$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft File: Nu6KQBMF6zjijYal2392KKq34k8.mft (raw, json) Hash identifier: 3rkNIxTyidS+FAOP5NwZ3WTBY3/YSqasEwZGdzMaWOc= Subject key identifier: 5F:F6:04:40:86:DD:9D:27:F3:7F:61:1F:9E:34:06:13:4C:CB:F9:0D Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 1134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft Manifest number: 10C8 Signing time: Fri 22 Aug 2025 17:26:43 +0000 Manifest this update: Fri 22 Aug 2025 17:26:42 +0000 Manifest next update: Fri 29 Aug 2025 17:26:42 +0000 Files and hashes: 1: Nu6KQBMF6zjijYal2392KKq34k8.crl (hash: zRewT4dlUbkh5s+Mlk10fuTmx//kwIvg+gLm3GM8cjw=) 2: 264DBA882E9411E9A7232A19C4F9AE02.roa (hash: R1CUbIu0V+HE4f06nI4AoF8weg5+WJaRb7OLoB74u3o=) 3: 8F5856362E9511E9896EFA1DC4F9AE02.roa (hash: JSG6xv2uqNAgwOpDXcHQxv8WbhIpG22unWVbGkO466o=) 4: 53DFF8EC2E9111E999636910C4F9AE02.roa (hash: 6mj2ePigEKlPzc3f7+eTQsUuSCZHP+3UsHzZtRH/e3g=) 5: 8CD1AEC62E9511E9896EFA1DC4F9AE02.roa (hash: AQJjv8c1H+P8QI0s3FB/4mPX+TV6GerHGXja71yYLBo=) 6: 52685F222E9111E999636910C4F9AE02.roa (hash: tnJuonmKS/V0uoywfbn8ky35GlWjycjl3empqFomJY8=) 7: 8DFDF8AE2E9511E9896EFA1DC4F9AE02.roa (hash: fajAFqylWikP3Jikl5nRrG0DTxFJf4fODLkvijKh8uw=) 8: 81CBCECA0BFF11EE9AE0F676C4F9AE02.roa (hash: /vrezSo6RJ5dq1cFDK2anelkL8dBqwcaNrTPSxP8eN8=) 9: 5870952EC53011EA98D1D651C4F9AE02.roa (hash: aDxTmBiu7r/Tn9jcjNLK8UcWaXq5NN3ow+MDjn+I+ck=) 10: 8D76CA462E9511E9896EFA1DC4F9AE02.roa (hash: MmpvHOBJX6/TYN9r3lrc9Z7dr+vQVfQyHD+RNXiHs1I=) 11: 8EA288F62E9511E9896EFA1DC4F9AE02.roa (hash: S5sgxNBi0p+O5VGwcCA6mYFpVmBWw6J0mLdcaJC7l/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:26:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4404 (0x1134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: Aug 22 17:26:42 2025 GMT Not After : Aug 29 17:26:42 2025 GMT Subject: CN=68a8a852-6ab0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f0:3b:f5:89:4c:0a:b9:db:1d:e0:d0:2f:d9: 21:3e:f6:0e:8c:f6:6b:90:ba:65:40:0f:b1:6b:d4: ad:2d:6a:d5:b6:11:95:86:7c:6b:47:1e:bc:cd:bb: 1d:71:26:dc:91:c2:37:d5:46:b2:c4:21:37:5d:9e: d2:57:4d:41:e5:e1:a1:7e:3f:c0:44:d2:76:86:07: 22:a9:16:b7:10:80:84:a6:f9:f8:94:84:51:fc:98: 98:08:f0:20:40:4b:fc:a9:22:7d:7e:33:53:46:22: c9:71:35:71:e8:12:86:18:78:c8:87:3a:87:ee:56: 44:91:68:4c:ed:21:0e:e5:7e:42:e9:69:09:0d:50: 35:c5:97:85:e0:a9:02:c6:f5:8f:ce:e6:52:3b:a8: 04:29:8e:1c:8c:e7:53:26:0a:ea:83:d4:a9:3b:c3: 0a:c4:6c:72:95:08:de:7b:a1:a0:e0:8a:3b:fe:a0: