$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft File: Nu6KQBMF6zjijYal2392KKq34k8.mft (raw, json) Hash identifier: QTxtKR+C/SPSuPN+XcWiS3D7Q8s3NLFgI70NLjMzH0g= Subject key identifier: AD:BB:55:A1:4D:2F:AB:DD:ED:7F:96:E3:87:CE:0B:82:89:E2:8C:94 Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 111A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft Manifest number: 10AE Signing time: Wed 02 Jul 2025 17:31:58 +0000 Manifest this update: Wed 02 Jul 2025 17:31:57 +0000 Manifest next update: Wed 09 Jul 2025 17:31:57 +0000 Files and hashes: 1: Nu6KQBMF6zjijYal2392KKq34k8.crl (hash: miQ4UVFUmTKnUg24J9/WsQ30FadlJwi1hhHsFJIRQIs=) 2: 264DBA882E9411E9A7232A19C4F9AE02.roa (hash: R1CUbIu0V+HE4f06nI4AoF8weg5+WJaRb7OLoB74u3o=) 3: 8F5856362E9511E9896EFA1DC4F9AE02.roa (hash: JSG6xv2uqNAgwOpDXcHQxv8WbhIpG22unWVbGkO466o=) 4: 53DFF8EC2E9111E999636910C4F9AE02.roa (hash: 6mj2ePigEKlPzc3f7+eTQsUuSCZHP+3UsHzZtRH/e3g=) 5: 8CD1AEC62E9511E9896EFA1DC4F9AE02.roa (hash: AQJjv8c1H+P8QI0s3FB/4mPX+TV6GerHGXja71yYLBo=) 6: 52685F222E9111E999636910C4F9AE02.roa (hash: tnJuonmKS/V0uoywfbn8ky35GlWjycjl3empqFomJY8=) 7: 8DFDF8AE2E9511E9896EFA1DC4F9AE02.roa (hash: fajAFqylWikP3Jikl5nRrG0DTxFJf4fODLkvijKh8uw=) 8: 81CBCECA0BFF11EE9AE0F676C4F9AE02.roa (hash: /vrezSo6RJ5dq1cFDK2anelkL8dBqwcaNrTPSxP8eN8=) 9: 5870952EC53011EA98D1D651C4F9AE02.roa (hash: aDxTmBiu7r/Tn9jcjNLK8UcWaXq5NN3ow+MDjn+I+ck=) 10: 8D76CA462E9511E9896EFA1DC4F9AE02.roa (hash: MmpvHOBJX6/TYN9r3lrc9Z7dr+vQVfQyHD+RNXiHs1I=) 11: 8EA288F62E9511E9896EFA1DC4F9AE02.roa (hash: S5sgxNBi0p+O5VGwcCA6mYFpVmBWw6J0mLdcaJC7l/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4378 (0x111a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: Jul 2 17:31:57 2025 GMT Not After : Jul 9 17:31:57 2025 GMT Subject: CN=68656d0e-1c94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a4:37:ef:f0:b9:b4:f2:bc:5e:f5:6c:9f:c9: ad:66:a6:19:46:47:af:74:ac:29:b6:e4:3a:64:d9: 56:ad:59:09:77:b2:5a:4b:e0:b0:63:74:58:30:1f: c8:0c:a1:a8:9c:43:67:a1:bf:97:1c:57:fa:7e:64: bc:af:27:c3:9d:c0:ee:8c:df:b7:63:4c:13:d3:02: ae:a2:49:af:c6:51:2c:aa:16:bb:a1:bf:70:1e:94: f8:0a:82:27:9a:eb:d8:f4:99:80:ed:78:67:ad:b2: 95:af:a1:6c:28:34:2f:28:19:57:2c:8d:2a:ca:63: b7:72:1a:f0:b7:62:d8:01:53:58:5d:e2:d2:1c:48: 42:31:00:e3:a5:66:18:2a:08:d1:30:d7:29:6d:21: a9:0b:20:94:77:07:be:0a:a4:45:38:7b:30:71:7d: 3d:42:99:6e:11:ba:95:62:d3:66:fa:17:7b:86:93: 