$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft File: 0NbEemjLQdEG6wQtcma5y7_Bpzs.mft (raw, json) Hash identifier: MHahZqHZU6j/mO2tFvERUnfgX/uoktXNGp3mjn3L9Bo= Subject key identifier: AD:7B:34:2B:21:2E:5E:0F:78:68:DA:60:E1:FD:BD:88:5D:5A:20:5E Authority key identifier: D0:D6:C4:7A:68:CB:41:D1:06:EB:04:2D:72:66:B9:CB:BF:C1:A7:3B Certificate issuer: /CN=A91EBF76/serialNumber=D0D6C47A68CB41D106EB042D7266B9CBBFC1A73B Certificate serial: 0688 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft Manifest number: 0683 Signing time: Fri 22 Aug 2025 22:30:44 +0000 Manifest this update: Fri 22 Aug 2025 22:30:43 +0000 Manifest next update: Fri 29 Aug 2025 22:30:43 +0000 Files and hashes: 1: 0NbEemjLQdEG6wQtcma5y7_Bpzs.crl (hash: W2rOlDMbt3bx1PuRY3Ig82Ye2RMIBchseq4LyqqN8aU=) 2: 5FBDA400853011EBA1AF1D76C4F9AE02.roa (hash: av1fp+B0Rvyyl/M+tQ87N6LBAVDY2pJUK/6gF5bMDYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.crl rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1672 (0x688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF76, serialNumber=D0D6C47A68CB41D106EB042D7266B9CBBFC1A73B Validity Not Before: Aug 22 22:30:43 2025 GMT Not After : Aug 29 22:30:43 2025 GMT Subject: CN=68a8ef93-fece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c7:97:0e:54:37:95:ba:c1:3e:86:cb:21:e1: ad:12:41:1f:50:19:e4:bf:64:56:be:f4:5c:b5:2c: 80:e1:fb:29:1c:2c:93:1f:49:b6:94:d1:9a:e6:df: 97:b1:28:dc:d9:43:2c:07:8f:49:dd:15:aa:84:b2: c7:86:b4:0b:01:c6:94:30:db:66:63:83:05:33:ae: bb:8e:fd:4d:86:b3:e0:1d:ad:35:c4:54:d6:b5:0d: 77:91:79:30:c6:a5:8f:12:00:f7:84:3c:4d:c6:a4: 9c:26:93:b0:9b:c8:1b:a0:36:41:e1:e0:23:e1:53: 5b:72:b7:c2:68:b0:a6:8b:13:df:50:f4:7b:e0:46: 82:e6:94:1d:f7:41:75:be:84:67:c1:d9:4f:e7:4f: 99:a7:df:98:20:3f:fb:b1:19:2b:11:33:a7:6b:4c: 22:38:01:4f:bf:b8:7c:f7:ac:de:e2:bc:6c:aa:51: 09:f0:64:b1:d6:83:04:02:34:3f:2e:1c:93:ec:43: 84:b1:3c:c6:ff:17:e9:e9:39:fb:d7:1c:37:b2:8d: 67:4f:a4:8e:5d:34:f2:3f:9b:45:3d:10:bc:4f:29: 83:cf:e3:86:dc:8e:9a:d6:da:d0:16:e3:23:ba:56: 3b:da:02:ec:94:f3:40:81:26:f5:86:99:74:36:fe: 19:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7B:34:2B:21:2E:5E:0F:78:68:DA:60:E1:FD:BD:88:5D:5A:20:5E X509v3 Authority Key Identifier: keyid:D0:D6:C4:7A:68:CB:41:D1:06:EB:04:2D:72:66:B9:CB:BF:C1:A7:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:b9:3c:fd:79:5a:fd:46:70:32:6c:88:fe:9a:73:67:20:fc: 