$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft File: nb0ycj1x0bhWzIRJBDf78NpVJWo.mft (raw, json) Hash identifier: 5VXrmkSD14uP6Dy+GDOYy3egqVtz7q00WvXpHbGM0Us= Subject key identifier: D1:A6:EB:E0:0E:29:50:78:AB:8D:B8:91:B5:6A:A9:E8:62:66:B8:A6 Authority key identifier: 9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A Certificate issuer: /CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Certificate serial: 0F69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft Manifest number: 0F62 Signing time: Fri 22 Aug 2025 17:41:37 +0000 Manifest this update: Fri 22 Aug 2025 17:41:36 +0000 Manifest next update: Fri 29 Aug 2025 17:41:36 +0000 Files and hashes: 1: nb0ycj1x0bhWzIRJBDf78NpVJWo.crl (hash: L/7IcSDYL7xexM43JMGtdStcVlighGDtFZjHFvN1+QU=) 2: B0DA9FC46FDD11E9BC194664C4F9AE02.roa (hash: Hb9hkw/JGVDNL3WRZDBLo8Md0h4gCqoVhQUhIQUyimQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3945 (0xf69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B41, serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Validity Not Before: Aug 22 17:41:36 2025 GMT Not After : Aug 29 17:41:36 2025 GMT Subject: CN=68a8abd0-3bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:37:d1:bc:cf:b0:0f:23:96:44:60:2d:71:8c: 87:e2:86:92:a2:81:11:ef:6e:1f:c1:3b:a4:a7:a5: f6:59:f6:bc:de:98:6f:95:4b:16:b3:2f:05:3e:4a: b4:6f:43:c0:af:6e:4a:7b:3e:3a:70:d9:d6:14:f1: 6e:a3:bf:e9:67:e8:fb:fb:ca:0d:32:b4:ab:91:6a: f9:9f:38:bc:4a:bb:a0:8e:22:77:cf:5e:00:4c:1d: f5:6a:69:c1:96:42:4b:51:88:71:9f:55:7c:11:22: 62:e8:ed:c1:39:ec:d8:c5:0c:11:60:cc:4d:cc:49: 0f:89:86:82:09:c3:dd:93:4a:68:fa:16:cc:eb:f5: 50:15:96:e5:47:1d:6f:c1:32:f1:ae:c3:f4:23:4c: d4:5c:b5:de:8d:d2:28:7c:b8:59:c1:6a:20:71:a5: a9:9f:9b:46:fc:28:8a:64:df:6e:d3:e1:9d:5d:2c: 78:5b:b8:f2:9a:fe:2a:a2:ce:92:a6:00:d8:74:02: e1:fb:b1:c2:f3:6a:84:c2:a2:b3:f7:e9:1e:fa:4d: 40:9e:b2:0b:05:1c:66:11:9b:f3:c6:0c:9e:e0:de: 01:63:f2:87:19:e3:db:c4:c0:a7:1c:fe:f7:86:03: 2c:1f:07:32:8d:ee:a7:c5:4f:88:5b:d2:dd:1a:96: 28:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A6:EB:E0:0E:29:50:78:AB:8D:B8:91:B5:6A:A9:E8:62:66:B8:A6 X509v3 Authority Key Identifier: keyid:9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:85:70:54:6d:bf:28:24:3b:c6:29:c7:4e:a5:e0:ae:6d:19: 3a:b3:d1:a9:5e:90:3a:3e:0e:88:45:e3:9f:82:5e:35:b0:69: 42:dd:21:d4:a2:f6:a6:c8:00:75:24:bc:07:fd:b0:20:9c:1f: 9b:03:24:d2:40:9b:90:a6:f0:fd:12:f9:51:40:36:96:e8:40: 8f:a8:b8:cb:4a:82:01:d3:b0:3e:4f:d4:ab:ce:01:d2:6e:82: a4:21:0e:21:cf:2f:5b:91:cc:d5:cf:4f:dd:79:4c:4b:85:e5: 13:c7:d9:32:26:12:28:aa:e7:0f:75:0d:a3:5d:cd:56:48:f6: ac:55:43:f6:45:bc:d4:7e:db:4c:1a:1d:46:45:16:ca:63:f3: 38:e7:4d:db:85:74:f3:e5:05:00:aa:c1:bb:d5:96:da:69:22: ee:24:b0:02:3c:45:cc:d1:59:7c:e3:9b:65:ef:08:18:b2:d3: 23:41:27:67:94:aa:3f:dd:79:e2:68:36:09:c2:bb:4a:36:96: 20:5d:6a:25:3f:be:fb:11:20:39:33:6e:bb:ab:1f:e2:36:29: ec:9e:06:0f:73:0c:bd:73:d3:c5:87:57:a0:15:28:45:fa:9e: bd:02:e0:03:a8:38:8f:af:d0:24:76:66:32:f4:45:0c:5b:f9: 03:88:d3:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCNDExMTAvBgNVBAUTKDlEQkQzMjcyM0Q3MUQxQjg1NkNDODQ0OTA0MzdGQkYw REE1NTI1NkEwHhcNMjUwODIyMTc0MTM2WhcNMjUwODI5MTc0MTM2WjAYMRYwFAYD VQQDEw02OGE4YWJkMC0zYmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6TfRvM+wDyOWRGAtcYyH4oaSooER724fwTukp6X2Wfa83phvlUsWsy8FPkq0 b0PAr25Kez46cNnWFPFuo7/pZ+j7+8oNMrSrkWr5nzi8SrugjiJ3z14ATB31amnB lkJLUYhxn1V8ESJi6O3BOezYxQwRYMxNzEkPiYaCCcPdk0po+hbM6/VQFZblRx1v wTLxrsP0I0zUXLXejdIofLhZwWogcaWpn5tG/CiKZN9u0+GdXSx4W7jymv4qos6S pgDYdALh+7HC82qEwqKz9+ke+k1AnrILBRxmEZvzxgye4N4BY/KHGePbxMCnHP73 hgMsHwcyje6nxU+IW9LdGpYoOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGm6+AO KVB4q424kbVqqehiZrimMB8GA1UdIwQYMBaAFJ29MnI9cdG4VsyESQQ3+/DaVSVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUI0MS8zM0QyNTMxNjZG REIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBiaFd6SVJKQkRmNzhOcFZK V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iMHljajF4MGJoV3pJUkpCRGY3OE5wVkpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUI0MS8zM0QyNTMxNjZGREIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBi aFd6SVJKQkRmNzhOcFZKV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAthXBUbb8oJDvGKcdOpeCubRk6s9GpXpA6Pg6IReOfgl41sGlC3SHU ovamyAB1JLwH/bAgnB+bAyTSQJuQpvD9EvlRQDaW6ECPqLjLSoIB07A+T9SrzgHS boKkIQ4hzy9bkczVz0/deUxLheUTx9kyJhIoqucPdQ2jXc1WSPasVUP2RbzUfttM Gh1GRRbKY/M4503bhXTz5QUAqsG71ZbaaSLuJLACPEXM0Vl845tl7wgYstMjQSdn lKo/3XniaDYJwrtKNpYgXWolP777ESA5M267qx/iNinsngYPcwy9c9PFh1egFShF +p69AuADqDiPr9AkdmYy9EUMW/kDiNOd -----END CERTIFICATE-----Generated at Sat Aug 23 23:56:07 2025 by rpki-client