$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: 5JP2pqwGFt+lR19OZx47OkkyAKUktYXXOVkjtg9Dsl8= Subject key identifier: BF:0F:DC:B6:3D:75:70:9F:A5:20:4E:B9:12:E5:C0:C8:B7:E2:49:D9 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 114C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 0FE9 Signing time: Sun 20 Jul 2025 17:41:22 +0000 Manifest this update: Sun 20 Jul 2025 17:41:22 +0000 Manifest next update: Sun 27 Jul 2025 17:41:22 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: 7bTKMKxS72ndcLsPqexirLRIKjKR+2X9dC5Efe+iLrw=) 2: A2745BFEC18411ECBE051C5CC4F9AE02.roa (hash: PrswZfri3dHxcodWDLz5zdIU9mo1iJZykEdVfIHeBvM=) 3: 9394D360345F11F0AB96776CC4F9AE02.roa (hash: GgwLhcIgruySS/YGMWErE8BGQI8HrXA2kybuS84FbjI=) 4: 8224E55C345F11F0BD514C6CC4F9AE02.roa (hash: 8yHBq1O4OTtRzTta/kqVDa7IpUINsQkqazMx6yafkpw=) 5: 4CF19A6EAEDC11EF99753F71C4F9AE02.roa (hash: PfT2gUtvmaQ5ysA5Tk+EQ/4QCBmSm12o3beYYarK2gM=) 6: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: 9vj0wFDRg2m924YSQRU+53hKJgFYHI/k3yYJ69FV68c=) 7: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: IEsW3GuxCVGYRu/1hhIjcdekM36PkMj/h8FdT1+soSo=) 8: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: WDmBDJ69igHtzeCqQyvNDcFOZ8jROHQ7B6krkg7kRGE=) 9: FD5158C044C511F0ABA4E977C4F9AE02.roa (hash: eZNKMw9qnH8BbQ6J2mZn8SpR2dJd4IQAlRp5xbQPTcU=) 10: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: aiooAIoivVql5FC+SCyKWbhdV5nV3qmBQRAodXfPFtU=) 11: BB54CFD0B94411EBA1CDCA45C4F9AE02.roa (hash: JBQ6069Irn+Fo63UGqCMQV8Nmj1Wx+/dKLn5g7bFNNU=) 12: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: b/LbIzPAU9coJXjT3umWz8BMDzmOcTsQApiNrqEbUbM=) 13: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: Pqc1nBcb+JFkJlWub2Tew10ajFK81balankJIjxH0u0=) 14: C2356A948FE811E98B967A66C4F9AE02.roa (hash: lh6cNUm2NUCxz6vyJ9O8vhiCdo9/t7r94k2HgugqWk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4428 (0x114c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Jul 20 17:41:22 2025 GMT Not After : Jul 27 17:41:22 2025 GMT Subject: CN=687d2a42-9081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:3e:be:fa:bb:5e:f6:b7:65:ae:bb:30:86:b6: 60:22:b2:c1:46:14:61:30:d6:ca:a5:fe:88:33:30: a5:dd:93:7e:5c:6e:4b:f0:ff:25:15:b9:f3:59:a4: c3:87:05:ad:89:38:0d:aa:5d:4b:eb:60:8b:ee:2c: e8:97:f8:7a:ac:28:f8:ea:f4:e8:f6:06:56:7c:72: e8:36:14:8f:6b:4c:78:f4:a2:77:f1:3e:14:f1:ae: 27:69:06:77:66:9b:e5:11:c0:4e:0e:97:dc:58:10: f7:dd:aa:58:7c:b5:e5:1f:65:de:9e:07:ab:9f:5c: 