$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft File: NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft (raw, json) Hash identifier: 0Pzqitoij8dx3TQ/6FcEQYigbpTQiITi67pRX4usxM8= Subject key identifier: 73:05:0B:E6:D1:40:34:01:93:0F:C7:6A:7D:B9:64:AE:B5:56:67:5E Authority key identifier: 34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD Certificate issuer: /CN=A91E8F36/serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Certificate serial: 0203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft Manifest number: 01FC Signing time: Sat 23 Aug 2025 02:34:49 +0000 Manifest this update: Sat 23 Aug 2025 02:34:48 +0000 Manifest next update: Sat 30 Aug 2025 02:34:48 +0000 Files and hashes: 1: NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl (hash: Siz2SjW4wWqqEjeayYaHTRodym7kvL48hqWr23BmrSA=) 2: AC270A727D0711ED8181DA7FC4F9AE02.roa (hash: iIeWWLVIFJDjrG1ibZP/xl+WAjIK44IJWqOkBlQGCcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 515 (0x203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8F36, serialNumber=34D7D6D441C32D7C87142E9FE5C7EBC4F479B0CD Validity Not Before: Aug 23 02:34:48 2025 GMT Not After : Aug 30 02:34:48 2025 GMT Subject: CN=68a928c9-5aba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fe:1a:52:c7:28:e6:78:b9:b4:08:60:a4:58: 91:d4:3d:f1:d5:06:f3:27:f8:00:72:dd:2b:60:51: e9:0a:27:88:c3:d4:86:c6:95:44:a3:df:53:9b:1d: 18:fc:5b:f7:30:86:02:8f:98:7b:e9:0a:bf:66:c4: 9a:96:7c:3f:e6:61:ee:34:ed:f0:33:b0:87:f1:8b: 24:f4:5d:d2:93:94:7b:60:89:29:19:80:ff:1f:7b: 6b:ee:5c:b9:a9:88:cb:f3:35:78:f7:ea:69:c9:d5: e8:8c:14:20:6c:a7:16:34:19:59:0b:d0:c6:4c:6b: 63:5d:92:11:ea:19:ed:41:29:77:28:ae:e9:49:1f: 24:c7:67:0d:8c:79:7a:93:63:e7:fd:b1:7a:a9:99: 8b:be:3d:1e:c2:44:90:82:6a:2c:34:5d:86:63:40: cc:8a:03:2b:3f:03:a6:4d:ef:24:d1:4d:7c:91:16: 4e:4f:31:66:ba:72:fb:bb:19:1a:6b:c7:02:92:10: 40:8a:d6:ec:ba:3e:f6:7c:ba:5b:12:5a:dd:e8:b9: 39:3e:9b:02:9a:44:39:11:df:32:fe:c7:ed:e7:07: 7c:e0:5a:53:45:5d:be:93:b5:dc:a1:e9:2c:09:d0: e6:f0:99:6b:8d:6a:e5:4a:1c:34:4f:af:7d:98:c9: 8b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:05:0B:E6:D1:40:34:01:93:0F:C7:6A:7D:B9:64:AE:B5:56:67:5E X509v3 Authority Key Identifier: keyid:34:D7:D6:D4:41:C3:2D:7C:87:14:2E:9F:E5:C7:EB:C4:F4:79:B0:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNfW1EHDLXyHFC6f5cfrxPR5sM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8F36/249F41467D0211ED9C5D7D62C4F9AE02/NNfW1EHDLXyHFC6f5cfrxPR5sM0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:82:9f:16:f0:55:5a:23:32:fe:8a:dc:58:2b:86:98:72:9d: 