$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft File: nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft (raw, json) Hash identifier: 5ZxCKsojpjijB7Z2XpWT7fZhyCwes5/p/B2iG7kr9Zg= Subject key identifier: 8B:C8:F9:E5:8D:76:35:9F:86:E4:5A:4E:3E:8E:DF:6B:AC:11:66:F1 Authority key identifier: 9D:46:04:40:60:FA:96:E9:4A:23:1E:03:0A:30:E3:D6:54:F4:11:AE Certificate issuer: /CN=A91A7CDD/serialNumber=9D46044060FA96E94A231E030A30E3D654F411AE Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nUYEQGD6lulKIx4DCjDj1lT0Ea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft Manifest number: 010E Signing time: Thu 21 Aug 2025 05:04:44 +0000 Manifest this update: Thu 21 Aug 2025 05:04:43 +0000 Manifest next update: Thu 28 Aug 2025 05:04:43 +0000 Files and hashes: 1: nUYEQGD6lulKIx4DCjDj1lT0Ea4.crl (hash: 67K+vuN4j2mWPkfMBaEgiNSQTE8EdrD9rmYScLAypgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nUYEQGD6lulKIx4DCjDj1lT0Ea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=9D46044060FA96E94A231E030A30E3D654F411AE Validity Not Before: Aug 21 05:04:43 2025 GMT Not After : Aug 28 05:04:43 2025 GMT Subject: CN=68a6a8eb-3176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:81:84:6c:c0:75:6f:49:c4:ec:e6:7d:24:79: 5c:63:c9:a6:4c:25:ad:b4:1c:fb:7b:c2:e7:6f:a9: 3b:f0:68:8e:b4:ad:d3:57:1b:4d:ea:7c:a9:59:29: 0f:8f:51:ba:38:41:e1:2d:74:5f:96:57:b0:1b:72: 9f:ef:82:0f:5b:17:a4:bb:76:bb:22:4a:17:4f:6b: 29:03:b7:a2:1d:4c:da:03:6f:07:53:18:96:fe:54: 12:0b:92:15:7d:ca:bc:11:55:65:a1:19:10:08:0d: 9e:65:a8:6a:e9:70:78:1d:fc:79:db:b9:2f:61:cf: 50:01:2d:93:4a:98:4a:6e:93:47:ae:93:08:1a:49: 12:18:d3:04:bc:d2:1e:2d:26:e7:44:9b:99:6c:a5: 60:23:7c:b3:bf:82:5e:5a:b3:03:8f:88:67:f1:cd: 9f:73:41:b8:16:63:e7:b1:e9:40:7d:e3:0a:4a:54: 7f:a0:62:98:15:94:c9:96:60:bf:2c:2d:c4:53:a3: 90:18:7b:e6:83:f7:ce:db:ef:fb:27:73:a8:cc:b7: f2:d5:64:58:65:f3:aa:8a:f0:a9:d4:57:7b:ca:6f: b7:ba:b1:7f:d3:9e:1d:30:5e:a4:49:81:dd:b9:0b: 80:ef:4e:16:d7:7f:ef:12:ad:2b:80:7c:0a:95:6c: ba:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C8:F9:E5:8D:76:35:9F:86:E4:5A:4E:3E:8E:DF:6B:AC:11:66:F1 X509v3 Authority Key Identifier: keyid:9D:46:04:40:60:FA:96:E9:4A:23:1E:03:0A:30:E3:D6:54:F4:11:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nUYEQGD6lulKIx4DCjDj1lT0Ea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/936B31E0DD0D11EE9D292D6AC4F9AE02/nUYEQGD6lulKIx4DCjDj1lT0Ea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:91:61:4d:4a:89:2f:1c:a1:d4:8c:d0:71:99:d1:8f:eb:87: c2:a2:ee:07:6b:71:27:7a:eb:46:73:2e:f5:b0:3d:ab:5d:d4: 7c:94:36:75:f9:f0:75:7f:ed:3e:c0:3d:50:38:0f:fe:e5:61: 3c:3e:53:44:4c:3b:cf:00:80:96:a4:15:a9:4d:93:29:7a:e4: dd:38:ea:22:ae:b3:27:d6:8a:e8:ba:ac:4e:76:8e:d5:2b:86: c5:5c:6a:5e:f0:ad:a4:8c:59:d1:09:64:a3:4c:54:1a:5c:b4: 17:8a:6a:08:12:9f:bd:01:30:49:3b:9a:70:b1:8b:56:9b:1c: 1e:b9:f9:67:3e:1d:ef:98:03:b8:01:3b:0f:00:ce:11:ac:d5: 31:11:8b:16:8b:8d:97:5f:a2:9d:44:bd:55:5b:08:dc:fa:6d: cf:a8:c3:d6:53:c2:6e:7e:ce:7c:27:b3:ba:5b:89:97:1c:f0: 4a:cc:8a:76:f7:0d:90:12:36:08:08:ff:64:b0:34:84:16:c0: 0c:40:de:90:3f:e9:46:a5:5c:91:da:03:cf:b6:35:d8:b3:6c: 6e:7b:d7:3e:f1:e7:fe:b2:f2:b8:d1:ad:a3:67:19:8e:df:cf: 8a:da:e9:28:ec:d7:f3:49:1b:3f:a4:4e:f9:45:b3:03:31:57: 93:d1:86:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDlENDYwNDQwNjBGQTk2RTk0QTIzMUUwMzBBMzBFM0Q2 NTRGNDExQUUwHhcNMjUwODIxMDUwNDQzWhcNMjUwODI4MDUwNDQzWjAYMRYwFAYD VQQDEw02OGE2YThlYi0zMTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoGEbMB1b0nE7OZ9JHlcY8mmTCWttBz7e8Lnb6k78GiOtK3TVxtN6nypWSkP j1G6OEHhLXRfllewG3Kf74IPWxeku3a7IkoXT2spA7eiHUzaA28HUxiW/lQSC5IV fcq8EVVloRkQCA2eZahq6XB4Hfx527kvYc9QAS2TSphKbpNHrpMIGkkSGNMEvNIe LSbnRJuZbKVgI3yzv4JeWrMDj4hn8c2fc0G4FmPnselAfeMKSlR/oGKYFZTJlmC/ LC3EU6OQGHvmg/fO2+/7J3OozLfy1WRYZfOqivCp1Fd7ym+3urF/054dMF6kSYHd uQuA704W13/vEq0rgHwKlWy6bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvI+eWN djWfhuRaTj6O32usEWbxMB8GA1UdIwQYMBaAFJ1GBEBg+pbpSiMeAwow49ZU9BGu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC85MzZCMzFFMERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9uVVlFUUdENmx1bEtJeDREQ2pEajFsVDBF YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25VWUVRR0Q2bHVsS0l4NERDakRqMWxUMEVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC85MzZCMzFFMEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9uVVlFUUdENmx1 bEtJeDREQ2pEajFsVDBFYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+kWFNSokvHKHUjNBxmdGP64fCou4Ha3EneutGcy71sD2rXdR8lDZ1 +fB1f+0+wD1QOA/+5WE8PlNETDvPAICWpBWpTZMpeuTdOOoirrMn1orouqxOdo7V K4bFXGpe8K2kjFnRCWSjTFQaXLQXimoIEp+9ATBJO5pwsYtWmxweuflnPh3vmAO4 ATsPAM4RrNUxEYsWi42XX6KdRL1VWwjc+m3PqMPWU8Jufs58J7O6W4mXHPBKzIp2 9w2QEjYICP9ksDSEFsAMQN6QP+lGpVyR2gPPtjXYs2xue9c+8ef+svK40a2jZxmO 38+K2uko7NfzSRs/pE75RbMDMVeT0YYz -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:21 2025 by rpki-client