$ rpki-client -vvf rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft File: NJajCV1HiwJuR1VeusUdjgorO5Y.mft (raw, json) Hash identifier: ZScmatrrRWrbYtUIXJeDLt/bAILuRoc1zx7FyS9aIAc= Subject key identifier: AB:4D:53:83:25:3F:FC:29:A9:EC:71:CE:0F:43:C2:91:77:FE:15:07 Authority key identifier: 34:96:A3:09:5D:47:8B:02:6E:47:55:5E:BA:C5:1D:8E:0A:2B:3B:96 Certificate issuer: /CN=A91112C1/serialNumber=3496A3095D478B026E47555EBAC51D8E0A2B3B96 Certificate serial: 059C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJajCV1HiwJuR1VeusUdjgorO5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft Manifest number: 0598 Signing time: Fri 18 Jul 2025 23:32:02 +0000 Manifest this update: Fri 18 Jul 2025 23:32:01 +0000 Manifest next update: Fri 25 Jul 2025 23:32:01 +0000 Files and hashes: 1: NJajCV1HiwJuR1VeusUdjgorO5Y.crl (hash: wFD7SFL4ZQW3mnQewQLzXKccZdwkDs6T0LyUCrJWAoA=) 2: F7C5E44EDA2E11EB8FAAB246C4F9AE02.roa (hash: FpiXZKAhTjkDCch/pIRU9MHgJD8fPUreDGZSqo9JNCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.crl rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJajCV1HiwJuR1VeusUdjgorO5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1436 (0x59c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112C1, serialNumber=3496A3095D478B026E47555EBAC51D8E0A2B3B96 Validity Not Before: Jul 18 23:32:01 2025 GMT Not After : Jul 25 23:32:01 2025 GMT Subject: CN=687ad971-200b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b3:20:e9:bc:c5:3b:cf:67:ed:94:57:f9:b5: 55:23:d9:a4:14:15:9d:f8:fc:16:8c:20:91:3b:1c: ad:4a:a1:30:77:bb:21:6a:8f:38:10:10:26:02:bc: be:43:67:6c:4c:ed:19:bc:c0:38:43:d8:de:ee:97: 9d:8a:7c:21:7d:3a:5a:2f:68:d8:d3:d2:49:59:10: f8:bc:ea:6f:14:3d:46:71:e6:21:65:1d:15:f8:48: ab:d5:57:09:2a:6b:75:c3:0d:0f:50:3f:cb:05:73: 79:98:62:f6:79:2e:da:7f:c2:11:b5:a3:4b:2a:c3: 10:f7:a7:cd:ee:c1:ea:b0:c8:3c:d1:ec:7e:62:3b: 5a:c3:92:2e:60:51:17:54:cd:01:c3:bf:85:25:82: de:f8:07:62:18:c2:ff:8b:75:1b:39:7f:7a:fb:c4: b6:06:09:85:a4:99:74:d6:48:a8:e2:4a:87:a7:73: bb:d3:be:13:b0:32:89:23:45:e9:16:c4:84:e0:de: 97:c8:46:62:63:99:c5:c6:d6:3c:1d:1a:a7:0b:75: 16:64:e4:fc:95:c7:96:fb:8d:7e:38:c4:1c:e3:ec: d6:13:01:c0:09:70:fe:cf:0d:2e:25:b4:04:45:6f: b8:15:fa:e5:10:e7:99:00:97:85:b4:09:3a:22:73: 59:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:4D:53:83:25:3F:FC:29:A9:EC:71:CE:0F:43:C2:91:77:FE:15:07 X509v3 Authority Key Identifier: keyid:34:96:A3:09:5D:47:8B:02:6E:47:55:5E:BA:C5:1D:8E:0A:2B:3B:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJajCV1HiwJuR1VeusUdjgorO5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:e7:27:5d:17:e0:2f:14:05:18:90:9f:ed:4d:39:03:2d:35: af:7b:fd:4a:af:4d:e9:91:2d:49:42:0d:63:4d:3d:24:0a:b5: e7:55:2c:ab:8f:bd:2a:94:66:68:b2:44:fb:6f:c6:85:3d:91: 46:a0:02:0b:65:b2:56:05:4d:b6:d5:33:3f:e8:da:db:2a:7f: bf:49:10:4e:6f:81:6e:4a:ec:e8:e1:6c:53:a4:02:03:c4:60: b7:29:21:1c:8c:5d:7d:b5:a1:10:64:19:c1:2e:81:68:29:5c: f7:25:3c:a9:ae:0b:37:a0:0f:8b:28:c9:16:d7:79:0e:66:bb: 28:b2:07:6e:47:45:51:35:4a:93:52:77:2e:fa:b8:3a:f6:2d: 51:5c:c1:24:af:7d:f4:65:a4:80:13:ad:2e:a1:a2:b0:a1:d1: 50:fb:ec:c4:a0:61:89:28:e6:5f:e0:4f:58:a4:35:62:7d:8e: 9d:f7:f5:9c:5f:c2:db:42:c0:58:02:d2:19:11:4b:dd:8b:bb: 5f:3d:f2:c7:61:94:2b:a4:15:b6:17:a5:0b:b1:59:9a:07:ea: f6:87:35:c5:75:34:d0:b7:b9:6d:e4:ee:1b:45:1d:6f:4a:e8: c8:7f:a4:36:5d:8e:7a:6f:b3:33:88:16:b0:7a:a0:35:33:3a: 11:8a:59:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQzExMTAvBgNVBAUTKDM0OTZBMzA5NUQ0NzhCMDI2RTQ3NTU1RUJBQzUxRDhF MEEyQjNCOTYwHhcNMjUwNzE4MjMzMjAxWhcNMjUwNzI1MjMzMjAxWjAYMRYwFAYD VQQDEw02ODdhZDk3MS0yMDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLMg6bzFO89n7ZRX+bVVI9mkFBWd+PwWjCCROxytSqEwd7shao84EBAmAry+ Q2dsTO0ZvMA4Q9je7pedinwhfTpaL2jY09JJWRD4vOpvFD1GceYhZR0V+Eir1VcJ Kmt1ww0PUD/LBXN5mGL2eS7af8IRtaNLKsMQ96fN7sHqsMg80ex+Yjtaw5IuYFEX VM0Bw7+FJYLe+AdiGML/i3UbOX96+8S2BgmFpJl01kio4kqHp3O7074TsDKJI0Xp FsSE4N6XyEZiY5nFxtY8HRqnC3UWZOT8lceW+41+OMQc4+zWEwHACXD+zw0uJbQE RW+4FfrlEOeZAJeFtAk6InNZ8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtNU4Ml P/wpqexxzg9DwpF3/hUHMB8GA1UdIwQYMBaAFDSWowldR4sCbkdVXrrFHY4KKzuW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJDMS84NkFCNjYyNERB MkIxMUVCOEYwQjAxM0ZDNEY5QUUwMi9OSmFqQ1YxSGl3SnVSMVZldXNVZGpnb3JP NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KYWpDVjFIaXdKdVIxVmV1c1Vkamdvck81WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTJDMS84NkFCNjYyNERBMkIxMUVCOEYwQjAxM0ZDNEY5QUUwMi9OSmFqQ1YxSGl3 SnVSMVZldXNVZGpnb3JPNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA65yddF+AvFAUYkJ/tTTkDLTWve/1Kr03pkS1JQg1jTT0kCrXnVSyr j70qlGZoskT7b8aFPZFGoAILZbJWBU221TM/6NrbKn+/SRBOb4FuSuzo4WxTpAID xGC3KSEcjF19taEQZBnBLoFoKVz3JTyprgs3oA+LKMkW13kOZrsosgduR0VRNUqT Uncu+rg69i1RXMEkr330ZaSAE60uoaKwodFQ++zEoGGJKOZf4E9YpDVifY6d9/Wc X8LbQsBYAtIZEUvdi7tfPfLHYZQrpBW2F6ULsVmaB+r2hzXFdTTQt7lt5O4bRR1v SujIf6Q2XY56b7MziBaweqA1MzoRilmZ -----END CERTIFICATE-----Generated at Sun Jul 20 07:52:07 2025 by rpki-client