$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: 5qhd4Wcuj1kqN2KJ9quxq14w31UXJJaQkybUDHF//Vo= Subject key identifier: 94:65:CF:CF:4B:35:2A:A1:70:A8:F0:4E:CE:24:50:48:5F:5D:98:ED Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0ADC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 136D Signing time: Fri 22 Aug 2025 19:32:13 +0000 Manifest this update: Fri 22 Aug 2025 19:32:12 +0000 Manifest next update: Fri 29 Aug 2025 19:32:12 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: NJj3bbcp9WYK0HjlIze5e2aVEkPv9Xufc61Km50RSg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2780 (0xadc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: Aug 22 19:32:12 2025 GMT Not After : Aug 29 19:32:12 2025 GMT Subject: CN=68a8c5bc-0bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:11:42:f1:92:66:d7:df:b2:58:ac:c9:06:86: fc:72:57:47:a3:76:58:32:53:09:22:8d:23:3b:ac: 2d:34:dc:5e:48:61:06:f7:6c:74:44:12:08:7a:be: b2:9b:49:b0:46:02:85:36:7d:e0:1a:4e:f1:52:20: 94:be:db:e2:0f:df:8a:64:eb:5f:9d:ba:35:02:29: 2e:33:3d:92:93:10:ad:b3:22:33:f6:ee:a7:c5:56: 8b:81:88:d8:f0:6c:b9:82:e4:95:53:ff:d5:ee:65: 44:5f:97:67:2a:70:47:45:a8:76:85:cb:55:b0:2f: fa:4a:c8:c6:12:2b:c4:fb:fe:92:98:8f:f2:52:ff: 47:97:7a:9a:d5:41:2e:77:32:88:bf:6a:25:a6:e4: 02:55:00:74:67:36:68:83:a1:fa:71:12:a1:6a:e2: 7e:4e:39:1a:cf:1b:e8:bb:65:d3:4c:f1:66:cf:62: c5:18:db:9b:56:c0:49:cf:78:0d:8f:e6:1c:99:8a: 27:d9:04:55:77:f1:c4:01:5b:be:d8:08:ec:dd:67: 64:d3:72:44:d0:94:fe:c4:d0:b5:00:d8:4b:22:32: 3a:b5:5e:c9:5d:9c:9e:0b:22:f4:b0:3e:8c:3f:99: 41:e2:01:91:69:78:d7:e4:6d:46:38:63:05:ac:f5: 12:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:65:CF:CF:4B:35:2A:A1:70:A8:F0:4E:CE:24:50:48:5F:5D:98:ED X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:fe:fa:31:79:e9:54:c7:9e:9f:c9:cb:47:b3:4a:c6:02:8e: da:7f:aa:7e:27:1e:1b:9f:e4:27:22:ab:b6:03:26:b5:13:cb: c0:b3:0c:72:47:2d:10:4d:a1:c9:ce:0c:a7:95:01:33:a8:4f: 09:7f:ed:5e:d2:a9:8c:bb:da:fe:25:fd:98:46:6e:bd:f7:2c: d7:3b:4f:d6:95:a0:01:50:80:2f:04:df:69:20:47:a5:48:f0: 24:e5:1b:a9:88:8f:28:03:2b:85:57:20:7f:c7:9a:d9:14:b0: be:3d:b1:9e:f4:2a:f3:e5:f2:92:0a:8e:0a:fa:9e:30:93:1f: 3b:81:00:3a:bf:dd:f1:0d:67:ea:4b:1c:f7:7a:bb:0f:cc:2f: 79:b1:73:70:19:59:a4:9f:70:09:c6:d0:52:f8:a9:0c:35:bf: 5e:b2:f9:9d:4c:d7:13:c8:ec:97:64:f1:fc:76:3a:40:dc:60: cd:92:e8:e4:0e:45:a4:e7:d8:2e:88:2b:df:9b:63:b6:80:63: 43:7c:54:a3:d7:83:ef:5d:49:d8:e4:95:51:34:a4:00:1c:05: 99:9a:da:ac:12:fe:7c:6e:82:6b:67:54:9a:05:25:08:28:7c: 8d:a1:2f:28:e5:24:70:12:7d:c4:08:db:f1:03:b7:43:8b:1c: 98:18:f2:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjUwODIyMTkzMjEyWhcNMjUwODI5MTkzMjEyWjAYMRYwFAYD VQQDEw02OGE4YzViYy0wYmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhFC8ZJm19+yWKzJBob8cldHo3ZYMlMJIo0jO6wtNNxeSGEG92x0RBIIer6y m0mwRgKFNn3gGk7xUiCUvtviD9+KZOtfnbo1AikuMz2SkxCtsyIz9u6nxVaLgYjY 8Gy5guSVU//V7mVEX5dnKnBHRah2hctVsC/6SsjGEivE+/6SmI/yUv9Hl3qa1UEu dzKIv2olpuQCVQB0ZzZog6H6cRKhauJ+Tjkazxvou2XTTPFmz2LFGNubVsBJz3gN j+YcmYon2QRVd/HEAVu+2Ajs3Wdk03JE0JT+xNC1ANhLIjI6tV7JXZyeCyL0sD6M P5lB4gGRaXjX5G1GOGMFrPUSDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRlz89L NSqhcKjwTs4kUEhfXZjtMB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk/voxeelUx56fyctHs0rGAo7af6p+Jx4bn+QnIqu2Aya1E8vAswxy Ry0QTaHJzgynlQEzqE8Jf+1e0qmMu9r+Jf2YRm699yzXO0/WlaABUIAvBN9pIEel SPAk5RupiI8oAyuFVyB/x5rZFLC+PbGe9Crz5fKSCo4K+p4wkx87gQA6v93xDWfq Sxz3ersPzC95sXNwGVmkn3AJxtBS+KkMNb9esvmdTNcTyOyXZPH8djpA3GDNkujk DkWk59guiCvfm2O2gGNDfFSj14PvXUnY5JVRNKQAHAWZmtqsEv58boJrZ1SaBSUI KHyNoS8o5SRwEn3ECNvxA7dDixyYGPI4 -----END CERTIFICATE-----Generated at Sat Aug 23 20:32:20 2025 by rpki-client