$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: HTUWyw6dk6PNJs1sHL3IDkGI+DyAaGAiz7EigVPMoXs= Subject key identifier: 37:46:61:38:43:CB:98:06:56:21:08:52:67:C5:2C:82:31:7B:32:EA Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: BD Signing time: Sat 19 Jul 2025 06:07:28 +0000 Manifest this update: Sat 19 Jul 2025 06:07:27 +0000 Manifest next update: Sat 26 Jul 2025 06:07:27 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: D22rcTGBLjitn/PRE4Haatw5LW67OlHgwMdqPxTlYCs=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: lZ2oQ4wvz4evXveDE7LNoYJmc6E6jg/A59sR/rYBi6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:07:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Jul 19 06:07:27 2025 GMT Not After : Jul 26 06:07:27 2025 GMT Subject: CN=687b361f-4bf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4b:b6:16:3e:4d:28:fe:b9:89:48:2f:cd:96: 41:de:f5:7e:5a:01:b9:3f:23:d6:9a:d1:49:02:5a: fa:a8:5f:78:59:f1:63:f6:26:bc:8d:88:c0:7e:22: aa:95:f8:7a:6d:37:3d:f7:46:3c:42:ff:84:e2:26: 07:b9:8d:24:c3:a2:b8:38:6e:d5:e5:40:30:fc:65: 06:74:9e:d3:76:59:c2:da:67:4e:99:40:c1:37:0e: f0:bf:6c:97:f3:96:16:e0:3e:dc:2f:eb:69:4c:aa: 35:b5:62:47:d6:e9:8d:55:fe:58:57:a0:49:59:21: a3:7a:dd:ea:36:dd:0f:17:08:84:16:3c:63:5f:25: f7:ef:6e:9f:05:e0:be:ba:d8:79:32:2a:1b:f4:69: f8:19:17:7f:a1:17:13:35:1d:12:96:8d:e8:fa:b0: b7:cb:03:d6:d3:58:18:0f:5a:d1:d0:b7:5b:ba:99: 7a:93:8f:1e:c7:82:59:13:e7:e9:c4:2e:5a:d9:bf: 94:83:01:d6:a1:1f:4d:00:ff:30:ca:c1:24:99:d7: 75:93:65:23:99:14:f5:ff:a7:5d:e4:eb:09:be:b0: 8d:11:f2:ec:ba:9c:69:2b:24:06:50:35:4c:16:62: 15:a1:a0:62:a8:f6:b9:4f:75:0e:b6:da:91:d2:7a: 68:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:46:61:38:43:CB:98:06:56:21:08:52:67:C5:2C:82:31:7B:32:EA X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:83:4b:ab:dc:32:38:86:6c:ee:c2:36:97:06:49:6a:f3:5e: 4e:83:6e:72:9e:c1:42:4e:fc:b5:aa:81:d5:a7:bb:41:24:ea: 10:89:7a:97:ee:67:e2:66:5b:b2:13:57:6a:9f:4f:cc:37:71: 8a:d0:ec:f5:1f:dd:77:12:07:63:93:07:46:64:7f:aa:6d:55: 35:ea:af:28:5c:6c:f3:4c:fc:c2:fe:a0:af:d1:e2:4c:77:53: cf:a8:0e:ba:28:62:f9:72:1b:29:69:94:6a:69:fc:4a:6a:61: 3e:4d:97:b0:8d:f9:43:58:44:d6:26:ef:94:32:82:63:e2:3a: 2f:00:88:de:72:50:b9:9e:90:64:17:ed:d9:6e:57:e0:ae:c6: 76:60:cc:24:e8:be:49:06:45:76:82:25:23:f3:d4:e7:9b:62: 6b:ba:e6:1c:4f:ac:be:34:81:47:ee:84:57:de:7a:46:bd:d5: 69:b7:bc:39:5e:d5:2f:74:d2:2e:36:f9:66:a9:09:ff:ca:bc: e2:f8:03:79:27:d8:b7:fa:9e:f9:2a:7c:30:78:6f:c0:5b:bb: 24:e9:31:18:c7:ba:d3:b4:79:99:39:6f:0c:90:e4:46:f3:ba: e9:04:10:2a:5c:83:bd:51:b1:b7:c7:65:3c:09:9f:86:a9:90: 91:14:61:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjUwNzE5MDYwNzI3WhcNMjUwNzI2MDYwNzI3WjAYMRYwFAYD VQQDEw02ODdiMzYxZi00YmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuku2Fj5NKP65iUgvzZZB3vV+WgG5PyPWmtFJAlr6qF94WfFj9ia8jYjAfiKq lfh6bTc990Y8Qv+E4iYHuY0kw6K4OG7V5UAw/GUGdJ7TdlnC2mdOmUDBNw7wv2yX 85YW4D7cL+tpTKo1tWJH1umNVf5YV6BJWSGjet3qNt0PFwiEFjxjXyX3726fBeC+ uth5Miob9Gn4GRd/oRcTNR0Slo3o+rC3ywPW01gYD1rR0Ldbupl6k48ex4JZE+fp xC5a2b+UgwHWoR9NAP8wysEkmdd1k2UjmRT1/6dd5OsJvrCNEfLsupxpKyQGUDVM FmIVoaBiqPa5T3UOttqR0npozwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdGYThD y5gGViEIUmfFLIIxezLqMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrg0ur3DI4hmzuwjaXBklq815Og25ynsFCTvy1qoHVp7tBJOoQiXqX 7mfiZluyE1dqn0/MN3GK0Oz1H913EgdjkwdGZH+qbVU16q8oXGzzTPzC/qCv0eJM d1PPqA66KGL5chspaZRqafxKamE+TZewjflDWETWJu+UMoJj4jovAIjeclC5npBk F+3ZblfgrsZ2YMwk6L5JBkV2giUj89Tnm2JruuYcT6y+NIFH7oRX3npGvdVpt7w5 XtUvdNIuNvlmqQn/yrzi+AN5J9i3+p75KnwweG/AW7sk6TEYx7rTtHmZOW8MkORG 87rpBBAqXIO9UbG3x2U8CZ+GqZCRFGEq -----END CERTIFICATE-----Generated at Sun Jul 20 18:59:01 2025 by rpki-client