$ rpki-client -vvf rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.mft File: nLIZXrqiCWDa-IL7X0frVaGdIuw.mft (raw, json) Hash identifier: y99FfFPmd8YAOdNQELyeg79A3HWJiiTlhI/cXHz93K0= Subject key identifier: C0:87:25:BE:82:E2:87:14:B6:65:07:67:B6:8C:18:F3:18:DB:FF:2D Authority key identifier: 9C:B2:19:5E:BA:A2:09:60:DA:F8:82:FB:5F:47:EB:55:A1:9D:22:EC Certificate issuer: /CN=A91C862F/serialNumber=9CB2195EBAA20960DAF882FB5F47EB55A19D22EC Certificate serial: 03CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.mft Manifest number: 03C7 Signing time: Mon 21 Jul 2025 00:54:34 +0000 Manifest this update: Mon 21 Jul 2025 00:54:34 +0000 Manifest next update: Mon 28 Jul 2025 00:54:34 +0000 Files and hashes: 1: nLIZXrqiCWDa-IL7X0frVaGdIuw.crl (hash: cExOM/RF/9MJ2yGM0bu0JXwCbH556Xwa5O+R5n9KBzM=) 2: 437E6F641A2A11ED8E5B3178C4F9AE02.roa (hash: W2t7cvkTvvu4tLiipq3paLT/+ja5H4MoySHQU+pxdNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.crl rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 975 (0x3cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C862F, serialNumber=9CB2195EBAA20960DAF882FB5F47EB55A19D22EC Validity Not Before: Jul 21 00:54:34 2025 GMT Not After : Jul 28 00:54:34 2025 GMT Subject: CN=687d8fca-99ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:69:0c:9d:6b:88:46:94:f7:ea:5f:20:4d:2a: a9:4a:af:e4:f4:57:e8:39:8d:1c:2d:37:de:f2:70: c0:a8:40:78:35:b1:01:ac:7e:cd:af:15:5d:34:03: 7f:8b:02:63:e5:86:65:88:07:76:60:ad:3c:c0:40: 5e:3c:ea:20:62:09:7b:23:f9:c2:ec:e0:0f:f0:f8: 5c:24:a8:03:a9:93:f3:76:50:25:2f:2c:c2:f6:59: c2:08:15:03:66:c1:ab:59:ee:55:ea:6a:b2:62:04: 08:87:ff:b1:ad:cd:89:36:1b:81:4e:20:f1:e9:35: 5d:06:d4:be:07:49:9b:4a:f0:8c:47:16:bc:b1:3a: 59:2c:dc:4e:de:05:07:f0:cf:2b:fd:60:b8:07:4a: b2:7c:6e:8a:a6:a6:80:d0:ed:a6:f7:46:14:a0:3d: 34:f5:d1:6f:fd:8e:94:12:07:42:3a:df:f5:85:30: ac:e2:36:18:9a:98:c0:3e:80:20:b7:33:fd:72:68: 6c:db:cb:d5:82:55:f5:11:e4:7f:aa:a3:19:fe:b9: 68:bc:11:d7:1d:e2:4d:35:93:3e:f0:4c:5f:75:98: 21:b5:21:a7:ee:ab:9c:14:ba:4a:27:05:2c:23:ae: f8:1b:4e:69:2f:33:05:f3:ab:1e:77:e1:85:6c:7b: 92:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:87:25:BE:82:E2:87:14:B6:65:07:67:B6:8C:18:F3:18:DB:FF:2D X509v3 Authority Key Identifier: keyid:9C:B2:19:5E:BA:A2:09:60:DA:F8:82:FB:5F:47:EB:55:A1:9D:22:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:40:13:03:d6:9d:c1:47:f0:1a:00:6b:fa:57:d7:65:0f:d5: 