$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: 26kn816TNneyXSdgKx38Cb61NHjVgzOeGrxJ8vZrx48= Subject key identifier: 09:96:98:A4:2E:0C:79:42:30:38:F9:9B:2D:08:B1:9F:50:DC:B1:34 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 0733 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 070B Signing time: Mon 21 Jul 2025 12:54:52 +0000 Manifest this update: Mon 21 Jul 2025 12:54:51 +0000 Manifest next update: Mon 28 Jul 2025 12:54:51 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: XSIUvqvCU7kSaxd4+X6ZJ4VBXEGUawkbOQMH7PDUDGY=) 2: 0A81888851C011F08C31DF3FC4F9AE02.roa (hash: 1yPuP1g8YZqvnHf524WkUbhoEmWrAxZBELmM8pADlg8=) 3: 7B3EE1DC524811F0B02FCD27C4F9AE02.roa (hash: NOszZQVplnPpRn57635/o7+RgEVvlc3t2csfhNsghIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 12:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1843 (0x733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Jul 21 12:54:51 2025 GMT Not After : Jul 28 12:54:51 2025 GMT Subject: CN=687e389b-92a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:71:62:2d:d1:64:44:50:7d:d0:70:0b:d3:50: a0:02:18:09:6d:19:20:3e:9b:6a:25:1a:b2:32:75: b0:c3:0c:65:92:3d:1b:21:10:4f:6f:69:b8:f9:2c: b6:dd:8e:63:1d:9d:f5:7f:5f:83:a2:69:74:69:b7: 6a:de:46:ae:65:08:89:b6:b9:46:5b:c9:78:1d:ea: 62:cd:8a:84:53:bc:bd:85:d9:50:90:09:af:fb:3c: 90:28:b7:68:2e:9b:08:ea:c2:06:f1:94:fc:c1:03: 31:5d:6d:00:16:c8:e2:fa:7c:f8:1a:65:ee:87:0c: 7c:46:a5:d4:b9:47:bd:88:3b:5f:c9:87:a7:10:74: ff:01:b2:39:73:da:92:c2:d8:de:34:eb:d1:de:5b: b6:0d:01:8e:d5:e9:ff:3f:a7:e7:81:cb:b6:ca:51: 36:05:f7:35:97:67:3f:b0:c2:5b:e0:3b:f0:8b:1e: f7:1f:43:69:90:bc:4e:4f:27:5f:47:3d:b4:db:eb: 8a:5d:84:b0:b0:1e:b9:97:6a:c8:f8:9d:c1:a7:62: 7f:c7:55:e9:28:f7:c3:a3:17:aa:b8:f9:5a:84:8c: 0f:c1:f6:9d:ca:d2:00:f2:31:fd:b8:61:90:d7:ea: ad:8b:24:b5:aa:db:97:04:e1:41:92:c1:7f:10:e6: 19:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:96:98:A4:2E:0C:79:42:30:38:F9:9B:2D:08:B1:9F:50:DC:B1:34 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:00:27:4a:b4:85:b2:19:f1:d7:ea:56:8f:69:4f:21:14:12: b3:6c:88:5e:84:cb:71:0d:0e:28:db:cb:59:ae:55:e7:dd:f6: d0:73:06:e8:58:e8:7d:71:69:69:2d:31:f8:fa:21:94:6f:62: 31:dc:38:3e:d3:9a:d8:d8:ae:3c:f0:fa:21:9f:3f:08:87:c8: d9:f3:8c:76:25:91:02:55:5f:dd:19:7f:f0:0b:6d:52:6a:6e: 6e:d7:78:ab:33:71:eb:a9:b7:d5:4f:81:1d:ed:e6:ac:ad:76: 7a:36:f2:61:cc:b4:81:af:a6:af:44:25:85:0a:1b:af:45:3c: 13:1d:0f:da:46:eb:b3:6a:ef:b2:f1:de:1c:5e:f1:ff:8a:0a: db:09:8d:51:31:c0:87:a6:38:43:ea:3b:b8:bc:aa:d5:fe:e9: 3e:93:15:0c:59:2b:cd:e5:65:b6:26:9d:29:6c:f9:a4:8b:c0: df:8e:23:60:2a:d8:ee:a7:41:2e:8e:98:d1:22:1c:76:c1:51: 67:00:df:79:22:a0:08:aa:4c:c8:22:4e:10:a8:80:ec:b2:1e: 89:84:f8:77:f2:30:5d:96:9a:16:ea:57:77:1f:b2:cd:40:64: c8:15:32:6b:dc:ef:ef:8f:8c:9a:62:6b:6a:63:f1:d8:d5:36: 45:9c:9b:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUwNzIxMTI1NDUxWhcNMjUwNzI4MTI1NDUxWjAYMRYwFAYD VQQDEw02ODdlMzg5Yi05MmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3FiLdFkRFB90HAL01CgAhgJbRkgPptqJRqyMnWwwwxlkj0bIRBPb2m4+Sy2 3Y5jHZ31f1+Doml0abdq3kauZQiJtrlGW8l4HepizYqEU7y9hdlQkAmv+zyQKLdo LpsI6sIG8ZT8wQMxXW0AFsji+nz4GmXuhwx8RqXUuUe9iDtfyYenEHT/AbI5c9qS wtjeNOvR3lu2DQGO1en/P6fngcu2ylE2Bfc1l2c/sMJb4Dvwix73H0NpkLxOTydf Rz202+uKXYSwsB65l2rI+J3Bp2J/x1XpKPfDoxequPlahIwPwfadytIA8jH9uGGQ 1+qtiyS1qtuXBOFBksF/EOYZCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmWmKQu DHlCMDj5my0IsZ9Q3LE0MB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3ACdKtIWyGfHX6laPaU8hFBKzbIhehMtxDQ4o28tZrlXn3fbQcwbo WOh9cWlpLTH4+iGUb2Ix3Dg+05rY2K488Pohnz8Ih8jZ84x2JZECVV/dGX/wC21S am5u13irM3HrqbfVT4Ed7easrXZ6NvJhzLSBr6avRCWFChuvRTwTHQ/aRuuzau+y 8d4cXvH/igrbCY1RMcCHpjhD6ju4vKrV/uk+kxUMWSvN5WW2Jp0pbPmki8DfjiNg Ktjup0EujpjRIhx2wVFnAN95IqAIqkzIIk4QqIDssh6JhPh38jBdlpoW6ld3H7LN QGTIFTJr3O/vj4yaYmtqY/HY1TZFnJsn -----END CERTIFICATE-----Generated at Mon Jul 21 18:21:54 2025 by rpki-client