$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft File: NfWNhhxBvf6ka4xykLGqxnDnzBs.mft (raw, json) Hash identifier: d+IKlm+NL4bJSJxJRXWUoq5YzrLz/S+Cuu6wB5Gb8d0= Subject key identifier: 41:16:DA:82:6D:00:97:DF:17:98:81:CD:09:29:4A:1F:BA:48:6D:65 Authority key identifier: 35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B Certificate issuer: /CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Certificate serial: 0B62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft Manifest number: 0B53 Signing time: Mon 18 Aug 2025 19:26:06 +0000 Manifest this update: Mon 18 Aug 2025 19:26:05 +0000 Manifest next update: Mon 25 Aug 2025 19:26:05 +0000 Files and hashes: 1: NfWNhhxBvf6ka4xykLGqxnDnzBs.crl (hash: KO+zcBHYBxjCLzSnR6KFFLwbtb6laAMcmpb5QOIoTqI=) 2: 902F47663C0111EAB6CB9936C4F9AE02.roa (hash: W5+kOWbZGS14ELyZcRgsnHDoDEprTMY6BAsrjTgD1lM=) 3: 8F9F2F823C0111EAB6CB9936C4F9AE02.roa (hash: IHsFYOv59LECoaCivBqfgQOGspVwczVXXfHkd/E13QQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 19:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2914 (0xb62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35BB, serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Validity Not Before: Aug 18 19:26:05 2025 GMT Not After : Aug 25 19:26:05 2025 GMT Subject: CN=68a37e4d-df23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0f:4d:7d:d1:29:c5:53:f3:96:0e:be:07:5c: 12:4b:aa:ab:40:b2:3d:b7:c6:28:25:44:13:28:97: 99:9c:1d:d4:2b:21:2a:dd:38:ab:8f:f3:c7:4f:e3: 2c:2d:76:76:6e:d2:fd:bd:3f:59:5b:77:78:99:d0: 71:b5:24:72:0c:10:2c:e5:07:a8:f0:b8:d1:b6:30: ee:92:78:4c:a2:9f:0f:7b:66:2d:5b:58:dc:b6:ad: 9e:96:74:3b:c4:28:a3:0a:00:b4:3e:2d:d6:7a:c6: a9:e9:41:7d:4d:66:39:a8:39:e9:4d:a4:a0:45:4b: 93:e2:d0:43:85:b5:85:b3:2a:23:2f:59:4a:bd:6b: 2c:3c:b7:af:04:ca:71:b4:b9:94:77:33:d6:1b:32: 36:d6:09:66:ba:15:2a:88:1a:75:53:6d:68:ec:dd: fc:82:8d:92:e9:a3:da:c8:d4:ac:7c:ab:24:5e:77: 2a:41:d3:44:32:ce:86:99:78:9b:8d:f0:f1:e1:7d: 3c:5d:ef:a4:c2:a6:60:1b:b1:49:c2:9f:ef:59:88: be:91:08:1b:89:ef:78:71:be:34:3c:8e:8d:4e:62: 36:f4:34:b8:0a:1b:de:20:bb:66:05:00:86:68:83: 9f:c4:dd:ba:39:07:8e:fc:cf:94:ad:53:63:a0:84: bc:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:16:DA:82:6D:00:97:DF:17:98:81:CD:09:29:4A:1F:BA:48:6D:65 X509v3 Authority Key Identifier: keyid:35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:cd:b0:c6:33:28:4a:20:e3:08:ab:48:02:66:3c:3e:71:e9: de:86:cc:65:ea:41:17:09:01:13:a8:a8:42:8a:6c:a5:91:2f: a6:8b:cb:41:86:0d:cf:86:79:14:13:a1:8a:93:89:75:3e:ab: a2:96:44:8a:02:36:99:a4:05:51:75:b7:ad:f2:33:ed:e2:9b: 1e:9f:0f:a2:af:f2:5a:97:8c:77:a2:63:21:e7:35:64:f1:fe: 33:e2:c1:f0:98:a5:63:31:c5:4c:e9:0a:50:c6:77:81:25:33: 8e:ff:ce:5c:1c:8f:59:c7:83:5b:a1:ce:ba:e1:d2:62:8a:5e: 22:0b:1d:82:c3:51:e2:59:88:c5:4e:cb:bd:7f:b4:68:a1:fa: 28:df:80:ec:d8:11:e3:d8:d6:1c:09:94:9f:70:a2:f0:c6:54: a2:e6:ab:cd:52:dc:1f:16:90:fc:5d:7a:69:be:f2:04:6b:3c: dc:33:06:4f:f7:24:db:e8:b6:41:e0:f4:c3:c7:98:1f:61:67: cf:61:2f:a2:51:09:e4:f0:ef:5b:5f:89:d0:ad:94:a7:26:f7: 55:46:f2:75:8a:29:65:83:70:dd:42:e8:98:a6:00:cf:57:24: c3:b7:61:79:c0:5c:95:71:fc:a0:15:62:f5:9a:cc:32:c5:3a: a0:4d:56:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1QkIxMTAvBgNVBAUTKDM1RjU4RDg2MUM0MUJERkVBNDZCOEM3MjkwQjFBQUM2 NzBFN0NDMUIwHhcNMjUwODE4MTkyNjA1WhcNMjUwODI1MTkyNjA1WjAYMRYwFAYD VQQDEw02OGEzN2U0ZC1kZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA9NfdEpxVPzlg6+B1wSS6qrQLI9t8YoJUQTKJeZnB3UKyEq3Tirj/PHT+Ms LXZ2btL9vT9ZW3d4mdBxtSRyDBAs5Qeo8LjRtjDuknhMop8Pe2YtW1jctq2elnQ7 xCijCgC0Pi3Wesap6UF9TWY5qDnpTaSgRUuT4tBDhbWFsyojL1lKvWssPLevBMpx tLmUdzPWGzI21glmuhUqiBp1U21o7N38go2S6aPayNSsfKskXncqQdNEMs6GmXib jfDx4X08Xe+kwqZgG7FJwp/vWYi+kQgbie94cb40PI6NTmI29DS4ChveILtmBQCG aIOfxN26OQeO/M+UrVNjoIS8TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEW2oJt AJffF5iBzQkpSh+6SG1lMB8GA1UdIwQYMBaAFDX1jYYcQb3+pGuMcpCxqsZw58wb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVCQi81Nzg5QjFBNDND MDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZmNmthNHh5a0xHcXhuRG56 QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mV05oaHhCdmY2a2E0eHlrTEdxeG5EbnpCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzVCQi81Nzg5QjFBNDNDMDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZm NmthNHh5a0xHcXhuRG56QnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdzbDGMyhKIOMIq0gCZjw+cenehsxl6kEXCQETqKhCimylkS+mi8tB hg3PhnkUE6GKk4l1PquilkSKAjaZpAVRdbet8jPt4psenw+ir/Jal4x3omMh5zVk 8f4z4sHwmKVjMcVM6QpQxneBJTOO/85cHI9Zx4Nboc664dJiil4iCx2Cw1HiWYjF Tsu9f7Roofoo34Ds2BHj2NYcCZSfcKLwxlSi5qvNUtwfFpD8XXppvvIEazzcMwZP 9yTb6LZB4PTDx5gfYWfPYS+iUQnk8O9bX4nQrZSnJvdVRvJ1iillg3DdQuiYpgDP VyTDt2F5wFyVcfygFWL1mswyxTqgTVbt -----END CERTIFICATE-----Generated at Wed Aug 20 15:39:28 2025 by rpki-client