$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft File: NZYOHhaeA_Rvr5H04_8TUUamMTo.mft (raw, json) Hash identifier: 9hYzYe6/4KS5/nzccrKD/qxbtry0lglU+qnt19iSeKo= Subject key identifier: 8F:64:6C:B3:2A:65:97:C9:42:D7:F8:2A:22:61:EB:53:3E:91:AF:A6 Authority key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A Certificate issuer: /CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Certificate serial: 13B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft Manifest number: 13AB Signing time: Thu 18 Sep 2025 17:06:29 +0000 Manifest this update: Thu 18 Sep 2025 17:06:29 +0000 Manifest next update: Thu 25 Sep 2025 17:06:29 +0000 Files and hashes: 1: NZYOHhaeA_Rvr5H04_8TUUamMTo.crl (hash: rir3sd+6Qg0bT2Ij5Hr4+IsbALFUqXCph3Kmxb1RKUI=) 2: 21333DA69B2E11E8908CC50FC4F9AE02.roa (hash: WNdbUIrq72HztcMiWEgIIxA2+CqivH5XP6V6egY23qM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:06:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5043 (0x13b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBBA5, serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Validity Not Before: Sep 18 17:06:29 2025 GMT Not After : Sep 25 17:06:29 2025 GMT Subject: CN=68cc3c15-a141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:37:20:82:45:9a:02:3f:d9:d5:54:f4:3f:ab: 4d:9c:0d:98:41:53:22:63:49:91:fb:a9:e1:c3:a1: 6d:f8:56:c0:a5:ab:41:34:cd:7f:a2:78:50:10:39: 15:53:16:0f:c5:a8:57:d1:ed:e8:b5:92:3d:32:5b: 0d:7c:89:41:ae:ef:cf:1e:b1:9a:cf:c5:2d:a1:f7: eb:9e:41:4a:8d:db:11:e4:2f:f0:a8:05:48:69:20: 5a:ba:fa:2d:70:e8:4d:5f:77:cd:da:22:ca:6c:ba: 0b:00:7b:e5:b0:a2:51:69:33:db:d5:e6:49:25:0b: 1a:45:74:4a:33:ea:5c:dd:8f:3a:0e:0a:f1:03:49: d8:7d:1f:91:fa:9a:58:fc:b3:c9:14:05:dd:e3:00: be:0f:e8:c5:31:f2:10:26:9f:e2:5a:ca:33:d9:18: 4e:32:21:3e:6b:2a:72:06:58:52:c0:df:2c:9c:e2: b6:04:98:68:f4:fb:12:4c:da:95:74:0b:a5:3f:7a: c9:26:28:96:43:e2:e8:05:35:34:39:98:47:13:e1: a8:34:57:e9:d9:f6:27:bb:b5:66:16:18:ef:35:fb: 6e:bd:1a:25:a0:90:9a:34:ba:5f:28:ed:38:98:1a: d1:6b:9f:0d:c6:4c:99:41:67:24:20:5a:4a:a3:14: 72:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:64:6C:B3:2A:65:97:C9:42:D7:F8:2A:22:61:EB:53:3E:91:AF:A6 X509v3 Authority Key Identifier: keyid:35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:99:b7:bb:30:ca:92:25:30:7e:c8:04:76:c8:8d:cc:8a:ea: a9:85:06:b1:c1:bc:c4:63:ed:d2:a7:10:6f:58:1e:40:22:e1: 53:3e:2d:cd:52:85:ca:5e:cd:9c:c7:21:1e:d1:d2:8b:1b:b2: 64:62:a6:97:07:b4:85:fd:fc:49:33:23:6b:23:a7:98:63:3f: 42:ed:44:ee:f2:80:a6:cd:86:bb:bf:92:97:aa:60:48:70:1b: d5:cf:d4:8d:65:f2:85:da:98:51:51:cf:40:1e:29:0e:f8:c0: ec:00:20:80:f2:a7:85:c2:17:88:c2:37:c3:6b:16:ac:f0:56: 6b:63:37:54:96:59:67:cd:12:87:01:3c:a8:11:6d:a1:90:3d: 7a:fa:f1:8e:7a:8d:7b:f1:b9:35:0b:a5:3d:59:30:95:36:66: 3e:a9:37:ed:3e:02:63:dc:04:20:69:31:12:9d:ed:22:7d:42: a6:a5:09:cd:ac:6b:f1:9c:a4:b1:b3:00:66:52:38:5a:83:b0: 2f:a9:bb:14:78:0d:e6:46:95:91:d9:f2:18:25:01:04:71:cd: 09:00:19:a2:a6:72:1b:7f:d1:64:5a:91:fb:cc:6c:29:89:fc: 93:95:38:a8:f3:97:f9:ac:1c:5f:da:4d:60:31:e8:bb:10:f7: 63:d1:07:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJCQTUxMTAvBgNVBAUTKDM1OTYwRTFFMTY5RTAzRjQ2RkFGOTFGNEUzRkYxMzUx NDZBNjMxM0EwHhcNMjUwOTE4MTcwNjI5WhcNMjUwOTI1MTcwNjI5WjAYMRYwFAYD VQQDEw02OGNjM2MxNS1hMTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTcggkWaAj/Z1VT0P6tNnA2YQVMiY0mR+6nhw6Ft+FbApatBNM1/onhQEDkV UxYPxahX0e3otZI9MlsNfIlBru/PHrGaz8UtoffrnkFKjdsR5C/wqAVIaSBauvot cOhNX3fN2iLKbLoLAHvlsKJRaTPb1eZJJQsaRXRKM+pc3Y86DgrxA0nYfR+R+ppY /LPJFAXd4wC+D+jFMfIQJp/iWsoz2RhOMiE+aypyBlhSwN8snOK2BJho9PsSTNqV dAulP3rJJiiWQ+LoBTU0OZhHE+GoNFfp2fYnu7VmFhjvNftuvRoloJCaNLpfKO04 mBrRa58NxkyZQWckIFpKoxRyAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9kbLMq ZZfJQtf4KiJh61M+ka+mMB8GA1UdIwQYMBaAFDWWDh4WngP0b6+R9OP/E1FGpjE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkJBNS9FNjQ4NEFDRTlC MkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFfUnZyNUgwNF84VFVVYW1N VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05aWU9IaGFlQV9SdnI1SDA0XzhUVVVhbU1Uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkJBNS9FNjQ4NEFDRTlCMkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFf UnZyNUgwNF84VFVVYW1NVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKmbe7MMqSJTB+yAR2yI3MiuqphQaxwbzEY+3SpxBvWB5AIuFTPi3N UoXKXs2cxyEe0dKLG7JkYqaXB7SF/fxJMyNrI6eYYz9C7UTu8oCmzYa7v5KXqmBI cBvVz9SNZfKF2phRUc9AHikO+MDsACCA8qeFwheIwjfDaxas8FZrYzdUlllnzRKH ATyoEW2hkD16+vGOeo178bk1C6U9WTCVNmY+qTftPgJj3AQgaTESne0ifUKmpQnN rGvxnKSxswBmUjhag7AvqbsUeA3mRpWR2fIYJQEEcc0JABmipnIbf9FkWpH7zGwp ifyTlTio85f5rBxf2k1gMei7EPdj0Qca -----END CERTIFICATE-----Generated at Fri Sep 19 00:58:04 2025 by rpki-client