$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: GwUzdQGAUtZRbzemz7/csW7k/1RG0PX/tueTC9+3acs= Subject key identifier: A1:83:95:B4:46:C0:27:09:80:E1:BF:88:4A:20:3F:A0:40:FC:61:F1 Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: 66 Signing time: Sat 23 Aug 2025 07:18:47 +0000 Manifest this update: Sat 23 Aug 2025 07:18:46 +0000 Manifest next update: Sat 30 Aug 2025 07:18:46 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: 7mz4kbGTMZoJHx41RRy2HZN8ISqwxoAQgasGgZesKpM=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: KZxky345FbSXUrOq6QK1EajrLW8GtjyV/j47aC9IQ2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Aug 23 07:18:46 2025 GMT Not After : Aug 30 07:18:46 2025 GMT Subject: CN=68a96b56-e4a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8d:1c:b6:00:36:e6:eb:f2:09:83:73:ce:a6: 1d:7c:0b:38:3d:3e:3a:1c:89:95:7f:69:15:6d:eb: 75:d5:37:ea:8d:28:34:0d:29:14:3c:c9:04:96:ad: 69:33:6f:9d:f9:d7:76:3e:24:e6:12:e6:df:62:40: 11:09:9b:09:b1:bb:c7:0b:ee:fc:d7:4c:b8:e5:7d: e2:34:7e:94:7f:2f:88:60:2f:ab:c3:6e:d6:78:f2: a5:99:01:63:98:61:4f:67:26:1e:a5:7f:d0:64:c0: e1:52:ad:ab:43:9a:a6:1f:61:f5:e8:87:98:22:b6: d6:cc:b6:80:30:4f:52:d5:1a:2f:ea:93:1e:89:47: d5:35:35:27:a6:48:7a:e3:7f:97:e1:7b:67:bb:75: b6:94:71:7a:e6:4e:c6:cb:41:82:9a:41:df:62:d9: 11:70:6b:d6:0c:61:3e:d7:33:f6:29:dd:a3:c2:bc: 35:27:ff:74:a4:c7:56:30:b7:6c:ee:5e:76:a6:e1: a2:81:7e:ed:13:c6:1f:d4:4c:3e:44:25:6b:aa:01: cd:74:e0:da:91:89:60:2c:d2:d6:f1:6c:36:1c:cc: d2:57:34:a8:a9:5c:74:db:b4:c5:b0:fa:18:d3:8b: 54:35:b0:c4:40:c5:52:a2:e3:7a:78:1a:0c:f7:da: 21:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:83:95:B4:46:C0:27:09:80:E1:BF:88:4A:20:3F:A0:40:FC:61:F1 X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:2d:e8:66:d9:c6:4d:75:27:26:3c:91:72:11:2e:73:d2:e5: a8:18:6f:0c:a4:b7:c8:86:53:ea:b0:11:b5:cc:c9:09:b9:4b: fc:22:f5:68:e4:b5:b8:db:3a:35:67:92:df:d2:89:14:9c:d5: 88:39:57:f7:7a:21:81:84:b6:78:90:39:c8:80:a3:2d:47:57: 9e:d9:54:b5:43:7e:95:59:70:04:d7:1a:7f:e7:e9:63:cc:c1: ad:8c:fa:77:9b:9f:e3:dc:da:06:0f:c7:3b:f0:03:32:90:1e: 9f:96:c3:38:36:39:ee:2b:b1:6a:b8:6d:de:b7:39:9b:5a:2a: c6:26:33:99:5b:90:6f:c7:c1:24:63:0d:f3:a3:6b:aa:3e:de: a5:62:e2:53:00:82:9c:29:7f:48:0a:38:32:ca:7f:fb:bd:51: a5:5b:0e:62:90:fe:f4:ab:fe:e2:40:46:b6:c2:c9:0b:a4:d8: 9d:6d:29:db:d2:5d:52:06:e8:b2:c0:b4:f8:02:36:3e:7b:d0: bd:7c:11:eb:86:8e:ae:9c:3f:4d:55:9c:b0:93:fe:87:21:b9: 39:a3:55:f7:69:00:4f:22:fd:41:81:5e:2f:02:6d:ab:cc:cb: bf:29:6d:1e:20:9a:c3:e8:44:45:06:42:37:3c:bd:63:6f:c9: 58:d0:5f:7f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkM3MjExMC8GA1UEBRMoMzYxNkUwMURBMzMxN0YwOUVFQ0E5OEU3QkM3NTRDQkM5 OTBEN0Q2ODAeFw0yNTA4MjMwNzE4NDZaFw0yNTA4MzAwNzE4NDZaMBgxFjAUBgNV BAMTDTY4YTk2YjU2LWU0YTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8jRy2ADbm6/IJg3POph18Czg9PjociZV/aRVt63XVN+qNKDQNKRQ8yQSWrWkz b53513Y+JOYS5t9iQBEJmwmxu8cL7vzXTLjlfeI0fpR/L4hgL6vDbtZ48qWZAWOY YU9nJh6lf9BkwOFSratDmqYfYfXoh5gittbMtoAwT1LVGi/qkx6JR9U1NSemSHrj f5fhe2e7dbaUcXrmTsbLQYKaQd9i2RFwa9YMYT7XM/Yp3aPCvDUn/3Skx1Ywt2zu Xnam4aKBfu0Txh/UTD5EJWuqAc104NqRiWAs0tbxbDYczNJXNKipXHTbtMWw+hjT i1Q1sMRAxVKi43p4Ggz32iEvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoYOVtEbA JwmA4b+ISiA/oED8YfEwHwYDVR0jBBgwFoAUNhbgHaMxfwnuypjnvHVMvJkNfWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQzcyLzlENUI1MTU2RUNG OTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTmhiZ0hhTXhmd251eXBqbnZIVk12SmtOZldnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky QzcyLzlENUI1MTU2RUNGOTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14Zndu dXlwam52SFZNdkprTmZXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMMt6GbZxk11JyY8kXIRLnPS5agYbwykt8iGU+qwEbXMyQm5S/wi9Wjk tbjbOjVnkt/SiRSc1Yg5V/d6IYGEtniQOciAoy1HV57ZVLVDfpVZcATXGn/n6WPM wa2M+nebn+Pc2gYPxzvwAzKQHp+Wwzg2Oe4rsWq4bd63OZtaKsYmM5lbkG/HwSRj DfOja6o+3qVi4lMAgpwpf0gKODLKf/u9UaVbDmKQ/vSr/uJARrbCyQuk2J1tKdvS XVIG6LLAtPgCNj570L18EeuGjq6cP01VnLCT/ochuTmjVfdpAE8i/UGBXi8CbavM y78pbR4gmsPoREUGQjc8vWNvyVjQX38= -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:56 2025 by rpki-client