$ rpki-client -vvf rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft File: NdqtT3Wuk43GUzSEzejIF93Csig.mft (raw, json) Hash identifier: 7j46WsOvrP3L0L1Wsc3JcKlP6azYb0HRUKfKxHKLeGM= Subject key identifier: 59:1F:E5:A0:8C:F9:65:43:12:F1:1F:2B:6A:59:27:8F:9E:BC:01:03 Authority key identifier: 35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 Certificate issuer: /CN=A911E351/serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Certificate serial: 0423 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft Manifest number: 041F Signing time: Thu 21 Aug 2025 00:29:15 +0000 Manifest this update: Thu 21 Aug 2025 00:29:15 +0000 Manifest next update: Thu 28 Aug 2025 00:29:15 +0000 Files and hashes: 1: NdqtT3Wuk43GUzSEzejIF93Csig.crl (hash: OCmAf+ZKvcXXK9NV8CslZP/ib4cQ/LMdF7cCkkgNOns=) 2: E9ED080A785011ECBD2B6A10C4F9AE02.roa (hash: iYM80ZUZv11SjTkmdUWv3G7CQp9g2JbkQfuMruAgJ5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 00:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1059 (0x423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E351, serialNumber=35DAAD4F75AE938DC6533484CDE8C817DDC2B228 Validity Not Before: Aug 21 00:29:15 2025 GMT Not After : Aug 28 00:29:15 2025 GMT Subject: CN=68a6685b-2c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b6:6f:b9:71:6b:6b:de:52:b1:5b:e7:36:ec: 22:20:6d:3c:72:33:72:72:69:45:2f:e4:13:74:1f: b5:86:8d:57:09:0c:10:7e:b4:70:c5:ee:06:64:78: d2:3f:40:dd:b3:10:3e:17:f2:d8:f7:eb:bd:65:4e: 97:70:1a:a7:fc:63:92:dd:0e:c5:e5:b1:10:12:64: 5c:f5:d5:e1:17:72:3e:f3:24:48:74:61:66:f0:c9: 75:ff:d3:70:8a:4f:dd:8e:ab:3d:fb:4e:48:d3:62: d3:eb:5d:11:44:2e:76:b8:44:02:74:1a:e9:03:7e: 3f:2a:71:c9:1c:0d:01:2b:e3:61:a5:9f:26:a3:62: c8:30:e4:49:15:71:4d:f6:40:7c:d6:64:c0:ce:88: 00:a6:a8:13:b3:91:15:db:8e:db:46:5f:50:69:45: 77:bd:7c:61:b2:c7:1f:7a:43:df:32:45:c6:ef:12: 5c:14:12:d0:77:38:3c:f0:a7:45:c9:30:6b:01:76: 34:4e:d6:c6:a9:bb:29:fa:ef:cd:98:17:15:15:c7: 56:ed:88:f6:d6:5b:96:ed:d5:85:5c:e2:ec:eb:be: 07:b5:f3:de:45:9e:36:53:6d:1f:5c:5f:a9:12:27: 68:e4:ae:da:ad:a2:32:22:33:5b:2a:94:b7:16:f1: 81:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:1F:E5:A0:8C:F9:65:43:12:F1:1F:2B:6A:59:27:8F:9E:BC:01:03 X509v3 Authority Key Identifier: keyid:35:DA:AD:4F:75:AE:93:8D:C6:53:34:84:CD:E8:C8:17:DD:C2:B2:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NdqtT3Wuk43GUzSEzejIF93Csig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E351/5BCF88A6784E11EC8A44450EC4F9AE02/NdqtT3Wuk43GUzSEzejIF93Csig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:79:02:d3:fc:75:c5:ac:73:2a:a2:0e:3d:7d:ef:47:4f:69: