$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: EBM9KoDInYsgY9tQy4o2uL1ES9UPSB1ghE7x6tqMQu0= Subject key identifier: 8B:C2:19:8E:5E:3A:7A:38:7B:7D:F1:0E:81:19:2A:DC:F2:91:50:53 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0D4B Signing time: Fri 22 Aug 2025 18:06:51 +0000 Manifest this update: Fri 22 Aug 2025 18:06:51 +0000 Manifest next update: Fri 29 Aug 2025 18:06:51 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: DdYB3AfkExmJOkoIXba/6zueUtmuVvSXu4I2GDzuBiE=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: u1TNJ+cS4eVAcfkpJ21oJA8p8MXvtPlstoexuvgtfIM=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: rShkEGVIbInxuwhM/D99+N9Ifro23DfGNAWpJ5dz2fM=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: TU8TSmPX0pl0lGmdo+pSWKRJSfGRcwunEDD4PcVNXOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3425 (0xd61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Aug 22 18:06:51 2025 GMT Not After : Aug 29 18:06:51 2025 GMT Subject: CN=68a8b1bb-d6ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:6a:d7:af:bf:a2:7c:4f:f6:0c:33:6d:6c:3e: 22:96:39:eb:85:f0:09:c9:97:73:ee:99:27:a3:d3: cd:a0:3a:48:7c:0d:94:d2:01:a5:79:a1:e9:b7:83: 46:09:78:d7:b9:bf:67:39:e3:23:b7:50:db:02:b2: fb:e6:3c:e4:55:82:ad:c3:c2:40:e3:b8:d8:63:60: 77:95:ce:97:10:51:b4:f5:c2:92:96:36:a9:52:91: f7:b8:15:87:75:52:2f:c9:8c:98:66:a3:20:aa:e3: c9:0e:6e:be:12:a8:30:e4:45:13:94:04:8a:56:93: 98:8b:c9:7c:a1:c5:1d:33:1c:c3:fc:96:50:fc:e9: 4c:36:b7:2e:3b:ea:08:47:5e:2f:89:4e:6d:d8:11: 23:55:54:31:0f:85:e4:45:6b:04:7f:fa:6d:ac:5a: 03:c3:b6:39:cd:6e:43:5f:0d:f5:1e:f6:33:1c:b2: a9:73:c4:0f:0c:e4:62:62:86:12:04:7b:5b:81:93: 64:7c:6c:1f:6f:91:9e:6e:51:0c:0d:83:74:14:d4: 53:a5:37:a4:f4:c8:07:04:87:2a:74:bf:24:9f:4d: 80:1d:e7:94:37:84:08:7a:75:ff:7f:af:82:9e:d8: ec:fe:8a:b8:76:c9:95:cf:bc:1d:06:c0:71:2c:1d: d7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C2:19:8E:5E:3A:7A:38:7B:7D:F1:0E:81:19:2A:DC:F2:91:50:53 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:6e:5d:dd:7c:15:df:67:41:f6:8a:c6:ec:f8:0f:0f:b1:f9: ad:cf:15:79:1a:b4:e8:a1:f4:91:7c:85:0f:d7:69:53:74:30: 13:97:74:06:93:ec:fd:a8:54:06:c6:22:d6:76:dc:96:6e:8f: 30:3d:fc:65:48:05:a7:40:bc:12:45:9d:95:25:a0:cb:bd:0f: c1:f9:7d:db:45:6c:dd:40:ef:2a:49:7c:40:06:20:90:ad:e6: 16:14:06:83:ad:cb:66:5a:9f:84:d2:c0:99:4d:35:a5:1c:da: 0a:01:6e:f9:b4:49:2d:a9:a8:15:15:e9:28:e5:79:89:8b:e7: 6b:73:fc:93:79:83:b2:77:7c:17:0c:4b:7c:cd:f7:d2:31:76: 7c:dc:38:fb:19:d9:4c:26:b8:48:e0:0d:1c:1b:4d:55:bd:f4: 98:ec:2c:b2:26:d7:03:45:e4:23:08:5e:a4:56:47:57:17:16: ec:8e:20:fe:54:7b:bc:03:da:a4:a3:8b:7c:10:1f:99:17:6e: 27:1e:14:e3:81:a9:99:8f:b2:80:32:91:2d:27:4d:d1:bd:94: 63:e9:cc:95:da:ac:84:48:95:2c:ad:06:58:cd:bf:e6:f3:b4: 0c:2e:04:80:77:e7:c2:cb:b7:c4:01:93:e5:6a:e5:d2:2d:96: c8:e3:82:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUwODIyMTgwNjUxWhcNMjUwODI5MTgwNjUxWjAYMRYwFAYD VQQDEw02OGE4YjFiYi1kNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7GrXr7+ifE/2DDNtbD4iljnrhfAJyZdz7pkno9PNoDpIfA2U0gGleaHpt4NG CXjXub9nOeMjt1DbArL75jzkVYKtw8JA47jYY2B3lc6XEFG09cKSljapUpH3uBWH dVIvyYyYZqMgquPJDm6+Eqgw5EUTlASKVpOYi8l8ocUdMxzD/JZQ/OlMNrcuO+oI R14viU5t2BEjVVQxD4XkRWsEf/ptrFoDw7Y5zW5DXw31HvYzHLKpc8QPDORiYoYS BHtbgZNkfGwfb5GeblEMDYN0FNRTpTek9MgHBIcqdL8kn02AHeeUN4QIenX/f6+C ntjs/oq4dsmVz7wdBsBxLB3XJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvCGY5e Ono4e33xDoEZKtzykVBTMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLbl3dfBXfZ0H2isbs+A8PsfmtzxV5GrToofSRfIUP12lTdDATl3QG k+z9qFQGxiLWdtyWbo8wPfxlSAWnQLwSRZ2VJaDLvQ/B+X3bRWzdQO8qSXxABiCQ reYWFAaDrctmWp+E0sCZTTWlHNoKAW75tEktqagVFeko5XmJi+drc/yTeYOyd3wX DEt8zffSMXZ83Dj7GdlMJrhI4A0cG01VvfSY7CyyJtcDReQjCF6kVkdXFxbsjiD+ VHu8A9qko4t8EB+ZF24nHhTjgamZj7KAMpEtJ03RvZRj6cyV2qyESJUsrQZYzb/m 87QMLgSAd+fCy7fEAZPlauXSLZbI44Lj -----END CERTIFICATE-----Generated at Sat Aug 23 21:16:50 2025 by rpki-client