$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: hpVi5POT27VxWamsgl7ZknKLpBgyF8git8iHGmfMvqw= Subject key identifier: 8E:A9:F5:E0:EA:EE:E8:92:63:25:4F:25:5F:59:74:81:E9:BD:85:1F Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2B99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2B85 Signing time: Fri 22 Aug 2025 14:25:59 +0000 Manifest this update: Fri 22 Aug 2025 14:25:58 +0000 Manifest next update: Fri 29 Aug 2025 14:25:58 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: 9G7x3HyEjS2vrSk2hKyzooMOlUi25NL2bcOL+zRjbTk=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: cs/JN2roMF9559frpHSU57kLMdZZdt/kq/+fgPXNaTg=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: kOKMH7bC+n+8o1xcllbA3RXGetoc8aW0IIWJBu8P/uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11161 (0x2b99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Aug 22 14:25:58 2025 GMT Not After : Aug 29 14:25:58 2025 GMT Subject: CN=68a87df7-7808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:45:9a:36:e8:65:b9:32:49:29:0f:2b:a7:a1: 8a:9f:d5:04:cf:26:96:d7:d6:57:a7:c7:c1:5e:80: 1c:e6:9f:71:61:34:ad:cb:1e:cf:b0:50:2f:44:07: df:42:98:92:ff:d2:eb:59:7a:00:81:4b:26:14:1c: 79:c0:ec:e6:1d:ef:2d:ef:ae:33:9a:2e:1c:0f:fc: 3d:e6:ac:99:66:e2:32:63:cf:20:43:64:5b:0d:0a: 77:2b:ad:4c:08:61:ad:b2:db:0a:c9:62:a5:b3:47: c1:0e:67:c9:17:09:84:07:a7:f1:6c:c7:18:2a:88: a8:a7:f7:f4:91:c7:11:d6:7f:a1:a1:b2:5e:f9:84: dc:f9:cf:02:d6:12:85:0c:f3:c6:b1:36:f1:39:a6: 5f:2c:69:ac:df:65:87:ee:9f:bd:10:66:78:6e:a9: bc:52:84:fb:f8:ca:ed:a6:2e:b4:81:ff:d7:2e:11: 81:a0:53:b9:ae:dd:99:f6:8f:57:fe:69:8c:70:c2: d2:43:ce:84:ec:51:7c:d3:dd:09:4d:cd:fe:55:a2: 2d:83:05:3e:1c:40:63:a3:64:5c:b7:63:0a:69:b7: de:85:5e:22:14:84:f1:31:8e:b4:10:16:ee:11:6a: 9d:55:c4:0a:fa:c7:49:13:75:9e:4d:11:a5:d0:3f: 8b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A9:F5:E0:EA:EE:E8:92:63:25:4F:25:5F:59:74:81:E9:BD:85:1F X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:41:f8:ab:5d:b1:f0:38:31:f4:19:70:bb:17:d3:45:5c:35: 7c:a3:9f:8d:7e:40:01:3e:30:98:e1:88:57:50:19:6a:61:de: 54:b0:25:bf:38:57:b4:5c:ac:c8:a8:57:21:69:a8:10:f6:90: 94:2d:ee:e9:84:68:e4:eb:16:b5:75:c9:60:e8:4a:a5:1b:77: d7:cb:45:a0:ac:65:41:d9:2c:12:fb:47:da:2a:7b:02:1c:10: 47:4e:15:d6:10:e4:3b:6a:ce:80:7b:71:97:11:3b:74:6e:dd: 91:bc:02:a3:49:3a:dd:79:4c:82:56:8c:ac:15:8c:20:7f:ea: 32:c5:e7:53:24:ed:67:e7:66:e8:eb:64:e1:29:8f:2e:ef:fd: 3b:2d:7e:a8:b7:cb:70:06:74:b1:29:17:f8:0a:71:6c:cc:c1: 4b:51:09:7e:45:97:0b:c7:7f:2f:35:dd:0c:9f:2e:17:85:c7: f8:75:d4:b6:32:df:aa:3e:91:da:5e:98:e6:c4:af:ad:48:47: 32:9d:b9:53:b0:c6:f9:1f:60:48:67:d9:df:d1:ce:a6:b8:7a: c3:b0:08:31:96:77:5e:55:6e:63:19:43:fa:c1:67:90:a5:3a: 78:fb:e1:19:dd:b7:26:01:30:8b:b4:3b:86:32:98:88:7a:9b: 18:96:5a:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUwODIyMTQyNTU4WhcNMjUwODI5MTQyNTU4WjAYMRYwFAYD VQQDEw02OGE4N2RmNy03ODA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EWaNuhluTJJKQ8rp6GKn9UEzyaW19ZXp8fBXoAc5p9xYTStyx7PsFAvRAff QpiS/9LrWXoAgUsmFBx5wOzmHe8t764zmi4cD/w95qyZZuIyY88gQ2RbDQp3K61M CGGtstsKyWKls0fBDmfJFwmEB6fxbMcYKoiop/f0kccR1n+hobJe+YTc+c8C1hKF DPPGsTbxOaZfLGms32WH7p+9EGZ4bqm8UoT7+Mrtpi60gf/XLhGBoFO5rt2Z9o9X /mmMcMLSQ86E7FF8090JTc3+VaItgwU+HEBjo2Rct2MKabfehV4iFITxMY60EBbu EWqdVcQK+sdJE3WeTRGl0D+L9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6p9eDq 7uiSYyVPJV9ZdIHpvYUfMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8QfirXbHwODH0GXC7F9NFXDV8o5+NfkABPjCY4YhXUBlqYd5UsCW/ OFe0XKzIqFchaagQ9pCULe7phGjk6xa1dclg6EqlG3fXy0WgrGVB2SwS+0faKnsC HBBHThXWEOQ7as6Ae3GXETt0bt2RvAKjSTrdeUyCVoysFYwgf+oyxedTJO1n52bo 62ThKY8u7/07LX6ot8twBnSxKRf4CnFszMFLUQl+RZcLx38vNd0Mny4Xhcf4ddS2 Mt+qPpHaXpjmxK+tSEcynblTsMb5H2BIZ9nf0c6muHrDsAgxlndeVW5jGUP6wWeQ pTp4++EZ3bcmATCLtDuGMpiIepsYllpw -----END CERTIFICATE-----Generated at Sat Aug 23 10:56:18 2025 by rpki-client