$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft File: NfIQw_y-8NYqPeiPXz-iThGTdEw.mft (raw, json) Hash identifier: o0Ggm2T45TVF5JnWM65Yqq+oSI3KlsATYcMb6ggpB+s= Subject key identifier: 42:C5:52:B3:EE:87:C0:05:32:28:E8:56:DF:C8:69:D7:87:51:BA:8A Authority key identifier: 35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C Certificate issuer: /CN=A91A1860/serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft Manifest number: 01E6 Signing time: Fri 19 Sep 2025 03:02:43 +0000 Manifest this update: Fri 19 Sep 2025 03:02:43 +0000 Manifest next update: Fri 26 Sep 2025 03:02:43 +0000 Files and hashes: 1: NfIQw_y-8NYqPeiPXz-iThGTdEw.crl (hash: RbuU753mUjYL6pvDf0KGgmWNHBq8p85NGQoZkyg+2gs=) 2: 832503DCAD0311ED8DFD5339C4F9AE02.roa (hash: WkJCgrbBmelQA5c6twQaEqrtwUH2ZoyRfcoaWRVuiIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 03:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1860, serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Validity Not Before: Sep 19 03:02:43 2025 GMT Not After : Sep 26 03:02:43 2025 GMT Subject: CN=68ccc7d3-3ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:60:f2:e1:80:03:7e:8e:43:66:c4:23:59:1c: fa:08:e7:4c:67:d8:96:b8:38:ba:99:6d:34:b5:f3: 5b:48:6e:e3:33:88:2d:ce:98:b9:12:ef:78:fa:9d: d7:6d:3a:4b:3b:8d:92:ef:ea:66:a8:24:49:0e:aa: 62:cb:45:b0:53:94:e5:de:74:29:e2:d8:70:c6:3c: eb:68:6d:74:6a:8a:f4:15:73:db:55:fd:a1:c8:a3: 64:2c:69:74:2b:43:9e:82:f2:5a:5a:6a:a8:94:16: 29:5d:fa:32:4e:ea:ae:29:de:47:c0:9c:3d:2e:d8: 4f:c9:65:92:9a:a8:68:e6:1e:ca:42:d9:13:de:79: 2b:e2:95:8c:2d:16:08:1d:b1:02:8a:be:db:09:e1: d5:c6:6d:3b:56:50:e1:eb:9a:83:39:4b:38:db:83: 28:ce:8c:82:45:77:28:0c:4a:7b:49:dc:a8:87:2b: e4:c6:49:6d:11:04:53:1f:9c:62:11:9c:70:03:d9: 83:71:47:91:14:1e:b4:7a:cb:e0:f0:22:69:4a:c7: f5:b4:81:17:15:cb:59:4e:59:9e:83:ae:08:8a:78: 51:f3:6a:10:5a:22:f8:e7:03:e0:e8:85:bc:6a:0c: 47:18:d4:d7:88:59:a4:13:17:37:81:08:22:5a:65: 9b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C5:52:B3:EE:87:C0:05:32:28:E8:56:DF:C8:69:D7:87:51:BA:8A X509v3 Authority Key Identifier: keyid:35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:e8:fb:0f:0c:29:2c:6d:9b:bb:db:45:9d:bc:e1:98:58:1f: 0c:ba:81:26:10:94:ae:8c:8b:e9:3c:09:a9:9b:3e:04:1e:fa: 22:5f:c4:de:8b:33:6a:0a:f2:4f:2b:b9:39:e6:7e:3c:97:00: d7:fb:82:f4:99:64:c6:b9:8a:6f:83:5f:b8:8c:d0:d4:69:a4: 30:50:4c:99:01:29:3c:06:d5:fb:e8:fb:66:6d:46:9e:62:bd: 22:d7:a0:27:70:a5:d8:41:0e:69:3b:da:bd:a0:bb:f2:bb:2b: b5:ce:5f:20:8f:2e:7a:47:8f:be:7e:08:56:63:75:08:01:92: 71:84:18:54:0f:0a:fd:a3:86:74:de:c4:43:a2:5a:d3:1b:13: 6f:cf:c4:a2:e7:d4:5f:36:66:97:6b:e7:dc:ed:12:9b:e4:21: b8:fc:8a:e2:1c:14:2e:54:e5:8c:54:a6:73:f9:04:5f:c6:4a: d1:97:5b:db:02:e1:5a:bb:98:aa:98:d2:21:a5:be:b0:be:f6: ca:ce:91:7e:34:93:56:7e:d0:9b:4c:fd:23:b3:c8:88:a5:26: 0d:83:34:f9:fc:8d:2a:fc:a0:cc:bc:f8:2e:0d:59:bc:cf:b1: 77:b7:37:d3:1a:f8:eb:85:97:0c:24:e1:33:6d:6e:1b:83:53: dc:0f:53:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NjAxMTAvBgNVBAUTKDM1RjIxMEMzRkNCRUYwRDYyQTNERTg4RjVGM0ZBMjRF MTE5Mzc0NEMwHhcNMjUwOTE5MDMwMjQzWhcNMjUwOTI2MDMwMjQzWjAYMRYwFAYD VQQDEw02OGNjYzdkMy0zZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+2Dy4YADfo5DZsQjWRz6COdMZ9iWuDi6mW00tfNbSG7jM4gtzpi5Eu94+p3X bTpLO42S7+pmqCRJDqpiy0WwU5Tl3nQp4thwxjzraG10aor0FXPbVf2hyKNkLGl0 K0OegvJaWmqolBYpXfoyTuquKd5HwJw9LthPyWWSmqho5h7KQtkT3nkr4pWMLRYI HbECir7bCeHVxm07VlDh65qDOUs424MozoyCRXcoDEp7SdyohyvkxkltEQRTH5xi EZxwA9mDcUeRFB60esvg8CJpSsf1tIEXFctZTlmeg64IinhR82oQWiL45wPg6IW8 agxHGNTXiFmkExc3gQgiWmWbrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELFUrPu h8AFMijoVt/IadeHUbqKMB8GA1UdIwQYMBaAFDXyEMP8vvDWKj3oj18/ok4Rk3RM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg2MC80MjIyRTY2NEFD RkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThOWXFQZWlQWHotaVRoR1Rk RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mSVF3X3ktOE5ZcVBlaVBYei1pVGhHVGRFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg2MC80MjIyRTY2NEFDRkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThO WXFQZWlQWHotaVRoR1RkRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv6PsPDCksbZu720WdvOGYWB8MuoEmEJSujIvpPAmpmz4EHvoiX8Te izNqCvJPK7k55n48lwDX+4L0mWTGuYpvg1+4jNDUaaQwUEyZASk8BtX76PtmbUae Yr0i16AncKXYQQ5pO9q9oLvyuyu1zl8gjy56R4++fghWY3UIAZJxhBhUDwr9o4Z0 3sRDolrTGxNvz8Si59RfNmaXa+fc7RKb5CG4/IriHBQuVOWMVKZz+QRfxkrRl1vb AuFau5iqmNIhpb6wvvbKzpF+NJNWftCbTP0js8iIpSYNgzT5/I0q/KDMvPguDVm8 z7F3tzfTGvjrhZcMJOEzbW4bg1PcD1NM -----END CERTIFICATE-----Generated at Fri Sep 19 05:53:31 2025 by rpki-client