUwODMwMDQyMzE5WjAYMRYwFAYD VQQDEw02OGE5NDIzNy0xYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bkInVHMAW26IZHY3izlEIGz8lh+h/FqjHkarDyocLWCWGW0SlZd88te0n+f /6Zvm6Cek2E/GttxMb7Qcn7Dbtf1N+ieCaiLdjnA/T7xDPuNgF6CKMky3B0qyhCp 2BsQmQpNZpEZPBFC+rmwNDg+hS80DC1UAMCf3Vj7tWAMzfQHKbnU4ylyceQTwf6V cFl8Q4R4rCZwTJxMw5dK3BqKqR+wTAMa3O7NrwpGKe2dzBIlAbpRiBnNRid++4Q5 R2Qv7TlBfXXdcyxmYlTXYBE7a1o/pdgRTLqZIEycmn8EmRn6WgKxAN8zDd8feLw8 S6o8S1IJP0pYpy/QbcHM2zhMmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxGCGWO m8pi77CZmKyfLX4p9wx6MB8GA1UdIwQYMBaAFJ5CsfaRRg4oRvpx8G3Im/LHQdua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkNERC8zNDhBRDhBQzg2 MTMxMUVFQThDOTUwNDJDNEY5QUUwMi9ua0t4OXBGR0RpaEctbkh3YmNpYjhzZEIy NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25rS3g5cEZHRGloRy1uSHdiY2liOHNkQjI1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkNERC8zNDhBRDhBQzg2MTMxMUVFQThDOTUwNDJDNEY5QUUwMi9ua0t4OXBGR0Rp aEctbkh3YmNpYjhzZEIyNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDEa4xG+va87IZirjWejv4m0+7rBARdl/5FryYmJWkyJEVV/YD9Wqc c93A0nYNIAijBGkceldeT8DkXOaz6IYA4HiDynkzqXVNTXvO6byxI5FEz5Q+vAgn D+qqraxukps6IAuX3HVEC2V4oHMor7YyPmi0qlwSJT8S7Vm+dmAKpXAhatahcExM eoAgg9dlFrArZ69WonVpGM0hAJwTQdf27txDPNEGqztJNpFn/jc/L3O1u2zvETo5 3MPCgP52K3/dQHmMY+jZmgdnwgr/CC5fYBMTfm/1TW2XDk0ZyqgbKEHei8I8CVhH dUwtjeucKndezRPVMhTTx7iMwrctex3R -----END CERTIFICATE-----Generated at Sat Aug 23 16:31:20 2025 by rpki-client