e1:38:6b:4e:83:f1:33:4a:ad:31:7d:29:78:a0:53:e6:39:e9: 2c:2f:82:30:fb:ed:34:cc:38:e2:d6:84:4e:e2:5c:8e:2f:f5: b2:50:04:7b:5f:0e:c1:ea:3f:7a:25:3e:23:3f:59:be:e3:b2: 27:83:62:d5:56:6d:9b:b9:66:78:24:51:f4:24:49:b6:90:58: b6:e5:51:3f:98:5c:34:a2:23:b2:88:ed:70:f7:36:50:b8:c6: c4:ea:88:51:fa:d5:ae:2d:6c:0e:f2:93:51:cd:52:dd:84:d0: 78:a5:f7:9f:67:23:3c:be:e7:c7:72:01:7e:d2:ba:6f:03:54: ef:a8:f5:30:23:c2:2d:22:ff:1d:32:f9:79:c2:f0:c5:ab:fd: a7:b2:eb:96:3d:a9:58:33:c9:24:e7:fe:d0:b0:d8:41:54:4f: 42:10:57:3f:4a:27:1e:30:ad:aa:ba:d8:8e:9c:3d:7c:4c:8b: 9f:3d:dc:af:20:76:b5:f7:dd:cd:18:a8:f7:e7:f5:62:2f:a8: cc:27:7a:56:37:87:0b:bc:df:0f:80:17:d8:d8:0f:16:27:b3: a2:c6:94:ce:17:45:17:d2:ae:9f:3b:31:c2:9f:c8:b1:4c:b9: 7b:8f:11:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUzNTExMTAvBgNVBAUTKDM1REFBRDRGNzVBRTkzOERDNjUzMzQ4NENERThDODE3 RERDMkIyMjgwHhcNMjUwODIxMDAyOTE1WhcNMjUwODI4MDAyOTE1WjAYMRYwFAYD VQQDEw02OGE2Njg1Yi0yYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrZvuXFra95SsVvnNuwiIG08cjNycmlFL+QTdB+1ho1XCQwQfrRwxe4GZHjS P0DdsxA+F/LY9+u9ZU6XcBqn/GOS3Q7F5bEQEmRc9dXhF3I+8yRIdGFm8Ml1/9Nw ik/djqs9+05I02LT610RRC52uEQCdBrpA34/KnHJHA0BK+NhpZ8mo2LIMORJFXFN 9kB81mTAzogApqgTs5EV247bRl9QaUV3vXxhsscfekPfMkXG7xJcFBLQdzg88KdF yTBrAXY0TtbGqbsp+u/NmBcVFcdW7Yj21luW7dWFXOLs674HtfPeRZ42U20fXF+p Eido5K7araIyIjNbKpS3FvGBtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkf5aCM +WVDEvEfK2pZJ4+evAEDMB8GA1UdIwQYMBaAFDXarU91rpONxlM0hM3oyBfdwrIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTM1MS81QkNGODhBNjc4 NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0M0dVelNFemVqSUY5M0Nz aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05kcXRUM1d1azQzR1V6U0V6ZWpJRjkzQ3NpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTM1MS81QkNGODhBNjc4NEUxMUVDOEE0NDQ1MEVDNEY5QUUwMi9OZHF0VDNXdWs0 M0dVelNFemVqSUY5M0NzaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAveQLT/HXFrHMqog49fe9HT2nhOGtOg/EzSq0xfSl4oFPmOeksL4Iw ++00zDji1oRO4lyOL/WyUAR7Xw7B6j96JT4jP1m+47Ing2LVVm2buWZ4JFH0JEm2 kFi25VE/mFw0oiOyiO1w9zZQuMbE6ohR+tWuLWwO8pNRzVLdhNB4pfefZyM8vufH cgF+0rpvA1TvqPUwI8ItIv8dMvl5wvDFq/2nsuuWPalYM8kk5/7QsNhBVE9CEFc/ SiceMK2qutiOnD18TIufPdyvIHa1993NGKj35/ViL6jMJ3pWN4cLvN8PgBfY2A8W J7OixpTOF0UX0q6fOzHCn8ixTLl7jxEF -----END CERTIFICATE-----Generated at Fri Aug 22 16:20:35 2025 by rpki-client