$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft File: nssirN4JZ6BYN-WPxzHTV-N2N_g.mft (raw, json) Hash identifier: 3vWaPxnbQYh62KgkyS1P7BZRrj+I5L7WATNPL0YEeYE= Subject key identifier: 8A:D7:A0:AC:DA:56:EB:B5:0B:EA:CD:49:43:1B:D3:E3:D2:2D:44:87 Authority key identifier: 9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 Certificate issuer: /CN=A91C6B27/serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Certificate serial: 0BA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft Manifest number: 0B8F Signing time: Fri 22 Aug 2025 19:07:37 +0000 Manifest this update: Fri 22 Aug 2025 19:07:37 +0000 Manifest next update: Fri 29 Aug 2025 19:07:37 +0000 Files and hashes: 1: nssirN4JZ6BYN-WPxzHTV-N2N_g.crl (hash: IBhcslZFDJujyA5HGV5Do/0wHdJcRUAT2gQ5v1LiPXM=) 2: 2B1D3BB2305811EA8D5B6479C4F9AE02.roa (hash: SccF8HRtnWqPr6dbqcwFHPaBm6ma5y4QuMfEodFq0x8=) 3: E4BB99E2336E11EA94623E18C4F9AE02.roa (hash: qucjAVGWpouOPQ3WeFCClp/39PYcY3aBfMI0Mahgzo8=) 4: E5675F48336E11EA94623E18C4F9AE02.roa (hash: SLgBz/egPkek4QY9s+goKoqiOELjoV2wU84pCw7L2Bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2980 (0xba4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6B27, serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Validity Not Before: Aug 22 19:07:37 2025 GMT Not After : Aug 29 19:07:37 2025 GMT Subject: CN=68a8bff9-12c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3b:b3:dd:08:6f:c1:4f:0d:76:9b:1a:ef:c4: e2:6a:11:34:3a:ad:c8:c6:90:71:38:33:b1:a2:d9: 85:ab:f2:f7:0b:79:f5:8c:50:9c:18:0a:12:d5:5b: cc:0a:e3:54:33:a9:27:2e:01:ce:e0:da:b9:ac:9e: 9a:f1:02:74:10:21:5b:fd:72:e0:2e:19:a0:e2:bf: 7a:92:72:7d:04:98:c4:d7:10:fa:8c:f9:f3:68:2f: 8c:06:ce:c6:0b:ac:9d:8c:1e:89:87:a3:de:55:75: ea:e7:96:da:fa:69:bd:0b:54:f2:bd:2a:57:e1:18: b3:22:45:d0:56:8f:9a:21:eb:db:2f:0c:f4:17:d5: 09:a3:78:a4:5a:5e:d3:fb:72:00:a0:b8:c6:c9:49: c4:49:36:8a:36:43:3d:db:e3:6d:ce:e1:f6:44:76: 03:8b:38:c6:a2:55:e1:36:a1:76:ce:e3:f0:94:3c: e9:8e:31:ec:ce:12:ee:4f:be:c6:81:fb:06:63:18: cd:ac:77:6f:e9:08:71:00:d5:7c:40:7d:9c:3e:a7: 9c:71:a2:df:aa:4a:cc:19:f0:50:04:98:c1:ec:e6: b2:cc:40:ab:f5:b0:74:b0:94:ff:f9:9c:a6:64:aa: 35:dc:eb:7b:e5:39:2b:8e:68:dc:b4:c7:1f:a6:56: 54:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D7:A0:AC:DA:56:EB:B5:0B:EA:CD:49:43:1B:D3:E3:D2:2D:44:87 X509v3 Authority Key Identifier: keyid:9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:40:88:85:b4:e4:a7:29:d0:db:91:6d:fc:83:0e:b9:3e:f0: b7:4a:4d:18:d6:dc:1b:ee:fa:68:39:56:ba:10:65:bb:90:5a: 52:04:cc:8e:d3:06:9f:8f:f2:a7:5e:f7:3e:76:2e:b3:60:12: e4:d5:99:51:13:50:25:e5:8c:4b:c6:75:dd:c5:89:97:bf:37: f9:f9:ac:86:76:e7:1f:e2:cf:0e:0c:28:7d:bc:f8:26:31:64: b2:72:25:ca:0a:53:c3:7d:b4:db:6b:93:48:60:4f:d2:7f:9a: 1b:92:19:63:4e:7f:a7:13:17:65:43:de:10:16:36:28:b6:d3: 1a:8d:c9:a2:06:bb:db:44:ff:d8:00:4c:95:9b:96:d9:36:cd: 83:a2:c4:4e:b5:a8:7e:e3:1c:7d:ba:bd:04:d5:db:b3:e9:be: a0:23:ea:6b:12:47:a8:2f:c0:20:d0:e6:78:b4:9c:97:b8:1e: 3f:e2:72:6f:e3:66:92:68:9a:e1:ea:ed:fe:2c:6c:01:31:d7: db:24:5b:89:da:f7:60:91:c5:4b:0c:28:54:c9:5b:0e:3c:52: 80:1c:e4:41:6d:c1:bb:17:15:e8:e2:b9:d9:d1:71:13:4e:7d: 28:6f:10:0b:0c:1e:ff:64:79:ea:73:ba:8e:6c:53:a8:51:39: f8:0c:11:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCMjcxMTAvBgNVBAUTKDlFQ0IyMkFDREUwOTY3QTA1ODM3RTU4RkM3MzFEMzU3 RTM3NjM3RjgwHhcNMjUwODIyMTkwNzM3WhcNMjUwODI5MTkwNzM3WjAYMRYwFAYD VQQDEw02OGE4YmZmOS0xMmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzuz3QhvwU8Ndpsa78TiahE0Oq3IxpBxODOxotmFq/L3C3n1jFCcGAoS1VvM CuNUM6knLgHO4Nq5rJ6a8QJ0ECFb/XLgLhmg4r96knJ9BJjE1xD6jPnzaC+MBs7G C6ydjB6Jh6PeVXXq55ba+mm9C1TyvSpX4RizIkXQVo+aIevbLwz0F9UJo3ikWl7T +3IAoLjGyUnESTaKNkM92+NtzuH2RHYDizjGolXhNqF2zuPwlDzpjjHszhLuT77G gfsGYxjNrHdv6QhxANV8QH2cPqeccaLfqkrMGfBQBJjB7OayzECr9bB0sJT/+Zym ZKo13Ot75TkrjmjctMcfplZUIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrXoKza Vuu1C+rNSUMb0+PSLUSHMB8GA1UdIwQYMBaAFJ7LIqzeCWegWDflj8cx01fjdjf4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkIyNy84MkJGMkJGNDMw NTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2QllOLVdQeHpIVFYtTjJO X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zc2lyTjRKWjZCWU4tV1B4ekhUVi1OMk5fZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkIyNy84MkJGMkJGNDMwNTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2 QllOLVdQeHpIVFYtTjJOX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIQIiFtOSnKdDbkW38gw65PvC3Sk0Y1twb7vpoOVa6EGW7kFpSBMyO 0wafj/KnXvc+di6zYBLk1ZlRE1Al5YxLxnXdxYmXvzf5+ayGducf4s8ODCh9vPgm MWSyciXKClPDfbTba5NIYE/Sf5obkhljTn+nExdlQ94QFjYottMajcmiBrvbRP/Y AEyVm5bZNs2DosROtah+4xx9ur0E1duz6b6gI+prEkeoL8Ag0OZ4tJyXuB4/4nJv 42aSaJrh6u3+LGwBMdfbJFuJ2vdgkcVLDChUyVsOPFKAHORBbcG7FxXo4rnZ0XET Tn0obxALDB7/ZHnqc7qObFOoUTn4DBEC -----END CERTIFICATE-----Generated at Sat Aug 23 10:26:53 2025 by rpki-client