$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft File: nvPmBKY_LO9L3eN9yokNBFGWeuw.mft (raw, json) Hash identifier: FstI77BV+ArPIDfc4jVvzXCXsTNnI8Q1oTr+HZwn4/I= Subject key identifier: 05:DB:BD:E9:2A:2C:9F:71:F4:F3:A8:A2:3F:7D:AB:4A:14:9F:08:5E Authority key identifier: 9E:F3:E6:04:A6:3F:2C:EF:4B:DD:E3:7D:CA:89:0D:04:51:96:7A:EC Certificate issuer: /CN=A91EB002/serialNumber=9EF3E604A63F2CEF4BDDE37DCA890D0451967AEC Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft Manifest number: F5 Signing time: Mon 21 Jul 2025 05:31:28 +0000 Manifest this update: Mon 21 Jul 2025 05:31:27 +0000 Manifest next update: Mon 28 Jul 2025 05:31:27 +0000 Files and hashes: 1: nvPmBKY_LO9L3eN9yokNBFGWeuw.crl (hash: 1NYKvrB5HRZAxk7U9n7ihU7SWSsNaUidGkY9txcJBJc=) 2: 700507423B1911F0B0CC573EC4F9AE02.roa (hash: Re1r9mDFwwblIQofLp7XNvNUiASMcjstM4N8oNnkbAg=) 3: 5A65F048F19211EFA4D9CD34C4F9AE02.roa (hash: Eq9RfRmXNQJ0DpOxPprX1uYytoSWsaD6FPPswPb3mMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.crl rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB002, serialNumber=9EF3E604A63F2CEF4BDDE37DCA890D0451967AEC Validity Not Before: Jul 21 05:31:27 2025 GMT Not After : Jul 28 05:31:27 2025 GMT Subject: CN=687dd0b0-1033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:70:83:33:60:a3:86:26:3e:2d:5d:aa:39:8c: 80:2d:93:12:5f:bc:67:28:d2:19:7f:f5:57:fe:89: f8:2c:08:f6:c5:33:0d:f5:e3:df:2c:f2:4d:a4:3b: 09:d5:dd:b4:6b:f4:84:85:ad:70:8c:4c:6d:40:00: 17:61:57:85:93:ce:bf:7f:33:54:53:0f:ec:31:cf: f7:13:64:12:cf:0b:2e:72:0c:7c:64:ef:81:b4:66: a5:7b:b6:9b:e6:af:7e:59:d8:d8:cb:8d:75:fe:7a: 1e:60:7d:dc:4f:a1:f1:aa:32:cc:49:d7:87:38:a6: 56:2f:e0:78:e6:5d:22:ab:0b:e8:f6:61:df:8b:a1: 1f:f4:dd:82:25:83:4d:e6:96:6e:91:0f:d2:82:75: 9e:54:c1:03:e8:10:ad:fd:f8:5c:e3:b9:47:ad:ac: bb:53:28:5b:fa:9e:c4:bb:95:bf:40:bd:23:a7:12: ef:78:4a:77:0d:8e:41:6d:21:47:b7:ef:92:1b:9e: 90:1d:88:dc:76:ea:cd:4a:d7:99:f5:0e:1c:aa:5f: 81:11:41:06:4d:8e:84:c5:31:6b:e7:1f:26:91:30: 9a:1e:81:75:f4:2b:64:79:56:02:78:16:70:87:8d: 90:8e:7b:ca:f6:08:0d:ca:b8:10:f6:14:dd:1e:18: 4c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DB:BD:E9:2A:2C:9F:71:F4:F3:A8:A2:3F:7D:AB:4A:14:9F:08:5E X509v3 Authority Key Identifier: keyid:9E:F3:E6:04:A6:3F:2C:EF:4B:DD:E3:7D:CA:89:0D:04:51:96:7A:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:0d:76:2e:86:2f:53:5a:6c:4c:b4:ea:a7:83:18:3a:6a:ed: 