$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: y3GYc29DvOLv+wk2BaE08IdaoSbNE2uy39ElEtRUAyQ= Subject key identifier: 0F:CE:48:0A:40:B6:67:4C:5B:63:67:00:76:BF:5A:2B:31:7C:36:44 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 1143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 0FE0 Signing time: Wed 02 Jul 2025 17:52:40 +0000 Manifest this update: Wed 02 Jul 2025 17:52:40 +0000 Manifest next update: Wed 09 Jul 2025 17:52:40 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: 3PdoSMlQGTZOPMP5/V8yhaY2E0nUE5eOtoY49LYJ8mU=) 2: A2745BFEC18411ECBE051C5CC4F9AE02.roa (hash: PrswZfri3dHxcodWDLz5zdIU9mo1iJZykEdVfIHeBvM=) 3: 9394D360345F11F0AB96776CC4F9AE02.roa (hash: GgwLhcIgruySS/YGMWErE8BGQI8HrXA2kybuS84FbjI=) 4: 8224E55C345F11F0BD514C6CC4F9AE02.roa (hash: 8yHBq1O4OTtRzTta/kqVDa7IpUINsQkqazMx6yafkpw=) 5: 4CF19A6EAEDC11EF99753F71C4F9AE02.roa (hash: PfT2gUtvmaQ5ysA5Tk+EQ/4QCBmSm12o3beYYarK2gM=) 6: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: 9vj0wFDRg2m924YSQRU+53hKJgFYHI/k3yYJ69FV68c=) 7: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: IEsW3GuxCVGYRu/1hhIjcdekM36PkMj/h8FdT1+soSo=) 8: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: WDmBDJ69igHtzeCqQyvNDcFOZ8jROHQ7B6krkg7kRGE=) 9: FD5158C044C511F0ABA4E977C4F9AE02.roa (hash: eZNKMw9qnH8BbQ6J2mZn8SpR2dJd4IQAlRp5xbQPTcU=) 10: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: aiooAIoivVql5FC+SCyKWbhdV5nV3qmBQRAodXfPFtU=) 11: BB54CFD0B94411EBA1CDCA45C4F9AE02.roa (hash: JBQ6069Irn+Fo63UGqCMQV8Nmj1Wx+/dKLn5g7bFNNU=) 12: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: b/LbIzPAU9coJXjT3umWz8BMDzmOcTsQApiNrqEbUbM=) 13: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: Pqc1nBcb+JFkJlWub2Tew10ajFK81balankJIjxH0u0=) 14: C2356A948FE811E98B967A66C4F9AE02.roa (hash: lh6cNUm2NUCxz6vyJ9O8vhiCdo9/t7r94k2HgugqWk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4419 (0x1143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Jul 2 17:52:40 2025 GMT Not After : Jul 9 17:52:40 2025 GMT Subject: CN=686571e8-8352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:48:42:b4:97:3d:28:8b:a5:cc:d6:7d:86:04: 33:3e:fe:03:54:52:69:83:4e:46:06:3b:8f:61:ab: fe:71:a3:47:28:2f:23:2e:78:4f:27:48:7f:64:64: 17:79:3b:3c:8d:94:96:21:1c:a5:80:1f:f3:cc:bc: b5:e6:c0:1c:36:55:30:97:5a:a6:ef:8f:71:ea:0f: 20:03:ce:ea:e5:63:12:1a:47:ab:3e:89:b9:66:19: 8a:1f:d0:fe:7e:77:46:e5:06:b0:ed:bc:1b:30:cb: f6:e6:f7:c9:77:3a:93:5b:22:02:57:b8:62:a1:79: 