$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft File: NPs4YMs0-seCIJnB-5kfzfY8hs0.mft (raw, json) Hash identifier: HYrfOiEunFJJClIA/eGePg/sxUlsXatceCw0QRuk2+o= Subject key identifier: 73:AE:80:04:22:A9:D0:93:90:E9:06:36:F7:46:0A:3D:22:A3:3D:2C Authority key identifier: 34:FB:38:60:CB:34:FA:C7:82:20:99:C1:FB:99:1F:CD:F6:3C:86:CD Certificate issuer: /CN=A91C1710/serialNumber=34FB3860CB34FAC7822099C1FB991FCDF63C86CD Certificate serial: 0411 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPs4YMs0-seCIJnB-5kfzfY8hs0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft Manifest number: 07B5 Signing time: Sat 23 Aug 2025 00:39:48 +0000 Manifest this update: Sat 23 Aug 2025 00:39:48 +0000 Manifest next update: Sat 30 Aug 2025 00:39:48 +0000 Files and hashes: 1: NPs4YMs0-seCIJnB-5kfzfY8hs0.crl (hash: 8XZHLd//hdb3ArY5C9L+vYKzfW/QAe4towrJark2pso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.crl rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPs4YMs0-seCIJnB-5kfzfY8hs0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1041 (0x411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1710, serialNumber=34FB3860CB34FAC7822099C1FB991FCDF63C86CD Validity Not Before: Aug 23 00:39:48 2025 GMT Not After : Aug 30 00:39:48 2025 GMT Subject: CN=68a90dd4-06d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:01:49:66:10:b6:6a:12:2a:e5:39:36:41:49: 2e:e7:7f:88:dd:03:dc:ad:c0:6d:11:da:04:8d:66: 7a:0d:be:f4:ed:f6:6b:37:4c:f4:aa:d3:b5:5b:0c: 61:ce:50:ed:a2:17:4d:ff:0f:c3:10:cd:67:20:0a: a4:f9:f4:0e:a5:29:52:fd:eb:5b:8a:af:2a:7b:57: 15:96:28:af:83:1f:1c:7d:94:d7:29:a5:43:d0:b9: 65:30:20:65:4d:8c:91:e0:75:7f:50:b9:2d:66:c1: ad:13:74:b7:a6:98:b7:1c:93:5d:2d:fe:74:a0:d9: 0f:d8:93:f7:e2:dd:7c:88:70:ca:6e:a9:d2:b7:c2: 45:ef:c6:a4:19:55:c1:2e:c9:a0:d4:cc:4a:9c:e6: 5f:be:33:36:ab:1d:57:aa:76:b2:70:b5:7f:0f:f9: da:05:f8:d3:6a:fb:f3:98:71:f6:8a:13:01:32:0f: 19:41:83:aa:07:20:ba:46:11:5c:52:72:5a:f9:bc: 4a:fb:fc:0d:dd:80:a4:ee:fd:53:ff:f6:82:67:eb: f4:a7:f7:d5:21:c4:45:09:3d:83:93:b8:93:48:b5: 53:6f:98:30:cf:2b:c3:38:8b:84:8c:ec:1a:08:4f: 5b:18:63:e9:03:05:53:8f:d0:0a:0d:00:b1:71:8b: 19:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:AE:80:04:22:A9:D0:93:90:E9:06:36:F7:46:0A:3D:22:A3:3D:2C X509v3 Authority Key Identifier: keyid:34:FB:38:60:CB:34:FA:C7:82:20:99:C1:FB:99:1F:CD:F6:3C:86:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPs4YMs0-seCIJnB-5kfzfY8hs0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:3f:e6:70:8f:13:63:a9:6a:df:d8:cb:28:8f:c5:43:a7:b6: