$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft File: NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft (raw, json) Hash identifier: vom5BuHzWv9d1N2h1W86W3ydCITsKjolLE0xJx+7Tyo= Subject key identifier: E7:D6:5D:B3:C2:90:FD:F3:DD:8B:C7:6F:24:46:14:0B:47:7A:F0:46 Authority key identifier: 34:F0:F8:CD:87:B8:8C:4F:52:0E:46:FB:95:D2:DB:84:FA:04:33:62 Certificate issuer: /CN=A91A7B36/serialNumber=34F0F8CD87B88C4F520E46FB95D2DB84FA043362 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPD4zYe4jE9SDkb7ldLbhPoEM2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft Manifest number: 2D Signing time: Sat 23 Aug 2025 07:58:30 +0000 Manifest this update: Sat 23 Aug 2025 07:58:30 +0000 Manifest next update: Sat 30 Aug 2025 07:58:30 +0000 Files and hashes: 1: NPD4zYe4jE9SDkb7ldLbhPoEM2I.crl (hash: 5/rcYYbS0uoHVCCAoOxP2I7m+jimHK2lVet2hEehXgw=) 2: 5E4EF73E409011F0986B1F68C4F9AE02.roa (hash: zzVlxhn6+jvA03mHN2RlJJu0S5vEXRz/2+gZ9LS069Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.crl rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPD4zYe4jE9SDkb7ldLbhPoEM2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B36, serialNumber=34F0F8CD87B88C4F520E46FB95D2DB84FA043362 Validity Not Before: Aug 23 07:58:30 2025 GMT Not After : Aug 30 07:58:30 2025 GMT Subject: CN=68a974a6-ac8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b5:7f:78:a8:9d:da:3f:56:4f:e5:e8:97:f0: f0:b4:3a:aa:9e:ac:a8:7c:4e:94:8e:15:f1:b4:4f: 38:42:ab:d0:9d:2e:37:49:6b:0f:d7:d2:d5:c9:56: d5:46:ca:2b:7d:a9:4e:c7:e5:22:f1:d8:84:07:fb: 79:08:1b:f8:e0:3c:36:dd:0e:22:0c:35:d0:17:7e: 3a:7e:00:84:11:cb:96:ce:98:02:82:39:8f:bb:a4: 68:36:1d:06:58:27:44:2a:fd:7b:ee:35:8e:02:a0: df:18:c8:9c:d8:26:ae:3d:68:c2:88:82:c6:d9:3e: 85:57:07:84:f5:20:d0:01:7e:cc:75:cb:a1:19:a7: a3:41:55:b1:b9:cf:16:20:4f:da:b9:1b:89:10:9b: 6d:1f:39:26:9e:8a:49:d3:b7:a1:a2:a1:93:dc:c5: 21:1b:15:e2:41:86:06:da:80:3c:67:ca:82:47:ef: 7e:62:eb:bb:74:8f:74:d8:71:fd:23:f3:2d:1a:8b: ef:76:78:ad:6e:a3:60:4e:ac:38:cf:5f:81:6d:29: 0b:36:75:39:b1:69:63:6c:a2:4c:8b:5d:b9:35:df: de:e2:b1:e6:69:bc:8d:92:99:13:17:98:69:e7:21: 12:f4:4a:2b:eb:b8:77:a2:78:de:ba:31:66:23:e0: 10:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D6:5D:B3:C2:90:FD:F3:DD:8B:C7:6F:24:46:14:0B:47:7A:F0:46 X509v3 Authority Key Identifier: keyid:34:F0:F8:CD:87:B8:8C:4F:52:0E:46:FB:95:D2:DB:84:FA:04:33:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPD4zYe4jE9SDkb7ldLbhPoEM2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B36/72E6FA26408F11F0B34AEF47C4F9AE02/NPD4zYe4jE9SDkb7ldLbhPoEM2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:aa:7e:55:9e:4a:90:24:65:ba:15:77:4f:ac:ce:3f:95:dc: 