83:2b:fc:d0:98:97:93:3f:a9:7a:90:32:60:76:cf: a7:58:e9:bb:1e:5f:60:02:42:a3:2d:87:59:0c:76: 16:b6:7d:14:3e:8a:f0:a9:47:2f:07:ed:f8:ed:42: fe:4a:33:a7:ba:95:1b:0f:88:25:e1:65:7f:31:64: b6:c0:88:c0:de:7e:e1:5a:31:0f:6b:e1:ce:22:58: 3f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:BB:55:A1:4D:2F:AB:DD:ED:7F:96:E3:87:CE:0B:82:89:E2:8C:94 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:da:d2:f2:0d:db:e4:21:80:cf:d7:4a:62:b1:49:b7:b5:c2: b7:04:32:0b:e5:cc:0b:2a:16:cf:3b:8e:fa:c6:21:47:af:55: 89:0b:a1:1d:1a:b6:9a:dd:a7:11:0c:91:95:97:25:4f:f1:bf: ed:cb:49:91:08:b8:13:db:12:79:4b:f7:65:32:e5:d3:13:88: b5:05:dd:fe:b5:98:75:81:24:94:53:04:4d:c7:21:93:5f:8d: ab:c1:03:87:b6:59:5e:3e:45:8e:4f:b6:26:7c:5f:41:5e:52: 46:84:2a:3e:5e:f3:f9:2a:75:33:1c:c1:67:59:2f:2e:3c:c5: ce:a6:c0:5e:f2:b3:5e:53:ee:91:53:cc:3a:bb:04:ba:63:a7: 76:39:ef:0f:c7:27:5e:fd:91:9f:58:dc:68:b3:46:bb:de:82: 0b:11:1e:8a:b9:a0:eb:2f:18:ad:ca:30:aa:df:bb:3c:e8:39: f0:43:bb:10:42:b4:3a:10:ca:73:1c:dc:c5:a3:cc:0e:55:c4: 70:a1:db:42:1c:6c:96:ac:b9:81:e9:95:1a:03:8c:08:d4:52: 57:c7:d6:9d:5f:a4:85:28:c8:92:3a:33:1c:7a:4d:03:78:3c: 20:cc:07:45:e9:74:ad:10:be:89:b8:e0:a1:5f:c0:b4:e8:94: 67:1f:5b:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwNzAyMTczMTU3WhcNMjUwNzA5MTczMTU3WjAYMRYwFAYD VQQDEw02ODY1NmQwZS0xYzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqQ37/C5tPK8XvVsn8mtZqYZRkevdKwptuQ6ZNlWrVkJd7JaS+CwY3RYMB/I DKGonENnob+XHFf6fmS8ryfDncDujN+3Y0wT0wKuokmvxlEsqha7ob9wHpT4CoIn muvY9JmA7XhnrbKVr6FsKDQvKBlXLI0qymO3chrwt2LYAVNYXeLSHEhCMQDjpWYY KgjRMNcpbSGpCyCUdwe+CqRFOHswcX09QpluEbqVYtNm+hd7hpODK/zQmJeTP6l6 kDJgds+nWOm7Hl9gAkKjLYdZDHYWtn0UPorwqUcvB+347UL+SjOnupUbD4gl4WV/ MWS2wIjA3n7hWjEPa+HOIlg/3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK27VaFN L6vd7X+W44fOC4KJ4oyUMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlCQy84OTI4OTczMDJFOTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6 amlqWWFsMjM5MktLcTM0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB02tLyDdvkIYDP10pisUm3tcK3BDIL5cwLKhbPO476xiFHr1WJC6Ed Graa3acRDJGVlyVP8b/ty0mRCLgT2xJ5S/dlMuXTE4i1Bd3+tZh1gSSUUwRNxyGT X42rwQOHtllePkWOT7YmfF9BXlJGhCo+XvP5KnUzHMFnWS8uPMXOpsBe8rNeU+6R U8w6uwS6Y6d2Oe8Pxyde/ZGfWNxos0a73oILER6KuaDrLxityjCq37s86DnwQ7sQ QrQ6EMpzHNzFo8wOVcRwodtCHGyWrLmB6ZUaA4wI1FJXx9adX6SFKMiSOjMcek0D eDwgzAdF6XStEL6JuOChX8C06JRnH1uy -----END CERTIFICATE-----Generated at Fri Jul 4 01:40:45 2025 by rpki-client