77:2a:61:f9:ab:2c:95:93:3d:c1:f3:b7:d9:0d:bc:01:e9:b9: f2:34:31:6d:0b:97:ba:35:5f:43:6a:61:8f:5d:ce:65:b0:e4: d1:9b:e8:5a:51:db:7e:3c:f2:58:65:e3:ab:f7:19:74:33:7a: 99:23:dc:f6:1f:d0:a2:ba:8c:ba:3f:d3:fc:29:99:c8:42:77: 7f:8f:eb:7b:d3:58:eb:61:b9:47:ef:ef:bc:73:3d:56:9d:d8: b6:44:e2:02:7b:15:f6:36:39:c1:8c:53:63:39:80:fe:01:cf: 41:b7:66:9f:22:b0:bb:7f:95:8a:bd:0c:8a:a3:d7:98:37:20: 7b:8b:d9:39:f3:02:c1:03:e5:6f:62:65:d0:38:c1:f2:cb:28: 3c:4b:59:27:a6:16:ea:2e:ae:c2:8f:30:af:f4:c7:f9:96:11: 2e:83:14:b3:0a:b8:1a:36:2f:bb:bf:4d:7b:23:9d:a8:7f:67: f2:c0:61:b4:40:df:b6:bc:2d:49:2e:02:91:02:4e:26:e2:32: ea:95:bd:01:90:d9:0b:45:3c:db:30:78:b2:c6:14:6b:10:d9: 8e:ab:97:e7:b2:f9:b8:ca:c5:17:98:42:73:67:d4:22:3a:fc: 36:69:1e:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThGMzYxMTAvBgNVBAUTKDM0RDdENkQ0NDFDMzJEN0M4NzE0MkU5RkU1QzdFQkM0 RjQ3OUIwQ0QwHhcNMjUwODIzMDIzNDQ4WhcNMjUwODMwMDIzNDQ4WjAYMRYwFAYD VQQDEw02OGE5MjhjOS01YWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/4aUsco5ni5tAhgpFiR1D3x1QbzJ/gAct0rYFHpCieIw9SGxpVEo99Tmx0Y /Fv3MIYCj5h76Qq/ZsSalnw/5mHuNO3wM7CH8Ysk9F3Sk5R7YIkpGYD/H3tr7ly5 qYjL8zV49+ppydXojBQgbKcWNBlZC9DGTGtjXZIR6hntQSl3KK7pSR8kx2cNjHl6 k2Pn/bF6qZmLvj0ewkSQgmosNF2GY0DMigMrPwOmTe8k0U18kRZOTzFmunL7uxka a8cCkhBAitbsuj72fLpbElrd6Lk5PpsCmkQ5Ed8y/sft5wd84FpTRV2+k7Xcoeks CdDm8JlrjWrlShw0T699mMmLqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMFC+bR QDQBkw/Han25ZK61VmdeMB8GA1UdIwQYMBaAFDTX1tRBwy18hxQun+XH68T0ebDN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEYzNi8yNDlGNDE0NjdE MDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExYeUhGQzZmNWNmcnhQUjVz TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OZlcxRUhETFh5SEZDNmY1Y2ZyeFBSNXNNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEYzNi8yNDlGNDE0NjdEMDIxMUVEOUM1RDdENjJDNEY5QUUwMi9OTmZXMUVIRExY eUhGQzZmNWNmcnhQUjVzTTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsgp8W8FVaIzL+itxYK4aYcp13KmH5qyyVkz3B87fZDbwB6bnyNDFt C5e6NV9DamGPXc5lsOTRm+haUdt+PPJYZeOr9xl0M3qZI9z2H9Ciuoy6P9P8KZnI Qnd/j+t701jrYblH7++8cz1Wndi2ROICexX2NjnBjFNjOYD+Ac9Bt2afIrC7f5WK vQyKo9eYNyB7i9k58wLBA+VvYmXQOMHyyyg8S1knphbqLq7CjzCv9Mf5lhEugxSz CrgaNi+7v017I52of2fywGG0QN+2vC1JLgKRAk4m4jLqlb0BkNkLRTzbMHiyxhRr ENmOq5fnsvm4ysUXmEJzZ9QiOvw2aR4f -----END CERTIFICATE-----Generated at Sat Aug 23 21:17:51 2025 by rpki-client