$ rpki-client -vvf rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft File: Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft (raw, json) Hash identifier: VnkvHpBrRVaXFhr0rvZGnJaL92SLtOuADvPDUiYvH44= Subject key identifier: D0:6D:06:38:3E:3C:EF:51:AE:F9:87:8C:07:C8:50:F7:4A:1D:AA:BC Authority key identifier: 36:0C:7C:7B:5C:6C:69:A9:06:9D:82:5B:F1:C7:0A:F2:08:DA:33:7B Certificate issuer: /CN=A9146251/serialNumber=360C7C7B5C6C69A9069D825BF1C70AF208DA337B Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ngx8e1xsaakGnYJb8ccK8gjaM3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft Manifest number: 6F Signing time: Sat 23 Aug 2025 07:09:17 +0000 Manifest this update: Sat 23 Aug 2025 07:09:16 +0000 Manifest next update: Sat 30 Aug 2025 07:09:16 +0000 Files and hashes: 1: Ngx8e1xsaakGnYJb8ccK8gjaM3s.crl (hash: v09qn2VYI8lRUW026gzIAJKik0FKJPA5E/AQVcGn7LM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.crl rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ngx8e1xsaakGnYJb8ccK8gjaM3s.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:09:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146251, serialNumber=360C7C7B5C6C69A9069D825BF1C70AF208DA337B Validity Not Before: Aug 23 07:09:16 2025 GMT Not After : Aug 30 07:09:16 2025 GMT Subject: CN=68a9691d-893e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3a:f6:c5:3b:6a:96:b0:b6:4b:c2:b8:f7:6b: 0a:00:10:43:be:4e:1a:46:11:9c:35:0a:83:7d:c5: 15:8a:53:c2:e1:93:cb:3c:fa:2c:79:79:d6:7e:39: 78:b0:2c:93:66:7b:de:6e:e3:79:61:a9:0a:b9:7e: 47:50:0c:6b:49:48:c7:f2:e9:81:b2:b0:0c:d3:db: fb:9c:4f:86:78:d9:94:0f:51:fa:b5:f7:6f:a8:d7: c4:83:38:28:83:cd:93:eb:b0:3c:c2:ff:b8:4d:de: 05:0a:6e:b0:7b:98:a1:6d:83:45:08:11:a5:d5:0f: 25:9f:76:70:ac:1b:3c:84:19:88:1b:76:61:c8:d4: 5c:9f:b9:95:61:e3:a5:33:55:ee:37:c3:be:dd:e9: a8:02:3d:26:0f:96:74:f6:79:8c:40:18:66:c6:4b: 05:f3:44:50:f9:98:8e:bb:47:49:21:b6:47:44:92: 59:7f:28:bf:7e:9b:03:0b:51:b9:a0:a7:39:0b:ca: 21:69:ec:05:11:4a:86:e6:44:4c:01:d0:67:26:da: 88:b2:a9:4e:2e:38:91:40:a3:66:ff:ad:f6:9a:26: d6:fe:6d:f0:5a:cb:8e:1e:1e:7e:3f:e7:40:be:fb: 28:67:ee:8e:c9:31:fb:38:80:91:5b:4e:55:63:aa: 9b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:6D:06:38:3E:3C:EF:51:AE:F9:87:8C:07:C8:50:F7:4A:1D:AA:BC X509v3 Authority Key Identifier: keyid:36:0C:7C:7B:5C:6C:69:A9:06:9D:82:5B:F1:C7:0A:F2:08:DA:33:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ngx8e1xsaakGnYJb8ccK8gjaM3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b8:96:ae:ad:5c:d6:0e:6c:41:a8:f6:df:d3:76:4b:9a:ed: