$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: H1LDFH9aJD0nw+w2nD3GYAROLpZ9n/TvQak9M0gC0AM= Subject key identifier: 38:3C:12:E1:74:28:BF:B1:51:48:29:B3:C3:A8:05:6F:C8:00:99:EC Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 1171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 0FFE Signing time: Fri 22 Aug 2025 17:46:00 +0000 Manifest this update: Fri 22 Aug 2025 17:46:00 +0000 Manifest next update: Fri 29 Aug 2025 17:46:00 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: tP4J40bfGbMgMtCtv8OMfWaobwV4DuctL/qJ9/uuHg4=) 2: A2745BFEC18411ECBE051C5CC4F9AE02.roa (hash: csj3CBpaea4uVKIwh8/0IWZNmFs5LH9Vz5PTmq0nE6Q=) 3: 9394D360345F11F0AB96776CC4F9AE02.roa (hash: W4PkU+QwD/8bYuNMSrKUoTp+GmPZQH8HiHMStgOCIWE=) 4: 8224E55C345F11F0BD514C6CC4F9AE02.roa (hash: 5yssRnHiNxYbvC97ouK3PFQvut2qP5qu+yNWhWZqjDg=) 5: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: rou/LDou6+V/KVPUUd+xyuvJOo9d0Agu7Kr+809dbVM=) 6: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: wbAxf5dVXXEiIwKKpLqE+cuBbqEoiTYyCWdfX3OjWk8=) 7: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: NyB93qfmsbAZRAkPJESEcMdym4VpvubYepXKCtssfXQ=) 8: FD5158C044C511F0ABA4E977C4F9AE02.roa (hash: sBv0Q+ONp8Ppr2WKLMiy/5JZXTR72rxYXPkX8rrfyFE=) 9: 50D040327CFD11F0B32D4522C4F9AE02.roa (hash: jfSwj9kU8P/T4IfAw9qOukQY5qFKJhuEAFm89XgMLjg=) 10: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: r1Xk8MicSL+bI7AGfAkoa/toS5kHIpFMuCE8DDnU/Kg=) 11: BB54CFD0B94411EBA1CDCA45C4F9AE02.roa (hash: hoEHYFJcCyBsWsW8NKvl+WgpGNjbo+vqHAaQUmZDkCo=) 12: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: aRsEa/XlADK8Ys2zNZV3ljXviF6zdG4+twO2EcsTz6U=) 13: 2A4EE13E7CFD11F08A91EE21C4F9AE02.roa (hash: p6on445lkdVNXMMWjoYeri4k3QXBG09nZNuaYw4s6Gc=) 14: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: ytr2HpN06eiSGj2rNCJTUUsU785h9iKeb98Ln4JH8Nk=) 15: C2356A948FE811E98B967A66C4F9AE02.roa (hash: k3PLqMJ24hbj9LTYOeTg1vBguIXi9N/SryWCjUrQYCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4465 (0x1171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 22 17:46:00 2025 GMT Not After : Aug 29 17:46:00 2025 GMT Subject: CN=68a8acd8-297c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2e:b5:34:b4:b9:e7:2f:fb:8a:85:9c:8e:d6: 57:ae:1f:47:ec:53:d2:91:c5:66:87:3c:69:e9:85: 11:af:0d:ea:cf:83:45:a2:8a:95:38:bd:36:d1:64: b4:df:18:32:63:34:ab:08:82:59:05:6a:ba:ef:dd: ca:af:8d:74:9d:2b:42:14:49:fc:5c:0c:56:ee:33: ef:14:06:f3:43:cf:5c:f8:bb:0d:2f:6d:c0:7a:28: 5b:9a:fe:4d:98:8a:87:08:08:13:5d:59:1e:78:d6: 