$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft File: NSwvQv_2bLhqacZ-5hurbhEVTss.mft (raw, json) Hash identifier: E/SmGRkLSJPI52htCuIK2m7b1MFhdIz8u+hqULjpE9A= Subject key identifier: 91:48:13:26:E8:43:E7:44:CC:9F:FB:C8:D7:3B:ED:E1:CD:63:96:2C Authority key identifier: 35:2C:2F:42:FF:F6:6C:B8:6A:69:C6:7E:E6:1B:AB:6E:11:15:4E:CB Certificate issuer: /CN=A91CCD0C/serialNumber=352C2F42FFF66CB86A69C67EE61BAB6E11154ECB Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft Manifest number: DB Signing time: Sat 23 Aug 2025 05:40:53 +0000 Manifest this update: Sat 23 Aug 2025 05:40:53 +0000 Manifest next update: Sat 30 Aug 2025 05:40:53 +0000 Files and hashes: 1: NSwvQv_2bLhqacZ-5hurbhEVTss.crl (hash: XGI8eA3PjMgm4TVm4SSjsbTglTNaOr161vZ/dNBr2lg=) 2: E5BB4DB260E411EF83727F5CC4F9AE02.roa (hash: sjsLTuWeFwgevoPUUjQqWdyEX8OASo8b7yHbpb8l0pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.crl rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCD0C, serialNumber=352C2F42FFF66CB86A69C67EE61BAB6E11154ECB Validity Not Before: Aug 23 05:40:53 2025 GMT Not After : Aug 30 05:40:53 2025 GMT Subject: CN=68a95465-8827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bf:3f:d9:c1:a5:77:76:ab:23:d9:92:26:3c: d8:3c:ca:9f:1a:e8:ef:36:d7:27:b4:03:34:d5:33: ff:f9:b3:02:98:b4:be:f0:bf:9b:7b:a8:47:83:32: 60:b2:8e:9d:c8:66:0a:3f:fa:d0:e0:cb:b8:77:1b: b4:8f:cf:a5:e2:98:d4:dd:c3:21:36:03:20:f3:c5: e7:04:18:ad:0e:c3:e1:79:75:fa:aa:36:17:99:a2: 98:ca:41:09:cb:5e:a4:67:f5:5b:b1:76:63:87:01: b1:0d:29:6c:c1:12:0c:8e:40:77:1c:28:6d:07:0b: 29:9e:72:f7:59:6b:a1:ea:69:0e:81:18:3c:85:10: 02:11:7d:1e:82:25:54:40:d9:00:9c:68:8f:57:7a: 0d:cf:5d:b6:3b:14:99:72:b9:01:0d:d2:e4:42:40: 06:43:f7:90:82:bd:03:1f:6c:51:8d:e2:e7:98:b5: e5:3c:5e:21:cf:fb:bd:cc:06:41:b9:12:22:a4:a8: a4:3f:8e:37:00:1f:0f:e1:99:20:d7:7c:07:60:c6: c7:15:77:1d:75:d6:71:a5:f2:9c:88:22:95:5c:44: 87:05:81:a1:cd:81:86:bf:8f:c5:1a:29:bb:8f:23: a0:a9:aa:6f:0b:4d:b7:37:dd:9c:3e:bb:87:9a:ae: 32:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:48:13:26:E8:43:E7:44:CC:9F:FB:C8:D7:3B:ED:E1:CD:63:96:2C X509v3 Authority Key Identifier: keyid:35:2C:2F:42:FF:F6:6C:B8:6A:69:C6:7E:E6:1B:AB:6E:11:15:4E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:de:83:2f:94:1f:68:f8:72:f2:39:b4:c7:0b:01:7f:78:e9: 