$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: HS1et530Rqnci5tmRFFOomSkUHgguGvdezo2d7Fcbds= Subject key identifier: BA:E6:34:BC:B1:23:A0:30:8C:D2:5A:EB:E0:4B:C5:F6:E4:14:8E:AE Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 0146 Signing time: Sat 23 Aug 2025 04:27:58 +0000 Manifest this update: Sat 23 Aug 2025 04:27:58 +0000 Manifest next update: Sat 30 Aug 2025 04:27:58 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: 1olyaGF3u6hCIfvKAAz2TYJUVWj3weM7qMDFs5DVFzc=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: cuDY334MkIVtRBq3o3ujGRQ6jR/z000CC0KgPqw5K+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Aug 23 04:27:58 2025 GMT Not After : Aug 30 04:27:58 2025 GMT Subject: CN=68a9434e-3b38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:57:28:c8:15:40:c6:f3:88:fa:dc:ff:48:65: 12:66:bf:82:1a:6f:23:89:67:35:f8:11:ec:74:80: b1:dc:ba:7b:eb:42:b0:be:a9:01:1e:29:b9:6b:87: d5:c5:b2:d0:35:b4:96:a3:27:fb:ee:2d:c3:b7:45: f1:0b:9d:a6:93:66:16:4b:21:fa:c8:d4:2e:46:37: 67:9d:9f:f1:a1:df:1a:21:de:f9:3e:2a:f0:92:2e: 2c:f4:35:e7:3a:42:88:08:17:80:ca:99:c6:64:47: 54:fc:e3:d4:ab:e8:d6:a9:70:27:fc:87:92:ad:ac: e1:17:91:55:fa:9f:17:4c:b5:58:83:9b:e5:63:66: 36:9e:d9:1c:bf:47:de:75:2a:f0:e5:d0:f3:8f:1d: 73:bf:9c:55:d6:06:c9:51:f0:04:ed:bf:d7:84:ab: 37:ab:d5:25:72:f3:23:a3:00:12:6b:12:b9:55:ae: 7c:24:d6:ed:fd:69:68:73:3a:24:13:13:33:60:bb: 0b:40:cf:86:99:09:ae:73:15:d1:90:6a:29:6a:28: 7d:93:13:95:78:89:2c:5a:85:da:0c:14:68:35:1c: 9c:e8:19:5a:59:fd:f2:ed:c0:00:78:0d:90:29:d6: 62:eb:66:94:f8:35:c3:0e:24:8c:20:1a:6c:17:98: b0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E6:34:BC:B1:23:A0:30:8C:D2:5A:EB:E0:4B:C5:F6:E4:14:8E:AE X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:b4:84:53:70:28:e0:45:ba:10:21:68:69:93:43:c0:e5:5f: 00:39:53:46:b1:79:2b:56:c8:4a:bf:11:a2:89:fe:91:9c:b4: b3:43:42:80:75:43:4d:e2:68:75:86:2b:64:d9:96:c9:86:0d: 0a:02:b3:5d:29:f2:88:37:35:58:43:90:d6:38:2f:3e:af:a8: 4c:34:06:02:a5:0b:91:ec:3c:e4:d7:3e:62:7a:89:8a:9f:fc: 69:58:bc:80:03:85:5c:91:26:b6:0d:66:cc:96:d9:84:28:15: 5b:4c:f7:36:1d:f3:70:db:0c:c1:1c:f8:aa:1d:0a:ca:35:84: e9:5b:53:dd:e7:6b:03:7f:58:67:5f:97:d3:de:40:ae:ec:19: 87:50:6d:3b:f2:31:1a:f8:f9:4d:b4:62:af:27:68:c5:10:4d: c0:35:98:13:2b:a0:84:58:6f:72:dd:28:30:e5:78:b7:e4:aa: e8:ce:0e:87:5b:2e:6d:1f:25:e5:21:28:db:93:7a:ab:b1:c0: 42:4d:95:00:c7:dd:e3:6e:ec:54:b1:e5:e6:8f:b3:45:b9:e0: 8a:5a:67:19:6b:09:4d:e9:35:cc:3c:0d:a4:8e:e0:3e:81:58: 40:97:97:65:24:da:97:c9:61:8b:01:e1:8f:22:8c:82:55:46: 11:4c:e9:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjUwODIzMDQyNzU4WhcNMjUwODMwMDQyNzU4WjAYMRYwFAYD VQQDEw02OGE5NDM0ZS0zYjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVcoyBVAxvOI+tz/SGUSZr+CGm8jiWc1+BHsdICx3Lp760KwvqkBHim5a4fV xbLQNbSWoyf77i3Dt0XxC52mk2YWSyH6yNQuRjdnnZ/xod8aId75Pirwki4s9DXn OkKICBeAypnGZEdU/OPUq+jWqXAn/IeSrazhF5FV+p8XTLVYg5vlY2Y2ntkcv0fe dSrw5dDzjx1zv5xV1gbJUfAE7b/XhKs3q9UlcvMjowASaxK5Va58JNbt/Wloczok ExMzYLsLQM+GmQmucxXRkGopaih9kxOVeIksWoXaDBRoNRyc6BlaWf3y7cAAeA2Q KdZi62aU+DXDDiSMIBpsF5iwCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrmNLyx I6AwjNJa6+BLxfbkFI6uMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBptIRTcCjgRboQIWhpk0PA5V8AOVNGsXkrVshKvxGiif6RnLSzQ0KA dUNN4mh1hitk2ZbJhg0KArNdKfKINzVYQ5DWOC8+r6hMNAYCpQuR7Dzk1z5ieomK n/xpWLyAA4VckSa2DWbMltmEKBVbTPc2HfNw2wzBHPiqHQrKNYTpW1Pd52sDf1hn X5fT3kCu7BmHUG078jEa+PlNtGKvJ2jFEE3ANZgTK6CEWG9y3Sgw5Xi35Krozg6H Wy5tHyXlISjbk3qrscBCTZUAx93jbuxUseXmj7NFueCKWmcZawlN6TXMPA2kjuA+ gVhAl5dlJNqXyWGLAeGPIoyCVUYRTOkl -----END CERTIFICATE-----Generated at Sun Aug 24 01:00:47 2025 by rpki-client