$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft File: nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft (raw, json) Hash identifier: 8TTgeoKpfV8D2A7TZsj8yCZtN/wHqZFi42qLh9p7QNs= Subject key identifier: 75:1B:2C:88:6E:BD:42:65:85:B6:B1:66:57:24:18:CA:B4:47:27:12 Authority key identifier: 9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD Certificate issuer: /CN=A9185D34/serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Certificate serial: 083A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft Manifest number: 082D Signing time: Fri 22 Aug 2025 20:58:44 +0000 Manifest this update: Fri 22 Aug 2025 20:58:44 +0000 Manifest next update: Fri 29 Aug 2025 20:58:44 +0000 Files and hashes: 1: nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl (hash: WtGf5HBpsuN0nkyyIQdl0F8YwZznCupy3uy53A29uro=) 2: C1171FCAB1B111ECBA7F614FC4F9AE02.roa (hash: 5pc4Fgf96yhJHg1dXqyOkvTiTCFOmyYqtcguriQDwlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:58:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2106 (0x83a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D34, serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Validity Not Before: Aug 22 20:58:44 2025 GMT Not After : Aug 29 20:58:44 2025 GMT Subject: CN=68a8da04-f950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:da:7e:82:6e:bb:16:bc:ad:26:d8:45:13:23: a5:37:7c:f8:3c:c0:15:91:6e:9d:b2:f1:c1:9e:0d: 55:8d:ca:25:ed:d3:ee:3e:08:1a:0d:d9:60:27:65: b4:c4:f2:f4:27:06:64:5a:8e:5c:30:d9:f6:05:d4: 39:83:4a:8d:11:e2:a5:77:b4:34:a5:43:de:cb:63: 99:2f:58:2b:fb:1b:6f:4e:5e:7d:86:d4:8f:6e:1a: 31:9d:75:bd:52:76:c7:3a:f1:bd:80:43:4d:2a:b5: 17:ce:31:3c:e8:ac:52:c7:89:86:a2:db:6f:3f:b6: 50:39:25:6a:79:f0:c9:c7:27:93:16:4a:47:0a:63: 40:17:a6:62:f0:2a:66:8a:5f:2d:16:3a:fd:31:38: 65:13:af:fd:66:a5:bc:d8:b7:0a:c2:e0:0c:f3:25: 8c:2d:09:30:e6:4f:19:48:92:5b:61:bb:71:99:74: 37:33:bf:88:49:9f:77:38:81:30:b3:17:30:c5:6c: e0:d8:31:30:7e:41:87:6b:31:0f:5e:2e:45:4e:df: 49:77:b7:a1:26:9f:82:d6:b6:8b:9b:92:12:b2:e4: 1a:dc:32:4c:f7:4e:7c:6e:02:6c:1c:f9:d0:aa:9d: 51:c0:09:f1:7f:6f:50:f6:76:66:68:03:16:ae:3a: 55:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:1B:2C:88:6E:BD:42:65:85:B6:B1:66:57:24:18:CA:B4:47:27:12 X509v3 Authority Key Identifier: keyid:9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:75:40:6a:49:b6:5d:e0:ca:29:6e:af:fb:f1:29:8c:d7:2c: 63:4e:e2:88:04:fe:d0:ab:72:87:c7:66:24:f4:e0:ed:13:e0: 64:c1:dd:1a:d6:30:d4:65:71:0c:9d:89:4c:25:78:35:58:02: c1:fe:b5:45:75:88:fd:cb:db:18:d1:0d:32:2f:6f:2e:5e:3d: 6e:83:92:ab:44:aa:6f:2f:26:a4:c4:c5:5a:5f:21:50:1e:bb: 83:78:be:2c:33:fb:94:b2:fa:68:20:0c:f9:bc:19:0f:4c:e2: cd:ea:e4:b2:71:26:e0:47:e9:9e:5f:1a:8b:a9:7b:9a:b1:29: e4:aa:a4:30:ee:aa:b7:47:43:27:84:a7:b4:c1:85:08:4d:7b: d4:3d:66:96:6b:27:1c:92:ac:4f:ca:d9:3f:70:37:14:6e:54: db:29:77:ec:7a:1f:2f:4b:aa:79:15:1d:fa:cb:f5:a3:f5:40: 2b:57:12:a4:09:36:11:8f:03:4a:7f:ac:0e:fd:a4:15:b4:65: d0:92:af:05:c6:12:b7:58:ce:92:ed:51:7d:eb:3a:bb:84:a0: a8:48:d0:cf:ae:1a:10:a2:2f:7e:bb:0b:62:bf:93:a6:6a:04: cb:c9:80:c6:7d:a9:38:e7:a9:49:d1:3c:0d:1d:7c:73:37:fa: 80:67:79:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVEMzQxMTAvBgNVBAUTKDlFQzEyMTZEMjU2NDE2NDAzQ0I1QzUzRTczNDU1MzBG ODMyNzJDREQwHhcNMjUwODIyMjA1ODQ0WhcNMjUwODI5MjA1ODQ0WjAYMRYwFAYD VQQDEw02OGE4ZGEwNC1mOTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5dp+gm67FrytJthFEyOlN3z4PMAVkW6dsvHBng1Vjcol7dPuPggaDdlgJ2W0 xPL0JwZkWo5cMNn2BdQ5g0qNEeKld7Q0pUPey2OZL1gr+xtvTl59htSPbhoxnXW9 UnbHOvG9gENNKrUXzjE86KxSx4mGottvP7ZQOSVqefDJxyeTFkpHCmNAF6Zi8Cpm il8tFjr9MThlE6/9ZqW82LcKwuAM8yWMLQkw5k8ZSJJbYbtxmXQ3M7+ISZ93OIEw sxcwxWzg2DEwfkGHazEPXi5FTt9Jd7ehJp+C1raLm5ISsuQa3DJM9058bgJsHPnQ qp1RwAnxf29Q9nZmaAMWrjpVhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUbLIhu vUJlhbaxZlckGMq0RycSMB8GA1UdIwQYMBaAFJ7BIW0lZBZAPLXFPnNFUw+DJyzd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQzNC9EQkE4Nzg1OEU2 QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0ZrQTh0Y1UtYzBWVEQ0TW5M TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zRWhiU1ZrRmtBOHRjVS1jMFZURDRNbkxOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQzNC9EQkE4Nzg1OEU2QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0Zr QTh0Y1UtYzBWVEQ0TW5MTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQdUBqSbZd4Mopbq/78SmM1yxjTuKIBP7Qq3KHx2Yk9ODtE+Bkwd0a 1jDUZXEMnYlMJXg1WALB/rVFdYj9y9sY0Q0yL28uXj1ug5KrRKpvLyakxMVaXyFQ HruDeL4sM/uUsvpoIAz5vBkPTOLN6uSycSbgR+meXxqLqXuasSnkqqQw7qq3R0Mn hKe0wYUITXvUPWaWaycckqxPytk/cDcUblTbKXfseh8vS6p5FR36y/Wj9UArVxKk CTYRjwNKf6wO/aQVtGXQkq8FxhK3WM6S7VF96zq7hKCoSNDPrhoQoi9+uwtiv5Om agTLyYDGfak456lJ0TwNHXxzN/qAZ3ml -----END CERTIFICATE-----Generated at Sat Aug 23 16:35:03 2025 by rpki-client