$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: otSBpTXwFMgTEjP25F8rHO2Rui7vF6jESiQFBzWMouM= Subject key identifier: 01:17:8F:BE:F0:6C:08:30:53:2C:FE:20:07:19:66:F9:19:A4:1A:11 Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: 54 Signing time: Sat 19 Jul 2025 07:32:38 +0000 Manifest this update: Sat 19 Jul 2025 07:32:38 +0000 Manifest next update: Sat 26 Jul 2025 07:32:38 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: s+4+TzUR/dzQ55lhLkPzEBKeLR51WJyZPUYb7OLXyG8=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: KZxky345FbSXUrOq6QK1EajrLW8GtjyV/j47aC9IQ2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Jul 19 07:32:38 2025 GMT Not After : Jul 26 07:32:38 2025 GMT Subject: CN=687b4a16-803d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:77:d4:94:3e:bb:5a:64:d4:58:e7:c4:90:06: 67:ea:c7:b0:15:b8:ac:f2:7e:95:a5:8e:7f:6a:90: 0a:7e:17:59:22:1a:78:bd:2b:32:18:f8:53:e2:42: c3:9e:73:6d:3c:dd:10:a0:ee:82:7a:6d:b4:b5:ec: 6d:02:64:d6:cf:46:c7:be:3f:37:84:b6:67:99:62: e2:3f:0c:db:f5:02:8e:f7:a3:8c:83:cd:66:d1:74: 76:cb:f0:15:03:76:26:05:3d:28:2c:be:20:9f:70: 39:56:d4:77:39:f8:30:99:78:47:93:35:9b:7d:2e: 67:29:8a:77:41:9f:b6:f4:a8:88:0d:0b:87:8f:77: 30:ac:b6:cd:96:9a:62:da:9c:a9:a2:33:4a:0d:eb: a6:c5:26:47:f3:b1:df:5b:c6:84:0b:d4:c3:8f:d5: 51:55:52:22:c0:80:01:a0:9e:28:db:7d:a7:14:de: 56:9c:e3:36:53:d5:13:f9:3b:da:aa:0d:11:fe:4b: 5d:87:df:12:61:a3:d2:04:84:4b:b8:0a:48:fd:00: ce:89:4f:6f:d2:a0:67:d5:aa:3b:71:b9:41:f8:c9: 5c:2e:82:45:94:75:01:1c:a2:cd:f4:02:cf:5d:3f: b3:3c:68:80:24:65:7d:8d:c5:6b:50:8e:73:4f:10: f4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:17:8F:BE:F0:6C:08:30:53:2C:FE:20:07:19:66:F9:19:A4:1A:11 X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:85:f2:51:df:86:76:25:f9:7b:55:2e:b5:4a:97:06:a6:d2: 9d:13:1e:75:16:58:0f:0a:48:ab:70:c0:c5:f4:fb:b9:36:88: a1:d0:42:0c:0c:31:55:5e:45:17:c9:15:35:c9:a1:26:ec:20: 39:18:db:1a:ef:4e:a3:31:18:e0:fe:75:df:da:5a:44:42:82: af:c2:46:e8:1d:77:0d:7c:1b:86:23:0e:7b:95:8b:fa:1d:eb: 1b:4f:59:68:e7:73:75:68:25:33:f3:07:1f:29:15:a5:be:21: 28:15:7b:63:3a:a6:84:38:8c:87:45:80:63:5d:70:4c:46:7e: 1e:c7:48:a8:49:91:ca:d3:64:e1:f0:d1:7d:9e:2a:7b:b4:87: da:7e:63:84:a9:6a:fe:6f:44:2e:0c:c0:86:0d:0a:ca:ac:03: 6b:bb:cb:b5:52:ed:41:ba:e1:7c:5f:00:9f:23:e4:f5:60:6c: 63:de:ba:9f:61:2f:e4:59:63:58:c9:9b:7a:f5:bb:ed:68:f4: 5d:e6:c6:eb:69:3c:47:6b:c2:97:e4:25:88:ad:ef:80:1f:6e: a7:f0:52:2c:e9:0d:f2:1c:4c:57:d0:ff:a7:6f:b8:9a:9e:69: ce:c2:b3:7d:fc:ed:1a:fa:29:cf:35:78:8c:e1:38:33:0a:e8: 81:c1:b9:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkM3MjExMC8GA1UEBRMoMzYxNkUwMURBMzMxN0YwOUVFQ0E5OEU3QkM3NTRDQkM5 OTBEN0Q2ODAeFw0yNTA3MTkwNzMyMzhaFw0yNTA3MjYwNzMyMzhaMBgxFjAUBgNV BAMTDTY4N2I0YTE2LTgwM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVd9SUPrtaZNRY58SQBmfqx7AVuKzyfpWljn9qkAp+F1kiGni9KzIY+FPiQsOe c2083RCg7oJ6bbS17G0CZNbPRse+PzeEtmeZYuI/DNv1Ao73o4yDzWbRdHbL8BUD diYFPSgsviCfcDlW1Hc5+DCZeEeTNZt9LmcpindBn7b0qIgNC4ePdzCsts2WmmLa nKmiM0oN66bFJkfzsd9bxoQL1MOP1VFVUiLAgAGgnijbfacU3lac4zZT1RP5O9qq DRH+S12H3xJho9IEhEu4Ckj9AM6JT2/SoGfVqjtxuUH4yVwugkWUdQEcos30As9d P7M8aIAkZX2NxWtQjnNPEPR5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUARePvvBs CDBTLP4gBxlm+RmkGhEwHwYDVR0jBBgwFoAUNhbgHaMxfwnuypjnvHVMvJkNfWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQzcyLzlENUI1MTU2RUNG OTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTmhiZ0hhTXhmd251eXBqbnZIVk12SmtOZldnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky QzcyLzlENUI1MTU2RUNGOTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14Zndu dXlwam52SFZNdkprTmZXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAuF8lHfhnYl+XtVLrVKlwam0p0THnUWWA8KSKtwwMX0+7k2iKHQQgwM MVVeRRfJFTXJoSbsIDkY2xrvTqMxGOD+dd/aWkRCgq/CRugddw18G4YjDnuVi/od 6xtPWWjnc3VoJTPzBx8pFaW+ISgVe2M6poQ4jIdFgGNdcExGfh7HSKhJkcrTZOHw 0X2eKnu0h9p+Y4Spav5vRC4MwIYNCsqsA2u7y7VS7UG64XxfAJ8j5PVgbGPeup9h L+RZY1jJm3r1u+1o9F3mxutpPEdrwpfkJYit74AfbqfwUizpDfIcTFfQ/6dvuJqe ac7Cs3387Rr6Kc81eIzhODMK6IHBuT0= -----END CERTIFICATE-----Generated at Sun Jul 20 11:32:56 2025 by rpki-client