$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: jZyPB2yZ8lBBFBpdzrLmWSOABajrX9o+2T0owl8b9Kc= Subject key identifier: E6:F5:89:B7:49:93:4D:23:4C:16:35:8C:23:79:37:69:15:D2:90:07 Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2BA1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2B8D Signing time: Sat 06 Sep 2025 14:26:00 +0000 Manifest this update: Sat 06 Sep 2025 14:26:00 +0000 Manifest next update: Sat 13 Sep 2025 14:26:00 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: 2RUHDrTGBsL1lqdwpqo97PS7DJAegTnwIkEAUmfvjgc=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: cs/JN2roMF9559frpHSU57kLMdZZdt/kq/+fgPXNaTg=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: kOKMH7bC+n+8o1xcllbA3RXGetoc8aW0IIWJBu8P/uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11169 (0x2ba1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Sep 6 14:26:00 2025 GMT Not After : Sep 13 14:26:00 2025 GMT Subject: CN=68bc4478-f0fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a9:15:8d:d9:c4:41:94:76:b4:83:c5:83:9d: 19:49:c1:90:8a:9c:9a:94:6c:39:a6:5d:5b:fd:c2: f8:7c:7b:28:30:5f:bd:56:f2:21:d2:68:50:b8:c0: 75:14:b3:c8:c9:b7:9a:98:98:ac:15:03:ec:53:d0: bf:59:a1:3e:6d:78:e2:00:21:75:c1:4e:75:f3:80: ef:cb:e3:45:28:75:c7:e5:85:39:59:58:3b:9c:13: d5:cf:21:c6:93:6d:fb:91:1e:b4:0b:fc:28:cd:66: 41:84:77:91:af:68:51:7a:c9:69:0b:ba:c8:be:33: fa:a0:a3:65:b8:26:c5:8b:50:f6:3e:d9:ee:0a:66: 3a:8b:42:3d:f9:46:38:ce:59:ac:18:e4:72:d1:a5: dc:a0:4c:35:9d:f6:1c:6a:58:58:35:e9:02:2d:a6: 46:96:5a:90:2b:f0:26:8b:8f:07:87:08:77:58:88: 4d:bf:9a:71:6b:e4:b4:c8:0d:af:f9:7a:f4:2a:53: 6e:b0:0f:9c:21:fd:5f:d4:af:b0:f3:35:63:17:ac: 8e:dd:51:79:31:ca:ea:7b:b4:81:b4:92:5b:8b:51: e1:79:6b:c7:08:40:0a:f3:33:17:62:dd:ea:35:3c: 0e:5b:cb:8f:a1:9d:06:47:fa:d6:b8:65:47:84:b0: b6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F5:89:B7:49:93:4D:23:4C:16:35:8C:23:79:37:69:15:D2:90:07 X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:3c:01:eb:92:ec:4f:30:27:61:a3:6b:9b:8a:52:63:91:3e: 16:5f:d6:ed:02:3c:d9:d1:aa:8b:de:77:d9:3d:7c:d6:26:7d: 43:95:ce:30:32:07:fa:b3:dc:12:6d:28:2e:3f:ea:ed:c8:7e: ae:cd:de:2a:37:8f:43:f4:57:29:62:71:b3:ec:f4:1c:31:9c: 31:08:45:b9:d5:19:8c:bf:55:3f:ca:89:7d:82:19:2b:20:7a: 75:1c:76:95:19:ca:ce:28:30:e0:44:5c:9c:c4:f2:bd:73:e0: 35:81:4d:12:2d:70:40:a4:6d:55:9b:3b:9f:73:17:88:91:ba: f6:5a:ca:a6:3f:7c:06:c5:85:0b:45:97:d1:01:72:7c:c3:9c: 01:a5:ad:96:83:77:03:f9:8c:91:b0:44:3e:2f:0a:8e:20:c8: f1:0f:a9:31:ef:d6:a4:59:71:eb:75:4e:00:94:fb:ce:b4:88: 1c:88:3e:b9:79:00:0c:a5:14:1e:bb:fb:2d:04:10:43:02:70: 81:e6:84:61:6d:4d:ed:c4:5e:d6:15:9c:d0:c4:ac:19:10:b0: 2d:94:dd:be:00:af:1e:94:79:85:b6:17:40:70:d7:49:31:55: f3:75:2e:ce:61:58:50:d2:d8:96:f5:90:a3:23:67:c7:f7:6f: 5e:c7:bd:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUwOTA2MTQyNjAwWhcNMjUwOTEzMTQyNjAwWjAYMRYwFAYD VQQDEw02OGJjNDQ3OC1mMGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqkVjdnEQZR2tIPFg50ZScGQipyalGw5pl1b/cL4fHsoMF+9VvIh0mhQuMB1 FLPIybeamJisFQPsU9C/WaE+bXjiACF1wU5184Dvy+NFKHXH5YU5WVg7nBPVzyHG k237kR60C/wozWZBhHeRr2hReslpC7rIvjP6oKNluCbFi1D2PtnuCmY6i0I9+UY4 zlmsGORy0aXcoEw1nfYcalhYNekCLaZGllqQK/Ami48Hhwh3WIhNv5pxa+S0yA2v +Xr0KlNusA+cIf1f1K+w8zVjF6yO3VF5Mcrqe7SBtJJbi1HheWvHCEAK8zMXYt3q NTwOW8uPoZ0GR/rWuGVHhLC20wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOb1ibdJ k00jTBY1jCN5N2kV0pAHMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdPAHrkuxPMCdho2ubilJjkT4WX9btAjzZ0aqL3nfZPXzWJn1Dlc4w Mgf6s9wSbSguP+rtyH6uzd4qN49D9FcpYnGz7PQcMZwxCEW51RmMv1U/yol9ghkr IHp1HHaVGcrOKDDgRFycxPK9c+A1gU0SLXBApG1VmzufcxeIkbr2WsqmP3wGxYUL RZfRAXJ8w5wBpa2Wg3cD+YyRsEQ+LwqOIMjxD6kx79akWXHrdU4AlPvOtIgciD65 eQAMpRQeu/stBBBDAnCB5oRhbU3txF7WFZzQxKwZELAtlN2+AK8elHmFthdAcNdJ MVXzdS7OYVhQ0tiW9ZCjI2fH929ex72Y -----END CERTIFICATE-----Generated at Sat Sep 6 21:11:00 2025 by rpki-client