$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft File: NU4yud4OVpoZUal7kyAZ9oijUKw.mft (raw, json) Hash identifier: ToyFY01DS9o5zTINNuCLUKmRKFbau4/GLdWITsXSJ7k= Subject key identifier: F3:04:4B:44:EE:D9:2F:12:8F:B9:5B:72:5E:DD:59:3D:D1:D6:C0:59 Authority key identifier: 35:4E:32:B9:DE:0E:56:9A:19:51:A9:7B:93:20:19:F6:88:A3:50:AC Certificate issuer: /CN=A912442A/serialNumber=354E32B9DE0E569A1951A97B932019F688A350AC Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft Manifest number: 29 Signing time: Fri 05 Sep 2025 01:33:08 +0000 Manifest this update: Fri 05 Sep 2025 01:33:08 +0000 Manifest next update: Fri 12 Sep 2025 01:33:08 +0000 Files and hashes: 1: NU4yud4OVpoZUal7kyAZ9oijUKw.crl (hash: LpoVz0pKFqVDz2JPUWU+e3HuTd8O+nFSCf1+kCuaeOA=) 2: 19D89DB656F311F083F53B5DC4F9AE02.roa (hash: Krc4hrUxizB7HZBQVnd3e8NynO1iw8BpxC+SzV7uUy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.crl rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 01:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A, serialNumber=354E32B9DE0E569A1951A97B932019F688A350AC Validity Not Before: Sep 5 01:33:08 2025 GMT Not After : Sep 12 01:33:08 2025 GMT Subject: CN=68ba3dd4-b177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:db:8c:d4:85:83:5d:0d:69:ac:79:e4:a7:2e: 5b:1f:b0:17:77:40:e9:fa:72:89:10:9b:e7:d9:60: cf:6d:b3:e5:0d:70:11:12:0a:30:d0:4d:00:01:4e: a5:0a:a3:6f:8f:be:99:b6:a3:76:9b:d6:be:9a:30: ce:9f:74:26:65:b1:c3:3f:ca:39:96:c0:26:6c:62: 44:ef:f4:26:94:a6:c4:ef:7a:f1:56:70:5f:8d:b6: dc:80:ff:6f:e0:56:5d:d8:77:d0:7d:26:9c:43:a6: da:01:5a:aa:69:f5:78:34:7d:cb:3b:ea:7a:74:1b: aa:4a:b4:9b:19:99:73:79:02:a7:d9:23:2a:ed:5e: 08:f9:e9:20:74:4a:11:f5:82:9c:5e:55:f5:c3:da: 10:13:03:f8:cc:17:9a:40:85:f2:d0:f7:82:95:d8: d9:24:ae:47:1f:79:e1:5e:c4:b1:9b:6c:11:99:a5: 6e:20:c5:16:01:b3:27:fb:be:8d:3c:4c:56:8a:e0: 09:59:22:96:32:67:fc:3f:46:7e:20:7b:dc:0c:41: f6:68:e4:71:c0:37:1e:68:2b:b5:55:ff:0b:19:d8: 07:4f:48:1c:38:dd:61:18:d2:de:ac:f6:c4:e6:1c: 79:4f:3e:8c:40:6b:25:3a:fe:c4:ba:e2:21:e9:be: dc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:04:4B:44:EE:D9:2F:12:8F:B9:5B:72:5E:DD:59:3D:D1:D6:C0:59 X509v3 Authority Key Identifier: keyid:35:4E:32:B9:DE:0E:56:9A:19:51:A9:7B:93:20:19:F6:88:A3:50:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:bc:00:82:96:7d:86:87:b7:6b:d8:c2:a9:09:5c:48:9c:15: 