$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft File: nTRubbOcPTMMGv-UBg4VBV_07Rw.mft (raw, json) Hash identifier: BJqHU6YUzO5Dmwy42wkQwA1abbCDbCjJbHBXHcWu8/w= Subject key identifier: 86:EE:08:E5:3F:C4:8E:17:AF:8C:BF:83:F0:7C:46:E5:36:8A:B0:0C Authority key identifier: 9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C Certificate issuer: /CN=A91C2168/serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Certificate serial: 34D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft Manifest number: 34BF Signing time: Fri 18 Jul 2025 14:44:17 +0000 Manifest this update: Fri 18 Jul 2025 14:44:17 +0000 Manifest next update: Fri 25 Jul 2025 14:44:17 +0000 Files and hashes: 1: nTRubbOcPTMMGv-UBg4VBV_07Rw.crl (hash: dQRSjDswIYxgsICfkwBY58vltqJtihekLaw7W7ZYMJ8=) 2: A7098B604A5411F0A2CC9015C4F9AE02.roa (hash: sVPCrnH4ijuCZYxExAGbTpSF6uDYt6PkZ4Y0+gIXmKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:44:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13523 (0x34d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2168, serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Validity Not Before: Jul 18 14:44:17 2025 GMT Not After : Jul 25 14:44:17 2025 GMT Subject: CN=687a5dc1-9806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0d:ac:e5:fa:64:5c:3e:36:c8:df:15:a3:ef: 78:e7:20:67:47:42:ee:19:61:1f:92:93:ff:19:b4: ba:c7:8f:66:61:50:a0:2e:c7:6e:1d:88:fa:9d:d7: d8:ee:46:46:3b:48:d4:18:53:d6:26:8a:1b:14:ec: 35:97:1a:4b:31:fb:24:f0:47:f0:70:cf:32:8f:0a: c6:23:e8:ef:a6:8a:f0:20:5f:3a:33:8f:91:a0:de: 3f:f7:cb:39:91:38:3c:ab:fd:57:61:6d:c2:25:2b: 2e:76:99:08:73:b7:b4:6d:13:b3:9e:a0:61:22:39: 1c:8b:7a:51:dd:46:73:f0:bb:38:5f:a7:eb:58:bf: 5b:43:f5:e4:9c:b4:e0:e9:ab:df:6f:55:9d:b4:92: de:98:17:70:62:0a:e4:b7:3e:6d:98:e1:d8:03:f2: fb:e1:04:df:9c:16:eb:6e:1c:47:8a:75:4a:1b:e9: b9:d3:37:23:21:4c:06:8c:de:ba:d0:16:42:f8:54: 19:21:1b:46:1d:13:83:6b:3d:40:0d:3c:69:62:b7: b4:18:a3:22:1d:68:77:c4:83:8a:3c:54:0d:09:bb: 3e:73:57:b7:13:68:58:30:7d:06:be:ff:a5:cd:23: f7:0e:9f:ad:68:39:01:23:b4:01:f7:b7:d1:bf:29: f0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:EE:08:E5:3F:C4:8E:17:AF:8C:BF:83:F0:7C:46:E5:36:8A:B0:0C X509v3 Authority Key Identifier: keyid:9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:de:54:2e:92:9d:d7:47:70:fe:0c:28:4e:7b:f3:c0:62:9f: 9e:26:9f:fe:15:bf:af:47:82:5b:5c:8a:8c:b9:b7:53:ea:2a: b0:20:ab:44:eb:2a:e4:54:1a:79:3e:04:4e:32:c7:6d:17:13: e7:c6:eb:05:69:db:63:03:7d:a9:7b:de:b1:07:e1:a7:1e:72: eb:b8:e2:68:5a:a0:a6:76:4f:b0:a6:1b:7d:55:e0:c2:7f:5c: 9b:9c:30:1d:3e:ce:14:b3:eb:79:24:65:35:5e:10:94:9e:a1: 4e:1c:85:e9:f3:a7:4b:8e:13:c2:1b:bf:d2:cb:e6:b8:93:e5: 63:42:d4:97:4d:51:56:7a:b3:16:39:3c:59:9a:c7:ad:a2:95: 2a:06:ee:3f:dc:3d:4b:8d:4a:96:ba:eb:ac:e0:3f:50:2f:7e: ca:ca:d8:33:1c:aa:30:f4:00:99:28:21:b5:9a:7d:7e:65:77: d5:cd:a0:8c:86:3b:ac:8f:60:90:b0:3b:5b:36:7b:63:d4:e3: d2:4b:8d:64:28:21:39:c3:b3:41:87:50:09:b4:a6:0d:01:c2: cd:84:0f:6a:0a:22:27:89:37:17:7c:df:7d:cd:99:3e:6f:26: 90:71:07:cb:37:08:eb:04:26:d2:1a:1b:27:88:0c:af:23:85: fd:77:f5:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxNjgxMTAvBgNVBAUTKDlEMzQ2RTZEQjM5QzNEMzMwQzFBRkY5NDA2MEUxNTA1 NUZGNEVEMUMwHhcNMjUwNzE4MTQ0NDE3WhcNMjUwNzI1MTQ0NDE3WjAYMRYwFAYD VQQDEw02ODdhNWRjMS05ODA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA2s5fpkXD42yN8Vo+945yBnR0LuGWEfkpP/GbS6x49mYVCgLsduHYj6ndfY 7kZGO0jUGFPWJoobFOw1lxpLMfsk8EfwcM8yjwrGI+jvporwIF86M4+RoN4/98s5 kTg8q/1XYW3CJSsudpkIc7e0bROznqBhIjkci3pR3UZz8Ls4X6frWL9bQ/XknLTg 6avfb1WdtJLemBdwYgrktz5tmOHYA/L74QTfnBbrbhxHinVKG+m50zcjIUwGjN66 0BZC+FQZIRtGHRODaz1ADTxpYre0GKMiHWh3xIOKPFQNCbs+c1e3E2hYMH0Gvv+l zSP3Dp+taDkBI7QB97fRvynwDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbuCOU/ xI4Xr4y/g/B8RuU2irAMMB8GA1UdIwQYMBaAFJ00bm2znD0zDBr/lAYOFQVf9O0c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjE2OC8yNEM2MkMwNjFE OTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BUTU1Hdi1VQmc0VkJWXzA3 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUnViYk9jUFRNTUd2LVVCZzRWQlZfMDdSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjE2OC8yNEM2MkMwNjFEOTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BU TU1Hdi1VQmc0VkJWXzA3UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH3lQukp3XR3D+DChOe/PAYp+eJp/+Fb+vR4JbXIqMubdT6iqwIKtE 6yrkVBp5PgROMsdtFxPnxusFadtjA32pe96xB+GnHnLruOJoWqCmdk+wpht9VeDC f1ybnDAdPs4Us+t5JGU1XhCUnqFOHIXp86dLjhPCG7/Sy+a4k+VjQtSXTVFWerMW OTxZmsetopUqBu4/3D1LjUqWuuus4D9QL37KytgzHKow9ACZKCG1mn1+ZXfVzaCM hjusj2CQsDtbNntj1OPSS41kKCE5w7NBh1AJtKYNAcLNhA9qCiIniTcXfN99zZk+ byaQcQfLNwjrBCbSGhsniAyvI4X9d/Uu -----END CERTIFICATE-----Generated at Sun Jul 20 14:24:42 2025 by rpki-client