$ rpki-client -vvf rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft File: nWBHd6Cse-aqCBCwJetJPqbdNGM.mft (raw, json) Hash identifier: p05O49CRjJR4ql+UPREZMyv81WW8PQPzruqXZ8v1+us= Subject key identifier: 6D:54:FC:3F:D4:85:0E:F9:D0:E5:3D:93:B3:BC:7C:1B:20:EB:89:70 Authority key identifier: 9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 Certificate issuer: /CN=A9198FD0/serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Certificate serial: 04C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft Manifest number: 04B9 Signing time: Sat 23 Aug 2025 00:06:43 +0000 Manifest this update: Sat 23 Aug 2025 00:06:42 +0000 Manifest next update: Sat 30 Aug 2025 00:06:42 +0000 Files and hashes: 1: nWBHd6Cse-aqCBCwJetJPqbdNGM.crl (hash: 0p47PPVTpMs0PoHFIK+DCJyCVrDBWHUwbQ+oPsab5AU=) 2: 8327C2403DE011ECAB508171C4F9AE02.roa (hash: nj3zL8oObjV8NLXqj4IbNKya+FtBjMvRptjlINscrUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1216 (0x4c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198FD0, serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Validity Not Before: Aug 23 00:06:42 2025 GMT Not After : Aug 30 00:06:42 2025 GMT Subject: CN=68a90613-1dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a6:25:b8:ab:2c:ca:7e:29:20:e5:b6:c8:ae: 75:50:94:dc:02:62:8f:e9:d3:f4:ce:15:bb:ff:67: 48:8c:d2:07:5a:68:e5:54:d7:1b:22:04:7b:31:9a: 36:7a:a5:18:5a:b2:2e:5c:d6:26:91:9a:43:4c:46: ca:7c:a7:16:83:05:12:1c:03:36:5d:97:71:7b:9d: ab:4a:ef:fd:a0:0a:ac:b8:98:9d:1f:45:5e:a0:7a: 58:27:79:0e:27:d2:ec:e8:cc:7a:2c:26:73:c7:f3: 90:c8:30:1b:7b:20:ac:78:42:65:85:9d:84:fa:e4: fc:f0:74:59:fb:b5:cb:1e:01:5c:43:97:05:e5:6e: 45:8d:ab:91:ef:14:e4:a2:f0:c9:fc:03:9f:52:7e: cb:97:06:4f:d1:c5:7f:c8:93:a0:f3:34:7d:7d:10: 25:77:cc:91:a9:cb:2a:11:ae:fe:9b:95:8e:60:45: ae:57:b6:8e:dd:d0:b9:01:99:71:88:b7:4c:86:c7: 23:25:c9:05:ff:04:6d:85:4a:94:60:4c:30:92:b6: 65:bf:cd:c6:b2:e7:dd:4c:6e:93:72:e9:89:43:08: 10:52:1b:f6:b2:11:65:03:0b:c4:e1:06:1a:1a:f5: 36:8f:4a:f5:5a:2a:12:77:f0:8e:a5:53:02:c3:7a: aa:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:54:FC:3F:D4:85:0E:F9:D0:E5:3D:93:B3:BC:7C:1B:20:EB:89:70 X509v3 Authority Key Identifier: keyid:9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:80:a0:1c:10:87:c2:ec:10:16:84:b4:84:a0:91:c7:e1:6c: ea:6f:91:32:30:16:47:e9:4b:20:6e:3f:b1:54:e3:4b:4a:2d: 50:58:a0:60:a3:25:a0:a7:8b:b9:e8:b0:55:86:be:12:c3:7f: b0:a3:4b:fe:94:1e:b3:16:fa:2f:08:c7:96:af:d3:dc:02:99: 3f:c2:22:40:0a:7f:42:15:ef:52:14:e1:8c:09:53:c6:87:20: 47:d2:58:26:3e:84:73:0f:10:60:45:c5:b4:e3:33:8a:e8:d0: 1c:03:78:1d:8d:7d:35:ab:6e:1c:aa:42:1f:c1:41:40:75:53: 32:9e:94:b5:31:6c:62:c7:78:3a:3d:10:86:4a:1f:10:9e:69: 30:00:92:d8:52:01:82:fb:22:ea:52:65:ae:17:d5:73:0e:39: db:9f:db:7b:59:27:a9:84:66:71:64:6c:01:7a:9a:dd:e1:b3: a6:c4:b3:f9:94:1a:5f:cb:9b:98:2a:f1:e0:3b:f6:b3:ce:32: e9:2f:46:75:67:09:e4:46:e8:bb:10:39:c6:64:7f:1f:17:18: 85:7f:c0:09:1f:0d:11:f0:2c:4a:f1:7d:e1:ed:32:2c:50:71: 18:81:04:93:92:77:7e:5c:63:51:5c:06:bb:8f:36:b4:c5:7a: 3a:1d:ee:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGRDAxMTAvBgNVBAUTKDlENjA0Nzc3QTBBQzdCRTZBQTA4MTBCMDI1RUI0OTNF QTZERDM0NjMwHhcNMjUwODIzMDAwNjQyWhcNMjUwODMwMDAwNjQyWjAYMRYwFAYD VQQDEw02OGE5MDYxMy0xZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6YluKssyn4pIOW2yK51UJTcAmKP6dP0zhW7/2dIjNIHWmjlVNcbIgR7MZo2 eqUYWrIuXNYmkZpDTEbKfKcWgwUSHAM2XZdxe52rSu/9oAqsuJidH0VeoHpYJ3kO J9Ls6Mx6LCZzx/OQyDAbeyCseEJlhZ2E+uT88HRZ+7XLHgFcQ5cF5W5FjauR7xTk ovDJ/AOfUn7LlwZP0cV/yJOg8zR9fRAld8yRqcsqEa7+m5WOYEWuV7aO3dC5AZlx iLdMhscjJckF/wRthUqUYEwwkrZlv83GsufdTG6TcumJQwgQUhv2shFlAwvE4QYa GvU2j0r1WioSd/COpVMCw3qqdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1U/D/U hQ750OU9k7O8fBsg64lwMB8GA1UdIwQYMBaAFJ1gR3egrHvmqggQsCXrST6m3TRj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEZEMC8yMEI0QkQ4MDNE RDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2UtYXFDQkN3SmV0SlBxYmRO R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25XQkhkNkNzZS1hcUNCQ3dKZXRKUHFiZE5HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEZEMC8yMEI0QkQ4MDNERDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2Ut YXFDQkN3SmV0SlBxYmROR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmgKAcEIfC7BAWhLSEoJHH4Wzqb5EyMBZH6Usgbj+xVONLSi1QWKBg oyWgp4u56LBVhr4Sw3+wo0v+lB6zFvovCMeWr9PcApk/wiJACn9CFe9SFOGMCVPG hyBH0lgmPoRzDxBgRcW04zOK6NAcA3gdjX01q24cqkIfwUFAdVMynpS1MWxix3g6 PRCGSh8QnmkwAJLYUgGC+yLqUmWuF9VzDjnbn9t7WSephGZxZGwBeprd4bOmxLP5 lBpfy5uYKvHgO/azzjLpL0Z1ZwnkRui7EDnGZH8fFxiFf8AJHw0R8CxK8X3h7TIs UHEYgQSTknd+XGNRXAa7jza0xXo6He7t -----END CERTIFICATE-----Generated at Sun Aug 24 21:46:28 2025 by rpki-client