$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json) Hash identifier: 4Co0HbVetlKYj0KluctKFaka8HtblCSIL64BJdOEuYk= Subject key identifier: 19:85:00:FA:67:A8:2F:45:8B:FA:C2:01:FE:22:E4:DB:6A:AE:06:5E Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft Manifest number: 0113 Signing time: Fri 05 Sep 2025 05:15:09 +0000 Manifest this update: Fri 05 Sep 2025 05:15:09 +0000 Manifest next update: Fri 12 Sep 2025 05:15:09 +0000 Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: D1dI9SXCHWEGWQNvdPGLEBrqOoREVIpfAIbHXCeDoYY=) 2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: dwiUCjJJt0eG2N+1FVdoqJWTzPaXWWEUJdKiT+scZJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D, serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Validity Not Before: Sep 5 05:15:09 2025 GMT Not After : Sep 12 05:15:09 2025 GMT Subject: CN=68ba71dd-634e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:df:93:dc:58:6b:3f:f4:af:b1:d0:fd:b9:a0: 1d:5f:a9:30:57:25:d2:d7:1e:8d:82:a0:3f:e9:63: ed:e9:ea:d9:fc:a4:67:42:54:43:75:6c:34:26:c6: e9:05:b2:a4:b1:99:8b:b7:b9:4d:17:40:99:a6:42: 9a:61:8b:00:f9:2e:c6:e5:c6:b9:88:dd:3a:fe:b1: 3b:f8:55:39:8f:d0:05:39:e0:8c:bf:6e:bf:9e:3c: 71:37:97:a5:fd:ad:b5:35:e0:e4:c1:35:c0:f6:df: 23:2b:46:5d:bd:57:9c:f5:97:8b:4d:1c:a8:47:19: 45:01:20:98:4e:97:eb:e4:69:00:b7:93:30:49:d7: 65:8e:f6:fe:ab:90:99:77:9c:74:9b:e6:b8:83:f0: f3:b1:aa:fb:bf:f5:59:d9:fe:ac:27:6b:ad:96:65: d5:eb:60:cf:9c:bb:c7:70:a9:af:71:6e:4b:30:c9: af:97:f7:92:6f:99:bc:6f:79:ec:9e:5c:c3:a0:ed: 97:b6:58:c0:cb:f3:c0:a4:0b:d6:f0:59:a3:13:4b: 8c:b1:8e:2a:a2:3e:15:e9:af:e6:bc:e3:5a:7e:f1: 0e:22:bb:45:6e:1f:a6:18:07:8a:43:b5:2d:99:79: ff:eb:33:c0:42:82:52:15:47:5d:b2:6d:8b:3c:9c: be:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:85:00:FA:67:A8:2F:45:8B:FA:C2:01:FE:22:E4:DB:6A:AE:06:5E X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:9b:c0:ea:a9:a4:46:0e:b3:f1:e9:ef:c4:05:44:17:6c:d4: f4:3a:73:4b:a7:df:06:f8:ee:63:d4:15:f6:1e:27:ca:9d:b9: 6d:83:93:df:ac:80:b4:4c:95:73:65:3c:01:af:f9:0b:e3:8a: 36:4e:e3:36:1a:50:e0:c7:b8:11:da:6e:3e:57:96:8b:31:9c: 64:95:aa:cb:fa:86:eb:96:ac:18:d1:aa:cf:ac:a8:e8:81:f6: e8:c8:ee:b0:52:60:b2:9f:3a:ea:f6:45:73:5e:25:5d:2a:99: 00:9e:c3:0c:5e:36:91:ab:df:2d:9f:0b:ec:bf:bd:14:0c:c1: eb:fd:ee:bc:fc:98:b4:3d:47:c0:da:6d:8b:f6:f4:de:42:ef: 31:66:d0:3a:1b:93:17:01:1b:c5:b4:43:d3:90:67:61:8d:0a: ab:87:ab:c0:ae:f4:45:f2:33:c9:4f:17:d9:f1:a0:3e:3e:24: 36:21:43:12:f8:04:b4:e9:be:03:e3:58:ce:c0:4c:d0:3c:6c: 57:58:3f:54:c1:b3:2c:0a:e3:35:d8:37:e8:71:84:0b:88:95: e2:18:c9:d8:d4:d4:27:33:e6:2d:66:ad:17:2e:1f:b9:cd:29: 53:e3:c3:59:6f:09:48:37:88:1d:29:09:ce:3c:09:4b:87:e0: 9b:c8:a4:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDM0ODBDNTY1MjMzNDhEREFCQTMwM0UzMUYyMkRGQTM2 M0Y4ODdFOEYwHhcNMjUwOTA1MDUxNTA5WhcNMjUwOTEyMDUxNTA5WjAYMRYwFAYD VQQDEw02OGJhNzFkZC02MzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2t+T3FhrP/SvsdD9uaAdX6kwVyXS1x6NgqA/6WPt6erZ/KRnQlRDdWw0Jsbp BbKksZmLt7lNF0CZpkKaYYsA+S7G5ca5iN06/rE7+FU5j9AFOeCMv26/njxxN5el /a21NeDkwTXA9t8jK0ZdvVec9ZeLTRyoRxlFASCYTpfr5GkAt5MwSddljvb+q5CZ d5x0m+a4g/Dzsar7v/VZ2f6sJ2utlmXV62DPnLvHcKmvcW5LMMmvl/eSb5m8b3ns nlzDoO2XtljAy/PApAvW8FmjE0uMsY4qoj4V6a/mvONafvEOIrtFbh+mGAeKQ7Ut mXn/6zPAQoJSFUddsm2LPJy+OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmFAPpn qC9Fi/rCAf4i5NtqrgZeMB8GA1UdIwQYMBaAFDSAxWUjNI3aujA+MfIt+jY/iH6P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80NjBEMUM1QUUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpkcTZNRDR4OGkzNk5qLUlm bzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZvOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80NjBEMUM1QUUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpk cTZNRDR4OGkzNk5qLUlmbzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQm8DqqaRGDrPx6e/EBUQXbNT0OnNLp98G+O5j1BX2HifKnbltg5Pf rIC0TJVzZTwBr/kL44o2TuM2GlDgx7gR2m4+V5aLMZxklarL+obrlqwY0arPrKjo gfboyO6wUmCynzrq9kVzXiVdKpkAnsMMXjaRq98tnwvsv70UDMHr/e68/Ji0PUfA 2m2L9vTeQu8xZtA6G5MXARvFtEPTkGdhjQqrh6vArvRF8jPJTxfZ8aA+PiQ2IUMS +AS06b4D41jOwEzQPGxXWD9UwbMsCuM12DfocYQLiJXiGMnY1NQnM+YtZq0XLh+5 zSlT48NZbwlIN4gdKQnOPAlLh+CbyKSF -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:07 2025 by rpki-client