$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: I4TSsuWXUH7XF8m4m2UHUeYBa41tVTSUj8Y7MLSdnYE= Subject key identifier: F7:15:D3:B5:5E:BE:BB:23:86:17:85:0D:6D:66:0F:DD:17:5D:71:30 Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0CBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0CAB Signing time: Thu 18 Sep 2025 18:25:16 +0000 Manifest this update: Thu 18 Sep 2025 18:25:15 +0000 Manifest next update: Thu 25 Sep 2025 18:25:15 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: WKKNIqA9X/52GAbbj3cGhnieVhcwa/P+hW4qx16a+Sg=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: OT1wU0R1qfUZlPrVStZHI9ZTJpnzI3jWvMhElEQPU9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3261 (0xcbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Sep 18 18:25:15 2025 GMT Not After : Sep 25 18:25:15 2025 GMT Subject: CN=68cc4e8b-637e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:de:61:62:04:4e:34:53:c3:9f:6b:03:44:ae: 18:5e:54:67:5e:1a:47:6b:72:09:bf:05:24:a6:b2: e6:90:a3:0f:26:c2:56:d9:4f:78:71:51:10:42:12: b4:23:5a:6a:3a:56:54:b7:e6:ff:9d:e1:8d:46:5f: aa:b3:ec:85:4f:c4:c0:d8:6e:b3:fd:d3:89:e0:63: f3:10:3b:36:8d:e4:d3:be:c4:0a:9e:d8:7a:5e:57: 4d:e0:93:60:2d:e3:7f:8e:a1:9a:c1:65:9c:cf:f4: b8:1a:d3:1d:96:8b:f8:cc:a4:58:41:b0:ad:f5:83: ce:32:27:07:99:3a:14:45:d7:a0:f0:9b:e0:6d:9c: f1:08:5a:6e:80:e9:87:48:25:a3:ff:e2:87:e4:b7: 0d:b7:d7:eb:d8:76:57:82:0a:8b:8b:7b:70:bc:9a: c6:13:c1:5e:b2:eb:87:c2:93:52:7d:ae:41:3d:40: 08:48:40:c1:c4:90:8d:48:6a:a3:81:a9:9b:92:06: db:a8:67:a9:5a:1e:03:df:3f:2f:fe:81:b9:81:63: ec:a2:f4:80:6a:62:47:1a:96:77:1b:e0:f1:9c:6e: 01:13:ee:76:10:f3:28:77:35:05:21:a6:f9:0f:9b: b3:3c:9d:39:79:67:68:fb:4b:e4:57:79:cd:6e:e5: ea:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:15:D3:B5:5E:BE:BB:23:86:17:85:0D:6D:66:0F:DD:17:5D:71:30 X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:f5:47:da:0a:25:29:cb:94:82:12:07:a1:4d:89:55:18:9b: 72:da:d8:f0:27:43:b4:97:54:0b:84:f2:c7:4a:52:33:b4:08: 24:22:f4:2b:fc:58:fe:90:3f:67:82:e3:eb:aa:52:d8:de:ef: 61:dd:bf:47:51:aa:4d:0b:05:8e:dc:74:65:66:e4:61:e7:cd: a4:1f:9a:cd:e4:3c:4b:de:7f:7d:c3:df:3c:1b:8f:cd:c2:f6: fd:42:23:e7:57:42:8a:6e:ec:f2:99:d8:a9:2e:f5:15:65:dd: 07:05:27:ea:16:fa:cb:c2:c3:82:14:63:07:fe:f6:62:2c:31: 2f:5e:fa:82:83:9e:a6:e3:61:84:c8:f7:f4:e9:fa:37:19:03: fd:41:89:83:fe:5b:e3:c9:47:d9:1d:bc:0a:ad:d3:5c:4b:d5: 7c:da:e5:6f:c9:f0:dc:5f:95:4d:61:c1:08:4b:4a:c7:84:21: cb:59:43:12:cf:9b:ba:6f:b3:66:da:d8:53:24:a7:0f:e2:43: c2:40:97:3a:e9:25:a7:24:98:8f:c7:84:d4:7b:76:c9:77:24: af:9d:0b:b1:e9:06:6d:c1:8d:fd:00:e3:23:b1:53:8c:ea:ad: 34:a0:fd:df:36:05:58:71:3c:45:30:01:d9:21:78:6f:dd:6a: ed:71:46:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUwOTE4MTgyNTE1WhcNMjUwOTI1MTgyNTE1WjAYMRYwFAYD VQQDEw02OGNjNGU4Yi02MzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxt5hYgRONFPDn2sDRK4YXlRnXhpHa3IJvwUkprLmkKMPJsJW2U94cVEQQhK0 I1pqOlZUt+b/neGNRl+qs+yFT8TA2G6z/dOJ4GPzEDs2jeTTvsQKnth6XldN4JNg LeN/jqGawWWcz/S4GtMdlov4zKRYQbCt9YPOMicHmToURdeg8JvgbZzxCFpugOmH SCWj/+KH5LcNt9fr2HZXggqLi3twvJrGE8FesuuHwpNSfa5BPUAISEDBxJCNSGqj gambkgbbqGepWh4D3z8v/oG5gWPsovSAamJHGpZ3G+DxnG4BE+52EPModzUFIab5 D5uzPJ05eWdo+0vkV3nNbuXqXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcV07Ve vrsjhheFDW1mD90XXXEwMB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM9UfaCiUpy5SCEgehTYlVGJty2tjwJ0O0l1QLhPLHSlIztAgkIvQr /Fj+kD9nguPrqlLY3u9h3b9HUapNCwWO3HRlZuRh582kH5rN5DxL3n99w988G4/N wvb9QiPnV0KKbuzymdipLvUVZd0HBSfqFvrLwsOCFGMH/vZiLDEvXvqCg56m42GE yPf06fo3GQP9QYmD/lvjyUfZHbwKrdNcS9V82uVvyfDcX5VNYcEIS0rHhCHLWUMS z5u6b7Nm2thTJKcP4kPCQJc66SWnJJiPx4TUe3bJdySvnQux6QZtwY39AOMjsVOM 6q00oP3fNgVYcTxFMAHZIXhv3WrtcUbw -----END CERTIFICATE-----Generated at Fri Sep 19 02:14:33 2025 by rpki-client