9b:3c:f2:5b:3d:25:06:13:8b:ff:df:23:10:21:bb:40:f4:e0: a1:a0:af:4f:0b:da:4d:61:1d:c4:be:2e:51:c0:20:99:67:75: 7a:1c:19:2d:b5:1c:11:03:10:08:13:c1:66:b9:dd:70:62:ab: 77:f6:8a:eb:b0:71:55:4b:7f:74:41:f1:06:9e:3d:47:e1:9c: 79:cd:ea:b6:1f:24:fd:e0:72:d3:55:18:bb:a7:34:d6:7a:94: 0c:2d:e9:8f:bb:b2:34:bf:fe:dd:ca:e5:42:d6:c8:f9:2e:bf: b0:0e:35:26:d6:1f:db:ce:87:37:06:af:30:46:6b:51:f5:a6: ae:98:45:af:0f:a2:2c:33:6c:6f:19:34:c8:4e:71:49:53:4e: 2c:6c:af:65:1c:b7:b1:77:ba:1e:6e:2f:5b:49:dd:6e:ab:01: 2f:e8:ae:e5:b5:aa:a2:6d:bc:a3:e1:f8:05:5a:d6:09:ba:a4: 30:55:15:e6:86:ca:ae:1e:7d:5f:a0:d1:c9:49:15:8b:ca:a0: 82:d0:47:a9:f8:e0:a1:ca:07:d8:85:b8:de:03:2b:5e:de:8a: dd:46:5d:79:a0:1c:24:55:63:2c:ef:38:b3:38:7f:b7:ca:15: 5d:f4:2e:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwMDIxMTAvBgNVBAUTKDlFRjNFNjA0QTYzRjJDRUY0QkRERTM3RENBODkwRDA0 NTE5NjdBRUMwHhcNMjUwNzIxMDUzMTI3WhcNMjUwNzI4MDUzMTI3WjAYMRYwFAYD VQQDEw02ODdkZDBiMC0xMDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnCDM2CjhiY+LV2qOYyALZMSX7xnKNIZf/VX/on4LAj2xTMN9ePfLPJNpDsJ 1d20a/SEha1wjExtQAAXYVeFk86/fzNUUw/sMc/3E2QSzwsucgx8ZO+BtGale7ab 5q9+WdjYy411/noeYH3cT6HxqjLMSdeHOKZWL+B45l0iqwvo9mHfi6Ef9N2CJYNN 5pZukQ/SgnWeVMED6BCt/fhc47lHray7Uyhb+p7Eu5W/QL0jpxLveEp3DY5BbSFH t++SG56QHYjcdurNSteZ9Q4cql+BEUEGTY6ExTFr5x8mkTCaHoF19CtkeVYCeBZw h42QjnvK9ggNyrgQ9hTdHhhMeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXbvekq LJ9x9POooj99q0oUnwheMB8GA1UdIwQYMBaAFJ7z5gSmPyzvS93jfcqJDQRRlnrs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjAwMi9FMjRGODIzNDAy MkUxMUVGODU2RjUxMzJDNEY5QUUwMi9udlBtQktZX0xPOUwzZU45eW9rTkJGR1dl dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252UG1CS1lfTE85TDNlTjl5b2tOQkZHV2V1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjAwMi9FMjRGODIzNDAyMkUxMUVGODU2RjUxMzJDNEY5QUUwMi9udlBtQktZX0xP OUwzZU45eW9rTkJGR1dldXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByDXYuhi9TWmxMtOqngxg6au2bPPJbPSUGE4v/3yMQIbtA9OChoK9P C9pNYR3Evi5RwCCZZ3V6HBkttRwRAxAIE8Fmud1wYqt39orrsHFVS390QfEGnj1H 4Zx5zeq2HyT94HLTVRi7pzTWepQMLemPu7I0v/7dyuVC1sj5Lr+wDjUm1h/bzoc3 Bq8wRmtR9aaumEWvD6IsM2xvGTTITnFJU04sbK9lHLexd7oebi9bSd1uqwEv6K7l taqibbyj4fgFWtYJuqQwVRXmhsquHn1foNHJSRWLyqCC0Eep+OChygfYhbjeAyte 3ordRl15oBwkVWMs7zizOH+3yhVd9C7P -----END CERTIFICATE-----Generated at Mon Jul 21 06:59:34 2025 by rpki-client