$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft File: nhw1MdAEXqOJtoz_koagj7y72L0.mft (raw, json) Hash identifier: YWfdqbj3g66pi/kxZAme30weguGF3xDQqzPKBysRXKo= Subject key identifier: 16:9A:6D:F3:43:66:BF:B6:B8:D6:2B:93:ED:34:28:BB:49:72:CB:95 Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1EF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft Manifest number: 1E25 Signing time: Sun 20 Jul 2025 16:09:30 +0000 Manifest this update: Sun 20 Jul 2025 16:09:29 +0000 Manifest next update: Sun 27 Jul 2025 16:09:29 +0000 Files and hashes: 1: nhw1MdAEXqOJtoz_koagj7y72L0.crl (hash: LNozBD5YN78hfZxXsTv3XKk1LN4EoGGLbm10pI6qIZc=) 2: EE375CF036BD11E7B9B7251EC4F9AE02.roa (hash: wQsPHV6x/USj/C30qX7ocLzNE1hOKIXglDcWSSVxT9s=) 3: 36D3DC38AA9311ECB5C88036C4F9AE02.roa (hash: 6AyDnzx5A4AjZFDON1usGiiqlcfarAtQyPrblWg9aSI=) 4: C81AC00EB14111EB959D4D3CC4F9AE02.roa (hash: PPz+jo2ZglJLUOgv0BMC7+AH2ZHmEK5hCIx98WW3CQI=) 5: 192418F6AA1811EA97BC574CC4F9AE02.roa (hash: 2NrY7syTQnT2b3fwQCo+pNk5LqubHVwUAREOnAdGVSc=) 6: AB549D62125711EF94D14874C4F9AE02.roa (hash: e42h1gU/GulKJNSgZnYVY16QcfeskjKqY5xdRuNkRtI=) 7: FA4555AA93DC11EEB00AF628C4F9AE02.roa (hash: B0CVo9ry++sVZy/2rBP2AlbhG4hjHy12hERvlOOeEZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7920 (0x1ef0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: Jul 20 16:09:29 2025 GMT Not After : Jul 27 16:09:29 2025 GMT Subject: CN=687d14ba-229e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e0:ed:9e:a5:50:97:2a:21:8f:e3:2f:ea:30: 15:f6:fa:11:ba:da:2d:57:98:21:8e:45:c8:78:0e: ed:e1:74:c5:64:8c:74:e7:29:d4:ff:f9:b5:e9:ce: 76:88:4a:ea:d1:33:1a:b1:40:0c:3c:ec:ab:70:e5: 0d:98:6f:65:10:ba:ea:f7:b1:e7:35:58:6c:d2:35: 92:23:59:d8:81:57:22:84:de:3e:d9:b9:30:55:5a: 1a:85:69:7b:be:ac:e3:d9:eb:a0:59:b8:8d:9d:fc: fc:0b:9c:cb:98:8a:54:88:72:1f:0e:89:84:16:29: 82:47:0c:54:52:cc:3d:7b:ad:d3:f2:3b:80:5c:29: 54:50:e4:fd:71:9a:ca:ae:f3:c3:e3:7b:23:5d:95: 0f:2d:c8:67:03:cd:84:16:f0:ee:a8:98:56:3d:4d: c4:3e:6e:cf:03:43:9e:83:2a:2c:f3:5c:ac:7d:53: 35:48:ba:03:ff:bc:77:40:d7:9e:4f:7f:97:e8:4b: ba:be:b7:83:8c:38:c9:4b:ec:70:6b:12:ad:a3:11: 1c:da:74:22:2c:ba:1d:c8:f2:e5:f8:29:59:f8:42: 95:79:ae:85:c1:91:92:b4:62:9c:6b:97:d0:d8:f5: 