$ rpki-client -vvf rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft File: NAcoRkbqh4WDwlsPqefW7aCRMpg.mft (raw, json) Hash identifier: tW1plwMcnAhULXPLDEAZKDlEAgq5Uemihit7o1gpGJI= Subject key identifier: D3:7A:0C:CB:B1:CB:64:10:7D:17:7E:D8:AF:A3:74:E0:19:43:E0:41 Authority key identifier: 34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 Certificate issuer: /CN=A919C318/serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Certificate serial: 092F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft Manifest number: 0928 Signing time: Fri 22 Aug 2025 20:22:25 +0000 Manifest this update: Fri 22 Aug 2025 20:22:25 +0000 Manifest next update: Fri 29 Aug 2025 20:22:25 +0000 Files and hashes: 1: NAcoRkbqh4WDwlsPqefW7aCRMpg.crl (hash: wA8cdVJgnXN2xUxmcHUYvuqy2oXdC0VinIWJj2dw08A=) 2: 9AA539E6A82411EA996D5F41C4F9AE02.roa (hash: pMMXr/lqWr+5GcVstLkkyd8gkDTgGy1DHQolAjMLixQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2351 (0x92f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C318, serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Validity Not Before: Aug 22 20:22:25 2025 GMT Not After : Aug 29 20:22:25 2025 GMT Subject: CN=68a8d181-481e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c2:1b:e0:7f:2e:1f:22:40:ba:8a:3d:b6:f8: 06:6b:ca:16:51:54:a1:26:46:ff:46:ae:7e:bf:74: b5:5d:e8:57:af:a2:1b:ea:50:f5:c8:14:9c:6c:04: 46:85:df:bf:0d:20:45:1a:d6:1a:1c:04:23:96:25: 38:c1:df:60:c2:05:ab:e3:ff:ee:ed:36:71:b4:4d: 11:f1:d5:3b:a2:7b:44:05:7e:fe:c7:01:fb:12:db: 36:99:8e:42:61:39:ad:bc:f6:4c:b8:fe:51:d9:e9: 26:e8:93:ea:09:9b:7e:65:35:d0:4d:fc:6e:97:b8: 42:47:5f:d7:c6:8b:81:21:b5:bb:86:d9:61:5a:79: f6:c0:ed:66:76:c9:72:5b:1f:7c:c9:9f:af:ad:63: 8f:71:e8:e3:4c:00:11:41:9f:2d:5e:dd:2f:8b:c8: 21:1b:45:19:aa:07:83:f1:71:ea:44:65:bc:ba:1d: 77:06:43:0b:a8:64:3f:f4:d2:e7:fa:c7:58:4c:a7: ae:98:fd:c5:fd:1d:f9:85:f2:54:47:d5:b6:db:85: 31:e8:97:59:71:3a:c5:a6:5d:46:41:28:98:5d:4e: 72:2e:e6:d9:3f:7f:a2:3d:93:b3:a5:24:96:f7:55: 60:2d:f1:41:06:66:41:28:21:38:f4:90:fa:f3:68: e6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:7A:0C:CB:B1:CB:64:10:7D:17:7E:D8:AF:A3:74:E0:19:43:E0:41 X509v3 Authority Key Identifier: keyid:34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:db:47:ae:16:af:f5:dc:ff:44:29:3e:0f:4b:54:19:f2:05: 6d:57:6e:b3:fa:72:2d:e1:a8:e2:ac:8d:4e:bb:84:39:c9:f9: ed:22:f2:ab:e4:dd:ef:a2:dc:b3:dd:b0:62:f0:f1:2f:26:79: d0:d1:92:a0:c4:f4:98:4f:8f:d0:45:ca:a1:29:71:99:01:a6: 1c:e0:9b:7e:af:9f:d5:8c:6b:56:69:cd:cc:8b:95:6a:90:8b: 00:50:64:48:3c:69:3b:49:e3:0c:d5:cd:2c:dc:61:5f:60:d2: c7:59:59:5c:5a:db:c6:61:2b:4a:87:14:fe:ba:8a:7b:c4:fe: 24:99:a3:27:07:83:7f:18:0e:bd:07:d5:f5:8a:0a:76:3f:22: 4f:0d:2b:ec:5c:c7:ee:02:0e:50:e7:5e:fe:a6:2e:d0:ff:30: f9:09:75:c1:12:f3:6e:12:46:91:02:c7:11:9a:b9:6e:2e:3f: 7b:0d:58:da:28:85:5d:05:6d:24:0b:5a:13:5d:ed:7e:15:bf: 2b:bc:64:69:61:03:d3:1d:c2:81:a8:5a:5d:2f:9e:b5:d8:c0: 04:6d:52:e8:28:5c:18:8e:e8:aa:25:1e:44:53:89:cd:48:2a: 00:bd:f9:9e:0f:4e:56:5e:6e:d8:18:cb:ab:9a:fb:a4:cb:b1: 3e:61:31:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzMTgxMTAvBgNVBAUTKDM0MDcyODQ2NDZFQTg3ODU4M0MyNUIwRkE5RTdENkVE QTA5MTMyOTgwHhcNMjUwODIyMjAyMjI1WhcNMjUwODI5MjAyMjI1WjAYMRYwFAYD VQQDEw02OGE4ZDE4MS00ODFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucIb4H8uHyJAuoo9tvgGa8oWUVShJkb/Rq5+v3S1XehXr6Ib6lD1yBScbARG hd+/DSBFGtYaHAQjliU4wd9gwgWr4//u7TZxtE0R8dU7ontEBX7+xwH7Ets2mY5C YTmtvPZMuP5R2ekm6JPqCZt+ZTXQTfxul7hCR1/XxouBIbW7htlhWnn2wO1mdsly Wx98yZ+vrWOPcejjTAARQZ8tXt0vi8ghG0UZqgeD8XHqRGW8uh13BkMLqGQ/9NLn +sdYTKeumP3F/R35hfJUR9W224Ux6JdZcTrFpl1GQSiYXU5yLubZP3+iPZOzpSSW 91VgLfFBBmZBKCE49JD682jmXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNN6DMux y2QQfRd+2K+jdOAZQ+BBMB8GA1UdIwQYMBaAFDQHKEZG6oeFg8JbD6nn1u2gkTKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzMxOC82NUI2NzFCNkE4 MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0V0R3bHNQcWVmVzdhQ1JN cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BY29Sa2JxaDRXRHdsc1BxZWZXN2FDUk1wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzMxOC82NUI2NzFCNkE4MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0 V0R3bHNQcWVmVzdhQ1JNcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL20euFq/13P9EKT4PS1QZ8gVtV26z+nIt4ajirI1Ou4Q5yfntIvKr 5N3votyz3bBi8PEvJnnQ0ZKgxPSYT4/QRcqhKXGZAaYc4Jt+r5/VjGtWac3Mi5Vq kIsAUGRIPGk7SeMM1c0s3GFfYNLHWVlcWtvGYStKhxT+uop7xP4kmaMnB4N/GA69 B9X1igp2PyJPDSvsXMfuAg5Q517+pi7Q/zD5CXXBEvNuEkaRAscRmrluLj97DVja KIVdBW0kC1oTXe1+Fb8rvGRpYQPTHcKBqFpdL5612MAEbVLoKFwYjuiqJR5EU4nN SCoAvfmeD05WXm7YGMurmvuky7E+YTGV -----END CERTIFICATE-----Generated at Sat Aug 23 19:03:21 2025 by rpki-client