94:84:78:e9:25:22:66:6a:e2:02:e4:9a:58:de:60: 88:45:bf:92:1e:ac:92:a7:fe:35:a0:a4:c3:39:6b: 15:e6:c2:f7:3d:23:7b:f4:e7:07:25:95:02:0f:fe: 63:ae:22:97:bc:d0:01:58:52:7e:fc:97:8f:3b:ed: 64:ef:21:19:c2:1c:db:4f:69:3d:d2:56:fd:f3:75: bf:72:58:4f:94:ed:78:a0:ae:ed:be:85:76:83:7b: d2:d8:57:be:8a:57:fa:cf:9e:d2:84:a8:b2:4c:9f: d6:46:cf:01:d9:59:fb:05:a6:e0:80:15:17:93:48: 0c:5a:2c:8d:e1:9d:77:6c:10:a6:de:18:9d:d7:a7: 2e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0F:DC:B6:3D:75:70:9F:A5:20:4E:B9:12:E5:C0:C8:B7:E2:49:D9 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:9c:f8:6a:97:6c:ec:63:65:03:22:d4:d0:81:5c:71:3f:40: d8:76:39:40:08:ba:8e:7e:03:6d:9f:8a:66:36:8f:82:08:33: cb:0e:60:49:05:ba:70:a5:f1:0b:e9:ae:04:2f:57:ce:de:db: f0:54:bd:69:f0:a0:71:5c:be:aa:4b:15:c3:96:41:f1:34:2c: 98:d3:81:a5:a0:a3:7f:d9:95:1a:eb:a3:d8:69:04:be:5c:60: 75:a0:07:97:f4:22:7d:d2:02:5a:a1:aa:fc:8f:42:0f:4c:13: 75:7c:94:9b:dd:2a:bb:9c:21:a7:6d:20:cb:f6:74:01:b8:0e: d3:25:35:78:2b:83:d9:89:e5:c9:11:a0:c0:45:af:dc:94:e6: 1b:2d:65:43:75:db:69:f6:26:d6:77:cd:ce:bb:07:97:3d:a8: 37:d1:83:b4:e5:08:fa:d1:39:b6:73:37:bb:ec:cc:0a:9b:f0: 94:f7:5d:00:3d:a8:dd:56:42:45:73:e6:6a:3e:79:e4:0c:73: 10:86:48:31:0f:90:b5:b3:df:71:0f:eb:ae:4e:02:a1:ab:12: 56:01:01:fd:aa:fd:d0:a8:a5:08:78:87:52:a8:1e:ff:7c:04: 37:6f:f1:ea:83:46:e0:4a:ce:33:5b:16:09:fe:41:4b:cc:6a: a2:e3:8f:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwNzIwMTc0MTIyWhcNMjUwNzI3MTc0MTIyWjAYMRYwFAYD VQQDEw02ODdkMmE0Mi05MDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7z6++rte9rdlrrswhrZgIrLBRhRhMNbKpf6IMzCl3ZN+XG5L8P8lFbnzWaTD hwWtiTgNql1L62CL7izol/h6rCj46vTo9gZWfHLoNhSPa0x49KJ38T4U8a4naQZ3 ZpvlEcBODpfcWBD33apYfLXlH2Xengern1yUhHjpJSJmauIC5JpY3mCIRb+SHqyS p/41oKTDOWsV5sL3PSN79OcHJZUCD/5jriKXvNABWFJ+/JePO+1k7yEZwhzbT2k9 0lb983W/clhPlO14oK7tvoV2g3vS2Fe+ilf6z57ShKiyTJ/WRs8B2Vn7BabggBUX k0gMWiyN4Z13bBCm3hid16cutQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8P3LY9 dXCfpSBOuRLlwMi34knZMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAenPhql2zsY2UDItTQgVxxP0DYdjlACLqOfgNtn4pmNo+CCDPLDmBJ BbpwpfEL6a4EL1fO3tvwVL1p8KBxXL6qSxXDlkHxNCyY04GloKN/2ZUa66PYaQS+ XGB1oAeX9CJ90gJaoar8j0IPTBN1fJSb3Sq7nCGnbSDL9nQBuA7TJTV4K4PZieXJ EaDARa/clOYbLWVDddtp9ibWd83OuweXPag30YO05Qj60Tm2cze77MwKm/CU910A PajdVkJFc+ZqPnnkDHMQhkgxD5C1s99xD+uuTgKhqxJWAQH9qv3QqKUIeIdSqB7/ fAQ3b/Hqg0bgSs4zWxYJ/kFLzGqi449M -----END CERTIFICATE-----Generated at Sun Jul 20 19:07:39 2025 by rpki-client