$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: Haq5bvZ7ubA2j8QhGocv9+3nbywIE8hqh4aL8Pigbr0= Subject key identifier: FF:CB:8A:43:F2:0B:E0:D5:F1:3C:D4:9E:29:9D:92:89:F2:86:1B:6B Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 089A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 0894 Signing time: Fri 22 Aug 2025 20:41:39 +0000 Manifest this update: Fri 22 Aug 2025 20:41:39 +0000 Manifest next update: Fri 29 Aug 2025 20:41:39 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: Ty0qUp4E/Im9w3Q67GQzmq0einheCqa0f3azJIBOr7Q=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: iVH3rhTgtUSo/JF63FQElE1NqUIp2qYoI3iOuK+LB04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2202 (0x89a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Aug 22 20:41:39 2025 GMT Not After : Aug 29 20:41:39 2025 GMT Subject: CN=68a8d603-dd40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bc:35:b7:39:8c:41:f1:72:8d:50:31:47:fa: 4e:c3:4e:e9:02:57:95:68:17:21:78:af:ca:42:d3: b1:34:1a:2a:d8:b3:af:62:d7:bf:39:49:aa:86:7b: ba:5c:fd:46:af:f1:23:6f:7a:8c:93:26:f2:fb:ed: c3:ee:f9:8c:63:dc:07:14:a8:10:ee:14:ce:29:05: 71:1d:f3:a6:bb:a5:6a:25:74:28:7f:41:2d:9e:d3: ca:63:74:c3:d4:23:ac:33:36:34:02:54:31:77:26: 22:a9:7e:ff:21:5c:dd:6a:44:75:46:d9:a0:ea:42: 6d:f6:38:88:c2:64:d8:32:56:09:43:cd:81:13:67: a3:a4:00:c3:b6:79:8f:df:56:6a:f9:a5:f4:62:73: 2f:c7:4e:e9:a5:15:a0:91:72:b8:82:35:e4:5c:b2: 2e:72:c5:1f:69:80:e8:70:20:cd:e0:0f:44:79:26: 75:bd:78:c6:1b:da:82:26:7f:f1:be:e1:5a:37:42: 35:a9:b4:0b:a3:5e:28:26:30:bd:6a:53:d4:af:80: 47:40:9f:a9:54:44:1b:46:67:d1:d1:76:56:50:be: 39:e4:4b:15:68:50:14:f5:c5:8e:23:ea:46:eb:75: be:38:6f:10:bf:2a:72:e0:85:c8:e0:49:70:5d:26: d2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:CB:8A:43:F2:0B:E0:D5:F1:3C:D4:9E:29:9D:92:89:F2:86:1B:6B X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:32:e6:6e:dc:bd:e9:cc:6c:0c:ff:26:27:99:07:e7:bc:b3: 1c:e7:33:71:9a:1e:3a:8c:c9:63:00:62:ca:5a:07:c8:eb:9f: 04:e9:a6:c8:9b:9f:02:42:3d:6a:7d:a0:28:68:8f:44:68:e8: d2:d2:db:2c:cf:93:f2:8c:47:11:f3:f9:96:df:bb:5c:59:b0: a8:c1:d2:a8:6e:dd:2e:c4:1a:e1:06:64:9e:66:c6:9e:7d:cd: d1:ee:bf:2a:43:bb:84:07:cd:c4:96:49:71:7f:ca:c2:03:c6: 98:a5:83:5e:65:1b:4c:b8:b1:87:07:20:2c:c7:91:4a:6e:13: ba:96:c6:79:4f:c9:20:1a:b5:c1:4d:05:01:f3:df:d2:56:f2: 1e:81:a4:0d:5e:5a:dc:03:4c:58:75:78:72:2b:ab:d4:bc:ce: 07:ad:16:49:f1:53:2d:19:28:2a:6e:59:81:07:93:f0:99:30: 70:0c:a7:29:be:6a:42:75:df:13:ae:89:4c:4d:b2:3d:e2:54: ba:0d:23:5e:3e:72:0c:34:49:c0:9c:67:a2:59:c3:27:b1:d9: 57:4a:4b:9d:f4:cb:30:52:ad:04:af:be:90:f7:72:d5:dc:90: 86:3a:96:82:c6:80:f3:5e:87:5d:1d:b8:d7:1e:16:88:6b:99: fd:52:cf:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjUwODIyMjA0MTM5WhcNMjUwODI5MjA0MTM5WjAYMRYwFAYD VQQDEw02OGE4ZDYwMy1kZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Lw1tzmMQfFyjVAxR/pOw07pAleVaBcheK/KQtOxNBoq2LOvYte/OUmqhnu6 XP1Gr/Ejb3qMkyby++3D7vmMY9wHFKgQ7hTOKQVxHfOmu6VqJXQof0EtntPKY3TD 1COsMzY0AlQxdyYiqX7/IVzdakR1Rtmg6kJt9jiIwmTYMlYJQ82BE2ejpADDtnmP 31Zq+aX0YnMvx07ppRWgkXK4gjXkXLIucsUfaYDocCDN4A9EeSZ1vXjGG9qCJn/x vuFaN0I1qbQLo14oJjC9alPUr4BHQJ+pVEQbRmfR0XZWUL455EsVaFAU9cWOI+pG 63W+OG8Qvypy4IXI4ElwXSbScQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/LikPy C+DV8TzUnimdkonyhhtrMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOMuZu3L3pzGwM/yYnmQfnvLMc5zNxmh46jMljAGLKWgfI658E6abI m58CQj1qfaAoaI9EaOjS0tssz5PyjEcR8/mW37tcWbCowdKobt0uxBrhBmSeZsae fc3R7r8qQ7uEB83Elklxf8rCA8aYpYNeZRtMuLGHByAsx5FKbhO6lsZ5T8kgGrXB TQUB89/SVvIegaQNXlrcA0xYdXhyK6vUvM4HrRZJ8VMtGSgqblmBB5PwmTBwDKcp vmpCdd8TrolMTbI94lS6DSNePnIMNEnAnGeiWcMnsdlXSkud9MswUq0Er76Q93LV 3JCGOpaCxoDzXoddHbjXHhaIa5n9Us+o -----END CERTIFICATE-----Generated at Sat Aug 23 10:36:27 2025 by rpki-client