$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json) Hash identifier: 3/e/Tjz+A114TgC7mKpIrQQ/RGu5bUCjkpzzKnC2+jY= Subject key identifier: 75:BF:34:04:E5:95:B0:AE:10:92:93:47:BA:C7:31:2D:F5:BB:10:12 Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft Manifest number: FA Signing time: Sat 19 Jul 2025 05:22:26 +0000 Manifest this update: Sat 19 Jul 2025 05:22:25 +0000 Manifest next update: Sat 26 Jul 2025 05:22:25 +0000 Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: Hq362dK2DFXybiYVs3SP5jYZR4fDo5/u/oqqtm2cRIU=) 2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: dwiUCjJJt0eG2N+1FVdoqJWTzPaXWWEUJdKiT+scZJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D, serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Validity Not Before: Jul 19 05:22:25 2025 GMT Not After : Jul 26 05:22:25 2025 GMT Subject: CN=687b2b91-1c69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:71:9b:c2:26:cb:46:b7:0c:2b:8f:6f:6e:a9: b3:a8:3e:ef:41:f9:c3:80:1c:88:ad:1e:1d:6d:da: 7b:71:48:03:73:dd:a3:0a:3e:4d:20:56:70:dd:cd: 5e:60:be:c5:61:65:33:7c:32:a0:eb:e2:bc:b1:e3: b1:83:bd:72:d7:a6:3c:54:8d:47:2d:a6:c8:5e:92: 48:b8:06:86:0e:71:81:ea:a1:8d:e6:f5:b6:4f:73: 66:66:e6:2a:c3:82:89:fb:6d:dd:63:7b:35:97:06: 2e:ee:94:22:d0:36:cc:04:f0:b0:e8:a4:76:20:86: 7e:e7:85:f7:ec:04:90:b1:48:9b:49:0c:be:6d:4c: b0:cd:c6:f4:aa:50:59:5c:1e:58:ad:28:69:55:f4: 9a:8b:4b:ce:f7:8a:fa:45:f5:d4:81:d6:da:f4:00: 4f:80:02:d6:93:ad:36:cb:87:32:40:d2:6b:0c:26: 19:74:25:af:1d:e1:19:6e:0f:7f:1b:09:00:6a:2d: ac:3a:f4:99:8b:57:90:20:2e:ed:e7:a0:08:d0:6f: 15:1d:ad:a7:4d:8b:d6:86:76:84:f8:d1:65:32:dd: bb:3f:24:73:78:97:94:d4:c9:c1:72:a5:e9:1f:e3: b7:40:b2:3f:cb:c1:f8:91:23:e4:94:ac:4a:9d:c9: 98:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BF:34:04:E5:95:B0:AE:10:92:93:47:BA:C7:31:2D:F5:BB:10:12 X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:96:5d:61:ae:ee:29:a7:75:ab:9c:47:ad:7a:3b:27:50:c3: 63:d9:c0:c5:f8:35:4c:cc:cc:15:70:2d:10:eb:91:96:ae:b4: 50:b0:b1:f7:0a:6b:79:bc:fa:a5:01:1a:df:4c:59:1e:43:34: ec:c2:df:45:f2:b1:b1:78:f1:5e:b6:bf:25:c3:4b:6b:9d:1f: 31:8c:45:44:24:be:34:b2:2a:8f:16:e0:88:52:b1:1d:f6:7a: 13:34:74:f5:7f:9c:45:8a:fa:33:3d:a7:66:dd:c7:f9:53:94: 7a:fc:39:ce:6b:9d:4e:4e:b7:bc:3e:41:42:cc:3a:19:72:03: 09:d9:73:89:d7:e9:e2:36:85:ea:41:d3:b5:16:c1:c4:74:23: e1:cc:e2:5a:81:b9:28:68:ff:e2:f7:61:fb:f1:12:60:3b:ed: 53:a9:29:b8:41:4a:59:90:af:68:5d:2e:dd:f5:9d:ec:65:61: 09:77:1f:22:d4:fe:72:33:5d:79:05:67:89:43:1d:27:d1:dd: ad:6e:40:c1:35:b7:cc:d7:b6:de:e7:cb:60:19:0b:44:a6:fd: d4:65:0a:f3:18:f8:77:75:a9:f4:38:f4:f4:6c:90:ef:88:c4: 96:68:b4:4f:8d:8c:90:e4:76:fb:dc:14:93:8c:d1:15:09:fe: 02:63:68:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDM0ODBDNTY1MjMzNDhEREFCQTMwM0UzMUYyMkRGQTM2 M0Y4ODdFOEYwHhcNMjUwNzE5MDUyMjI1WhcNMjUwNzI2MDUyMjI1WjAYMRYwFAYD VQQDEw02ODdiMmI5MS0xYzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHGbwibLRrcMK49vbqmzqD7vQfnDgByIrR4dbdp7cUgDc92jCj5NIFZw3c1e YL7FYWUzfDKg6+K8seOxg71y16Y8VI1HLabIXpJIuAaGDnGB6qGN5vW2T3NmZuYq w4KJ+23dY3s1lwYu7pQi0DbMBPCw6KR2IIZ+54X37ASQsUibSQy+bUywzcb0qlBZ XB5YrShpVfSai0vO94r6RfXUgdba9ABPgALWk602y4cyQNJrDCYZdCWvHeEZbg9/ GwkAai2sOvSZi1eQIC7t56AI0G8VHa2nTYvWhnaE+NFlMt27PyRzeJeU1MnBcqXp H+O3QLI/y8H4kSPklKxKncmYiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHW/NATl lbCuEJKTR7rHMS31uxASMB8GA1UdIwQYMBaAFDSAxWUjNI3aujA+MfIt+jY/iH6P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80NjBEMUM1QUUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpkcTZNRDR4OGkzNk5qLUlm bzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZvOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80NjBEMUM1QUUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpk cTZNRDR4OGkzNk5qLUlmbzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMll1hru4pp3WrnEetejsnUMNj2cDF+DVMzMwVcC0Q65GWrrRQsLH3 Cmt5vPqlARrfTFkeQzTswt9F8rGxePFetr8lw0trnR8xjEVEJL40siqPFuCIUrEd 9noTNHT1f5xFivozPadm3cf5U5R6/DnOa51OTre8PkFCzDoZcgMJ2XOJ1+niNoXq QdO1FsHEdCPhzOJagbkoaP/i92H78RJgO+1TqSm4QUpZkK9oXS7d9Z3sZWEJdx8i 1P5yM115BWeJQx0n0d2tbkDBNbfM17be58tgGQtEpv3UZQrzGPh3dan0OPT0bJDv iMSWaLRPjYyQ5Hb73BSTjNEVCf4CY2gK -----END CERTIFICATE-----Generated at Sun Jul 20 20:40:56 2025 by rpki-client