$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: YAtJZZ/FWT2VPJLKCiTgi0WYE2oh5c5x8wUNWUFmZBQ= Subject key identifier: DC:E0:C1:3F:82:CE:08:2A:09:F6:61:BE:99:6D:3D:64:35:53:F8:E6 Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: 0108 Signing time: Sat 23 Aug 2025 05:28:46 +0000 Manifest this update: Sat 23 Aug 2025 05:28:46 +0000 Manifest next update: Sat 30 Aug 2025 05:28:46 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: xzdzlh1Wu3Vz0SenUFjn/BjFUKoL+5rzDPRtHETazdU=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: 0dsUVKxnnglNpZZhhpBErhWI1oXUDVFF4BUubObFWiM=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: StZAIMtKvc+DvwzgQ26IlnkW4j9VonIWzSJOuU7IXLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Aug 23 05:28:46 2025 GMT Not After : Aug 30 05:28:46 2025 GMT Subject: CN=68a9518e-f6af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:30:2f:3f:b5:b9:78:8b:1d:58:e0:73:65:b2: f4:60:8c:f8:b4:d5:a1:e2:e0:91:69:19:27:08:ff: 16:2e:f8:13:2d:e2:35:ea:35:2e:47:fe:db:90:1a: dc:60:38:36:64:b9:63:62:92:46:96:68:dc:bb:ae: dd:c8:da:60:c0:00:d0:dd:70:96:a2:f8:43:08:22: a2:d6:95:e6:82:a6:b6:50:ca:fc:8c:66:1f:66:b4: ea:b1:c4:e1:6c:3d:8c:3d:18:b8:44:95:c7:98:6c: 4d:7f:0d:96:77:1a:e7:b3:51:63:88:94:f6:e9:95: 5b:bb:0d:b5:d2:55:10:3d:19:7b:68:8c:d8:31:43: b8:fc:7e:2a:80:8a:0a:dc:68:a7:b5:3a:aa:e8:f8: f2:7f:ee:55:ef:36:03:91:3f:14:74:65:e5:3b:cb: 19:17:f1:76:8a:e4:cb:07:01:66:7e:ac:31:79:7d: 00:a8:84:e4:40:4c:7c:66:e0:76:78:0d:0e:c7:1d: 99:fe:84:e9:4b:5e:2c:fa:92:e8:62:00:22:d7:aa: 97:a7:95:a4:ee:30:a7:3c:80:f4:32:67:a7:37:a6: 07:bc:a0:5f:71:78:02:0a:bf:60:ad:7e:8b:33:04: 66:d0:a2:61:5c:b6:6d:d7:e5:f2:01:5a:5b:27:86: 2f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E0:C1:3F:82:CE:08:2A:09:F6:61:BE:99:6D:3D:64:35:53:F8:E6 X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:69:ae:88:4c:4c:26:52:e8:48:89:40:ed:7c:32:16:39:8f: 2d:75:9c:c0:e1:d7:9a:68:30:29:4f:76:be:4e:bd:f4:63:df: 30:35:e2:de:21:49:a1:fc:92:37:dc:ad:1c:35:05:8b:8d:aa: 94:e3:81:d4:fa:59:ff:9f:f5:9d:f0:ee:c3:e5:fd:ca:b2:d9: 8f:20:5c:90:c7:44:7f:a3:b7:59:cc:55:3c:03:ab:5f:17:b5: 0f:eb:ea:96:5d:5a:dc:3a:cb:93:2e:86:46:c9:ae:2b:f6:8e: e5:56:c7:d9:20:3c:0f:f1:24:cb:c5:ed:24:3a:fd:e6:92:64: 23:d1:51:62:c3:49:30:c9:7b:6e:28:a6:a0:8b:2e:63:27:74: 26:ae:b4:5a:dc:8d:30:c9:0d:e7:23:37:ca:27:30:2e:55:53: 6f:ef:a0:4c:f6:1e:96:08:e4:b8:7a:75:23:ee:cb:4c:cf:ce: 61:1b:88:3a:da:b4:cb:6a:9b:77:e7:5d:61:20:92:3a:08:b3: 56:3b:b8:d8:27:83:19:cb:fd:18:30:78:a6:e1:87:d7:7c:53: 29:13:e3:a7:8d:7d:cd:34:23:45:02:b3:3d:7f:e0:2e:02:1f: 17:b6:32:1c:77:8f:77:a9:71:11:4b:60:bf:2f:39:c5:20:87: ea:47:61:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjUwODIzMDUyODQ2WhcNMjUwODMwMDUyODQ2WjAYMRYwFAYD VQQDEw02OGE5NTE4ZS1mNmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDAvP7W5eIsdWOBzZbL0YIz4tNWh4uCRaRknCP8WLvgTLeI16jUuR/7bkBrc YDg2ZLljYpJGlmjcu67dyNpgwADQ3XCWovhDCCKi1pXmgqa2UMr8jGYfZrTqscTh bD2MPRi4RJXHmGxNfw2Wdxrns1FjiJT26ZVbuw210lUQPRl7aIzYMUO4/H4qgIoK 3GintTqq6Pjyf+5V7zYDkT8UdGXlO8sZF/F2iuTLBwFmfqwxeX0AqITkQEx8ZuB2 eA0Oxx2Z/oTpS14s+pLoYgAi16qXp5Wk7jCnPID0MmenN6YHvKBfcXgCCr9grX6L MwRm0KJhXLZt1+XyAVpbJ4YvjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzgwT+C zggqCfZhvpltPWQ1U/jmMB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhaa6ITEwmUuhIiUDtfDIWOY8tdZzA4deaaDApT3a+Tr30Y98wNeLe IUmh/JI33K0cNQWLjaqU44HU+ln/n/Wd8O7D5f3KstmPIFyQx0R/o7dZzFU8A6tf F7UP6+qWXVrcOsuTLoZGya4r9o7lVsfZIDwP8STLxe0kOv3mkmQj0VFiw0kwyXtu KKagiy5jJ3QmrrRa3I0wyQ3nIzfKJzAuVVNv76BM9h6WCOS4enUj7stMz85hG4g6 2rTLapt3511hIJI6CLNWO7jYJ4MZy/0YMHim4YfXfFMpE+OnjX3NNCNFArM9f+Au Ah8XtjIcd493qXERS2C/LznFIIfqR2Gp -----END CERTIFICATE-----Generated at Sat Aug 23 14:20:22 2025 by rpki-client