$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft File: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft (raw, json) Hash identifier: s4a6ioqQ3Il/WORp4Jy2GWACSBnqYJMNRrQ/dDrKtno= Subject key identifier: BA:D7:66:9B:BA:8E:C9:14:9D:EF:7A:48:29:05:7B:45:B2:58:43:C0 Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1E5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft Manifest number: 1E1E Signing time: Fri 22 Aug 2025 16:09:26 +0000 Manifest this update: Fri 22 Aug 2025 16:09:26 +0000 Manifest next update: Fri 29 Aug 2025 16:09:26 +0000 Files and hashes: 1: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl (hash: Xeypn2fVfyWkkHW0K6WgS8v4975S+Pa68RxV2BigdGE=) 2: 527AA5C69F4F11EAA7970484C4F9AE02.roa (hash: zuUsKZCcjPOj5pM09o9z0mAoFhewcmu+fcIGUoGJ1jw=) 3: BD6571EEC0AC11EF8F832C34C4F9AE02.roa (hash: G/Ubv3z+VEdcNFiGQpNHf2mTf7Lsh6KdDEju5wCmKbw=) 4: C86831A80CB311EDB2750F60C4F9AE02.roa (hash: lSszTQ1c+gMLFVw7Gk7VDvJy/TEZ74hKfBC2kdiByE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7771 (0x1e5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A, serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: Aug 22 16:09:26 2025 GMT Not After : Aug 29 16:09:26 2025 GMT Subject: CN=68a89636-3b84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:56:d9:63:16:28:ec:5d:15:c7:65:b6:15:96: c9:f8:70:41:9d:07:35:8d:36:ac:05:2a:7d:fe:5f: 42:da:12:46:96:c9:50:d9:a8:53:f8:6f:80:a7:09: d3:12:37:d1:f0:9d:f4:91:92:b3:e5:1c:bf:7b:b6: fa:ab:b3:10:fe:c8:e9:ff:74:95:fc:b4:e5:9d:22: 58:0b:e1:4c:a9:49:ae:19:d9:37:3e:5d:8f:f5:1c: 57:ef:b8:4f:93:90:d9:99:ae:73:31:43:7b:8a:fe: 9c:b3:4a:48:94:c0:ee:eb:42:85:70:8f:9c:ed:38: 86:f6:76:24:52:e4:ce:31:21:74:6c:16:31:06:7d: b3:a7:60:27:02:14:79:af:99:71:95:68:5b:b9:c2: a3:b1:08:c0:3c:24:62:d2:1a:83:d8:11:53:b9:ef: f2:3f:f8:c8:ab:8c:91:63:e6:f5:a5:49:dd:81:6d: f2:61:96:fe:e1:6a:53:31:b6:9d:95:4e:d7:33:3d: d3:db:d3:a0:e3:96:3f:37:75:16:f6:a6:80:1a:7f: 1e:68:d5:0a:66:5a:34:8a:c8:d7:4c:3b:ac:c4:11: 42:31:c2:d3:e1:4c:08:04:2e:11:e5:ff:61:99:66: 01:d5:21:cc:05:3f:d1:df:6d:5f:11:42:4d:18:c6: 6f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D7:66:9B:BA:8E:C9:14:9D:EF:7A:48:29:05:7B:45:B2:58:43:C0 X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ed:fb:9d:b8:69:5a:c9:7d:66:45:c4:c1:ac:7d:55:b0:38: d5:2e:cc:cd:db:2c:1f:8a:72:20:e7:79:53:c0:2d:91:6b:e7: b0:bf:7e:d6:7a:60:37:00:f3:5a:17:60:59:67:e6:58:65:0c: a7:18:44:42:7e:64:b8:ed:38:e0:60:8e:a2:b8:36:5f:b0:75: ca:d7:a5:7f:d8:bd:ec:07:d2:9c:59:89:5d:44:5e:eb:8b:38: 40:60:f4:84:ac:00:db:60:01:a0:f0:32:d9:d6:6c:6b:29:91: 07:d8:25:94:be:d5:0d:a8:0b:0d:70:c5:59:8a:47:ab:75:ca: c8:3a:67:77:44:d8:23:d8:16:21:a6:78:7d:a8:f1:65:6b:d0: 5d:21:ce:95:b6:4f:2d:52:3a:6b:5d:f1:78:07:bf:20:78:f5: a0:b4:c8:71:e7:f8:97:1a:87:53:50:8f:80:61:8d:9c:9a:52: c5:2f:04:d9:b8:c1:ad:c8:19:0c:9a:34:db:7c:03:e9:0e:5d: 66:28:33:c1:22:de:59:c2:ab:bd:a0:c9:89:04:16:58:39:6b: 09:fb:c1:0b:ba:81:f7:ca:15:68:5b:37:fa:52:04:82:32:47: a0:3b:1f:67:ce:1d:94:69:87:11:e7:76:92:a5:c8:ff:a5:fe: 97:34:be:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjUwODIyMTYwOTI2WhcNMjUwODI5MTYwOTI2WjAYMRYwFAYD VQQDEw02OGE4OTYzNi0zYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlbZYxYo7F0Vx2W2FZbJ+HBBnQc1jTasBSp9/l9C2hJGlslQ2ahT+G+ApwnT EjfR8J30kZKz5Ry/e7b6q7MQ/sjp/3SV/LTlnSJYC+FMqUmuGdk3Pl2P9RxX77hP k5DZma5zMUN7iv6cs0pIlMDu60KFcI+c7TiG9nYkUuTOMSF0bBYxBn2zp2AnAhR5 r5lxlWhbucKjsQjAPCRi0hqD2BFTue/yP/jIq4yRY+b1pUndgW3yYZb+4WpTMbad lU7XMz3T29Og45Y/N3UW9qaAGn8eaNUKZlo0isjXTDusxBFCMcLT4UwIBC4R5f9h mWYB1SHMBT/R321fEUJNGMZvOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrXZpu6 jskUne96SCkFe0WyWEPAMB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ2QS8wMDUwMDE2NDk0MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxr eGhvejVCMWlROVUxc0FmVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU7fuduGlayX1mRcTBrH1VsDjVLszN2ywfinIg53lTwC2Ra+ewv37W emA3APNaF2BZZ+ZYZQynGERCfmS47TjgYI6iuDZfsHXK16V/2L3sB9KcWYldRF7r izhAYPSErADbYAGg8DLZ1mxrKZEH2CWUvtUNqAsNcMVZikerdcrIOmd3RNgj2BYh pnh9qPFla9BdIc6Vtk8tUjprXfF4B78gePWgtMhx5/iXGodTUI+AYY2cmlLFLwTZ uMGtyBkMmjTbfAPpDl1mKDPBIt5Zwqu9oMmJBBZYOWsJ+8ELuoH3yhVoWzf6UgSC MkegOx9nzh2UaYcR53aSpcj/pf6XNL6G -----END CERTIFICATE-----Generated at Sun Aug 24 01:00:46 2025 by rpki-client