82:3d:bf:95:57:b6:50:07:ce:ed:1f:98:41:e2:79: 76:25:c2:62:d4:5f:ec:91:74:47:eb:b8:a7:82:b2: cb:af:82:13:07:9f:30:58:4c:6a:d8:96:b8:96:3c: a7:fc:7c:2c:52:e0:7e:ce:25:3d:1a:54:49:74:a3: 25:f4:04:c5:5b:a5:c3:7f:6d:c2:40:0b:14:50:f0: 5d:fb:17:df:d9:8a:6b:30:b3:d6:17:42:5c:36:4d: c3:ab:d9:55:f3:a8:c5:5a:3d:fd:f6:dc:3a:e7:a3: e2:c7:f0:15:8b:51:0e:8f:4a:2f:4c:ac:ad:db:e3: b7:e4:b4:5c:8f:76:27:49:a5:dc:51:02:11:af:c4: 32:53:27:94:39:50:7f:9a:e4:81:e4:80:ec:d4:79: 80:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3C:12:E1:74:28:BF:B1:51:48:29:B3:C3:A8:05:6F:C8:00:99:EC X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:90:90:b3:5a:c4:d6:2b:07:bc:58:a1:28:b1:d0:8b:74:ec: 98:bd:eb:1c:df:a1:72:82:1b:74:f2:d8:4d:13:64:03:75:90: 94:5c:57:5a:73:91:7d:e8:e6:04:8f:8c:c7:b7:89:33:a2:25: 04:7c:25:88:ae:d1:70:3a:a8:eb:85:24:14:4e:0e:64:db:48: 18:79:22:26:31:47:8d:f2:a8:56:66:dc:28:57:44:fb:e9:1e: 7a:03:e8:f4:d7:97:4b:2a:c2:03:6e:48:79:c3:91:2e:4f:b7: 7d:eb:77:29:28:10:5e:62:59:a7:8d:f7:e1:f0:27:09:b5:a7: dd:78:c9:7e:52:c1:f1:bb:01:7f:09:ac:e1:d0:55:c7:b6:4e: e3:57:80:b8:f3:18:56:64:5c:5e:c7:2e:6d:cd:2e:61:45:05: e5:35:d2:a7:df:cc:36:a9:12:4c:f0:e8:f1:21:ec:06:4b:30: b5:3a:98:8a:43:25:10:1c:3b:7b:ba:83:27:a5:71:c6:b7:d9: 6f:1b:24:02:7d:2d:39:bd:2c:b2:ab:28:78:a8:52:09:9e:84: a3:57:e7:69:55:0a:79:49:fe:f8:4f:e3:70:02:a1:51:01:9b: 2d:90:4d:a3:75:3f:cb:80:38:65:2e:c2:83:24:71:c0:ec:33: e7:d8:95:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwODIyMTc0NjAwWhcNMjUwODI5MTc0NjAwWjAYMRYwFAYD VQQDEw02OGE4YWNkOC0yOTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3i61NLS55y/7ioWcjtZXrh9H7FPSkcVmhzxp6YURrw3qz4NFooqVOL020WS0 3xgyYzSrCIJZBWq6793Kr410nStCFEn8XAxW7jPvFAbzQ89c+LsNL23Aeihbmv5N mIqHCAgTXVkeeNaCPb+VV7ZQB87tH5hB4nl2JcJi1F/skXRH67ingrLLr4ITB58w WExq2Ja4ljyn/HwsUuB+ziU9GlRJdKMl9ATFW6XDf23CQAsUUPBd+xff2YprMLPW F0JcNk3Dq9lV86jFWj399tw656Pix/AVi1EOj0ovTKyt2+O35LRcj3YnSaXcUQIR r8QyUyeUOVB/muSB5IDs1HmA3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDg8EuF0 KL+xUUgps8OoBW/IAJnsMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZkJCzWsTWKwe8WKEosdCLdOyYvesc36Fyght08thNE2QDdZCUXFda c5F96OYEj4zHt4kzoiUEfCWIrtFwOqjrhSQUTg5k20gYeSImMUeN8qhWZtwoV0T7 6R56A+j015dLKsIDbkh5w5EuT7d963cpKBBeYlmnjffh8CcJtafdeMl+UsHxuwF/ Cazh0FXHtk7jV4C48xhWZFxexy5tzS5hRQXlNdKn38w2qRJM8OjxIewGSzC1OpiK QyUQHDt7uoMnpXHGt9lvGyQCfS05vSyyqyh4qFIJnoSjV+dpVQp5Sf74T+NwAqFR AZstkE2jdT/LgDhlLsKDJHHA7DPn2JXw -----END CERTIFICATE-----Generated at Sat Aug 23 10:57:12 2025 by rpki-client