$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft File: nMiKhtCzfs7o1XZX75l4lTJoDN8.mft (raw, json) Hash identifier: dZEnYnlNShaCPRH2BMhHEVpMw809lPMaYjkmE8op8eU= Subject key identifier: FC:9D:97:F3:21:1F:86:E0:CC:F2:77:A0:E7:61:15:EC:EB:F1:A4:DF Authority key identifier: 9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF Certificate issuer: /CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft Manifest number: 0137 Signing time: Thu 21 Aug 2025 04:42:29 +0000 Manifest this update: Thu 21 Aug 2025 04:42:29 +0000 Manifest next update: Thu 28 Aug 2025 04:42:29 +0000 Files and hashes: 1: nMiKhtCzfs7o1XZX75l4lTJoDN8.crl (hash: 3fj6+72RNKK3EqXQ15R7StKWhGgNYAkU+/+NIShoCGI=) 2: AA778F4CAF8A11EEB167DB64C4F9AE02.roa (hash: da2ZawdG5alxBTyeAyi7NwDwyDeUsxgI6h/wI95o9Ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 04:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B39, serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Validity Not Before: Aug 21 04:42:29 2025 GMT Not After : Aug 28 04:42:29 2025 GMT Subject: CN=68a6a3b5-60bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2f:e4:64:e0:0b:39:e6:05:db:bf:4c:26:cf: b5:34:8d:28:c0:e3:7a:7c:30:2e:0f:17:55:3e:a3: cb:b6:9c:35:8f:62:37:5f:e3:46:aa:ff:66:56:77: d2:99:02:90:95:3e:14:67:c5:01:88:90:9f:63:11: e1:73:d4:a4:fa:a5:65:2a:64:6a:d9:bf:39:be:46: 02:ef:ba:28:bc:8e:56:5e:af:e6:97:40:f8:3f:02: d7:dc:ae:4c:3b:31:1a:86:f7:7e:7d:bb:b2:3d:77: fe:44:3c:98:92:c7:35:47:ce:c2:47:d3:5e:15:bf: 44:34:e2:22:33:2e:30:6b:17:6d:af:d2:8c:20:b0: e3:2a:92:80:ab:4f:43:b3:5a:61:ca:2b:cb:0c:63: 70:aa:4d:7f:0d:78:c9:b1:ee:e9:5c:22:13:8a:b3: ca:12:01:11:f8:b4:00:18:e4:ff:c8:a1:89:0d:e9: b6:cd:68:a3:0a:b0:6d:82:7a:98:4e:41:a7:bd:02: f4:eb:9a:d9:43:4c:85:63:93:87:c4:ef:1f:04:ca: 7b:aa:61:17:13:e2:b6:c8:1a:81:d5:05:9e:e7:6a: ca:40:d3:35:9d:58:a9:7d:33:d3:87:74:4c:66:38: b3:df:25:24:41:5e:dd:2a:25:31:d7:8f:47:32:dc: ad:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:9D:97:F3:21:1F:86:E0:CC:F2:77:A0:E7:61:15:EC:EB:F1:A4:DF X509v3 Authority Key Identifier: keyid:9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:16:5d:fb:3a:74:12:91:88:15:d1:2a:f0:53:77:d0:be:11: 1f:8d:a1:f8:75:28:c3:ed:6f:3a:27:57:06:82:7d:68:1e:ab: ac:ab:14:f4:df:b0:c6:bb:ce:bd:bc:3d:52:81:81:6c:b6:40: 3d:e2:8f:96:2f:eb:6c:d8:74:6a:84:44:e8:ce:a2:03:7f:ed: 4d:47:c0:f3:6f:89:30:f5:df:50:3c:5a:7f:9d:0e:71:89:7d: 82:fa:a9:19:79:b1:bd:79:8a:f1:65:7a:fd:24:6a:1b:b7:a4: b3:ee:3c:35:76:e2:76:ba:08:a8:1e:6f:ad:27:b1:6a:b8:1c: b5:18:b8:9f:19:bd:75:b1:41:8f:94:5b:32:2b:5b:2b:84:f3: ae:8b:25:65:f1:11:86:0d:4d:b8:9d:64:a9:06:69:9f:e5:b3: 6f:b4:ea:aa:83:74:5d:84:1d:f9:4c:1c:02:5f:a9:74:04:e6: 5e:4f:6a:20:15:8d:b1:66:f2:fe:f5:33:4f:9c:3e:09:03:28: a1:61:d1:59:c8:4f:f9:3c:d4:9a:4d:45:7f:03:e3:fb:c3:c0: 4a:83:fa:6c:f5:e8:9c:33:88:0b:d5:10:0a:88:bb:c3:23:3f: c9:78:f9:b3:bb:07:d8:30:08:49:a4:c6:88:94:62:ef:21:82: f1:dc:d5:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMzkxMTAvBgNVBAUTKDlDQzg4QTg2RDBCMzdFQ0VFOEQ1NzY1N0VGOTk3ODk1 MzI2ODBDREYwHhcNMjUwODIxMDQ0MjI5WhcNMjUwODI4MDQ0MjI5WjAYMRYwFAYD VQQDEw02OGE2YTNiNS02MGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC/kZOALOeYF279MJs+1NI0owON6fDAuDxdVPqPLtpw1j2I3X+NGqv9mVnfS mQKQlT4UZ8UBiJCfYxHhc9Sk+qVlKmRq2b85vkYC77oovI5WXq/ml0D4PwLX3K5M OzEahvd+fbuyPXf+RDyYksc1R87CR9NeFb9ENOIiMy4waxdtr9KMILDjKpKAq09D s1phyivLDGNwqk1/DXjJse7pXCITirPKEgER+LQAGOT/yKGJDem2zWijCrBtgnqY TkGnvQL065rZQ0yFY5OHxO8fBMp7qmEXE+K2yBqB1QWe52rKQNM1nVipfTPTh3RM Zjiz3yUkQV7dKiUx149HMtytnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPydl/Mh H4bgzPJ3oOdhFezr8aTfMB8GA1UdIwQYMBaAFJzIiobQs37O6NV2V++ZeJUyaAzf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIzOS9GRUY1NDlFOEFG MTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZzN28xWFpYNzVsNGxUSm9E TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25NaUtodEN6ZnM3bzFYWlg3NWw0bFRKb0ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIzOS9GRUY1NDlFOEFGMTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZz N28xWFpYNzVsNGxUSm9ETjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5Fl37OnQSkYgV0SrwU3fQvhEfjaH4dSjD7W86J1cGgn1oHqusqxT0 37DGu869vD1SgYFstkA94o+WL+ts2HRqhETozqIDf+1NR8Dzb4kw9d9QPFp/nQ5x iX2C+qkZebG9eYrxZXr9JGobt6Sz7jw1duJ2ugioHm+tJ7FquBy1GLifGb11sUGP lFsyK1srhPOuiyVl8RGGDU24nWSpBmmf5bNvtOqqg3RdhB35TBwCX6l0BOZeT2og FY2xZvL+9TNPnD4JAyihYdFZyE/5PNSaTUV/A+P7w8BKg/ps9eicM4gL1RAKiLvD Iz/JePmzuwfYMAhJpMaIlGLvIYLx3NUf -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:15 2025 by rpki-client