c1:eb:cc:07:90:05:cb:6d:ae:b4:de:0b:66:1d:33:b9:3e:53: 99:67:bb:0d:14:37:84:19:b8:5f:15:5c:d3:72:71:96:72:13: 19:eb:cc:b4:d1:b8:1e:c4:89:a8:6d:71:37:ea:02:c8:c5:8c: fe:4b:be:5e:73:38:8d:da:9d:c0:4b:dc:a1:c4:42:80:82:e8: af:8f:a8:a3:23:3e:73:fa:1c:09:05:e0:4e:b6:54:42:e1:8b: 77:32:25:c8:6c:dc:61:a4:39:a5:1d:3a:4a:75:a9:17:80:8a: 2c:70:7d:fd:e3:54:3e:94:b6:d2:cb:02:0c:2c:41:31:c3:dd: ac:d1:59:6b:99:4f:f4:72:73:ed:e1:65:d1:92:4d:26:d3:37: cc:ef:f7:76:b0:9f:89:c4:b0:3b:82:f0:9b:14:7b:ea:f1:fc: 83:a8:92:dc:38:a7:12:43:42:87:d9:9e:8f:89:d8:e3:44:81: 8d:99:c9:b2:ef:ca:7d:5c:08:ad:d7:ed:20:50:29:a9:58:21: b3:d1:5b:b5:68:c7:c0:e6:bf:e2:7c:46:91:18:72:30:d2:b8: 3c:c5:a8:ae:02:d5:85:ba:da:5f:9b:52:7e:75:ef:f2:37:99: a1:e4:91:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjI1MTExMC8GA1UEBRMoMzYwQzdDN0I1QzZDNjlBOTA2OUQ4MjVCRjFDNzBBRjIw OERBMzM3QjAeFw0yNTA4MjMwNzA5MTZaFw0yNTA4MzAwNzA5MTZaMBgxFjAUBgNV BAMTDTY4YTk2OTFkLTg5M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZOvbFO2qWsLZLwrj3awoAEEO+ThpGEZw1CoN9xRWKU8Lhk8s8+ix5edZ+OXiw LJNme95u43lhqQq5fkdQDGtJSMfy6YGysAzT2/ucT4Z42ZQPUfq192+o18SDOCiD zZPrsDzC/7hN3gUKbrB7mKFtg0UIEaXVDyWfdnCsGzyEGYgbdmHI1FyfuZVh46Uz Ve43w77d6agCPSYPlnT2eYxAGGbGSwXzRFD5mI67R0khtkdEkll/KL9+mwMLUbmg pzkLyiFp7AURSobmREwB0Gcm2oiyqU4uOJFAo2b/rfaaJtb+bfBay44eHn4/50C+ +yhn7o7JMfs4gJFbTlVjqpuNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0G0GOD48 71Gu+YeMB8hQ90odqrwwHwYDVR0jBBgwFoAUNgx8e1xsaakGnYJb8ccK8gjaM3sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2MjUxLzBCMTZFQUE0RDg3 MTExRUY5OEMyNjA3NUM0RjlBRTAyL05neDhlMXhzYWFrR25ZSmI4Y2NLOGdqYU0z cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvTmd4OGUxeHNhYWtHbllKYjhjY0s4Z2phTTNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 MjUxLzBCMTZFQUE0RDg3MTExRUY5OEMyNjA3NUM0RjlBRTAyL05neDhlMXhzYWFr R25ZSmI4Y2NLOGdqYU0zcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFq4lq6tXNYObEGo9t/Tdkua7cHrzAeQBcttrrTeC2YdM7k+U5lnuw0U N4QZuF8VXNNycZZyExnrzLTRuB7EiahtcTfqAsjFjP5Lvl5zOI3ancBL3KHEQoCC 6K+PqKMjPnP6HAkF4E62VELhi3cyJchs3GGkOaUdOkp1qReAiixwff3jVD6UttLL AgwsQTHD3azRWWuZT/Ryc+3hZdGSTSbTN8zv93awn4nEsDuC8JsUe+rx/IOoktw4 pxJDQofZno+J2ONEgY2ZybLvyn1cCK3X7SBQKalYIbPRW7Vox8Dmv+J8RpEYcjDS uDzFqK4C1YW62l+bUn517/I3maHkkfo= -----END CERTIFICATE-----Generated at Sun Aug 24 08:28:19 2025 by rpki-client