$ rpki-client -vvf rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft File: nL-xN0vpMpetwbIdvTeY0VvSdN8.mft (raw, json) Hash identifier: Cd3itIm6pEvRPPtrhh/DH9xJk4q5C8oeoVNKaVIEbqg= Subject key identifier: 02:46:04:7E:2C:1B:31:49:CF:AC:90:E9:37:9A:47:E9:7E:43:36:3C Authority key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF Certificate issuer: /CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Certificate serial: 0C6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft Manifest number: 0C67 Signing time: Fri 22 Aug 2025 18:33:38 +0000 Manifest this update: Fri 22 Aug 2025 18:33:37 +0000 Manifest next update: Fri 29 Aug 2025 18:33:37 +0000 Files and hashes: 1: nL-xN0vpMpetwbIdvTeY0VvSdN8.crl (hash: 6N/rdknqktCS6I0TcQrNp+DqSDhEso///6oIeJCcu0Q=) 2: E905CD5808F111EA8E4F1D51C4F9AE02.roa (hash: I2P5GKiYO+A0JWj3FCOtq5Wyspf+9wzs4i0nVaTxKFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3183 (0xc6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152696, serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Validity Not Before: Aug 22 18:33:37 2025 GMT Not After : Aug 29 18:33:37 2025 GMT Subject: CN=68a8b802-693b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fb:a5:06:ab:d8:e1:d8:9f:50:22:0c:f7:ca: 1b:3e:93:97:62:e2:a8:c0:36:bf:2e:7b:20:29:99: 2d:aa:6d:86:70:ae:32:7b:6e:61:cd:9a:87:0c:e5: 63:5c:69:b1:bb:e8:a8:47:92:38:f3:a3:c0:2e:f2: 7e:92:78:1e:88:9c:7c:f6:3b:f9:0d:0b:20:a4:07: af:6f:3b:3c:bf:5e:95:79:38:a3:4a:99:29:97:32: 09:a4:f8:5f:c2:b6:3f:5a:fb:09:d6:d3:ab:e2:4d: 48:38:b0:c6:4d:6c:40:5a:2a:0a:4f:de:00:a9:79: b7:2e:a7:7b:b1:05:34:e4:30:0b:fc:d0:06:9b:16: a1:bc:da:18:03:52:a8:f3:d6:c1:a6:88:03:e6:2a: 92:12:e1:1b:f0:b3:67:05:8e:d3:2a:9b:4b:c9:09: 85:0a:98:76:77:79:39:e0:b1:a8:de:44:02:c6:8f: 5d:82:98:13:49:3b:55:b2:14:da:f4:76:2d:96:b8: ba:45:d6:6b:ae:65:38:d1:d1:a8:ec:12:43:69:fa: 1c:3e:64:31:75:ac:04:42:d5:f9:bc:9a:e0:f4:e7: 1c:fd:d3:bd:7a:2c:3d:3f:01:f7:26:f6:ed:97:64: a8:ab:f4:93:db:d9:2f:06:ac:5c:28:63:d2:1e:cd: d6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:46:04:7E:2C:1B:31:49:CF:AC:90:E9:37:9A:47:E9:7E:43:36:3C X509v3 Authority Key Identifier: keyid:9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:9a:18:e6:92:f8:36:7d:1d:65:3f:e0:e5:ef:1a:7f:69:ec: 26:3d:e6:92:df:53:e8:cd:4f:fc:2f:22:a2:ab:e6:cd:01:f2: 94:f8:30:1d:de:5f:6d:79:3a:1f:a3:c4:ca:a0:e3:4a:13:4d: 4c:20:a9:74:5e:46:9e:91:0d:97:e8:10:5c:87:fa:ab:69:38: c9:0f:5e:6a:8c:a6:40:b0:af:40:89:74:fc:c4:60:32:78:f3: 86:5b:23:37:14:8a:79:2c:0f:0a:8e:4d:11:4f:50:1c:40:e5: 68:ba:d3:2d:3e:4c:3b:07:74:26:af:5d:19:72:aa:ea:ee:17: a5:ea:5e:aa:89:44:48:a4:d2:c5:a9:eb:1d:2f:52:54:68:eb: ae:4c:8f:4c:a8:76:e8:88:d6:b1:11:13:44:31:c7:39:41:12: e6:e0:cf:20:3f:1d:f1:29:5c:b0:e5:0c:47:86:6b:86:8a:77: dc:48:4b:bf:96:88:9b:1a:00:2c:3b:a4:e4:ce:a7:f9:77:9f: ef:e0:02:28:e3:be:4f:57:d4:af:42:27:94:44:f7:51:de:fb: ee:9c:55:97:68:cd:90:e4:9c:98:d5:6e:70:02:ad:3b:ea:89: 16:bc:ae:be:a8:e9:33:d2:03:c6:88:54:b6:cf:25:5f:84:7d: 23:08:82:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI2OTYxMTAvBgNVBAUTKDlDQkZCMTM3NEJFOTMyOTdBREMxQjIxREJEMzc5OEQx NUJEMjc0REYwHhcNMjUwODIyMTgzMzM3WhcNMjUwODI5MTgzMzM3WjAYMRYwFAYD VQQDEw02OGE4YjgwMi02OTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvulBqvY4difUCIM98obPpOXYuKowDa/LnsgKZktqm2GcK4ye25hzZqHDOVj XGmxu+ioR5I486PALvJ+kngeiJx89jv5DQsgpAevbzs8v16VeTijSpkplzIJpPhf wrY/WvsJ1tOr4k1IOLDGTWxAWioKT94AqXm3Lqd7sQU05DAL/NAGmxahvNoYA1Ko 89bBpogD5iqSEuEb8LNnBY7TKptLyQmFCph2d3k54LGo3kQCxo9dgpgTSTtVshTa 9HYtlri6RdZrrmU40dGo7BJDafocPmQxdawEQtX5vJrg9Occ/dO9eiw9PwH3Jvbt l2Soq/ST29kvBqxcKGPSHs3WFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJGBH4s GzFJz6yQ6TeaR+l+QzY8MB8GA1UdIwQYMBaAFJy/sTdL6TKXrcGyHb03mNFb0nTf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjY5Ni83MjVDQTFENDA2 Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1wZXR3YklkdlRlWTBWdlNk TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MLXhOMHZwTXBldHdiSWR2VGVZMFZ2U2ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjY5Ni83MjVDQTFENDA2Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1w ZXR3YklkdlRlWTBWdlNkTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGmhjmkvg2fR1lP+Dl7xp/aewmPeaS31PozU/8LyKiq+bNAfKU+DAd 3l9teTofo8TKoONKE01MIKl0XkaekQ2X6BBch/qraTjJD15qjKZAsK9AiXT8xGAy ePOGWyM3FIp5LA8Kjk0RT1AcQOVoutMtPkw7B3Qmr10Zcqrq7hel6l6qiURIpNLF qesdL1JUaOuuTI9MqHboiNaxERNEMcc5QRLm4M8gPx3xKVyw5QxHhmuGinfcSEu/ loibGgAsO6Tkzqf5d5/v4AIo475PV9SvQieURPdR3vvunFWXaM2Q5JyY1W5wAq07 6okWvK6+qOkz0gPGiFS2zyVfhH0jCIJh -----END CERTIFICATE-----Generated at Sat Aug 23 19:05:39 2025 by rpki-client