59:1a:98:b3:80:4c:11:e5:87:df:99:5a:4d:6d:8a:9b:25:f7: 01:7d:3d:20:d4:4b:72:09:4c:d9:34:a0:48:8e:c0:52:d5:38: c8:89:4f:e3:13:c3:e8:71:2b:6e:ff:8a:cb:46:9d:fb:cb:ab: 57:a7:31:a1:0b:df:19:f0:be:3b:fe:85:c2:8d:46:76:95:15: 16:ce:f9:10:2f:85:6a:3e:e7:ec:1f:81:fe:66:b3:ac:60:a7: ee:80:99:b7:7c:82:4b:e4:b5:83:04:c3:1c:20:75:3a:b0:10: 32:3f:03:1b:18:ad:a7:df:a1:6f:dc:f5:dc:7d:b1:65:ff:f8: a2:bb:bd:0c:fe:e0:ed:e9:08:b5:af:dd:c6:bb:e7:d2:d3:59: 35:81:5f:96:7f:7b:73:3e:46:0d:be:af:f5:cd:9d:af:fc:36: bd:29:06:91:a5:07:83:9e:38:5d:c8:80:b1:be:17:7d:8d:ce: 0d:41:da:4c:62:33:8b:8f:91:78:8a:3b:78:e4:57:ac:a1:d7: ce:05:4d:44:52:fa:84:e8:06:3c:0f:8b:9b:eb:02:d5:b1:7e: d5:89:c2:80:63:37:cc:4c:06:76:35:e9:1d:e4:e3:42:14:0e: e8:84:b6:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGNzYxMTAvBgNVBAUTKEQwRDZDNDdBNjhDQjQxRDEwNkVCMDQyRDcyNjZCOUNC QkZDMUE3M0IwHhcNMjUwODIyMjIzMDQzWhcNMjUwODI5MjIzMDQzWjAYMRYwFAYD VQQDEw02OGE4ZWY5My1mZWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ceXDlQ3lbrBPobLIeGtEkEfUBnkv2RWvvRctSyA4fspHCyTH0m2lNGa5t+X sSjc2UMsB49J3RWqhLLHhrQLAcaUMNtmY4MFM667jv1NhrPgHa01xFTWtQ13kXkw xqWPEgD3hDxNxqScJpOwm8gboDZB4eAj4VNbcrfCaLCmixPfUPR74EaC5pQd90F1 voRnwdlP50+Zp9+YID/7sRkrETOna0wiOAFPv7h896ze4rxsqlEJ8GSx1oMEAjQ/ LhyT7EOEsTzG/xfp6Tn71xw3so1nT6SOXTTyP5tFPRC8TymDz+OG3I6a1trQFuMj ulY72gLslPNAgSb1hpl0Nv4Z3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK17NCsh Ll4PeGjaYOH9vYhdWiBeMB8GA1UdIwQYMBaAFNDWxHpoy0HRBusELXJmucu/wac7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkY3Ni9BNkRFMDk3Qzg1 MjMxMUVCQjdFOUYzODNDNEY5QUUwMi8wTmJFZW1qTFFkRUc2d1F0Y21hNXk3X0Jw enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOYkVlbWpMUWRFRzZ3UXRjbWE1eTdfQnB6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkY3Ni9BNkRFMDk3Qzg1MjMxMUVCQjdFOUYzODNDNEY5QUUwMi8wTmJFZW1qTFFk RUc2d1F0Y21hNXk3X0JwenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHuTz9eVr9RnAybIj+mnNnIPxZGpizgEwR5YffmVpNbYqbJfcBfT0g 1EtyCUzZNKBIjsBS1TjIiU/jE8PocStu/4rLRp37y6tXpzGhC98Z8L47/oXCjUZ2 lRUWzvkQL4VqPufsH4H+ZrOsYKfugJm3fIJL5LWDBMMcIHU6sBAyPwMbGK2n36Fv 3PXcfbFl//iiu70M/uDt6Qi1r93Gu+fS01k1gV+Wf3tzPkYNvq/1zZ2v/Da9KQaR pQeDnjhdyICxvhd9jc4NQdpMYjOLj5F4ijt45FesodfOBU1EUvqE6AY8D4ub6wLV sX7VicKAYzfMTAZ2Nekd5ONCFA7ohLbE -----END CERTIFICATE-----Generated at Sun Aug 24 00:19:45 2025 by rpki-client