2f:1c:7e:e1:f6:c9:a3:64:b1:20:70:5f:2e:d2:e8:e8:b8:17: 32:4c:1d:94:bd:02:7f:29:81:29:e0:ff:14:82:0b:3b:dd:09: 8a:ad:03:3a:6b:aa:67:b8:64:7a:56:10:38:06:5b:eb:2a:52: 53:9a:b2:e7:52:f1:51:62:a0:16:04:1b:c1:c1:48:39:41:d7: c7:3d:41:d8:de:20:48:95:94:d5:1c:fc:74:da:07:26:3b:8a: 99:f4:95:e9:91:df:ef:f0:80:f5:e1:2a:be:94:93:8b:e1:99: ba:55:1c:a6:9f:d6:2c:9b:eb:76:72:d1:19:f8:5c:52:df:13: 93:16:13:a4:ea:6b:10:05:ba:c1:55:64:97:22:3a:42:b5:f5: 1b:db:a1:fa:b7:e7:11:65:a9:f5:5b:c7:06:82:1e:82:6d:28: 37:e6:3e:6a:f4:10:5d:1c:d9:39:eb:8d:fb:64:20:4c:14:e4: 9e:e1:32:37:75:b7:ce:5e:3f:b9:d9:22:95:35:30:17:08:bd: 1f:2e:a7:cc:a8:49:af:62:8d:dc:d8:f9:f5:94:9d:82:5c:4d: 2f:3c:5b:a4:bf:8f:83:75:d3:61:6c:de:be:39:4c:3e:b7:cd: 1d:97:f9:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg2MkYxMTAvBgNVBAUTKDlDQjIxOTVFQkFBMjA5NjBEQUY4ODJGQjVGNDdFQjU1 QTE5RDIyRUMwHhcNMjUwNzIxMDA1NDM0WhcNMjUwNzI4MDA1NDM0WjAYMRYwFAYD VQQDEw02ODdkOGZjYS05OWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WkMnWuIRpT36l8gTSqpSq/k9FfoOY0cLTfe8nDAqEB4NbEBrH7NrxVdNAN/ iwJj5YZliAd2YK08wEBePOogYgl7I/nC7OAP8PhcJKgDqZPzdlAlLyzC9lnCCBUD ZsGrWe5V6mqyYgQIh/+xrc2JNhuBTiDx6TVdBtS+B0mbSvCMRxa8sTpZLNxO3gUH 8M8r/WC4B0qyfG6KpqaA0O2m90YUoD009dFv/Y6UEgdCOt/1hTCs4jYYmpjAPoAg tzP9cmhs28vVglX1EeR/qqMZ/rlovBHXHeJNNZM+8ExfdZghtSGn7qucFLpKJwUs I674G05pLzMF86sed+GFbHuSLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCHJb6C 4ocUtmUHZ7aMGPMY2/8tMB8GA1UdIwQYMBaAFJyyGV66oglg2viC+19H61WhnSLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODYyRi9ENUUxRERFQTk2 NUYxMUVDQUQyMTczNzZDNEY5QUUwMi9uTElaWHJxaUNXRGEtSUw3WDBmclZhR2RJ dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MSVpYcnFpQ1dEYS1JTDdYMGZyVmFHZEl1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODYyRi9ENUUxRERFQTk2NUYxMUVDQUQyMTczNzZDNEY5QUUwMi9uTElaWHJxaUNX RGEtSUw3WDBmclZhR2RJdXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1QBMD1p3BR/AaAGv6V9dlD9UvHH7h9smjZLEgcF8u0ujouBcyTB2U vQJ/KYEp4P8Uggs73QmKrQM6a6pnuGR6VhA4BlvrKlJTmrLnUvFRYqAWBBvBwUg5 QdfHPUHY3iBIlZTVHPx02gcmO4qZ9JXpkd/v8ID14Sq+lJOL4Zm6VRymn9Ysm+t2 ctEZ+FxS3xOTFhOk6msQBbrBVWSXIjpCtfUb26H6t+cRZan1W8cGgh6CbSg35j5q 9BBdHNk56437ZCBMFOSe4TI3dbfOXj+52SKVNTAXCL0fLqfMqEmvYo3c2Pn1lJ2C XE0vPFukv4+DddNhbN6+OUw+t80dl/m+ -----END CERTIFICATE-----Generated at Mon Jul 21 06:59:39 2025 by rpki-client