$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: fBLDZ91EQO/pnR7h6oSr9ZbC0GnYGw+3Jvd9tXF7cw4= Subject key identifier: 69:06:36:D0:F6:1A:C3:7E:0F:8D:64:BF:8A:00:E8:90:32:6C:E7:EA Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 031F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 031A Signing time: Sat 23 Aug 2025 01:25:47 +0000 Manifest this update: Sat 23 Aug 2025 01:25:46 +0000 Manifest next update: Sat 30 Aug 2025 01:25:46 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: b8swsbOW68yF+9Jlyt9MQvubVsQCZgaw/9RdkKjtDnA=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: HwkSTw7raizrXpljDXnHXfZQCr+VPlFOvS2ci48bY0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 799 (0x31f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88, serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: Aug 23 01:25:46 2025 GMT Not After : Aug 30 01:25:46 2025 GMT Subject: CN=68a9189a-fd8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6a:1a:02:25:3d:8d:5d:3e:f3:b8:3e:b0:66: b4:2f:45:d5:3c:43:3d:4a:cc:d2:46:80:90:0f:ad: 8c:87:e9:90:1d:d5:2d:d4:28:fd:94:91:f1:b4:a8: d9:f2:91:b2:68:a8:d9:e8:85:c1:5a:bd:52:cd:e8: 7d:93:be:42:a7:5a:da:d5:4d:73:c1:91:f2:ea:06: 6b:a2:26:61:12:41:7f:c5:c9:c9:a4:84:9d:7c:25: 9b:a8:16:47:94:0d:8b:ba:9d:78:46:f7:24:6b:39: d9:c2:98:ee:6c:9a:93:18:8b:d3:8a:0c:ed:ab:73: e5:95:88:f5:72:02:17:df:7c:01:a8:24:b0:a3:2b: 8d:40:2a:71:25:22:ee:71:93:40:30:b1:fb:c5:01: a3:76:3b:cd:4a:54:3a:bb:cf:85:0e:de:98:ef:de: 2a:8d:76:44:b3:fb:a3:f8:76:fc:48:84:0e:e8:c9: bc:02:46:32:da:18:6e:88:e4:2f:9a:b8:f7:a4:e0: aa:65:a6:47:b4:75:eb:0c:20:5a:fe:51:d3:f7:d0: 44:98:7d:78:29:3c:cb:ff:de:34:dc:2b:62:7d:3a: a1:ba:ca:0f:df:05:a8:89:98:8d:db:b4:e5:e8:bf: 1c:35:c5:9b:d4:c8:28:40:63:fe:58:1f:21:bf:73: 6d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:06:36:D0:F6:1A:C3:7E:0F:8D:64:BF:8A:00:E8:90:32:6C:E7:EA X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1a:23:7b:1f:bf:c2:6a:27:5b:45:a5:4e:2c:f1:d4:1b:60: c7:b7:98:9b:31:2b:d1:d9:82:c0:c3:23:3b:89:b3:e6:26:a9: 4c:0d:40:e9:10:93:9c:b9:68:6f:10:23:9f:83:bb:e3:8a:81: 44:75:a9:12:44:a5:c7:3e:85:43:36:a0:6e:eb:89:04:bf:b5: 7d:03:64:56:5f:74:13:04:e3:b3:b8:d2:ec:43:cb:88:f7:78: 46:c6:c7:9f:40:b1:cc:7d:fb:2e:8e:25:48:7b:ec:47:41:21: af:66:1d:b8:2a:36:be:e4:15:58:17:9d:63:4b:35:e9:29:e4: 9a:3a:3a:b8:0f:c4:a5:b0:e0:9b:fb:e3:eb:fc:18:c3:2c:7b: 34:6e:42:b6:22:80:a4:9c:07:de:dc:7c:e2:a4:7b:07:ca:bd: 56:a5:eb:33:6c:d9:7c:d4:60:a9:79:55:bf:a3:4f:6c:1c:63: 8c:c6:f5:63:b4:6a:d7:b5:27:15:5d:0a:94:56:61:1a:91:28: 2a:93:58:a3:52:c6:68:2e:52:bd:89:a0:00:a5:21:d7:fd:ab: 93:ca:3d:8a:d8:f6:5d:b9:88:67:0b:80:4e:cd:6f:5c:3c:b1: 32:f4:e9:3d:73:1a:1b:fa:49:29:51:be:10:5b:d1:d1:b4:41: 5d:1d:6e:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjUwODIzMDEyNTQ2WhcNMjUwODMwMDEyNTQ2WjAYMRYwFAYD VQQDEw02OGE5MTg5YS1mZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2oaAiU9jV0+87g+sGa0L0XVPEM9SszSRoCQD62Mh+mQHdUt1Cj9lJHxtKjZ 8pGyaKjZ6IXBWr1Szeh9k75Cp1ra1U1zwZHy6gZroiZhEkF/xcnJpISdfCWbqBZH lA2Lup14RvckaznZwpjubJqTGIvTigztq3PllYj1cgIX33wBqCSwoyuNQCpxJSLu cZNAMLH7xQGjdjvNSlQ6u8+FDt6Y794qjXZEs/uj+Hb8SIQO6Mm8AkYy2hhuiOQv mrj3pOCqZaZHtHXrDCBa/lHT99BEmH14KTzL/9403CtifTqhusoP3wWoiZiN27Tl 6L8cNcWb1MgoQGP+WB8hv3NthQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkGNtD2 GsN+D41kv4oA6JAybOfqMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArGiN7H7/CaidbRaVOLPHUG2DHt5ibMSvR2YLAwyM7ibPmJqlMDUDp EJOcuWhvECOfg7vjioFEdakSRKXHPoVDNqBu64kEv7V9A2RWX3QTBOOzuNLsQ8uI 93hGxsefQLHMffsujiVIe+xHQSGvZh24Kja+5BVYF51jSzXpKeSaOjq4D8SlsOCb ++Pr/BjDLHs0bkK2IoCknAfe3HzipHsHyr1WpeszbNl81GCpeVW/o09sHGOMxvVj tGrXtScVXQqUVmEakSgqk1ijUsZoLlK9iaAApSHX/auTyj2K2PZduYhnC4BOzW9c PLEy9Ok9cxob+kkpUb4QW9HRtEFdHW7l -----END CERTIFICATE-----Generated at Sat Aug 23 16:21:44 2025 by rpki-client