45:00:bf:a2:31:dd:68:80:7c:1d:dd:54:4b:4c:45:7f:0d:58: bd:f3:ba:b0:30:28:e0:96:c6:5b:89:1a:61:f2:0a:21:3a:65: a0:97:3f:e8:f4:3b:86:10:d7:c8:f6:cd:57:e5:c9:8f:a6:2f: 7a:e4:8f:82:23:04:83:c6:40:16:29:b7:87:0b:21:19:3d:66: d1:93:91:20:cd:ef:92:df:55:c0:91:ca:76:e7:51:ef:2e:2c: 77:56:0f:5e:ba:50:c2:4f:19:7a:e9:54:b7:29:33:1c:53:98: ec:32:01:a6:7f:78:70:7f:38:b7:80:48:d6:5b:a9:ad:a1:05: 0d:49:2e:39:e8:ce:aa:df:ef:54:9c:a2:85:63:45:54:d0:c4: 2b:16:b7:90:f1:fb:41:fc:31:6e:cc:00:6a:23:23:56:b6:d1: 98:76:80:fc:ad:22:26:13:ac:ec:50:69:b9:76:fd:ba:68:de: ea:97:39:82:82:48:fe:4c:e1:16:5f:c4:f6:04:7c:f5:03:dd: 67:6e:58:f4:3e:20:e1:d7:6b:3e:67:26:06:0a:dc:4a:b6:c2: e4:16:d6:64:cf:54:54:8f:0a:df:28:1d:a8:84:45:79:40:73: ae:11:fc:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0IzNjExMC8GA1UEBRMoMzRGMEY4Q0Q4N0I4OEM0RjUyMEU0NkZCOTVEMkRCODRG QTA0MzM2MjAeFw0yNTA4MjMwNzU4MzBaFw0yNTA4MzAwNzU4MzBaMBgxFjAUBgNV BAMTDTY4YTk3NGE2LWFjOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDatX94qJ3aP1ZP5eiX8PC0OqqerKh8TpSOFfG0TzhCq9CdLjdJaw/X0tXJVtVG yit9qU7H5SLx2IQH+3kIG/jgPDbdDiIMNdAXfjp+AIQRy5bOmAKCOY+7pGg2HQZY J0Qq/XvuNY4CoN8YyJzYJq49aMKIgsbZPoVXB4T1INABfsx1y6EZp6NBVbG5zxYg T9q5G4kQm20fOSaeiknTt6GioZPcxSEbFeJBhgbagDxnyoJH735i67t0j3TYcf0j 8y0ai+92eK1uo2BOrDjPX4FtKQs2dTmxaWNsokyLXbk1397iseZpvI2SmRMXmGnn IRL0SivruHeieN66MWYj4BCJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU59Zds8KQ /fPdi8dvJEYUC0d68EYwHwYDVR0jBBgwFoAUNPD4zYe4jE9SDkb7ldLbhPoEM2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3QjM2LzcyRTZGQTI2NDA4 RjExRjBCMzRBRUY0N0M0RjlBRTAyL05QRDR6WWU0akU5U0RrYjdsZExiaFBvRU0y SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlBENHpZZTRqRTlTRGtiN2xkTGJoUG9FTTJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 QjM2LzcyRTZGQTI2NDA4RjExRjBCMzRBRUY0N0M0RjlBRTAyL05QRDR6WWU0akU5 U0RrYjdsZExiaFBvRU0ySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAGqflWeSpAkZboVd0+szj+V3EUAv6Ix3WiAfB3dVEtMRX8NWL3zurAw KOCWxluJGmHyCiE6ZaCXP+j0O4YQ18j2zVflyY+mL3rkj4IjBIPGQBYpt4cLIRk9 ZtGTkSDN75LfVcCRynbnUe8uLHdWD166UMJPGXrpVLcpMxxTmOwyAaZ/eHB/OLeA SNZbqa2hBQ1JLjnozqrf71ScooVjRVTQxCsWt5Dx+0H8MW7MAGojI1a20Zh2gPyt IiYTrOxQabl2/bpo3uqXOYKCSP5M4RZfxPYEfPUD3WduWPQ+IOHXaz5nJgYK3Eq2 wuQW1mTPVFSPCt8oHaiERXlAc64R/Mk= -----END CERTIFICATE-----Generated at Sun Aug 24 21:33:08 2025 by rpki-client