$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft File: nbJYwXCyMilNhj9g0twBI82q54k.mft (raw, json) Hash identifier: RyVb6Q7kiz5nslCXhUJb0XYtKusIp3Ckj07u5cgobNI= Subject key identifier: BD:84:02:32:C4:A4:69:AC:2C:7A:27:43:D4:D5:E8:A3:E7:68:58:B0 Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft Manifest number: 32 Signing time: Sat 19 Jul 2025 07:55:50 +0000 Manifest this update: Sat 19 Jul 2025 07:55:49 +0000 Manifest next update: Sat 26 Jul 2025 07:55:49 +0000 Files and hashes: 1: nbJYwXCyMilNhj9g0twBI82q54k.crl (hash: nif7Vg4yVit0aHZgCLuKI8l1UoRttNS2g/L3G2WjfYU=) 2: 13EB65D41AB511F0A1F0A34BC4F9AE02.roa (hash: gBn5RMkmkclmyZmL4wf1QAerjjB7P04/rGPHIIjACSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: Jul 19 07:55:49 2025 GMT Not After : Jul 26 07:55:49 2025 GMT Subject: CN=687b4f86-9b49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:ad:3c:ac:33:b1:d9:14:c5:c5:81:3e:e8:9d: e2:24:bb:ec:fd:17:0c:81:c7:ac:e5:3e:3a:83:d4: 89:71:c3:c7:97:30:40:c4:85:01:33:80:fa:92:55: c7:e9:9d:44:b6:89:c5:75:f7:12:26:2d:2c:e0:96: f7:c7:24:70:dd:fb:ca:a7:63:f7:99:85:ba:13:49: 6c:3b:a0:61:1a:9f:9f:cd:4c:73:80:64:81:49:94: 5d:ba:b0:10:2d:8d:11:c7:34:28:e8:f2:52:10:43: e1:b0:43:0f:c1:aa:4b:69:52:b6:22:69:cb:7a:c2: 7f:d3:89:14:65:7f:d8:d7:01:e9:5f:f8:9d:da:a1: 81:55:d2:80:b1:be:5e:88:be:9c:c8:4a:01:c2:6b: c4:ff:8e:70:37:ca:95:8c:f1:a4:01:04:21:eb:0d: 9e:f1:15:db:ba:87:76:f0:3f:75:ec:71:4e:6f:f5: 15:07:46:cf:2e:e7:35:95:be:e1:4f:45:bd:1d:f1: e7:3b:f0:48:39:b9:1a:b7:e6:90:4a:d1:ce:35:2e: 99:a3:f9:e1:7a:db:3d:ad:8e:7f:24:4f:02:3a:d9: b3:4c:69:fb:53:33:2c:a0:09:42:05:c7:d3:4a:6d: ae:0c:3c:16:83:ba:25:d8:8f:ee:ab:15:b6:7b:24: db:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:84:02:32:C4:A4:69:AC:2C:7A:27:43:D4:D5:E8:A3:E7:68:58:B0 X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:68:58:de:dd:15:b0:63:3a:4c:03:cc:c2:7c:72:5d:01:53: 04:7e:0c:3a:8a:df:c3:bb:1a:19:c0:1f:7f:4d:0a:92:42:a0: 26:30:b7:25:c7:aa:0e:91:6d:9c:b6:ef:71:d3:ac:fc:73:ee: 83:df:dc:d7:a8:68:b1:e6:51:35:ea:50:c5:f3:05:b3:d3:70: df:59:ef:18:fa:74:fb:81:f0:de:d7:34:45:a3:07:59:5b:6a: 3e:5c:80:ae:c8:ed:83:22:bb:55:f1:31:f4:8f:da:75:20:5b: c7:63:56:f5:12:83:b2:2d:38:5e:54:17:7e:aa:dd:cd:d6:82: a3:a6:ea:a1:9d:8f:6a:e9:d8:75:61:69:7e:43:01:17:de:3e: 2f:c7:95:8e:4a:d6:89:55:36:98:3c:fd:9d:b9:5e:d8:8f:1f: d3:9f:9b:84:aa:1a:71:1e:1b:09:1e:3f:0d:5e:21:8a:55:d9: 01:bf:fe:bb:c3:53:a6:df:28:54:e8:be:f1:bd:56:4b:1a:41: 01:d2:91:43:67:d8:4d:39:be:41:2d:ee:8f:ca:58:cb:8c:f0: 78:bb:46:5c:73:ea:2b:ff:b6:5c:b1:5e:e4:5e:1c:77:2b:42: c4:c2:84:1b:f2:b3:d0:c4:1f:d6:61:d6:56:2c:8e:57:91:bb: 48:15:aa:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MkVERTExMC8GA1UEBRMoOURCMjU4QzE3MEIyMzIyOTREODYzRjYwRDJEQzAxMjND REFBRTc4OTAeFw0yNTA3MTkwNzU1NDlaFw0yNTA3MjYwNzU1NDlaMBgxFjAUBgNV BAMTDTY4N2I0Zjg2LTliNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD2rTysM7HZFMXFgT7oneIku+z9FwyBx6zlPjqD1Ilxw8eXMEDEhQEzgPqSVcfp nUS2icV19xImLSzglvfHJHDd+8qnY/eZhboTSWw7oGEan5/NTHOAZIFJlF26sBAt jRHHNCjo8lIQQ+GwQw/BqktpUrYiact6wn/TiRRlf9jXAelf+J3aoYFV0oCxvl6I vpzISgHCa8T/jnA3ypWM8aQBBCHrDZ7xFdu6h3bwP3XscU5v9RUHRs8u5zWVvuFP Rb0d8ec78Eg5uRq35pBK0c41Lpmj+eF62z2tjn8kTwI62bNMaftTMyygCUIFx9NK ba4MPBaDuiXYj+6rFbZ7JNutAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvYQCMsSk aawseidD1NXoo+doWLAwHwYDVR0jBBgwFoAUnbJYwXCyMilNhj9g0twBI82q54kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRURFLzU1Q0IyRTA0MUFC NDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmJKWXdYQ3lNaWxOaGo5ZzB0d0JJODJxNTRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy RURFLzU1Q0IyRTA0MUFCNDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWls TmhqOWcwdHdCSTgycTU0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADJoWN7dFbBjOkwDzMJ8cl0BUwR+DDqK38O7GhnAH39NCpJCoCYwtyXH qg6RbZy273HTrPxz7oPf3NeoaLHmUTXqUMXzBbPTcN9Z7xj6dPuB8N7XNEWjB1lb aj5cgK7I7YMiu1XxMfSP2nUgW8djVvUSg7ItOF5UF36q3c3WgqOm6qGdj2rp2HVh aX5DARfePi/HlY5K1olVNpg8/Z25XtiPH9Ofm4SqGnEeGwkePw1eIYpV2QG//rvD U6bfKFTovvG9VksaQQHSkUNn2E05vkEt7o/KWMuM8Hi7Rlxz6iv/tlyxXuReHHcr QsTChBvys9DEH9Zh1lYsjleRu0gVqrU= -----END CERTIFICATE-----Generated at Sun Jul 20 22:28:45 2025 by rpki-client