$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft File: nbJYwXCyMilNhj9g0twBI82q54k.mft (raw, json) Hash identifier: ztdWdpEICpeeS7piHRPm1d57BVxn7Czm6CiGm/+T16I= Subject key identifier: 02:97:76:E0:85:04:4C:18:B6:1E:61:2A:C4:21:C0:B4:25:BB:36:DC Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft Manifest number: 44 Signing time: Sat 23 Aug 2025 07:40:57 +0000 Manifest this update: Sat 23 Aug 2025 07:40:56 +0000 Manifest next update: Sat 30 Aug 2025 07:40:56 +0000 Files and hashes: 1: nbJYwXCyMilNhj9g0twBI82q54k.crl (hash: srYQiwYKCNvnymWxfu/IxqyZ4hjHMZb0oOhvKh26NZo=) 2: 13EB65D41AB511F0A1F0A34BC4F9AE02.roa (hash: gBn5RMkmkclmyZmL4wf1QAerjjB7P04/rGPHIIjACSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:40:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: Aug 23 07:40:56 2025 GMT Not After : Aug 30 07:40:56 2025 GMT Subject: CN=68a97089-ece6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3a:f8:e3:c0:d6:b6:48:82:3b:39:d3:bc:7a: aa:ea:0f:17:81:0d:c3:3b:be:4a:81:9e:a2:d5:3c: 6e:07:6d:d1:38:84:3a:46:f0:a4:cc:9b:fd:3e:18: 49:2a:49:1a:00:d7:74:e0:63:ec:02:d2:1d:65:e9: 64:0f:68:de:be:d7:f9:e8:de:0c:e9:25:9f:ba:f0: 01:3c:36:e1:cf:d7:f2:27:ed:01:0f:bd:a8:61:e2: 4b:78:b1:43:83:de:17:0e:e0:f7:b2:c1:35:83:04: 2a:4d:0a:9c:62:15:0d:fa:fe:3a:41:fa:f4:11:fe: 4e:dc:31:4f:3a:fe:ee:ab:28:23:fc:94:65:51:d7: 77:b3:ab:f6:cb:c1:a4:8a:7a:af:c4:fa:3c:dd:b3: b4:f5:cf:64:49:21:c0:1f:33:bc:d1:2c:53:d8:6c: 52:2f:d7:fc:68:11:ea:a5:33:16:a7:e4:4e:7d:17: c1:02:12:01:98:53:fe:b0:52:e2:55:08:4d:1f:e1: 58:f6:fc:f6:ab:b6:78:cf:bb:99:88:83:1d:34:df: 6c:9e:27:c8:ae:b4:35:fd:25:7f:78:d3:17:93:cb: 37:00:f4:cf:ac:a7:47:78:55:3c:b6:f4:a7:0a:8b: 24:76:2c:ed:98:31:1f:da:07:14:4e:e4:1b:10:f1: d4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:97:76:E0:85:04:4C:18:B6:1E:61:2A:C4:21:C0:B4:25:BB:36:DC X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:fc:c3:e8:8c:a4:9c:80:12:bd:62:6a:28:50:53:15:59:01: 65:79:b2:45:21:88:87:6c:f7:0f:5b:64:ec:13:a4:9f:f3:59: 67:5a:dd:88:d2:f8:70:60:df:2d:a7:8f:27:1d:97:c7:c1:65: 7e:e1:38:0d:db:df:f4:15:ae:6e:a8:28:9e:72:7f:b7:22:e3: cb:43:95:1b:4b:6f:38:2b:cf:13:63:2e:16:b0:88:6c:75:f5: 71:68:62:2f:d1:fe:f8:5d:d2:d1:98:84:66:9b:75:34:12:cd: bc:b2:2f:3b:b2:a6:0c:73:6a:fe:c9:01:8c:a8:3f:cd:3d:ab: 35:b0:8b:cb:fb:04:5c:81:35:08:3e:d7:08:e7:d9:c2:c1:1c: 31:ae:e3:7c:af:2e:5c:cb:33:7f:f2:d3:86:f1:92:16:45:ef: e6:f8:d8:53:b2:a0:7d:87:3a:69:44:29:af:43:42:18:d8:48: 4d:82:d0:dc:f5:02:71:ad:63:ea:8a:d1:11:09:0b:5d:3c:96: d9:1b:6a:67:2b:3d:9b:e7:10:28:44:9a:90:ff:5e:55:e5:9e: 7b:45:66:68:3a:d6:20:a0:83:a7:27:03:12:d5:a6:95:74:20: 30:7e:7d:d8:66:80:85:e0:e0:20:62:74:1b:64:2a:3e:f5:76: 5c:7a:94:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MkVERTExMC8GA1UEBRMoOURCMjU4QzE3MEIyMzIyOTREODYzRjYwRDJEQzAxMjND REFBRTc4OTAeFw0yNTA4MjMwNzQwNTZaFw0yNTA4MzAwNzQwNTZaMBgxFjAUBgNV BAMTDTY4YTk3MDg5LWVjZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSOvjjwNa2SII7OdO8eqrqDxeBDcM7vkqBnqLVPG4HbdE4hDpG8KTMm/0+GEkq SRoA13TgY+wC0h1l6WQPaN6+1/no3gzpJZ+68AE8NuHP1/In7QEPvahh4kt4sUOD 3hcO4PeywTWDBCpNCpxiFQ36/jpB+vQR/k7cMU86/u6rKCP8lGVR13ezq/bLwaSK eq/E+jzds7T1z2RJIcAfM7zRLFPYbFIv1/xoEeqlMxan5E59F8ECEgGYU/6wUuJV CE0f4Vj2/PartnjPu5mIgx0032yeJ8iutDX9JX940xeTyzcA9M+sp0d4VTy29KcK iyR2LO2YMR/aBxRO5BsQ8dSBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUApd24IUE TBi2HmEqxCHAtCW7NtwwHwYDVR0jBBgwFoAUnbJYwXCyMilNhj9g0twBI82q54kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRURFLzU1Q0IyRTA0MUFC NDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmJKWXdYQ3lNaWxOaGo5ZzB0d0JJODJxNTRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy RURFLzU1Q0IyRTA0MUFCNDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWls TmhqOWcwdHdCSTgycTU0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACv8w+iMpJyAEr1iaihQUxVZAWV5skUhiIds9w9bZOwTpJ/zWWda3YjS +HBg3y2njycdl8fBZX7hOA3b3/QVrm6oKJ5yf7ci48tDlRtLbzgrzxNjLhawiGx1 9XFoYi/R/vhd0tGYhGabdTQSzbyyLzuypgxzav7JAYyoP809qzWwi8v7BFyBNQg+ 1wjn2cLBHDGu43yvLlzLM3/y04bxkhZF7+b42FOyoH2HOmlEKa9DQhjYSE2C0Nz1 AnGtY+qK0REJC108ltkbamcrPZvnEChEmpD/XlXlnntFZmg61iCgg6cnAxLVppV0 IDB+fdhmgIXg4CBidBtkKj71dlx6lAk= -----END CERTIFICATE-----Generated at Sat Aug 23 14:08:59 2025 by rpki-client