$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: fztvidfXtHglIztfq8/qsEBN9RAVpxJ5zxJQbrJOZsM= Subject key identifier: 47:08:68:94:6C:65:C7:81:7F:D3:7B:1F:AB:A2:C2:08:D6:6B:B2:26 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 074D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 0725 Signing time: Mon 08 Sep 2025 21:57:31 +0000 Manifest this update: Mon 08 Sep 2025 21:57:31 +0000 Manifest next update: Mon 15 Sep 2025 21:57:31 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: 1Bav61xaUlQhpFKZMNXqH3LVFjaPnbaHXFX9obtFmBU=) 2: 0A81888851C011F08C31DF3FC4F9AE02.roa (hash: 1yPuP1g8YZqvnHf524WkUbhoEmWrAxZBELmM8pADlg8=) 3: 7B3EE1DC524811F0B02FCD27C4F9AE02.roa (hash: NOszZQVplnPpRn57635/o7+RgEVvlc3t2csfhNsghIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 21:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1869 (0x74d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Sep 8 21:57:31 2025 GMT Not After : Sep 15 21:57:31 2025 GMT Subject: CN=68bf514b-a858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:61:f0:bc:d2:fa:44:12:1d:12:75:ee:b8:b9: e8:9d:e3:4e:13:48:59:66:85:af:82:00:b7:fa:5e: 56:33:ec:60:1b:ca:b5:49:5a:e8:5a:f8:01:c7:77: a8:c8:22:d5:a6:92:71:30:fc:70:6d:c7:83:16:ba: 64:ce:e1:3e:98:3d:c8:05:96:36:38:46:d7:cd:43: f0:ec:02:91:65:3f:26:a5:6e:f3:ab:28:ea:2e:40: f2:7b:33:bd:4c:49:74:1e:9a:e5:12:e0:0d:aa:7a: c2:5a:14:52:45:8b:33:37:50:91:a3:3d:96:2d:74: 8f:b4:09:22:40:bb:41:83:3e:ac:0f:8c:a7:f9:e7: 67:8d:f1:ab:79:42:55:b0:62:02:b3:dd:18:49:33: 4c:f4:d8:7c:5b:c0:f3:56:ad:12:32:d3:ad:f8:d9: 9e:7d:9c:b9:bd:50:62:37:e3:63:1f:b2:ef:64:5f: f8:ea:ab:b2:ce:eb:73:33:13:6f:8c:4b:39:4f:05: 7a:8e:2f:2a:fd:3a:20:4d:1a:ea:88:01:53:77:2e: 26:e0:40:78:4b:20:70:c5:eb:e2:5d:36:08:92:cd: c4:7e:da:cb:1c:0d:20:b9:c1:df:89:23:52:a4:c0: cf:31:8e:ea:fe:7a:a8:96:71:9f:94:a1:1d:26:23: 5b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:08:68:94:6C:65:C7:81:7F:D3:7B:1F:AB:A2:C2:08:D6:6B:B2:26 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:2a:17:e0:c2:91:f6:70:e2:df:0e:04:e6:fe:02:7e:af:bd: 9e:c2:6a:d8:50:37:5f:37:51:7b:7b:d0:0c:4f:f8:8b:94:0d: 18:bd:2b:dc:f9:6f:d7:15:4e:05:09:d6:7e:45:9c:c9:9b:e4: 08:65:c7:1a:52:74:30:44:2b:a6:90:da:0d:fa:74:0f:0d:21: e1:82:74:65:6f:27:1e:ef:dd:0b:c9:af:e8:6b:3d:c3:17:b9: 60:67:8f:42:5d:f9:a3:c8:73:e8:c7:30:b1:12:38:6b:f1:69: a8:85:e8:5a:ab:5b:1a:36:1f:38:03:ec:51:5e:84:ab:2a:7c: e1:b1:6a:ed:0d:0d:ac:d3:5e:bd:d8:96:78:b4:3e:3b:cd:01: bf:da:7b:98:01:53:0a:0a:5b:fa:3f:a0:96:6a:b2:ca:d3:e0: c5:1d:27:3b:de:ed:fe:25:b2:18:56:38:b6:0c:06:47:88:a5: 07:20:24:85:55:ca:01:28:a0:40:c4:ba:a6:b2:5f:45:a3:34: 9c:32:8f:d3:c6:15:38:01:68:57:1c:58:b6:ef:04:88:d7:cc: 2f:fb:d1:9d:62:8b:fc:69:b8:a3:9f:df:9e:6c:c7:45:98:0b: 92:a6:4b:81:17:68:1a:27:5f:04:d5:70:89:4a:bc:c9:55:f6: 84:8d:20:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUwOTA4MjE1NzMxWhcNMjUwOTE1MjE1NzMxWjAYMRYwFAYD VQQDEw02OGJmNTE0Yi1hODU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WHwvNL6RBIdEnXuuLnoneNOE0hZZoWvggC3+l5WM+xgG8q1SVroWvgBx3eo yCLVppJxMPxwbceDFrpkzuE+mD3IBZY2OEbXzUPw7AKRZT8mpW7zqyjqLkDyezO9 TEl0HprlEuANqnrCWhRSRYszN1CRoz2WLXSPtAkiQLtBgz6sD4yn+ednjfGreUJV sGICs90YSTNM9Nh8W8DzVq0SMtOt+NmefZy5vVBiN+NjH7LvZF/46quyzutzMxNv jEs5TwV6ji8q/TogTRrqiAFTdy4m4EB4SyBwxeviXTYIks3EftrLHA0gucHfiSNS pMDPMY7q/nqolnGflKEdJiNbXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcIaJRs ZceBf9N7H6uiwgjWa7ImMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkKhfgwpH2cOLfDgTm/gJ+r72ewmrYUDdfN1F7e9AMT/iLlA0YvSvc +W/XFU4FCdZ+RZzJm+QIZccaUnQwRCumkNoN+nQPDSHhgnRlbyce790Lya/oaz3D F7lgZ49CXfmjyHPoxzCxEjhr8Wmohehaq1saNh84A+xRXoSrKnzhsWrtDQ2s0169 2JZ4tD47zQG/2nuYAVMKClv6P6CWarLK0+DFHSc73u3+JbIYVji2DAZHiKUHICSF VcoBKKBAxLqmsl9FozScMo/TxhU4AWhXHFi27wSI18wv+9GdYov8abijn9+ebMdF mAuSpkuBF2gaJ18E1XCJSrzJVfaEjSAz -----END CERTIFICATE-----Generated at Tue Sep 9 17:28:55 2025 by rpki-client