$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: CgaxDz/oQb6WsW25oN2WzAdDr+HsjbY/pIFInHCQ3Ms= Subject key identifier: C5:C5:D6:3C:11:36:3A:04:B6:21:7A:65:07:E7:3C:A4:C1:2D:F4:8E Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 0744 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 071C Signing time: Fri 22 Aug 2025 22:05:51 +0000 Manifest this update: Fri 22 Aug 2025 22:05:50 +0000 Manifest next update: Fri 29 Aug 2025 22:05:50 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: 4d+RUNfTKq4/UgtiTeTt49P/m92eHdWSCOf8ONZjMR8=) 2: 0A81888851C011F08C31DF3FC4F9AE02.roa (hash: 1yPuP1g8YZqvnHf524WkUbhoEmWrAxZBELmM8pADlg8=) 3: 7B3EE1DC524811F0B02FCD27C4F9AE02.roa (hash: NOszZQVplnPpRn57635/o7+RgEVvlc3t2csfhNsghIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1860 (0x744) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Aug 22 22:05:50 2025 GMT Not After : Aug 29 22:05:50 2025 GMT Subject: CN=68a8e9be-4625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f8:b8:d0:4e:93:2f:b5:e3:75:26:19:27:53: c9:75:c4:6d:09:35:38:08:1d:f2:00:27:e6:f2:29: c1:25:33:ad:83:3d:06:3b:76:2b:06:8b:21:0d:5d: aa:e4:51:77:2a:c8:67:35:3b:3a:56:78:6a:c5:8a: fc:cf:1f:66:c1:e6:e6:ee:c2:07:a3:1c:58:36:28: af:ae:aa:1e:dc:58:de:71:d3:1e:af:95:97:f9:60: 52:b1:24:31:c1:ee:ab:7e:9c:01:14:35:00:02:17: e5:0b:f9:01:df:b1:76:30:3a:8f:82:50:ef:a8:68: 42:3f:3b:72:7d:4e:81:af:a7:e1:02:37:78:84:8d: f9:45:63:94:99:c7:d0:bd:21:6d:04:d9:0d:6e:1f: a1:9d:a6:ac:b4:56:ba:c9:97:b2:ee:63:d4:a0:4a: 2d:33:12:4e:26:98:f8:76:74:88:a3:ec:93:12:34: 76:59:12:50:32:a5:f8:82:13:33:d5:33:a7:9b:a7: 94:e0:87:2e:39:b8:b8:e3:53:87:7a:4f:c4:44:2e: e9:ea:54:5c:55:15:ba:d4:70:a7:49:25:82:54:07: 53:11:01:67:df:11:3b:16:6c:89:29:01:30:cc:54: 35:b1:0f:73:05:b3:a0:0c:82:50:cb:86:34:1f:d7: f9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C5:D6:3C:11:36:3A:04:B6:21:7A:65:07:E7:3C:A4:C1:2D:F4:8E X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:65:c4:68:15:9f:e6:7c:fd:ce:05:b7:19:dc:16:b7:09:4d: f5:6a:d7:fb:b8:e2:1c:da:17:bd:c6:46:f5:92:66:b3:eb:4a: d5:54:46:38:20:db:75:29:f4:f0:27:25:bd:7e:7b:e9:af:5e: 37:47:7c:c9:4f:ce:e0:9a:97:34:98:4a:3f:a7:d7:14:62:7f: c3:a5:55:88:d5:d5:c1:6c:7a:4d:b2:31:4d:0c:0f:5b:06:12: 6b:86:77:f0:3f:20:5e:f9:d7:3d:14:60:6d:35:2c:14:3e:c6: fe:1e:c4:c0:19:89:61:66:b1:30:34:77:09:a8:5e:d0:6b:3f: b3:73:c5:7e:e5:08:40:d1:b0:a9:81:b6:28:e6:ad:71:fe:1a: 95:d8:6b:bf:ea:0b:18:76:96:82:07:f1:07:ca:7a:37:97:37: 21:c8:fe:5b:c4:f7:e6:72:cf:5f:93:a3:f1:81:d3:35:b2:cf: 1b:3d:69:8d:b2:2c:13:b5:95:35:d8:c1:fd:8d:43:32:db:4b: a9:7d:9d:0f:98:df:b4:2e:d1:60:ea:fd:17:1d:79:cd:a5:42: 00:4e:99:56:0c:07:f3:dc:20:b6:06:a1:5f:fe:84:fc:b3:30: 5c:8c:12:c9:2a:48:08:76:9c:67:db:70:78:d9:8a:c6:58:f3: 53:25:39:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUwODIyMjIwNTUwWhcNMjUwODI5MjIwNTUwWjAYMRYwFAYD VQQDEw02OGE4ZTliZS00NjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Pi40E6TL7XjdSYZJ1PJdcRtCTU4CB3yACfm8inBJTOtgz0GO3YrBoshDV2q 5FF3KshnNTs6VnhqxYr8zx9mwebm7sIHoxxYNiivrqoe3FjecdMer5WX+WBSsSQx we6rfpwBFDUAAhflC/kB37F2MDqPglDvqGhCPztyfU6Br6fhAjd4hI35RWOUmcfQ vSFtBNkNbh+hnaastFa6yZey7mPUoEotMxJOJpj4dnSIo+yTEjR2WRJQMqX4ghMz 1TOnm6eU4IcuObi441OHek/ERC7p6lRcVRW61HCnSSWCVAdTEQFn3xE7FmyJKQEw zFQ1sQ9zBbOgDIJQy4Y0H9f5IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXF1jwR NjoEtiF6ZQfnPKTBLfSOMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkZcRoFZ/mfP3OBbcZ3Ba3CU31atf7uOIc2he9xkb1kmaz60rVVEY4 INt1KfTwJyW9fnvpr143R3zJT87gmpc0mEo/p9cUYn/DpVWI1dXBbHpNsjFNDA9b BhJrhnfwPyBe+dc9FGBtNSwUPsb+HsTAGYlhZrEwNHcJqF7Qaz+zc8V+5QhA0bCp gbYo5q1x/hqV2Gu/6gsYdpaCB/EHyno3lzchyP5bxPfmcs9fk6PxgdM1ss8bPWmN siwTtZU12MH9jUMy20upfZ0PmN+0LtFg6v0XHXnNpUIATplWDAfz3CC2BqFf/oT8 szBcjBLJKkgIdpxn23B42YrGWPNTJTko -----END CERTIFICATE-----Generated at Sun Aug 24 07:20:25 2025 by rpki-client