80:c7:dc:88:ed:02:5c:a0:3d:30:77:e1:6f:52:1e: 49:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:9A:6D:F3:43:66:BF:B6:B8:D6:2B:93:ED:34:28:BB:49:72:CB:95 X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:f5:e5:39:38:ea:05:76:82:a2:ec:18:d5:40:f4:52:84:07: 31:f8:a4:d7:2d:df:93:3f:de:86:7c:8e:c1:f3:fa:0b:09:c8: c0:a3:ae:be:77:86:a2:ee:64:7d:11:ae:5e:31:8f:c2:7b:87: 97:8a:0c:e6:6a:6e:5a:25:74:17:73:9d:8b:d0:4f:3c:ab:a9: e2:98:e6:c0:3a:2d:21:ae:42:a2:44:64:de:29:9c:0c:52:a1: dc:e1:d2:aa:e9:92:4c:4e:39:1a:03:b5:bb:32:da:28:e4:d5: c9:9c:82:02:c0:a6:98:8a:a4:d3:6a:71:6c:8c:13:15:6c:3e: 50:ae:02:07:6e:8a:9a:28:2f:3b:59:ec:db:d7:00:e2:a8:bd: 2d:18:f2:b7:e5:92:25:80:ba:19:96:6d:fc:1c:7e:7b:a5:b7: 5a:b7:51:50:6a:2f:b5:f2:48:04:f3:2a:11:51:d1:f9:ad:cf: 20:73:66:54:22:28:b9:0b:ae:db:e7:0c:fa:6f:ed:81:fb:72: 38:23:aa:7a:18:6b:b0:2e:e4:61:57:fc:e3:50:dd:20:00:f9: 9d:f4:31:5d:ae:ff:24:e1:d0:f0:65:8d:2f:be:04:4f:f3:b6: 70:19:a7:4a:2b:09:16:2a:be:82:39:79:cd:66:2e:7c:51:77: ae:a3:67:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjUwNzIwMTYwOTI5WhcNMjUwNzI3MTYwOTI5WjAYMRYwFAYD VQQDEw02ODdkMTRiYS0yMjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uDtnqVQlyohj+Mv6jAV9voRutotV5ghjkXIeA7t4XTFZIx05ynU//m16c52 iErq0TMasUAMPOyrcOUNmG9lELrq97HnNVhs0jWSI1nYgVcihN4+2bkwVVoahWl7 vqzj2eugWbiNnfz8C5zLmIpUiHIfDomEFimCRwxUUsw9e63T8juAXClUUOT9cZrK rvPD43sjXZUPLchnA82EFvDuqJhWPU3EPm7PA0Oegyos81ysfVM1SLoD/7x3QNee T3+X6Eu6vreDjDjJS+xwaxKtoxEc2nQiLLodyPLl+ClZ+EKVea6FwZGStGKca5fQ 2PWAx9yI7QJcoD0wd+FvUh5JywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaabfND Zr+2uNYrk+00KLtJcsuVMB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE5OC85OTNGMjA5MEFCQzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhx T0p0b3pfa29hZ2o3eTcyTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe9eU5OOoFdoKi7BjVQPRShAcx+KTXLd+TP96GfI7B8/oLCcjAo66+ d4ai7mR9Ea5eMY/Ce4eXigzmam5aJXQXc52L0E88q6nimObAOi0hrkKiRGTeKZwM UqHc4dKq6ZJMTjkaA7W7Mtoo5NXJnIICwKaYiqTTanFsjBMVbD5QrgIHboqaKC87 Wezb1wDiqL0tGPK35ZIlgLoZlm38HH57pbdat1FQai+18kgE8yoRUdH5rc8gc2ZU Iii5C67b5wz6b+2B+3I4I6p6GGuwLuRhV/zjUN0gAPmd9DFdrv8k4dDwZY0vvgRP 87ZwGadKKwkWKr6COXnNZi58UXeuo2c3 -----END CERTIFICATE-----Generated at Sun Jul 20 19:07:38 2025 by rpki-client