$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft File: nbJYwXCyMilNhj9g0twBI82q54k.mft (raw, json) Hash identifier: Jwf0Yq6vOuhsgOtHo6IHKrU1SopzUFqRGxA3RtXdGiM= Subject key identifier: 17:BA:9F:1F:D9:50:1A:B7:1F:47:B2:7A:A3:C1:0F:55:0C:87:C2:4C Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft Manifest number: 4C Signing time: Sun 07 Sep 2025 07:51:56 +0000 Manifest this update: Sun 07 Sep 2025 07:51:56 +0000 Manifest next update: Sun 14 Sep 2025 07:51:56 +0000 Files and hashes: 1: nbJYwXCyMilNhj9g0twBI82q54k.crl (hash: yHvB2p1GND0Qs+1fWqj+Nk4ucKQ5lM9Pxz3JaB4rWUA=) 2: 13EB65D41AB511F0A1F0A34BC4F9AE02.roa (hash: gBn5RMkmkclmyZmL4wf1QAerjjB7P04/rGPHIIjACSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 07:51:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: Sep 7 07:51:56 2025 GMT Not After : Sep 14 07:51:56 2025 GMT Subject: CN=68bd399c-b6d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:5e:a7:20:f5:72:f6:d3:65:f1:fa:a1:36:85: f6:38:b3:3e:9b:90:ad:83:5b:cf:ca:52:5a:12:1e: 93:f9:65:68:e2:0b:62:8d:1c:76:85:19:06:81:f0: 41:3b:fe:cd:a6:12:d6:75:ea:c3:de:f7:34:37:8d: 2f:7a:73:bc:c8:07:58:e1:8e:61:a6:05:f5:4b:74: b0:f7:36:dd:ed:28:aa:6b:a8:14:19:03:3d:07:a4: c8:28:47:da:7b:5c:3a:8a:41:f1:e0:bb:e4:b5:21: 7f:b3:70:16:74:93:fc:7a:e4:ac:1a:80:2c:e7:e9: 1e:02:0f:09:8b:6a:7e:be:1f:5e:85:e7:88:82:5d: 3a:5d:d2:cf:1e:fc:50:ff:39:68:b9:95:57:9e:99: 05:d7:eb:44:5f:eb:28:71:8a:bb:c6:23:ec:ae:8f: 39:ee:57:29:af:2c:d2:30:0b:9d:8d:c1:d1:37:4a: f1:3e:83:75:2e:18:8c:3b:0f:3b:1a:8e:e4:87:7d: 7c:0c:6b:8b:05:48:81:96:31:7f:e6:5c:8d:7f:69: c0:8a:fc:1a:7e:54:a9:f2:ca:7b:4c:b2:d3:54:7b: cd:c6:44:f1:18:db:ab:f6:25:66:1d:62:53:5f:61: d7:13:e6:93:09:7b:ed:15:34:df:58:b0:08:30:a0: 6e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:BA:9F:1F:D9:50:1A:B7:1F:47:B2:7A:A3:C1:0F:55:0C:87:C2:4C X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:fd:f2:5f:d7:97:1c:f7:d6:11:ef:ba:f3:1d:af:fc:7d:5e: 46:18:ee:4c:23:e1:02:52:f8:9e:7e:8a:6f:54:97:26:2e:12: fd:7a:a4:17:69:04:c1:77:62:70:9b:c4:c6:3b:b4:a0:0f:98: 7d:b4:df:ff:ae:a7:70:62:a6:f3:5c:14:ca:9a:d9:85:ac:19: 12:fe:3b:c6:3d:c7:7b:11:bd:41:ea:03:bf:4d:04:ca:7c:52: bd:98:a7:89:ff:ec:a4:88:5c:5e:ad:29:26:06:68:fb:c6:18: 4d:eb:5b:a8:6a:14:02:5e:89:65:f7:0e:da:ae:f8:cb:47:bf: 62:92:1c:a4:f6:2c:33:53:b1:95:09:fc:a0:60:d8:89:eb:8c: 07:8d:0b:dc:fb:c9:c3:04:43:56:55:63:3b:29:3f:6c:9f:15: dd:9e:b0:f4:5d:e5:ae:9d:82:83:32:dc:59:82:6a:83:24:85: b9:35:64:6c:fd:6a:b7:67:c5:05:02:f1:44:35:f9:dd:76:a0: 62:fc:d7:03:4e:ee:08:9a:92:33:6a:a0:76:c9:0e:a0:5d:91: 80:c1:bb:fe:3e:a0:28:f9:36:f6:cc:a4:77:bd:75:20:6a:d0: 8b:55:09:71:32:d3:86:3d:1b:08:dd:4e:02:4e:f6:7f:66:f2: a6:fc:56:a1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MkVERTExMC8GA1UEBRMoOURCMjU4QzE3MEIyMzIyOTREODYzRjYwRDJEQzAxMjND REFBRTc4OTAeFw0yNTA5MDcwNzUxNTZaFw0yNTA5MTQwNzUxNTZaMBgxFjAUBgNV BAMTDTY4YmQzOTljLWI2ZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0Xqcg9XL202Xx+qE2hfY4sz6bkK2DW8/KUloSHpP5ZWjiC2KNHHaFGQaB8EE7 /s2mEtZ16sPe9zQ3jS96c7zIB1jhjmGmBfVLdLD3Nt3tKKprqBQZAz0HpMgoR9p7 XDqKQfHgu+S1IX+zcBZ0k/x65KwagCzn6R4CDwmLan6+H16F54iCXTpd0s8e/FD/ OWi5lVeemQXX60Rf6yhxirvGI+yujznuVymvLNIwC52NwdE3SvE+g3UuGIw7Dzsa juSHfXwMa4sFSIGWMX/mXI1/acCK/Bp+VKnyyntMstNUe83GRPEY26v2JWYdYlNf YdcT5pMJe+0VNN9YsAgwoG4TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUF7qfH9lQ GrcfR7J6o8EPVQyHwkwwHwYDVR0jBBgwFoAUnbJYwXCyMilNhj9g0twBI82q54kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRURFLzU1Q0IyRTA0MUFC NDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmJKWXdYQ3lNaWxOaGo5ZzB0d0JJODJxNTRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy RURFLzU1Q0IyRTA0MUFCNDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWls TmhqOWcwdHdCSTgycTU0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABj98l/Xlxz31hHvuvMdr/x9XkYY7kwj4QJS+J5+im9UlyYuEv16pBdp BMF3YnCbxMY7tKAPmH203/+up3BipvNcFMqa2YWsGRL+O8Y9x3sRvUHqA79NBMp8 Ur2Yp4n/7KSIXF6tKSYGaPvGGE3rW6hqFAJeiWX3Dtqu+MtHv2KSHKT2LDNTsZUJ /KBg2InrjAeNC9z7ycMEQ1ZVYzspP2yfFd2esPRd5a6dgoMy3FmCaoMkhbk1ZGz9 ardnxQUC8UQ1+d12oGL81wNO7giakjNqoHbJDqBdkYDBu/4+oCj5NvbMpHe9dSBq 0ItVCXEy04Y9GwjdTgJO9n9m8qb8VqE= -----END CERTIFICATE-----Generated at Mon Sep 8 08:14:37 2025 by rpki-client