$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft File: nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft (raw, json) Hash identifier: FI19W4qJ9gmZ2DE9tjWbo67ZFeqoSO7OvEQetjiCOdQ= Subject key identifier: 50:A3:01:ED:96:B8:30:AB:29:09:FC:B9:37:82:60:1D:30:BF:F6:EF Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 2A35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft Manifest number: 2A2A Signing time: Fri 22 Aug 2025 14:23:41 +0000 Manifest this update: Fri 22 Aug 2025 14:23:40 +0000 Manifest next update: Fri 29 Aug 2025 14:23:40 +0000 Files and hashes: 1: nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl (hash: zoJiIxxa2WEopl9Ot7SngZpn9HkoCPCG/mffBkwVBt4=) 2: F9722F8255C411E9A0FEF781C4F9AE02.roa (hash: symelOI4KiPwqS+zxOG2abXkQkOu/9Ecrvxkqaxc9Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10805 (0x2a35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: Aug 22 14:23:40 2025 GMT Not After : Aug 29 14:23:40 2025 GMT Subject: CN=68a87d6c-6b47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:26:59:9f:04:b0:83:c1:9c:63:0e:b2:b2:b7: 4c:e9:0f:84:f5:46:04:10:fd:7a:ba:2c:92:96:21: eb:3a:1a:f6:1b:1d:82:1a:88:22:50:d6:46:25:18: b3:39:a4:2c:ee:fe:aa:14:1f:ae:81:bd:45:93:84: 08:d5:85:6d:7a:6f:06:a9:d7:ec:bf:b1:ff:c9:df: ef:2a:0a:2a:1d:10:b7:78:e4:81:ad:66:c7:5e:e0: b0:23:ca:f0:e8:74:f6:e2:45:44:46:b5:67:47:57: c3:52:2f:d3:60:9a:f4:6a:19:85:85:5f:8f:88:d7: f6:c1:26:98:08:5e:a8:a8:e8:42:28:ed:f7:d5:ba: e7:66:45:b8:88:4d:c8:15:66:6d:90:8a:36:53:52: 06:58:e0:49:d8:b4:b6:25:0b:88:a9:3c:98:dc:9c: c9:d6:02:0f:f1:b1:12:c8:5f:4c:ff:95:e0:71:03: 89:88:0d:dd:d4:32:37:7d:b7:8a:c8:c3:97:03:00: d0:f5:d6:5b:7a:31:bf:83:e4:2a:0b:06:d4:17:d4: 82:58:62:f8:f1:32:ff:d7:b8:2c:08:40:01:f8:b6: 92:e3:f3:1c:f3:d3:9a:80:8e:67:cc:78:87:da:0d: a6:3f:eb:b3:98:0a:02:ca:38:0a:ab:b0:e2:3c:fa: d6:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:A3:01:ED:96:B8:30:AB:29:09:FC:B9:37:82:60:1D:30:BF:F6:EF X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:7a:b3:c4:a9:ed:f1:8d:e7:46:b7:3f:17:9e:cd:7e:75:04: 60:7c:fb:a3:95:ff:f6:d0:4b:9e:c0:d8:92:0a:4e:7f:92:c2: e9:fe:fd:05:cf:5c:e4:fe:a7:c1:86:2e:e8:a7:c0:fe:9d:f5: 4f:3f:79:4a:19:29:a5:aa:ca:5c:0c:f4:d4:74:87:67:04:fd: fd:38:d5:4b:86:90:eb:25:32:16:d8:1c:70:70:ce:5a:82:72: 3b:08:c4:bd:34:e5:87:cd:53:c8:05:9e:f8:c2:be:9f:03:0f: 5a:31:36:4c:9b:af:e2:10:5a:3f:8b:35:dd:ad:5d:6b:53:91: 51:c9:f5:6d:17:3c:55:22:f9:bb:8e:c1:4d:01:63:24:54:73: cb:e5:ec:9e:a8:fc:4c:ac:f6:db:d6:84:97:16:6a:6c:d7:ad: 61:32:3d:ab:bd:77:d7:32:be:2a:e0:3b:71:a1:9b:f8:de:0b: 1b:2c:63:89:8a:c7:63:6c:9c:97:1e:5d:d3:6d:76:ea:a7:4d: ac:c4:1d:77:a3:89:3e:5a:03:3d:d0:9e:15:4a:f8:0d:df:86: 23:08:dc:51:e8:3c:76:e8:93:d1:5c:a9:d8:a5:02:f8:5c:ad: 23:4f:34:0b:f7:0d:e7:1a:5e:9b:0d:b4:58:01:74:3d:dc:f8: 2a:37:21:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjUwODIyMTQyMzQwWhcNMjUwODI5MTQyMzQwWjAYMRYwFAYD VQQDEw02OGE4N2Q2Yy02YjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCZZnwSwg8GcYw6ysrdM6Q+E9UYEEP16uiySliHrOhr2Gx2CGogiUNZGJRiz OaQs7v6qFB+ugb1Fk4QI1YVtem8Gqdfsv7H/yd/vKgoqHRC3eOSBrWbHXuCwI8rw 6HT24kVERrVnR1fDUi/TYJr0ahmFhV+PiNf2wSaYCF6oqOhCKO331brnZkW4iE3I FWZtkIo2U1IGWOBJ2LS2JQuIqTyY3JzJ1gIP8bESyF9M/5XgcQOJiA3d1DI3fbeK yMOXAwDQ9dZbejG/g+QqCwbUF9SCWGL48TL/17gsCEAB+LaS4/Mc89OagI5nzHiH 2g2mP+uzmAoCyjgKq7DiPPrWgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCjAe2W uDCrKQn8uTeCYB0wv/bvMB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS9BOTNFOTkzRTM0MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4 N1NQdkx0cXhub1ZEam44SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcerPEqe3xjedGtz8Xns1+dQRgfPujlf/20EuewNiSCk5/ksLp/v0F z1zk/qfBhi7op8D+nfVPP3lKGSmlqspcDPTUdIdnBP39ONVLhpDrJTIW2BxwcM5a gnI7CMS9NOWHzVPIBZ74wr6fAw9aMTZMm6/iEFo/izXdrV1rU5FRyfVtFzxVIvm7 jsFNAWMkVHPL5eyeqPxMrPbb1oSXFmps161hMj2rvXfXMr4q4DtxoZv43gsbLGOJ isdjbJyXHl3TbXbqp02sxB13o4k+WgM90J4VSvgN34YjCNxR6Dx26JPRXKnYpQL4 XK0jTzQL9w3nGl6bDbRYAXQ93PgqNyG9 -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:12 2025 by rpki-client