$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft File: n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft (raw, json) Hash identifier: fHNmGlZJRWS7Mi4+s/ghcWQpxgC9AqNyZt7xakHe4Pk= Subject key identifier: 95:62:C4:5B:0D:4E:2C:07:79:70:C8:9A:48:4C:D8:C8:EA:00:1D:09 Authority key identifier: 9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB Certificate issuer: /CN=A917D958/serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft Manifest number: 89 Signing time: Sat 23 Aug 2025 06:51:58 +0000 Manifest this update: Sat 23 Aug 2025 06:51:58 +0000 Manifest next update: Sat 30 Aug 2025 06:51:57 +0000 Files and hashes: 1: n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl (hash: yRS6ub3nDqYwnMBfjOmXzu8DjBT+kzIj6Wl1c85HyVU=) 2: 0AC8BB74B5E211EFBEF4BC5AC4F9AE02.roa (hash: oV9dv3enUEk5QI7ZEWYNcHlwdjoeFV6bdPfVFfihoSE=) 3: 0A581522B5E211EFBEF4BC5AC4F9AE02.roa (hash: PxzOBVWe5yWGLa4iNAyNqYyPaQ/eMXGqSREN7aFVLso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Validity Not Before: Aug 23 06:51:58 2025 GMT Not After : Aug 30 06:51:57 2025 GMT Subject: CN=68a9650e-28cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2c:c5:5c:47:0b:9f:aa:f6:e3:21:f8:e7:d3: e0:34:47:48:f5:b0:a6:2d:fe:cc:8f:df:68:4b:8e: a6:18:32:a9:bc:22:3d:46:5f:1d:0a:bd:27:ad:0b: 64:68:e7:62:92:b3:58:10:12:22:c9:ad:0a:f7:eb: 87:03:f8:df:b3:95:a5:26:d8:4f:a1:14:6a:29:65: e1:7b:6e:6d:d4:b5:2e:5d:67:ee:ff:f7:86:fe:4d: 05:8f:9b:43:c9:5d:ff:69:78:05:10:4c:8f:35:37: 2b:0a:73:1e:5b:5e:27:2a:97:5e:80:a8:32:b6:3d: 90:29:74:ea:f6:09:fd:81:00:f2:06:fc:5a:33:cc: 9e:ee:8c:ae:da:4f:30:96:3d:6b:a0:a5:33:d2:3c: d2:05:11:11:16:9c:39:04:ca:dc:07:f1:44:a8:30: ae:37:f8:0b:d3:38:68:45:04:6a:7d:01:d8:7e:f9: 52:8b:a8:41:63:c9:5c:53:6f:31:7b:7e:8b:d1:e1: 8c:ea:6a:fb:6b:17:e0:1c:3a:e8:2a:94:a6:ab:41: aa:ca:aa:b7:f0:8a:09:e0:23:e0:63:c3:18:9a:6c: d2:bd:0e:96:e4:6b:88:43:a7:a4:04:23:8a:14:97: f7:24:80:da:8a:13:2e:16:69:e6:f7:42:3b:5d:c9: c5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:62:C4:5B:0D:4E:2C:07:79:70:C8:9A:48:4C:D8:C8:EA:00:1D:09 X509v3 Authority Key Identifier: keyid:9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:04:a6:fc:ff:d0:ee:ad:08:f6:99:8a:9e:b7:de:9f:f4:0b: 2d:c1:92:d7:d6:bd:23:0a:b2:15:8b:87:d7:d9:b6:6e:45:be: e7:6c:b5:75:8c:37:3b:e9:b0:15:96:6b:a3:fc:3d:b3:a3:13: c4:cf:dd:bb:ea:b2:87:ab:76:78:c5:4f:87:28:23:18:02:fd: 12:27:c9:06:d2:f7:88:6c:1a:3b:a4:2b:d9:34:8a:2c:72:7b: f2:a1:5b:14:d8:35:ad:db:da:c5:8f:d7:4c:2c:56:dc:02:10: 60:a6:60:50:03:6f:d9:53:6b:14:4a:36:29:9b:e3:a5:7d:7e: 33:c9:c8:37:07:73:b4:a9:eb:25:be:e9:21:e8:f8:05:22:85: 99:b8:6e:92:c3:53:74:45:06:e2:aa:90:53:03:5b:9c:fe:d1: 46:56:ee:b6:99:ec:d9:bd:05:5b:89:86:9f:b6:66:c0:6b:73: 66:8d:46:75:f6:3a:08:8d:f4:fb:83:43:61:0a:58:4c:b4:06: 5d:61:bd:14:e0:7c:63:c9:dd:24:a6:0f:b4:f4:9e:2c:0f:fb: 84:65:12:1b:fb:59:78:a9:cb:68:6b:fc:90:fd:46:ad:28:2e: fe:69:a9:78:ba:8d:62:c4:96:ad:28:fa:40:12:a6:83:cc:6c: 8c:6a:f9:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5NTgxMTAvBgNVBAUTKDlGNDkwNkMwRDRDQzk2NDVEOUJGRDkzMzY0QTIzQTVB MzNFRjU4REIwHhcNMjUwODIzMDY1MTU4WhcNMjUwODMwMDY1MTU3WjAYMRYwFAYD VQQDEw02OGE5NjUwZS0yOGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CzFXEcLn6r24yH459PgNEdI9bCmLf7Mj99oS46mGDKpvCI9Rl8dCr0nrQtk aOdikrNYEBIiya0K9+uHA/jfs5WlJthPoRRqKWXhe25t1LUuXWfu//eG/k0Fj5tD yV3/aXgFEEyPNTcrCnMeW14nKpdegKgytj2QKXTq9gn9gQDyBvxaM8ye7oyu2k8w lj1roKUz0jzSBRERFpw5BMrcB/FEqDCuN/gL0zhoRQRqfQHYfvlSi6hBY8lcU28x e36L0eGM6mr7axfgHDroKpSmq0Gqyqq38IoJ4CPgY8MYmmzSvQ6W5GuIQ6ekBCOK FJf3JIDaihMuFmnm90I7XcnFQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVixFsN TiwHeXDImkhM2MjqAB0JMB8GA1UdIwQYMBaAFJ9JBsDUzJZF2b/ZM2SiOloz71jb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDk1OC82NzJEQjA0OEIz OUIxMUVGODBGNjQzNUVDNEY5QUUwMi9uMGtHd05UTWxrWFp2OWt6WktJNldqUHZX TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL24wa0d3TlRNbGtYWnY5a3paS0k2V2pQdldOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82NzJEQjA0OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi9uMGtHd05UTWxr WFp2OWt6WktJNldqUHZXTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSBKb8/9DurQj2mYqet96f9AstwZLX1r0jCrIVi4fX2bZuRb7nbLV1 jDc76bAVlmuj/D2zoxPEz9276rKHq3Z4xU+HKCMYAv0SJ8kG0veIbBo7pCvZNIos cnvyoVsU2DWt29rFj9dMLFbcAhBgpmBQA2/ZU2sUSjYpm+OlfX4zycg3B3O0qesl vukh6PgFIoWZuG6Sw1N0RQbiqpBTA1uc/tFGVu62mezZvQVbiYaftmbAa3NmjUZ1 9joIjfT7g0NhClhMtAZdYb0U4Hxjyd0kpg+09J4sD/uEZRIb+1l4qctoa/yQ/Uat KC7+aal4uo1ixJatKPpAEqaDzGyMavkh -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:26 2025 by rpki-client