e6:53:19:6a:60:7c:f1:7f:3b:34:7f:86:87:85:99: 06:c0:88:3f:53:cb:f4:95:c6:f7:aa:81:8c:db:c7: 38:6c:87:c3:bf:0d:98:e7:22:0a:d6:6c:ae:b5:8d: fe:8e:98:50:3f:99:e2:83:3b:4d:f4:ce:b9:bb:db: 9c:b2:bb:e2:f3:6d:44:08:7e:ff:e5:dc:50:11:81: ff:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F6:04:40:86:DD:9D:27:F3:7F:61:1F:9E:34:06:13:4C:CB:F9:0D X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:70:4a:eb:32:42:f6:0d:1f:dc:eb:e8:2c:89:06:8f:5e:76: ab:72:4e:e6:bc:8d:7a:95:a0:6e:dd:85:ab:e4:fa:f6:97:bd: 6d:57:a2:37:86:e7:22:3c:e0:e6:45:f4:f1:a2:89:44:d2:b7: 1a:f7:04:34:9d:42:eb:f9:3e:76:f7:49:28:d3:2e:98:80:72: 2c:23:c0:2b:5d:94:1b:7a:e6:c5:a1:87:7e:3c:d0:d1:26:30: 21:1b:d1:89:c6:e5:c3:90:65:b4:a0:4c:0f:21:64:dd:75:f2: ff:57:e6:ad:52:e8:c4:68:c9:3c:d0:e7:07:d2:98:61:97:e2: f7:88:1c:7a:03:8f:86:16:e8:f9:ee:b3:94:9f:74:12:28:3b: ef:33:76:1f:63:f7:c8:59:aa:82:de:8b:96:e0:ea:1f:b0:e9: ab:6b:79:34:f3:89:e1:44:45:43:c0:eb:15:d7:f7:c6:72:2a: 56:3c:19:9b:d3:a0:44:73:bb:be:b7:af:08:ca:9f:55:7d:d2: e8:b5:be:2f:bb:54:85:57:f5:d9:c9:85:3b:62:e7:65:3b:0c: 32:57:f6:7e:1d:e7:e1:b9:a9:53:8c:94:89:5c:af:0a:4b:07: a3:3a:92:29:31:e3:b1:b5:f7:e2:f6:fc:d3:ee:8c:c8:30:7c: 42:77:be:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICETQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwODIyMTcyNjQyWhcNMjUwODI5MTcyNjQyWjAYMRYwFAYD VQQDEw02OGE4YTg1Mi02YWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfA79YlMCrnbHeDQL9khPvYOjPZrkLplQA+xa9StLWrVthGVhnxrRx68zbsd cSbckcI31UayxCE3XZ7SV01B5eGhfj/ARNJ2hgciqRa3EICEpvn4lIRR/JiYCPAg QEv8qSJ9fjNTRiLJcTVx6BKGGHjIhzqH7lZEkWhM7SEO5X5C6WkJDVA1xZeF4KkC xvWPzuZSO6gEKY4cjOdTJgrqg9SpO8MKxGxylQjee6Gg4Io7/qDmUxlqYHzxfzs0 f4aHhZkGwIg/U8v0lcb3qoGM28c4bIfDvw2Y5yIK1myutY3+jphQP5nigztN9M65 u9ucsrvi821ECH7/5dxQEYH/qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/2BECG 3Z0n839hH540BhNMy/kNMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlCQy84OTI4OTczMDJFOTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6 amlqWWFsMjM5MktLcTM0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdcErrMkL2DR/c6+gsiQaPXnarck7mvI16laBu3YWr5Pr2l71tV6I3 huciPODmRfTxoolE0rca9wQ0nULr+T5290ko0y6YgHIsI8ArXZQbeubFoYd+PNDR JjAhG9GJxuXDkGW0oEwPIWTddfL/V+atUujEaMk80OcH0phhl+L3iBx6A4+GFuj5 7rOUn3QSKDvvM3YfY/fIWaqC3ouW4OofsOmra3k084nhREVDwOsV1/fGcipWPBmb 06BEc7u+t68Iyp9VfdLotb4vu1SFV/XZyYU7YudlOwwyV/Z+HefhualTjJSJXK8K SwejOpIpMeOxtffi9vzT7ozIMHxCd75g -----END CERTIFICATE-----Generated at Sat Aug 23 22:27:34 2025 by rpki-client