$ rpki-client -vvf rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft File: nTQUKDsie49RLzBfKs20PN6eTRI.mft (raw, json) Hash identifier: YRCoukkI6iDys+M89QFgSEzHObTYo08zW74LyHk8Zpo= Subject key identifier: 93:42:55:51:BC:AE:2C:D9:B4:32:07:5D:88:2F:E8:F8:0D:D0:0F:B8 Authority key identifier: 9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 Certificate issuer: /CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft Manifest number: 0160 Signing time: Sat 23 Aug 2025 04:35:09 +0000 Manifest this update: Sat 23 Aug 2025 04:35:08 +0000 Manifest next update: Sat 30 Aug 2025 04:35:08 +0000 Files and hashes: 1: nTQUKDsie49RLzBfKs20PN6eTRI.crl (hash: 6gnkdvzwb/SCKeZslxlkZRwbcrHy6PD+CUkrRdK8QX4=) 2: 31C9441E68ED11F0BA447B41C4F9AE02.roa (hash: KOUKQ6BoYe+OZvts9QDaZtXw/6SYWRIeerxskHjMAvw=) 3: CA364B681A1711F0A1D93523C4F9AE02.roa (hash: H7vVzWCwUc4gHrSDyxvt/Abb/5bSd+LGYG3bv6YBZ6Q=) 4: 908E69B20D4311F0B83AB36BC4F9AE02.roa (hash: T3LJotaESWHFF09iX5g1WTlmIxWJcjLGAaC0q00LC9A=) 5: EDAA86E4AD6D11EE83DA6253C4F9AE02.roa (hash: lAFnFIzcRDVgDsSYcjZRPgQLtWezbOK+1/I57oP5hYQ=) 6: 3C880EBABEEF11EF9178186BC4F9AE02.roa (hash: iJAvuEQuZJZzuKlMozj/voZPn9Nd6pZK++lpcpudEMw=) 7: C75B642268F211EFB7A6A06EC4F9AE02.roa (hash: kOYdujebZuJtzPQYq/KrU4LAvGLUwAviwH7iInIzQIw=) 8: 551036FCF1CA11EFA1495230C4F9AE02.roa (hash: g1HOTpLTf3sk5gSzo54dPs52/QkaTA4XgGi9Wow0trs=) 9: EC985F92AD6D11EE83DA6253C4F9AE02.roa (hash: w8uUD+FE/qLP77HxuP2e7CVi5lI4nhNhSCuDldSdTWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ED2C, serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Validity Not Before: Aug 23 04:35:08 2025 GMT Not After : Aug 30 04:35:08 2025 GMT Subject: CN=68a944fd-9f1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:37:b2:3b:08:4e:97:0c:e6:bf:db:cc:d4:90: 59:ab:6a:fd:f6:28:0b:f0:c5:d6:1f:dd:ca:66:18: 3d:80:54:db:9d:09:3d:04:0a:d6:98:e8:aa:7c:ab: f3:b6:34:5a:78:e1:ee:ca:d4:ee:03:c8:47:dd:9c: 31:99:39:42:b9:d8:55:a1:c0:cc:6b:bc:27:e3:c0: f3:2f:e5:42:94:19:95:45:5f:1d:2d:25:8d:6e:ed: d5:99:17:d2:d9:50:d0:07:2e:e1:e6:ba:61:23:3b: a4:c6:57:47:e0:42:05:d3:d2:91:22:29:1b:bc:24: 1a:b6:ed:0f:b7:68:1a:4b:1b:62:b3:95:88:54:67: 67:01:0a:f5:12:d5:e2:37:d2:3d:1b:3b:1f:e3:71: c8:fc:fb:1a:8e:05:fd:02:f4:3b:eb:66:46:71:66: 8e:a1:3e:b9:f2:9f:bc:d7:ed:fc:e6:51:c5:76:3e: d3:fc:51:85:ff:8c:49:3a:09:ba:9a:21:b9:1c:ab: 63:4e:4f:61:63:15:4f:84:5f:2a:58:bf:b7:64:a3: 23:f5:68:f9:b6:86:31:23:51:00:50:f3:22:16:aa: 12:70:f8:47:53:92:b1:fd:34:d4:ca:73:ec:e9:83: db:1b:8f:70:a1:51:bc:5d:f3:87:80:8c:13:78:16: 51:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:42:55:51:BC:AE:2C:D9:B4:32:07:5D:88:2F:E8:F8:0D:D0:0F:B8 X509v3 Authority Key Identifier: keyid:9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:a5:11:13:c3:c2:7b:6d:72:d2:98:08:91:8b:c8:82:8d:01: dc:b3:c3:93:05:9b:50:88:0f:90:f6:37:29:db:41:1e:38:6e: 6c:da:b5:08:6c:94:06:4b:dd:0d:25:87:d7:08:a0:34:39:9c: d2:6b:5c:58:12:32:63:98:5b:13:ca:1b:98:79:e3:9b:3c:98: fe:ad:6d:55:27:62:83:fa:9c:10:81:7c:b4:88:aa:d7:66:c7: b7:1e:4c:ac:e9:e6:1d:01:a6:45:03:6a:a3:c9:42:a7:7f:ea: c1:60:77:c7:6f:c0:fd:6b:26:f8:23:91:56:14:91:e9:76:77: 48:ee:a0:0d:6a:86:36:43:13:47:02:a6:1e:e1:70:95:e7:a1: 78:ef:1f:88:87:16:31:30:a7:b3:be:d2:25:83:6d:10:da:88: ed:cf:84:23:7c:b9:c7:45:19:8b:cb:38:fb:0f:88:7e:95:c6: 58:68:47:c0:be:b6:fc:f7:fb:80:1c:27:e2:cf:20:c3:ba:16: 05:0a:e3:92:37:46:ec:31:79:4f:3d:dc:38:39:f6:58:bc:f8: f4:ec:ef:f3:18:22:c0:47:6a:3a:b9:16:a1:c3:cc:67:0e:58: 62:4f:93:6d:b0:7a:e9:9f:2e:1c:23:25:81:f6:c7:c0:93:63: 76:d0:4e:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVEMkMxMTAvBgNVBAUTKDlEMzQxNDI4M0IyMjdCOEY1MTJGMzA1RjJBQ0RCNDND REU5RTREMTIwHhcNMjUwODIzMDQzNTA4WhcNMjUwODMwMDQzNTA4WjAYMRYwFAYD VQQDEw02OGE5NDRmZC05ZjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzeyOwhOlwzmv9vM1JBZq2r99igL8MXWH93KZhg9gFTbnQk9BArWmOiqfKvz tjRaeOHuytTuA8hH3ZwxmTlCudhVocDMa7wn48DzL+VClBmVRV8dLSWNbu3VmRfS 2VDQBy7h5rphIzukxldH4EIF09KRIikbvCQatu0Pt2gaSxtis5WIVGdnAQr1EtXi N9I9Gzsf43HI/PsajgX9AvQ762ZGcWaOoT658p+81+385lHFdj7T/FGF/4xJOgm6 miG5HKtjTk9hYxVPhF8qWL+3ZKMj9Wj5toYxI1EAUPMiFqoScPhHU5Kx/TTUynPs 6YPbG49woVG8XfOHgIwTeBZR4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNCVVG8 rizZtDIHXYgv6PgN0A+4MB8GA1UdIwQYMBaAFJ00FCg7InuPUS8wXyrNtDzenk0S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUQyQy8wMDM3M0M2QzlC QkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0OVJMekJmS3MyMFBONmVU UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUVVLRHNpZTQ5Ukx6QmZLczIwUE42ZVRSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUQyQy8wMDM3M0M2QzlCQkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0 OVJMekJmS3MyMFBONmVUUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhpRETw8J7bXLSmAiRi8iCjQHcs8OTBZtQiA+Q9jcp20EeOG5s2rUI bJQGS90NJYfXCKA0OZzSa1xYEjJjmFsTyhuYeeObPJj+rW1VJ2KD+pwQgXy0iKrX Zse3Hkys6eYdAaZFA2qjyUKnf+rBYHfHb8D9ayb4I5FWFJHpdndI7qANaoY2QxNH AqYe4XCV56F47x+IhxYxMKezvtIlg20Q2ojtz4QjfLnHRRmLyzj7D4h+lcZYaEfA vrb89/uAHCfizyDDuhYFCuOSN0bsMXlPPdw4OfZYvPj07O/zGCLAR2o6uRahw8xn DlhiT5NtsHrpny4cIyWB9sfAk2N20E5C -----END CERTIFICATE-----Generated at Sat Aug 23 19:26:14 2025 by rpki-client