f4:63:c6:e7:6b:97:0b:ea:94:3a:c6:99:4c:dc:36:2a:39:de: 13:7e:50:e6:1e:7b:8c:da:55:01:28:2b:dd:9e:62:c0:01:6a: ec:fb:d1:f7:ad:ce:1c:b3:5a:63:d6:4f:f8:b2:fb:9c:bf:c8: e6:77:c6:20:c6:b5:0c:66:f8:a3:01:74:ae:bc:8b:a0:ac:bb: b0:92:1a:24:4a:07:4d:20:c2:90:f1:14:30:da:8e:72:28:86: 44:6f:56:30:a0:66:c6:0c:51:e9:40:44:68:f6:b6:15:08:8e: 82:59:a2:ad:f9:82:f7:b0:2c:38:11:ed:73:d0:ab:47:d2:ea: 7e:45:cd:c9:c6:68:6e:ec:a5:1a:d5:17:04:1e:f1:ea:58:b5: e4:92:45:a6:f7:52:ab:60:97:72:94:74:d4:7e:3e:79:39:e6: e2:3a:55:7a:4d:ea:58:96:87:94:ff:08:61:8d:01:ff:22:2a: 63:9f:3a:03:f2:47:b7:0d:0f:10:65:96:52:08:18:aa:ed:8d: bb:fc:f5:b3:e7:93:a0:cd:09:85:ed:2a:bf:a0:23:bf:b8:dc: 88:08:f7:9c:67:ce:9f:a3:46:0e:c2:b8:38:b9:6c:ee:ed:39: 94:fc:8b:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3MTAxMTAvBgNVBAUTKDM0RkIzODYwQ0IzNEZBQzc4MjIwOTlDMUZCOTkxRkNE RjYzQzg2Q0QwHhcNMjUwODIzMDAzOTQ4WhcNMjUwODMwMDAzOTQ4WjAYMRYwFAYD VQQDEw02OGE5MGRkNC0wNmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QFJZhC2ahIq5Tk2QUku53+I3QPcrcBtEdoEjWZ6Db707fZrN0z0qtO1Wwxh zlDtohdN/w/DEM1nIAqk+fQOpSlS/etbiq8qe1cVliivgx8cfZTXKaVD0LllMCBl TYyR4HV/ULktZsGtE3S3ppi3HJNdLf50oNkP2JP34t18iHDKbqnSt8JF78akGVXB Lsmg1MxKnOZfvjM2qx1XqnaycLV/D/naBfjTavvzmHH2ihMBMg8ZQYOqByC6RhFc UnJa+bxK+/wN3YCk7v1T//aCZ+v0p/fVIcRFCT2Dk7iTSLVTb5gwzyvDOIuEjOwa CE9bGGPpAwVTj9AKDQCxcYsZGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOugAQi qdCTkOkGNvdGCj0ioz0sMB8GA1UdIwQYMBaAFDT7OGDLNPrHgiCZwfuZH832PIbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTcxMC8xODIyOUE4Njgy NkIxMUVDQTExQkE1MkJDNEY5QUUwMi9OUHM0WU1zMC1zZUNJSm5CLTVrZnpmWTho czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05QczRZTXMwLXNlQ0lKbkItNWtmemZZOGhzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTcxMC8xODIyOUE4NjgyNkIxMUVDQTExQkE1MkJDNEY5QUUwMi9OUHM0WU1zMC1z ZUNJSm5CLTVrZnpmWThoczAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEP+ZwjxNjqWrf2Msoj8VDp7b0Y8bna5cL6pQ6xplM3DYqOd4TflDm HnuM2lUBKCvdnmLAAWrs+9H3rc4cs1pj1k/4svucv8jmd8YgxrUMZvijAXSuvIug rLuwkhokSgdNIMKQ8RQw2o5yKIZEb1YwoGbGDFHpQERo9rYVCI6CWaKt+YL3sCw4 Ee1z0KtH0up+Rc3Jxmhu7KUa1RcEHvHqWLXkkkWm91KrYJdylHTUfj55OebiOlV6 TepYloeU/whhjQH/IipjnzoD8ke3DQ8QZZZSCBiq7Y27/PWz55OgzQmF7Sq/oCO/ uNyICPecZ86fo0YOwrg4uWzu7TmU/Ivs -----END CERTIFICATE-----Generated at Sat Aug 23 15:44:33 2025 by rpki-client