$ rpki-client -vvf rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft File: nAcegU2AsQ4sofcemy5TXDkFy2U.mft (raw, json) Hash identifier: jbdTk5d3KqBfk4WJ8Ky5+Mm3XIsdlO3fYBV6/hnSJrI= Subject key identifier: D1:B7:ED:54:E1:31:11:C7:8C:9F:70:DD:12:BF:BE:66:DE:59:7E:A8 Authority key identifier: 9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 Certificate issuer: /CN=A91A998A/serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft Manifest number: AD Signing time: Mon 21 Jul 2025 06:29:15 +0000 Manifest this update: Mon 21 Jul 2025 06:29:15 +0000 Manifest next update: Mon 28 Jul 2025 06:29:15 +0000 Files and hashes: 1: nAcegU2AsQ4sofcemy5TXDkFy2U.crl (hash: 3s8M1y/OCv7naaZtNoEC/AwOr1XXCCfOntZE3g1HTkE=) 2: B6DE83747AE811EF94E01B38C4F9AE02.roa (hash: NENKWBR9x0FYQGSayxsc772B6xcKqdDax7O0tt16MtA=) 3: F60E5BC87C8711EFB9EB5F5FC4F9AE02.roa (hash: HhvN0QQ/t1aifshxGL31iNmJ/1oYowbGlAhBK1OxOCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A998A, serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Validity Not Before: Jul 21 06:29:15 2025 GMT Not After : Jul 28 06:29:15 2025 GMT Subject: CN=687dde3b-dc71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:97:c0:96:0c:14:3b:0e:44:ff:57:d7:1a:b1: 6c:8a:87:3f:2d:75:f1:83:c1:c4:12:44:ae:a8:3f: 6f:58:e9:21:27:37:4d:af:5f:fe:2d:d1:5e:07:81: d2:a5:ed:23:67:8b:56:50:7d:6e:0b:cf:c9:d6:82: f3:20:93:18:15:f8:70:0a:67:06:d3:5e:32:37:15: 16:3a:be:4a:9d:a8:2d:65:68:9f:15:57:7c:e1:f7: 1d:27:e2:3f:96:3f:93:15:17:94:52:4f:df:f0:7e: 0e:1a:22:66:16:13:3c:fd:df:f9:48:57:ac:e1:ff: ae:7e:65:b1:bd:d6:fb:ce:cc:31:49:34:d7:91:ac: 24:eb:7d:9d:51:b6:e0:64:7f:7d:0b:f3:99:33:96: 71:ca:cf:68:7b:f2:73:5f:dc:17:9d:12:93:57:df: d8:0c:fc:f4:23:77:00:b1:ff:15:e0:ea:fd:98:13: c6:46:10:bd:da:31:76:90:9a:d7:aa:65:7d:0c:f2: 1f:4d:f1:55:a5:a3:8e:09:6c:ad:26:93:84:fd:54: 2c:88:48:01:56:8d:14:0c:e9:e1:67:4a:77:57:30: 86:13:ab:af:f7:c3:3b:0e:72:50:1e:03:86:b5:72: 95:23:d9:5e:00:be:a3:0a:86:f5:c0:6d:2e:0c:73: 64:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B7:ED:54:E1:31:11:C7:8C:9F:70:DD:12:BF:BE:66:DE:59:7E:A8 X509v3 Authority Key Identifier: keyid:9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:a6:dc:d5:96:19:f0:87:3f:76:79:83:90:60:96:16:4f:59: 2d:12:5e:97:5e:2f:41:81:15:ae:71:78:84:a6:7f:90:c9:da: 60:14:67:04:a6:45:cb:9e:b9:c0:a8:8f:21:eb:15:67:68:fa: 60:11:73:d1:35:61:a2:9c:eb:34:aa:d6:fc:9f:2f:71:b4:71: 98:cf:8a:25:d8:d9:b3:23:8d:05:0b:0d:57:1b:2a:0c:ef:8b: 42:f7:a8:93:fe:a4:2d:f9:5e:19:50:7e:7b:60:4b:f0:a7:35: 27:7f:58:4b:b2:9e:b6:e4:f4:9e:3f:0a:83:12:9f:e7:04:2b: 8e:98:de:7e:7f:b4:4b:f7:83:a9:9d:40:83:55:4b:47:cb:39: 92:bf:7a:67:5a:8a:44:b7:26:ff:58:01:6b:68:8a:22:50:96: b4:e9:83:34:2f:e6:42:70:34:e9:a9:e2:be:3f:aa:a7:52:0f: 0e:8f:14:e5:cf:25:3b:f1:d6:4b:fe:1f:4f:19:5f:40:fc:fc: f9:90:60:3c:15:e7:39:78:da:87:6a:8e:9a:19:66:7d:d5:e2: a7:e4:80:8a:b5:f1:2e:18:b0:0e:7a:ce:62:f8:a1:c7:06:50: 36:6f:ff:d8:95:2e:b0:a5:df:dc:18:91:41:55:55:5e:4e:16: 18:cf:6d:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5OEExMTAvBgNVBAUTKDlDMDcxRTgxNEQ4MEIxMEUyQ0ExRjcxRTlCMkU1MzVD MzkwNUNCNjUwHhcNMjUwNzIxMDYyOTE1WhcNMjUwNzI4MDYyOTE1WjAYMRYwFAYD VQQDEw02ODdkZGUzYi1kYzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZfAlgwUOw5E/1fXGrFsioc/LXXxg8HEEkSuqD9vWOkhJzdNr1/+LdFeB4HS pe0jZ4tWUH1uC8/J1oLzIJMYFfhwCmcG014yNxUWOr5KnagtZWifFVd84fcdJ+I/ lj+TFReUUk/f8H4OGiJmFhM8/d/5SFes4f+ufmWxvdb7zswxSTTXkawk632dUbbg ZH99C/OZM5Zxys9oe/JzX9wXnRKTV9/YDPz0I3cAsf8V4Or9mBPGRhC92jF2kJrX qmV9DPIfTfFVpaOOCWytJpOE/VQsiEgBVo0UDOnhZ0p3VzCGE6uv98M7DnJQHgOG tXKVI9leAL6jCob1wG0uDHNk3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNG37VTh MRHHjJ9w3RK/vmbeWX6oMB8GA1UdIwQYMBaAFJwHHoFNgLEOLKH3HpsuU1w5Bctl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTk4QS81MjJDQjczNDdB RTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNRNHNvZmNlbXk1VFhEa0Z5 MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BY2VnVTJBc1E0c29mY2VteTVUWERrRnkyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTk4QS81MjJDQjczNDdBRTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNR NHNvZmNlbXk1VFhEa0Z5MlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpptzVlhnwhz92eYOQYJYWT1ktEl6XXi9BgRWucXiEpn+QydpgFGcE pkXLnrnAqI8h6xVnaPpgEXPRNWGinOs0qtb8ny9xtHGYz4ol2NmzI40FCw1XGyoM 74tC96iT/qQt+V4ZUH57YEvwpzUnf1hLsp625PSePwqDEp/nBCuOmN5+f7RL94Op nUCDVUtHyzmSv3pnWopEtyb/WAFraIoiUJa06YM0L+ZCcDTpqeK+P6qnUg8OjxTl zyU78dZL/h9PGV9A/Pz5kGA8Fec5eNqHao6aGWZ91eKn5ICKtfEuGLAOes5i+KHH BlA2b//YlS6wpd/cGJFBVVVeThYYz23q -----END CERTIFICATE-----Generated at Mon Jul 21 07:41:23 2025 by rpki-client