4a:c6:90:06:9d:ff:00:67:77:cb:3c:7b:dd:e2:09:39:bb:9b: 28:13:2f:52:28:b5:71:b0:71:5d:5e:be:a7:db:91:f1:90:7c: a4:89:39:1a:a1:cb:03:4e:0f:12:1e:e7:fc:ff:d7:9a:77:48: 7b:1f:27:be:d5:d1:fe:66:28:17:65:db:aa:44:fc:50:ea:ec: f3:29:ce:b1:69:f8:00:eb:a2:ed:b6:4f:dd:7e:98:8c:ca:4e: 53:98:4a:42:78:4a:ef:59:c1:86:d3:5c:b0:7d:e7:76:8f:ec: c1:3f:fb:00:b1:5b:1e:40:bd:0e:c0:7b:19:93:f3:15:93:55: cc:61:fc:e4:9c:cd:95:6e:34:6a:bc:49:6e:66:ac:50:c2:05: 5d:18:cb:79:c0:d3:fb:34:03:7f:f2:e7:b6:c8:2c:45:c1:84: 72:d8:96:a8:91:f4:64:5a:65:58:d6:4d:5b:3d:7b:0c:a5:a3: 77:eb:8f:54:c9:a2:0f:7f:c7:9d:2e:17:c4:7d:85:39:0b:b6: e5:f7:a4:1d:87:19:e9:43:b4:0f:cb:d1:8e:3e:7a:83:21:f4: d3:d4:9c:50:b8:fd:c2:f4:68:a0:bb:5d:f9:d1:db:4a:93:93: 15:36:58:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDQyQTExMC8GA1UEBRMoMzU0RTMyQjlERTBFNTY5QTE5NTFBOTdCOTMyMDE5RjY4 OEEzNTBBQzAeFw0yNTA5MDUwMTMzMDhaFw0yNTA5MTIwMTMzMDhaMBgxFjAUBgNV BAMTDTY4YmEzZGQ0LWIxNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDE24zUhYNdDWmseeSnLlsfsBd3QOn6cokQm+fZYM9ts+UNcBESCjDQTQABTqUK o2+Pvpm2o3ab1r6aMM6fdCZlscM/yjmWwCZsYkTv9CaUpsTvevFWcF+NttyA/2/g Vl3Yd9B9JpxDptoBWqpp9Xg0fcs76np0G6pKtJsZmXN5AqfZIyrtXgj56SB0ShH1 gpxeVfXD2hATA/jMF5pAhfLQ94KV2NkkrkcfeeFexLGbbBGZpW4gxRYBsyf7vo08 TFaK4AlZIpYyZ/w/Rn4ge9wMQfZo5HHANx5oK7VV/wsZ2AdPSBw43WEY0t6s9sTm HHlPPoxAayU6/sS64iHpvtxdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8wRLRO7Z LxKPuVtyXt1ZPdHWwFkwHwYDVR0jBBgwFoAUNU4yud4OVpoZUal7kyAZ9oijUKww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0NDJBLzU1RUJCODU4NEUz QjExRjA5QzEyNTU0N0M0RjlBRTAyL05VNHl1ZDRPVnBvWlVhbDdreUFaOW9palVL dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTlU0eXVkNE9WcG9aVWFsN2t5QVo5b2lqVUt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 NDJBLzU1RUJCODU4NEUzQjExRjA5QzEyNTU0N0M0RjlBRTAyL05VNHl1ZDRPVnBv WlVhbDdreUFaOW9palVLdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGK8AIKWfYaHt2vYwqkJXEicFUrGkAad/wBnd8s8e93iCTm7mygTL1Io tXGwcV1evqfbkfGQfKSJORqhywNODxIe5/z/15p3SHsfJ77V0f5mKBdl26pE/FDq 7PMpzrFp+ADrou22T91+mIzKTlOYSkJ4Su9ZwYbTXLB953aP7ME/+wCxWx5AvQ7A exmT8xWTVcxh/OSczZVuNGq8SW5mrFDCBV0Yy3nA0/s0A3/y57bILEXBhHLYlqiR 9GRaZVjWTVs9ewylo3frj1TJog9/x50uF8R9hTkLtuX3pB2HGelDtA/L0Y4+eoMh 9NPUnFC4/cL0aKC7XfnR20qTkxU2WG0= -----END CERTIFICATE-----Generated at Sat Sep 6 15:24:06 2025 by rpki-client