$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: siTmPTkmRaaaSSx5EWVMLrJtCrnGQiDsxZKUBPAaPf4= Subject key identifier: A9:81:9B:A5:B6:C1:BB:8D:93:B9:57:EB:E5:C5:16:95:58:28:45:E2 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 06BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 06B8 Signing time: Fri 22 Aug 2025 22:16:43 +0000 Manifest this update: Fri 22 Aug 2025 22:16:43 +0000 Manifest next update: Fri 29 Aug 2025 22:16:43 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: 3e5bDNI9rybLiHlRDEz0YcYrwZs2VCt9qQQBn/KDS8A=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: zKqUOk2enQVo+KwTKKBvY1Ib1LdBjKOEZObmTpDLQzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Aug 22 22:16:43 2025 GMT Not After : Aug 29 22:16:43 2025 GMT Subject: CN=68a8ec4b-a60f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:44:32:6c:3b:50:a3:62:00:36:4d:59:36:6f: 28:d0:8d:3f:ed:78:90:b2:c2:ba:db:19:50:cf:df: 1c:c1:89:e7:45:4e:09:4c:9e:51:26:98:21:68:ae: 91:e3:d0:5c:66:c7:aa:18:14:2d:f2:39:67:0e:b5: b8:a3:7f:93:b0:23:33:01:cb:6f:e7:3a:6f:a9:7f: b0:fb:e4:cb:3d:2f:45:0c:5b:cb:15:ce:da:c2:0f: a0:65:13:c0:d7:d0:9c:6e:91:7d:61:46:b7:2a:11: 8c:27:9a:b6:ea:ec:07:d8:68:63:b9:e2:51:d6:72: 1d:da:3d:60:d5:0d:58:a7:90:81:14:0d:86:76:a4: ea:e3:e1:91:74:46:42:ab:6b:65:7a:81:40:e5:37: 3e:46:3b:68:74:08:ee:9f:69:cd:a4:57:25:95:23: 2d:3a:aa:e3:05:fa:86:b6:26:7f:86:74:50:02:c6: 64:ca:d2:7c:96:9a:4e:0d:68:77:3f:df:10:26:f9: ed:27:78:d5:39:37:b9:f5:d8:3f:51:87:4c:9b:a8: 39:81:ec:e5:0d:3a:da:08:93:02:ff:ea:bb:ca:59: d0:d0:38:92:6a:d0:c3:b1:a4:d1:06:15:dc:17:29: 06:7f:3c:1d:12:07:20:11:09:e8:2f:2e:87:84:74: fa:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:81:9B:A5:B6:C1:BB:8D:93:B9:57:EB:E5:C5:16:95:58:28:45:E2 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:77:49:70:02:f9:01:5b:93:37:54:75:ab:3f:6a:07:71:fb: fc:1a:aa:44:3a:54:99:64:b3:3d:06:65:32:9e:f4:19:2e:fa: 3d:5e:b6:dc:c6:73:ec:28:53:3d:4d:3d:4c:d8:38:29:92:cf: 67:01:2f:c6:3f:05:95:39:43:3e:25:b3:a1:43:b1:a2:ea:43: a9:aa:b8:30:42:b5:35:a9:61:a0:7e:27:a6:1e:fb:16:e0:2e: 17:d5:e1:8f:e6:15:3b:03:c0:f2:7b:7b:88:0d:8e:d7:6d:94: 2e:b8:a2:4d:77:71:13:15:9a:d9:bc:78:e8:f6:82:10:15:93: 33:5f:76:35:4c:c4:99:c0:d6:9a:2e:76:05:96:65:1a:9e:8f: ae:e0:a5:70:2f:73:9a:05:65:34:ee:e1:2c:67:ff:ff:ba:35: 11:f1:c5:4c:61:c4:b6:28:0a:03:2d:1b:e9:77:02:98:40:7f: 77:6b:ca:fd:3d:d7:37:c9:da:45:68:1a:e7:49:87:f5:b0:fa: 32:ad:98:f6:88:dc:ca:de:dd:e9:50:ba:9d:7c:32:cf:0a:53: fd:73:23:0a:42:15:23:f7:f5:d2:ec:0d:db:30:38:07:0d:01: 22:4e:19:57:bd:62:e4:aa:76:15:3e:7c:15:7e:13:f2:b9:d9: 5d:05:fb:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjUwODIyMjIxNjQzWhcNMjUwODI5MjIxNjQzWjAYMRYwFAYD VQQDEw02OGE4ZWM0Yi1hNjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6kQybDtQo2IANk1ZNm8o0I0/7XiQssK62xlQz98cwYnnRU4JTJ5RJpghaK6R 49BcZseqGBQt8jlnDrW4o3+TsCMzActv5zpvqX+w++TLPS9FDFvLFc7awg+gZRPA 19CcbpF9YUa3KhGMJ5q26uwH2GhjueJR1nId2j1g1Q1Yp5CBFA2GdqTq4+GRdEZC q2tleoFA5Tc+RjtodAjun2nNpFcllSMtOqrjBfqGtiZ/hnRQAsZkytJ8lppODWh3 P98QJvntJ3jVOTe59dg/UYdMm6g5gezlDTraCJMC/+q7ylnQ0DiSatDDsaTRBhXc FykGfzwdEgcgEQnoLy6HhHT60wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmBm6W2 wbuNk7lX6+XFFpVYKEXiMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGd0lwAvkBW5M3VHWrP2oHcfv8GqpEOlSZZLM9BmUynvQZLvo9Xrbc xnPsKFM9TT1M2Dgpks9nAS/GPwWVOUM+JbOhQ7Gi6kOpqrgwQrU1qWGgfiemHvsW 4C4X1eGP5hU7A8Dye3uIDY7XbZQuuKJNd3ETFZrZvHjo9oIQFZMzX3Y1TMSZwNaa LnYFlmUano+u4KVwL3OaBWU07uEsZ///ujUR8cVMYcS2KAoDLRvpdwKYQH93a8r9 Pdc3ydpFaBrnSYf1sPoyrZj2iNzK3t3pULqdfDLPClP9cyMKQhUj9/XS7A3bMDgH DQEiThlXvWLkqnYVPnwVfhPyudldBfvD -----END CERTIFICATE-----Generated at Sun Aug 24 03:04:57 2025 by rpki-client