13:dc:7e:f6:32:54:d7:df:37:7f:ba:9f:ce:27:10: 72:0c:5a:63:58:97:1b:f2:5e:71:2e:6c:66:d8:05: 8b:6c:22:c0:5b:b5:bf:db:12:6f:4c:b4:30:55:b9: 4c:af:3f:55:b2:26:11:63:d0:21:f1:d5:ef:1e:ab: 7f:52:78:43:7c:15:36:a6:bd:13:48:01:5d:1d:c2: 96:06:3d:9a:9a:72:27:0a:53:54:0c:90:7a:d1:ca: cb:b0:a5:df:e3:f8:be:be:98:06:ce:e5:d5:b8:6a: a5:30:fc:b2:c6:ea:f0:2c:91:d5:7a:f2:52:7a:3c: 13:f4:17:76:88:89:3f:f2:0c:b7:a5:93:57:d9:8f: f4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:CE:48:0A:40:B6:67:4C:5B:63:67:00:76:BF:5A:2B:31:7C:36:44 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:6c:df:5f:4a:31:ee:df:b7:6b:92:bb:f2:2c:2e:e4:3a:56: a3:ba:c4:a5:a7:16:44:44:25:cd:fb:25:98:37:e5:cd:c5:71: 39:0d:61:7d:3c:ed:49:b1:fb:14:a2:63:34:9c:60:57:ba:a6: 14:86:0f:c6:e3:7f:ce:b6:6d:d3:d3:46:0d:75:ef:2e:7c:b9: 08:70:01:2a:b7:e1:2b:78:0f:97:55:65:99:ae:1e:86:f2:e9: b6:a4:e7:42:d3:c3:a1:e2:7b:bb:49:2d:c7:bb:3a:e6:1b:e6: 6d:b3:08:50:63:1d:55:4e:ce:fb:12:0b:93:3e:e0:f7:c1:06: 04:65:96:d1:6a:b6:e2:96:f8:4c:07:02:eb:db:71:17:b8:7c: e8:25:02:1d:61:b8:81:22:24:13:d2:94:13:27:cd:0e:e5:e7: f7:f1:77:10:15:03:e0:5f:be:c6:62:59:d9:d8:27:37:95:3a: f7:a7:8d:e8:d8:ba:de:0e:85:0f:a6:be:b6:e4:d5:50:59:a8: 7c:67:c5:18:46:fd:63:8a:8b:db:f2:38:0e:a6:44:b7:45:72: 3b:b2:78:d5:a3:52:9c:ed:c3:a7:c9:e7:5b:4f:8b:9a:fe:a2: 77:b2:6d:71:5d:5c:26:bd:54:d7:c9:d3:17:11:15:b6:c5:5f: 16:a6:de:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwNzAyMTc1MjQwWhcNMjUwNzA5MTc1MjQwWjAYMRYwFAYD VQQDEw02ODY1NzFlOC04MzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7UhCtJc9KIulzNZ9hgQzPv4DVFJpg05GBjuPYav+caNHKC8jLnhPJ0h/ZGQX eTs8jZSWIRylgB/zzLy15sAcNlUwl1qm749x6g8gA87q5WMSGkerPom5ZhmKH9D+ fndG5Qaw7bwbMMv25vfJdzqTWyICV7hioXkT3H72MlTX3zd/up/OJxByDFpjWJcb 8l5xLmxm2AWLbCLAW7W/2xJvTLQwVblMrz9VsiYRY9Ah8dXvHqt/UnhDfBU2pr0T SAFdHcKWBj2amnInClNUDJB60crLsKXf4/i+vpgGzuXVuGqlMPyyxurwLJHVevJS ejwT9Bd2iIk/8gy3pZNX2Y/0SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/OSApA tmdMW2NnAHa/WisxfDZEMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALbN9fSjHu37drkrvyLC7kOlajusSlpxZERCXN+yWYN+XNxXE5DWF9 PO1JsfsUomM0nGBXuqYUhg/G43/Otm3T00YNde8ufLkIcAEqt+EreA+XVWWZrh6G 8um2pOdC08Oh4nu7SS3HuzrmG+ZtswhQYx1VTs77EguTPuD3wQYEZZbRarbilvhM BwLr23EXuHzoJQIdYbiBIiQT0pQTJ80O5ef38XcQFQPgX77GYlnZ2Cc3lTr3p43o 2LreDoUPpr625NVQWah8Z8UYRv1jiovb8jgOpkS3RXI7snjVo1Kc7cOnyedbT4ua /qJ3sm1xXVwmvVTXydMXERW2xV8Wpt7q -----END CERTIFICATE-----Generated at Thu Jul 3 18:01:15 2025 by rpki-client