$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: OeIDAyz/3MvBbeMmmdBvlKCjXlcZjXP9gyQzO9jPoZQ= Subject key identifier: 4D:64:1C:C8:38:E8:8C:CF:73:E1:5D:D7:A0:28:0A:89:DE:80:AC:0F Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 117B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 1008 Signing time: Thu 04 Sep 2025 17:48:06 +0000 Manifest this update: Thu 04 Sep 2025 17:48:06 +0000 Manifest next update: Thu 11 Sep 2025 17:48:06 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: 4Fyx8gVBSAP9mo5mdHOC/N1sHs/eOzhRgZfaawQQLuU=) 2: 9394D360345F11F0AB96776CC4F9AE02.roa (hash: W4PkU+QwD/8bYuNMSrKUoTp+GmPZQH8HiHMStgOCIWE=) 3: 8224E55C345F11F0BD514C6CC4F9AE02.roa (hash: 5yssRnHiNxYbvC97ouK3PFQvut2qP5qu+yNWhWZqjDg=) 4: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: rou/LDou6+V/KVPUUd+xyuvJOo9d0Agu7Kr+809dbVM=) 5: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: wbAxf5dVXXEiIwKKpLqE+cuBbqEoiTYyCWdfX3OjWk8=) 6: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: NyB93qfmsbAZRAkPJESEcMdym4VpvubYepXKCtssfXQ=) 7: FD5158C044C511F0ABA4E977C4F9AE02.roa (hash: sBv0Q+ONp8Ppr2WKLMiy/5JZXTR72rxYXPkX8rrfyFE=) 8: 50D040327CFD11F0B32D4522C4F9AE02.roa (hash: jfSwj9kU8P/T4IfAw9qOukQY5qFKJhuEAFm89XgMLjg=) 9: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: r1Xk8MicSL+bI7AGfAkoa/toS5kHIpFMuCE8DDnU/Kg=) 10: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: aRsEa/XlADK8Ys2zNZV3ljXviF6zdG4+twO2EcsTz6U=) 11: 2A4EE13E7CFD11F08A91EE21C4F9AE02.roa (hash: p6on445lkdVNXMMWjoYeri4k3QXBG09nZNuaYw4s6Gc=) 12: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: ytr2HpN06eiSGj2rNCJTUUsU785h9iKeb98Ln4JH8Nk=) 13: C2356A948FE811E98B967A66C4F9AE02.roa (hash: k3PLqMJ24hbj9LTYOeTg1vBguIXi9N/SryWCjUrQYCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 17:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4475 (0x117b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Sep 4 17:48:06 2025 GMT Not After : Sep 11 17:48:06 2025 GMT Subject: CN=68b9d0d6-3e15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d1:30:b1:fd:6b:e6:17:90:0d:98:56:0f:ef: 2b:65:32:fc:b9:28:de:14:b5:aa:32:36:0c:7b:b3: 84:6c:75:26:50:66:90:d9:c2:aa:c0:79:87:64:40: b1:46:dc:6f:d9:5a:d3:fa:76:cc:1e:ff:69:b2:38: 09:54:eb:37:33:f1:96:5c:6c:83:80:50:48:bf:a6: 4d:34:a2:56:d7:81:0c:08:ea:e3:8a:49:0e:21:67: 85:a0:56:35:d1:2e:c2:1c:f6:dc:17:24:55:8e:88: a0:8f:00:a6:f1:5b:df:5d:a2:03:c4:28:fa:99:66: 