$ rpki-client -vvf rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft File: nAcegU2AsQ4sofcemy5TXDkFy2U.mft (raw, json) Hash identifier: WeY3/dGdF5Tk4J+SITv0wxpydFrloAzTADmk/2WQ09A= Subject key identifier: 8D:A7:F5:3C:02:36:8B:F6:88:E6:F5:94:A6:2F:6D:85:C0:9F:0B:6C Authority key identifier: 9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 Certificate issuer: /CN=A91A998A/serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft Manifest number: C7 Signing time: Tue 09 Sep 2025 06:06:50 +0000 Manifest this update: Tue 09 Sep 2025 06:06:49 +0000 Manifest next update: Tue 16 Sep 2025 06:06:49 +0000 Files and hashes: 1: nAcegU2AsQ4sofcemy5TXDkFy2U.crl (hash: 8Vv3uNxCE9kuJ3a9hiZF9rw+hbbf5jA+yoy0o9NI8FA=) 2: B6DE83747AE811EF94E01B38C4F9AE02.roa (hash: NENKWBR9x0FYQGSayxsc772B6xcKqdDax7O0tt16MtA=) 3: F60E5BC87C8711EFB9EB5F5FC4F9AE02.roa (hash: HhvN0QQ/t1aifshxGL31iNmJ/1oYowbGlAhBK1OxOCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A998A, serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Validity Not Before: Sep 9 06:06:49 2025 GMT Not After : Sep 16 06:06:49 2025 GMT Subject: CN=68bfc3fa-86d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e4:de:19:fb:29:82:e3:83:65:d7:bf:38:7a: 17:59:f7:d2:77:d5:5e:4c:78:d8:5e:cc:22:b1:d1: 98:0c:da:12:2c:ef:0a:e8:7c:50:62:cf:e0:76:b9: 10:e1:de:1d:54:01:b8:ed:89:ed:05:46:e3:c5:19: e2:c6:df:1b:1a:53:7e:c7:07:37:4e:4f:02:a2:9c: 93:3a:bd:5b:6c:6a:be:c6:ce:a8:98:c0:6d:3a:fb: 8c:13:b9:44:0e:f0:9d:66:71:7c:5e:b8:00:08:6b: d9:eb:44:c1:41:b1:a5:75:5c:60:d9:9b:d1:7a:7f: 91:d0:80:cf:2d:2f:32:87:66:bf:df:5f:93:7e:d8: 34:e7:e1:3a:4b:43:a0:08:1c:3b:d3:71:1a:c0:ca: c0:e3:bc:0e:43:ad:d5:25:7e:d3:43:7d:50:4e:74: 11:90:21:e8:bd:ac:39:6d:b9:01:59:d1:27:06:b2: 43:0a:10:02:d9:f7:f4:78:47:6c:da:46:0b:b1:7d: 2a:ee:6a:ab:af:f8:a7:ec:13:7d:3a:1b:00:1d:55: e3:b9:5f:d0:9b:f2:d7:a8:4b:20:fc:ca:fe:2d:57: 07:e0:84:c1:65:55:6e:52:57:d2:f0:68:20:b6:48: 9a:60:f3:20:c6:cc:cc:8a:6c:57:1f:4c:ca:6f:7f: 7d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A7:F5:3C:02:36:8B:F6:88:E6:F5:94:A6:2F:6D:85:C0:9F:0B:6C X509v3 Authority Key Identifier: keyid:9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ab:07:14:8a:ab:77:e8:92:6d:53:f2:87:2d:b4:bc:d8:f4: 26:e8:0a:41:7d:22:85:18:25:4b:e7:31:33:6d:11:75:cd:46: fc:f2:41:f9:2a:82:aa:6d:a2:18:c5:87:89:8e:20:cb:42:e8: 3d:57:b5:40:f6:d1:c9:d9:b7:75:8f:c6:8d:98:85:93:9f:8b: ac:b8:15:fe:fa:dd:45:c0:be:6b:76:7f:f5:02:cd:07:41:61: 64:78:d3:db:50:78:aa:8e:81:83:e8:60:04:63:16:0e:1a:e6: 99:da:33:e2:b2:da:1a:4a:54:31:4d:4d:10:70:bc:fa:9f:0b: a0:04:81:56:1c:62:8f:de:85:ac:48:f8:62:3a:13:a7:3f:81: f1:c9:15:3a:8b:fc:7a:67:e9:81:79:de:e1:09:1c:42:f9:40: 7c:d8:84:81:b7:00:83:7d:bd:67:5b:d2:f0:7e:01:a9:7f:d5: 57:c1:6e:a7:e7:74:ba:51:1e:ff:c5:43:59:56:3e:a1:a5:49: 3c:2b:dc:36:36:ad:f4:fe:39:b3:e1:1d:1a:84:3e:e4:c2:f7: 49:0c:d6:98:a8:e6:e6:98:a3:ab:ab:81:e0:b6:ee:46:67:93: 13:5b:df:7c:18:38:6e:d0:ee:b0:89:5d:32:c8:77:7a:7b:a4: eb:51:90:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5OEExMTAvBgNVBAUTKDlDMDcxRTgxNEQ4MEIxMEUyQ0ExRjcxRTlCMkU1MzVD MzkwNUNCNjUwHhcNMjUwOTA5MDYwNjQ5WhcNMjUwOTE2MDYwNjQ5WjAYMRYwFAYD VQQDEw02OGJmYzNmYS04NmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OTeGfspguODZde/OHoXWffSd9VeTHjYXswisdGYDNoSLO8K6HxQYs/gdrkQ 4d4dVAG47YntBUbjxRnixt8bGlN+xwc3Tk8CopyTOr1bbGq+xs6omMBtOvuME7lE DvCdZnF8XrgACGvZ60TBQbGldVxg2ZvRen+R0IDPLS8yh2a/31+Tftg05+E6S0Og CBw703EawMrA47wOQ63VJX7TQ31QTnQRkCHovaw5bbkBWdEnBrJDChAC2ff0eEds 2kYLsX0q7mqrr/in7BN9OhsAHVXjuV/Qm/LXqEsg/Mr+LVcH4ITBZVVuUlfS8Ggg tkiaYPMgxszMimxXH0zKb399kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2n9TwC Nov2iOb1lKYvbYXAnwtsMB8GA1UdIwQYMBaAFJwHHoFNgLEOLKH3HpsuU1w5Bctl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTk4QS81MjJDQjczNDdB RTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNRNHNvZmNlbXk1VFhEa0Z5 MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BY2VnVTJBc1E0c29mY2VteTVUWERrRnkyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTk4QS81MjJDQjczNDdBRTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNR NHNvZmNlbXk1VFhEa0Z5MlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOqwcUiqt36JJtU/KHLbS82PQm6ApBfSKFGCVL5zEzbRF1zUb88kH5 KoKqbaIYxYeJjiDLQug9V7VA9tHJ2bd1j8aNmIWTn4usuBX++t1FwL5rdn/1As0H QWFkeNPbUHiqjoGD6GAEYxYOGuaZ2jPistoaSlQxTU0QcLz6nwugBIFWHGKP3oWs SPhiOhOnP4HxyRU6i/x6Z+mBed7hCRxC+UB82ISBtwCDfb1nW9LwfgGpf9VXwW6n 53S6UR7/xUNZVj6hpUk8K9w2Nq30/jmz4R0ahD7kwvdJDNaYqObmmKOrq4Hgtu5G Z5MTW998GDhu0O6wiV0yyHd6e6TrUZBR -----END CERTIFICATE-----Generated at Wed Sep 10 02:24:23 2025 by rpki-client