$ rpki-client -vvf rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft File: NmIvmQC0aq380FRk8Q1CsTBiUXY.mft (raw, json) Hash identifier: 4KN2hM16+1tUOMdYnyiz/Hj3gqQbnbAOcjpK2Askyyo= Subject key identifier: 97:66:FB:17:90:1A:E6:AC:2D:CC:55:D4:C2:98:93:6E:A5:5D:FD:BC Authority key identifier: 36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 Certificate issuer: /CN=A919CE1D/serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft Manifest number: 1C Signing time: Fri 05 Sep 2025 08:26:43 +0000 Manifest this update: Fri 05 Sep 2025 08:26:43 +0000 Manifest next update: Fri 12 Sep 2025 08:26:43 +0000 Files and hashes: 1: NmIvmQC0aq380FRk8Q1CsTBiUXY.crl (hash: JbqxpjCSth6i8/vXkO1yIWELlXNzVQT3SiF7akI1WKY=) 2: 2518C04062E011F08D04F42EC4F9AE02.roa (hash: YXoQ9r4tej6CnG1FdK26UeZMqNkqakqvZSbUkeab5Z8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 08:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CE1D, serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Validity Not Before: Sep 5 08:26:43 2025 GMT Not After : Sep 12 08:26:43 2025 GMT Subject: CN=68ba9ec3-69ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4b:7d:f4:73:bf:12:3e:6b:38:76:d6:67:84: 1b:42:c7:1d:01:9e:f5:de:a9:aa:9b:03:3b:da:c7: 9e:e0:b5:2d:38:16:5b:4d:ce:65:d2:ad:c2:57:46: 43:a4:4d:6f:84:6d:17:f4:97:24:93:6a:88:a1:57: e5:48:f6:5f:ed:fa:67:6e:65:52:b6:84:5b:eb:e1: 22:de:73:55:fe:af:13:b9:32:f2:ab:fc:f4:ce:f5: 18:d1:6c:97:1b:6e:87:72:2c:f7:7b:d5:e6:c1:ca: 51:a5:bb:f0:e4:f5:6d:ff:fa:46:8f:03:81:c0:52: 59:06:86:c8:5f:f4:a7:18:1c:fa:40:fd:87:e1:0f: a2:bf:08:66:81:91:26:37:ed:5a:d8:f6:5d:0f:03: 1e:70:7d:de:c2:22:6a:30:7d:75:21:05:51:a3:27: 8d:e1:99:c5:64:84:77:59:7d:7c:ce:8c:f8:07:18: 20:f1:ff:43:72:3e:e8:70:06:a6:1a:4f:c6:6a:03: e2:c4:19:74:d1:8f:3b:08:4b:35:1d:59:9a:12:a0: 29:5a:cf:b9:bd:9d:10:dc:96:86:fd:62:06:cd:52: 37:39:e0:b9:6b:a6:ca:aa:2f:84:4d:8a:e2:27:d5: 72:e2:ae:8b:01:aa:dc:f8:cd:81:e6:91:f8:58:54: ef:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:66:FB:17:90:1A:E6:AC:2D:CC:55:D4:C2:98:93:6E:A5:5D:FD:BC X509v3 Authority Key Identifier: keyid:36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:8a:39:79:04:3c:6c:e0:f1:2c:33:d4:43:54:96:96:d0:0e: 03:f3:d1:ce:54:76:62:b8:f4:08:62:0d:65:1c:ea:88:7b:03: a2:52:c3:d5:76:01:22:c0:97:59:be:c7:3f:75:2e:3d:a8:05: 66:87:b6:05:2d:b7:75:61:a6:0f:8b:a5:bb:83:f9:72:45:de: d4:7c:f3:1d:e1:bb:cf:91:d4:f1:53:c1:cc:00:55:46:d6:de: 14:a4:7e:b6:a2:c5:33:32:ab:d3:2a:37:b0:e7:39:2f:7b:e1: 7b:ef:32:d2:bc:df:5d:d8:cb:95:57:68:a0:fc:5e:fa:c6:7c: b3:21:7b:f6:77:3d:a5:d7:4e:45:bb:1d:34:b0:fa:e7:33:a1: 4f:07:d8:0a:4f:f4:95:11:c7:03:c7:4e:2e:8d:c8:03:bc:7c: 9f:34:e7:ec:42:ba:43:3d:e9:31:9b:59:f5:3d:35:f3:97:ce: e4:28:b9:d2:9f:f7:ac:f0:39:7b:a5:ce:d4:79:d3:8a:02:aa: 29:f8:d3:ca:3b:07:9c:46:a4:0b:53:de:66:f4:5b:76:24:f1: 7f:39:01:26:cc:47:ff:3c:69:67:77:29:fb:e7:42:01:ec:8f: b9:12:86:ba:1f:80:55:c9:e2:9f:ac:2d:d5:25:b2:2e:0f:31: 89:c7:b6:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 Q0UxRDExMC8GA1UEBRMoMzY2MjJGOTkwMEI0NkFBREZDRDA1NDY0RjEwRDQyQjEz MDYyNTE3NjAeFw0yNTA5MDUwODI2NDNaFw0yNTA5MTIwODI2NDNaMBgxFjAUBgNV BAMTDTY4YmE5ZWMzLTY5ZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/S330c78SPms4dtZnhBtCxx0BnvXeqaqbAzvax57gtS04FltNzmXSrcJXRkOk TW+EbRf0lySTaoihV+VI9l/t+mduZVK2hFvr4SLec1X+rxO5MvKr/PTO9RjRbJcb bodyLPd71ebBylGlu/Dk9W3/+kaPA4HAUlkGhshf9KcYHPpA/YfhD6K/CGaBkSY3 7VrY9l0PAx5wfd7CImowfXUhBVGjJ43hmcVkhHdZfXzOjPgHGCDx/0NyPuhwBqYa T8ZqA+LEGXTRjzsISzUdWZoSoClaz7m9nRDclob9YgbNUjc54LlrpsqqL4RNiuIn 1XLirosBqtz4zYHmkfhYVO/lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUl2b7F5Aa 5qwtzFXUwpiTbqVd/bwwHwYDVR0jBBgwFoAUNmIvmQC0aq380FRk8Q1CsTBiUXYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlDRTFEL0I1NDhEQkUyNjJE RjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEzODBGUms4UTFDc1RCaVVY WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTm1Jdm1RQzBhcTM4MEZSazhRMUNzVEJpVVhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlD RTFEL0I1NDhEQkUyNjJERjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEz ODBGUms4UTFDc1RCaVVYWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHKKOXkEPGzg8Swz1ENUlpbQDgPz0c5UdmK49AhiDWUc6oh7A6JSw9V2 ASLAl1m+xz91Lj2oBWaHtgUtt3Vhpg+LpbuD+XJF3tR88x3hu8+R1PFTwcwAVUbW 3hSkfraixTMyq9MqN7DnOS974XvvMtK8313Yy5VXaKD8XvrGfLMhe/Z3PaXXTkW7 HTSw+uczoU8H2ApP9JURxwPHTi6NyAO8fJ805+xCukM96TGbWfU9NfOXzuQoudKf 96zwOXulztR504oCqin408o7B5xGpAtT3mb0W3Yk8X85ASbMR/88aWd3KfvnQgHs j7kShrofgFXJ4p+sLdUlsi4PMYnHtmI= -----END CERTIFICATE-----Generated at Sat Sep 6 15:16:18 2025 by rpki-client