45:07:75:fe:12:63:ec:08:71:26:39:53:7d:4a:47: f9:fa:58:0e:bb:93:f0:c8:dc:af:20:66:28:9a:e1: 11:ae:86:be:1b:12:15:32:f0:bc:1a:76:bc:79:9f: 6a:63:71:1b:c2:73:dc:28:0f:ec:d4:74:06:64:f9: 53:aa:ee:b5:61:5e:f9:5f:ab:69:9c:44:09:d8:af: 25:f9:50:de:ed:df:09:8b:db:59:ad:0b:03:d3:58: de:80:8f:04:20:46:7c:47:aa:d6:4d:09:1c:7d:4d: 6a:46:de:d2:9d:3d:95:66:48:0c:55:a4:92:b8:db: 14:b8:ff:11:d2:fc:85:1a:ad:81:62:4d:8b:e6:8a: ec:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:64:1C:C8:38:E8:8C:CF:73:E1:5D:D7:A0:28:0A:89:DE:80:AC:0F X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:c4:ad:b1:13:59:8f:bc:af:92:80:76:cb:e1:a8:85:cd:47: 9f:27:ce:2f:7b:c7:29:1f:d3:e7:05:e1:cc:4f:97:eb:63:73: 43:bd:c8:6d:97:3c:b1:ff:66:ea:46:cf:e1:ee:4e:77:9b:df: 13:5f:a8:f9:ff:b4:12:9a:b2:f8:10:a4:57:47:01:f0:7b:b1: 11:9b:0b:b2:96:7a:b1:30:ce:6f:d4:89:a3:20:03:5d:07:35: 8b:07:c8:24:a3:14:34:cd:44:2d:8c:51:47:e9:9e:b0:9c:4a: 86:fd:8a:ab:84:0d:21:2c:b7:fe:0b:dd:ef:c6:b8:df:dd:b1: e6:db:e8:a4:71:f8:6d:b3:85:42:88:62:a1:b7:20:41:5b:79: 5f:cd:f0:02:38:52:45:41:e6:60:d9:96:2e:69:7d:4a:0a:4f: d1:06:63:b7:62:09:58:da:04:34:1f:d4:33:34:34:d8:d3:3d: 03:f7:34:06:8f:f8:3f:bd:49:b6:9e:37:46:8b:fe:2b:ad:60: 16:6d:67:4b:29:87:a8:31:18:ee:f7:b5:e7:dd:f1:d1:a0:95: af:26:51:fc:77:88:ce:c6:0b:55:92:3d:d6:93:f2:77:57:5b: 7d:e5:f7:3a:57:fc:77:bd:90:87:f9:60:5c:f8:e9:28:3b:56: 10:b6:6e:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwOTA0MTc0ODA2WhcNMjUwOTExMTc0ODA2WjAYMRYwFAYD VQQDEw02OGI5ZDBkNi0zZTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9Ewsf1r5heQDZhWD+8rZTL8uSjeFLWqMjYMe7OEbHUmUGaQ2cKqwHmHZECx Rtxv2VrT+nbMHv9psjgJVOs3M/GWXGyDgFBIv6ZNNKJW14EMCOrjikkOIWeFoFY1 0S7CHPbcFyRVjoigjwCm8VvfXaIDxCj6mWZFB3X+EmPsCHEmOVN9Skf5+lgOu5Pw yNyvIGYomuERroa+GxIVMvC8Gna8eZ9qY3EbwnPcKA/s1HQGZPlTqu61YV75X6tp nEQJ2K8l+VDe7d8Ji9tZrQsD01jegI8EIEZ8R6rWTQkcfU1qRt7SnT2VZkgMVaSS uNsUuP8R0vyFGq2BYk2L5orsdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1kHMg4 6IzPc+Fd16AoConegKwPMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkxK2xE1mPvK+SgHbL4aiFzUefJ84ve8cpH9PnBeHMT5frY3NDvcht lzyx/2bqRs/h7k53m98TX6j5/7QSmrL4EKRXRwHwe7ERmwuylnqxMM5v1ImjIANd BzWLB8gkoxQ0zUQtjFFH6Z6wnEqG/YqrhA0hLLf+C93vxrjf3bHm2+ikcfhts4VC iGKhtyBBW3lfzfACOFJFQeZg2ZYuaX1KCk/RBmO3YglY2gQ0H9QzNDTY0z0D9zQG j/g/vUm2njdGi/4rrWAWbWdLKYeoMRju97Xn3fHRoJWvJlH8d4jOxgtVkj3Wk/J3 V1t95fc6V/x3vZCH+WBc+OkoO1YQtm40 -----END CERTIFICATE-----Generated at Sat Sep 6 11:52:18 2025 by rpki-client