$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: NqYq60wzTKks2WTM9u3zff+UMT0QoNJCeHcfMhQXbxc= Subject key identifier: CC:71:82:3A:42:17:DC:3E:C4:30:FE:D2:C8:EB:CE:42:2D:CD:50:10 Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 055C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 0557 Signing time: Fri 22 Aug 2025 23:35:08 +0000 Manifest this update: Fri 22 Aug 2025 23:35:08 +0000 Manifest next update: Fri 29 Aug 2025 23:35:08 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: 5YZVrZzvW+H1Pv6doDfEEd84VF1nBdTCaU47M9LYfRg=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: Y4KIW6waXy9by1Ft4XI4IDDdWRGAFQ3T1gtKYgu91qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1372 (0x55c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Aug 22 23:35:08 2025 GMT Not After : Aug 29 23:35:08 2025 GMT Subject: CN=68a8feac-3421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:47:e7:48:da:b4:21:ba:a4:89:86:da:ec:9c: c2:cc:fe:5f:7b:29:4a:97:a0:f6:b0:05:d1:c5:4e: 53:fc:3e:e3:35:06:dc:84:f9:c5:37:67:e8:4c:c1: 1c:87:80:b2:da:fa:8f:53:b9:f4:99:e1:a3:c9:43: 38:be:f6:ad:17:81:68:b0:49:51:25:90:05:a7:f3: df:2c:fc:59:d2:9e:3a:03:67:4b:8c:bd:58:d8:a3: 6d:cf:1c:d8:f2:f1:ae:cc:27:dd:18:7e:83:c8:8c: db:21:8a:47:61:05:1f:51:c9:cd:e1:f0:32:6e:21: 8d:b3:33:14:6a:8a:17:ef:71:0c:e4:d7:23:15:5b: 0e:9f:16:92:a6:53:25:75:72:e3:93:b6:91:23:3e: af:14:47:f2:72:a7:ec:00:5d:af:dc:93:76:23:01: 8f:10:cf:50:d2:f0:30:b5:be:13:4f:40:3b:2b:9f: 72:1d:72:2b:fb:53:83:a0:f8:bf:84:bb:23:90:40: c1:83:1d:d7:cb:08:87:b8:58:09:88:e0:24:e4:fe: b8:26:8f:df:9f:9e:04:5e:11:bf:04:28:a5:f2:0e: 1c:8b:53:2f:44:dd:22:e7:b6:6c:f3:9c:f3:54:50: 39:c3:ab:13:73:04:d1:c8:13:76:e5:bc:66:a1:12: c8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:71:82:3A:42:17:DC:3E:C4:30:FE:D2:C8:EB:CE:42:2D:CD:50:10 X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:f6:64:48:76:c2:8f:62:df:03:2c:37:4b:d4:25:7a:e3:1b: d1:b6:d1:61:43:5a:09:19:2f:2f:21:50:e3:47:2a:8b:26:02: 3a:34:5f:73:4a:a0:99:49:6d:39:1b:af:1c:81:14:8f:90:b1: 8d:82:2f:16:18:5f:9e:ae:87:1b:61:12:16:2b:46:fc:02:e0: 82:59:db:58:9e:c2:e1:1f:0a:b9:79:77:d9:eb:ed:53:eb:35: b2:71:f8:f6:2a:ca:6e:75:64:8a:0e:83:fa:7e:6e:fa:9a:d5: 25:f4:93:ef:14:5f:84:a0:73:22:50:9e:1f:0c:6a:8a:b4:56: de:b4:d5:1b:3f:b5:77:a1:3a:65:4f:16:72:52:6a:eb:81:cf: c6:6d:6a:21:15:51:39:3b:d6:75:d4:f8:47:c2:e1:21:f8:9c: 66:2b:9d:10:9e:24:06:78:07:16:db:a6:88:7c:f2:4c:d3:7a: 93:fa:4b:43:c7:a0:a2:60:30:04:71:9e:2f:98:f0:3e:0e:5e: 5c:84:37:f4:39:ba:12:9a:f1:4d:e5:fa:24:a3:f7:e8:75:fb: d7:1c:c8:4b:46:93:4f:87:37:00:e5:56:d7:e9:e7:7f:f7:85: 93:09:99:a0:bb:8b:52:86:46:66:a8:e7:ec:27:b5:3b:8e:a6: 58:c8:07:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjUwODIyMjMzNTA4WhcNMjUwODI5MjMzNTA4WjAYMRYwFAYD VQQDEw02OGE4ZmVhYy0zNDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0fnSNq0IbqkiYba7JzCzP5feylKl6D2sAXRxU5T/D7jNQbchPnFN2foTMEc h4Cy2vqPU7n0meGjyUM4vvatF4FosElRJZAFp/PfLPxZ0p46A2dLjL1Y2KNtzxzY 8vGuzCfdGH6DyIzbIYpHYQUfUcnN4fAybiGNszMUaooX73EM5NcjFVsOnxaSplMl dXLjk7aRIz6vFEfycqfsAF2v3JN2IwGPEM9Q0vAwtb4TT0A7K59yHXIr+1ODoPi/ hLsjkEDBgx3XywiHuFgJiOAk5P64Jo/fn54EXhG/BCil8g4ci1MvRN0i57Zs85zz VFA5w6sTcwTRyBN25bxmoRLIYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxxgjpC F9w+xDD+0sjrzkItzVAQMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv9mRIdsKPYt8DLDdL1CV64xvRttFhQ1oJGS8vIVDjRyqLJgI6NF9z SqCZSW05G68cgRSPkLGNgi8WGF+erocbYRIWK0b8AuCCWdtYnsLhHwq5eXfZ6+1T 6zWycfj2KspudWSKDoP6fm76mtUl9JPvFF+EoHMiUJ4fDGqKtFbetNUbP7V3oTpl TxZyUmrrgc/GbWohFVE5O9Z11PhHwuEh+JxmK50QniQGeAcW26aIfPJM03qT+ktD x6CiYDAEcZ4vmPA+Dl5chDf0OboSmvFN5foko/fodfvXHMhLRpNPhzcA5VbX6ed/ 94WTCZmgu4tShkZmqOfsJ7U7jqZYyAdI -----END CERTIFICATE-----Generated at Sat Aug 23 19:32:59 2025 by rpki-client