45:52:a5:a6:b1:9f:a7:9e:7a:56:6d:64:25:03:27:74:da:14: d8:f6:21:33:33:21:b3:14:c0:c3:42:7e:58:5c:a1:82:15:1b: ae:4c:35:dc:d9:8c:e8:2d:74:99:62:69:17:cf:55:08:88:f0: 55:9d:2f:60:e1:74:15:bb:58:b7:b5:79:11:31:4f:13:93:de: c4:12:71:06:0a:97:1c:c8:5a:2d:48:c1:fb:2e:80:fc:56:1c: 30:78:44:f6:f4:02:30:be:2a:30:bc:bb:8c:b0:b8:96:99:bf: 08:4a:88:7b:4a:e3:a1:66:ec:d4:50:25:bd:28:09:35:5b:d7: 16:0f:14:7f:22:39:17:91:e0:61:33:e4:bf:46:f8:d0:21:b2: cd:26:4a:78:65:b0:8a:a6:d4:89:18:4d:58:4e:62:93:9f:9a: ad:1a:f2:01:2d:27:a1:c2:83:bb:3c:3c:f0:8b:09:67:ca:a7: 7b:e3:11:e2:11:d2:c9:40:84:db:df:6f:4f:d9:7a:69:35:bb: 23:2a:92:7c:62:36:71:0c:ac:c7:0d:b9:9a:9e:26:49:6d:17: 1e:6f:f4:4d:b7:03:50:b6:97:aa:cd:d6:c5:c6:f4:a1:e5:98: 1b:16:14:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NEMEMxMTAvBgNVBAUTKDM1MkMyRjQyRkZGNjZDQjg2QTY5QzY3RUU2MUJBQjZF MTExNTRFQ0IwHhcNMjUwODIzMDU0MDUzWhcNMjUwODMwMDU0MDUzWjAYMRYwFAYD VQQDEw02OGE5NTQ2NS04ODI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzb8/2cGld3arI9mSJjzYPMqfGujvNtcntAM01TP/+bMCmLS+8L+be6hHgzJg so6dyGYKP/rQ4Mu4dxu0j8+l4pjU3cMhNgMg88XnBBitDsPheXX6qjYXmaKYykEJ y16kZ/VbsXZjhwGxDSlswRIMjkB3HChtBwspnnL3WWuh6mkOgRg8hRACEX0egiVU QNkAnGiPV3oNz122OxSZcrkBDdLkQkAGQ/eQgr0DH2xRjeLnmLXlPF4hz/u9zAZB uRIipKikP443AB8P4Zkg13wHYMbHFXcdddZxpfKciCKVXESHBYGhzYGGv4/FGim7 jyOgqapvC023N92cPruHmq4yDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFIEybo Q+dEzJ/7yNc77eHNY5YsMB8GA1UdIwQYMBaAFDUsL0L/9my4amnGfuYbq24RFU7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0QwQy84MTlBMDIzNDMy Q0IxMUVGOUVBMEM5NkFDNEY5QUUwMi9OU3d2UXZfMmJMaHFhY1otNWh1cmJoRVZU c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Td3ZRdl8yYkxocWFjWi01aHVyYmhFVlRzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0QwQy84MTlBMDIzNDMyQ0IxMUVGOUVBMEM5NkFDNEY5QUUwMi9OU3d2UXZfMmJM aHFhY1otNWh1cmJoRVZUc3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj3oMvlB9o+HLyObTHCwF/eOlFUqWmsZ+nnnpWbWQlAyd02hTY9iEz MyGzFMDDQn5YXKGCFRuuTDXc2YzoLXSZYmkXz1UIiPBVnS9g4XQVu1i3tXkRMU8T k97EEnEGCpccyFotSMH7LoD8VhwweET29AIwviowvLuMsLiWmb8ISoh7SuOhZuzU UCW9KAk1W9cWDxR/IjkXkeBhM+S/RvjQIbLNJkp4ZbCKptSJGE1YTmKTn5qtGvIB LSehwoO7PDzwiwlnyqd74xHiEdLJQITb329P2XppNbsjKpJ8YjZxDKzHDbmaniZJ bRceb/RNtwNQtpeqzdbFxvSh5ZgbFhTo -----END CERTIFICATE-----Generated at Sun Aug 24 04:59:49 2025 by rpki-client