$ rpki-client -vvf rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft File: NtqOcqrHflUzc5DvTGHJVAtFldc.mft (raw, json) Hash identifier: pypKAESEMxXpEsa5zml4XuGpniHhR0dQfj2MVzrEF5Q= Subject key identifier: E1:F5:CE:59:A6:34:DA:06:76:1A:F9:13:8D:61:89:09:19:73:99:DF Authority key identifier: 36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 Certificate issuer: /CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Certificate serial: 0A3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft Manifest number: 0A29 Signing time: Wed 20 Aug 2025 19:52:45 +0000 Manifest this update: Wed 20 Aug 2025 19:52:44 +0000 Manifest next update: Wed 27 Aug 2025 19:52:44 +0000 Files and hashes: 1: NtqOcqrHflUzc5DvTGHJVAtFldc.crl (hash: 3CNw3JurqZCd/mekVpNURub+Ey3cF6MG1tJJl3vIFeg=) 2: 6A23E166499211ED879F2D11C4F9AE02.roa (hash: MzXzYE5MrqHvRoe17AJmK7I+zMsNRRFLd5oWGTmAVM0=) 3: 6B5765BC499211ED879F2D11C4F9AE02.roa (hash: 9GaBS9IbS88to+9kkQ6jxibXk5BWsO+3f5H1a6SCfEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 19:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577A2, serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Validity Not Before: Aug 20 19:52:44 2025 GMT Not After : Aug 27 19:52:44 2025 GMT Subject: CN=68a6278d-1dc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:cf:b8:e8:9d:2d:22:7d:ee:12:30:ac:b5:ef: 99:3c:d5:f3:c9:84:80:fe:ab:e9:1b:80:06:08:33: 2c:4b:bc:5f:b3:66:23:30:0f:bf:a5:87:db:52:65: 44:88:93:1e:ce:e8:6b:e2:47:a6:80:33:58:e4:ce: 3e:20:c6:36:59:30:36:5f:17:6c:77:4c:db:04:da: a1:a5:4f:a5:5b:4f:76:98:8d:5b:3a:ab:9e:17:61: 5c:f9:81:d3:dd:f5:29:5c:89:45:66:9b:f8:98:21: b4:b2:3b:9d:79:28:0a:05:99:82:57:2e:80:40:5b: 02:2f:2e:47:ac:46:cc:e2:c2:d6:40:3e:45:21:72: 5b:ae:df:d5:32:20:54:23:9f:c7:7f:d2:03:b1:2f: 1a:83:7d:9d:f6:a4:87:9a:fa:b2:47:18:89:41:97: 80:78:b4:4b:07:82:26:dc:c2:42:e7:a4:0b:0e:fd: ea:b0:15:76:b4:dc:0a:af:75:6a:a9:74:63:8a:41: 44:22:0e:b9:5f:94:2a:81:5d:a0:0c:64:eb:e6:42: 8f:6e:78:ce:b7:05:b4:6a:c7:2d:ce:a5:fb:05:55: 79:b9:0b:13:a1:41:a3:05:81:e5:1a:d8:79:4a:96: eb:7a:e9:7a:43:ed:0e:84:2b:30:01:98:00:3b:87: d6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F5:CE:59:A6:34:DA:06:76:1A:F9:13:8D:61:89:09:19:73:99:DF X509v3 Authority Key Identifier: keyid:36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:18:26:14:34:99:61:c8:0f:76:c1:33:46:6e:85:14:f2:5f: 87:74:e3:03:d5:46:f5:9f:37:32:34:ac:aa:de:39:51:d6:47: 43:de:d7:cb:7e:fb:2e:2d:a1:db:31:ba:60:0c:9e:e0:da:86: d6:2a:66:5f:e9:99:0a:9b:67:d8:29:14:c5:d9:a8:f6:48:78: 03:cd:49:fc:3a:82:a3:2b:89:43:6f:ba:50:81:5a:f0:26:04: 4a:71:63:74:e6:1a:4d:90:14:f9:f4:3a:3c:e8:96:fd:bd:c4: 93:15:c3:a6:ce:8d:c4:33:be:78:c1:7d:6e:40:f5:c2:bf:0d: 94:3a:ba:d2:b8:ba:5d:5a:9e:2d:32:0e:91:21:aa:3b:a1:61: 0d:01:64:6e:06:70:13:cf:41:f0:1d:a4:9c:13:17:83:1c:34: a9:6b:33:d4:ac:23:dc:49:7c:e2:7f:f4:21:78:51:29:9c:df: 3f:11:98:7d:9b:aa:ac:50:05:1c:6a:b6:91:52:52:ea:8f:b2: e1:80:37:ca:ea:53:f5:82:72:e4:b3:ca:7e:93:6e:dc:85:f4: 0e:c7:fa:8b:6d:e6:b5:87:18:55:5f:13:20:36:cb:c5:8a:49: 58:5c:c4:65:28:d9:5f:4a:da:69:39:d1:74:1a:48:3e:b1:a9: fd:24:98:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3QTIxMTAvBgNVBAUTKDM2REE4RTcyQUFDNzdFNTUzMzczOTBFRjRDNjFDOTU0 MEI0NTk1RDcwHhcNMjUwODIwMTk1MjQ0WhcNMjUwODI3MTk1MjQ0WjAYMRYwFAYD VQQDEw02OGE2Mjc4ZC0xZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7s+46J0tIn3uEjCste+ZPNXzyYSA/qvpG4AGCDMsS7xfs2YjMA+/pYfbUmVE iJMezuhr4kemgDNY5M4+IMY2WTA2Xxdsd0zbBNqhpU+lW092mI1bOqueF2Fc+YHT 3fUpXIlFZpv4mCG0sjudeSgKBZmCVy6AQFsCLy5HrEbM4sLWQD5FIXJbrt/VMiBU I5/Hf9IDsS8ag32d9qSHmvqyRxiJQZeAeLRLB4Im3MJC56QLDv3qsBV2tNwKr3Vq qXRjikFEIg65X5QqgV2gDGTr5kKPbnjOtwW0asctzqX7BVV5uQsToUGjBYHlGth5 Spbreul6Q+0OhCswAZgAO4fW+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOH1zlmm NNoGdhr5E41hiQkZc5nfMB8GA1UdIwQYMBaAFDbajnKqx35VM3OQ70xhyVQLRZXX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdBMi84QkMxNUM0MDdC MDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZsVXpjNUR2VEdISlZBdEZs ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050cU9jcXJIZmxVemM1RHZUR0hKVkF0RmxkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdBMi84QkMxNUM0MDdCMDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZs VXpjNUR2VEdISlZBdEZsZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhGCYUNJlhyA92wTNGboUU8l+HdOMD1Ub1nzcyNKyq3jlR1kdD3tfL fvsuLaHbMbpgDJ7g2obWKmZf6ZkKm2fYKRTF2aj2SHgDzUn8OoKjK4lDb7pQgVrw JgRKcWN05hpNkBT59Do86Jb9vcSTFcOmzo3EM754wX1uQPXCvw2UOrrSuLpdWp4t Mg6RIao7oWENAWRuBnATz0HwHaScExeDHDSpazPUrCPcSXzif/QheFEpnN8/EZh9 m6qsUAUcaraRUlLqj7LhgDfK6lP1gnLks8p+k27chfQOx/qLbea1hxhVXxMgNsvF iklYXMRlKNlfStppOdF0Gkg+san9JJg4 -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:45 2025 by rpki-client