$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: Zh4tGeEExOGljuYUoSXoqRhlanORRwSEJvTK20XnTRs= Subject key identifier: B8:EE:FA:DE:CE:2E:07:FE:05:B0:98:56:1A:D4:09:0D:E7:7C:F1:F9 Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0CAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0C9D Signing time: Fri 22 Aug 2025 18:22:16 +0000 Manifest this update: Fri 22 Aug 2025 18:22:15 +0000 Manifest next update: Fri 29 Aug 2025 18:22:15 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: bVjVpl/VObvPSZv+9fWgq2oOj7YXVMEX5yc/uWYolCU=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: OT1wU0R1qfUZlPrVStZHI9ZTJpnzI3jWvMhElEQPU9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3247 (0xcaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Aug 22 18:22:15 2025 GMT Not After : Aug 29 18:22:15 2025 GMT Subject: CN=68a8b557-cb9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:3f:35:e7:ba:f5:e2:c6:b9:7d:68:b1:e6: 13:a3:6f:b5:84:54:66:d4:2c:15:68:13:a6:d1:b2: 50:d9:c9:0e:4e:78:80:2e:04:f0:72:80:28:57:e8: 42:c5:9c:8c:3a:bf:38:4a:c5:f6:a4:a8:ed:30:d0: 7c:19:dc:56:ee:b7:2f:33:2a:49:55:62:86:fd:c5: 4f:30:91:b7:ca:6b:77:76:71:d7:df:a7:4a:cf:e9: aa:77:02:ed:2c:88:bf:4e:ba:dc:fc:49:04:5b:2f: 7b:00:0d:17:e2:d5:de:62:4a:d1:4f:25:85:31:4e: 6e:97:32:6e:19:01:2e:77:e7:7c:93:40:5f:24:a6: f2:11:91:44:a1:06:73:bd:0f:e9:54:52:74:cf:9e: 08:46:06:c0:5a:eb:b7:f3:26:30:e7:15:fb:59:23: 43:79:d3:c5:eb:41:58:7c:17:76:5c:a6:32:4c:47: d5:ef:ee:86:fd:c8:6f:d7:51:d9:48:af:98:32:e5: 2b:96:70:36:f8:26:e1:1c:43:a9:38:0a:f9:09:7b: 72:14:c3:58:29:47:2c:21:de:44:30:6f:72:84:d9: bd:17:49:6e:91:6c:39:af:fd:a3:0b:cf:cc:da:5a: b8:8f:b6:1f:c7:9a:74:50:dd:dc:ff:66:23:d4:3a: 28:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EE:FA:DE:CE:2E:07:FE:05:B0:98:56:1A:D4:09:0D:E7:7C:F1:F9 X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:59:d3:3d:c4:e3:2b:27:51:1f:92:1e:b0:8f:be:22:97:ee: 5a:ca:d6:b7:a5:89:d1:9c:1c:52:8c:05:8c:3d:69:cc:7b:37: 8c:6e:bf:ed:55:8a:89:05:f2:50:af:b2:c3:06:04:8b:07:c6: 60:f4:d8:d6:02:10:58:93:c0:83:34:19:ff:fa:c8:a5:5f:f8: ea:44:54:8d:fc:4a:ce:5a:5d:fb:88:cc:49:31:6b:3f:00:da: a1:e9:9f:40:d1:36:b1:af:7e:79:da:07:1a:a7:63:42:24:15: 0e:05:03:c3:8c:e6:28:f7:cc:cc:4b:b0:16:20:d7:31:e2:98: 97:29:8a:97:29:e4:95:e2:83:1c:9a:fa:e6:3e:30:93:e8:09: 6e:55:c1:85:5a:e7:4b:5d:2a:02:49:fa:2e:e6:b9:4f:08:37: 30:9c:ca:b8:66:9f:1e:8d:9b:a2:ec:b0:8d:63:73:c9:01:58: 49:a3:17:34:1e:1f:3e:bc:65:34:a0:2e:1e:0b:a0:85:19:0f: cb:ab:a1:c8:df:36:f6:74:67:a3:ad:62:41:c0:84:87:e5:ab: 12:68:ad:0c:69:66:ec:18:f6:0a:29:db:c0:62:de:f1:a1:db: 58:71:7f:47:39:f7:65:d9:0b:14:0b:39:c1:32:1b:bb:55:35: 3f:87:3d:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUwODIyMTgyMjE1WhcNMjUwODI5MTgyMjE1WjAYMRYwFAYD VQQDEw02OGE4YjU1Ny1jYjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw0/Nee69eLGuX1oseYTo2+1hFRm1CwVaBOm0bJQ2ckOTniALgTwcoAoV+hC xZyMOr84SsX2pKjtMNB8GdxW7rcvMypJVWKG/cVPMJG3ymt3dnHX36dKz+mqdwLt LIi/Trrc/EkEWy97AA0X4tXeYkrRTyWFMU5ulzJuGQEud+d8k0BfJKbyEZFEoQZz vQ/pVFJ0z54IRgbAWuu38yYw5xX7WSNDedPF60FYfBd2XKYyTEfV7+6G/chv11HZ SK+YMuUrlnA2+CbhHEOpOAr5CXtyFMNYKUcsId5EMG9yhNm9F0lukWw5r/2jC8/M 2lq4j7Yfx5p0UN3c/2Yj1DootQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLju+t7O Lgf+BbCYVhrUCQ3nfPH5MB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeWdM9xOMrJ1Efkh6wj74il+5ayta3pYnRnBxSjAWMPWnMezeMbr/t VYqJBfJQr7LDBgSLB8Zg9NjWAhBYk8CDNBn/+silX/jqRFSN/ErOWl37iMxJMWs/ ANqh6Z9A0Taxr3552gcap2NCJBUOBQPDjOYo98zMS7AWINcx4piXKYqXKeSV4oMc mvrmPjCT6AluVcGFWudLXSoCSfou5rlPCDcwnMq4Zp8ejZui7LCNY3PJAVhJoxc0 Hh8+vGU0oC4eC6CFGQ/Lq6HI3zb2dGejrWJBwISH5asSaK0MaWbsGPYKKdvAYt7x odtYcX9HOfdl2QsUCznBMhu7VTU/hz3Q -----END CERTIFICATE-----Generated at Sun Aug 24 00:42:44 2025 by rpki-client