$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: 100qru/kBZPnorWATmNxlTxAWZdu3vQpyUon7DgTmwI= Subject key identifier: 0F:25:87:1C:C7:2E:B5:4A:43:58:2F:C6:34:F9:4E:9E:53:AB:8D:B0 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0D54 Signing time: Mon 08 Sep 2025 18:01:19 +0000 Manifest this update: Mon 08 Sep 2025 18:01:18 +0000 Manifest next update: Mon 15 Sep 2025 18:01:18 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: 8nC6JDT3XwIbv2W4eoGuF5kVaqmyLHsEBaNz/fEOV2Q=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: u1TNJ+cS4eVAcfkpJ21oJA8p8MXvtPlstoexuvgtfIM=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: rShkEGVIbInxuwhM/D99+N9Ifro23DfGNAWpJ5dz2fM=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: TU8TSmPX0pl0lGmdo+pSWKRJSfGRcwunEDD4PcVNXOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 18:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3434 (0xd6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Sep 8 18:01:18 2025 GMT Not After : Sep 15 18:01:18 2025 GMT Subject: CN=68bf19ee-cd4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6f:f3:69:a5:42:93:ac:e6:1f:07:69:83:6d: b7:8b:77:4e:d3:6e:c8:3b:a9:61:64:6b:53:53:4e: a0:32:3f:ee:3b:b4:72:40:0a:e2:d1:33:a9:d0:ee: b1:7c:86:1b:3b:fd:bd:f8:84:ee:bd:cf:7b:7e:3c: 6d:b7:be:99:51:f4:85:c8:4a:be:71:6d:ed:b8:71: d6:96:cd:89:48:99:5f:92:07:8f:86:0c:f3:40:5e: 74:41:1d:61:de:f7:32:c0:6e:e4:7b:8e:a3:0d:7f: a4:7e:ba:a4:a3:d9:59:df:53:c3:2e:b6:3c:30:f2: d1:f8:9b:df:d0:27:d4:58:52:33:b9:d0:21:6f:bc: 11:1f:0f:80:66:25:ff:54:d9:35:85:f4:68:4c:8b: 99:3d:cd:51:41:85:89:cc:b7:b6:ff:cd:68:c9:e2: d0:e4:93:cb:a1:a6:df:5d:79:d5:c1:90:c5:56:51: 8e:d2:3d:01:12:18:61:e9:8a:59:9a:a2:f7:be:a2: e5:53:6a:b5:4b:29:36:13:2d:14:35:dd:7a:4e:66: 28:77:03:1a:f2:1b:d0:bc:e1:88:a2:15:38:88:2e: 99:e0:2a:21:59:ef:9d:05:d6:c9:b2:3d:40:ce:ff: ba:2d:1f:ef:a5:84:1c:b0:fb:73:8b:31:c0:6d:14: 0d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:25:87:1C:C7:2E:B5:4A:43:58:2F:C6:34:F9:4E:9E:53:AB:8D:B0 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:a5:d6:2f:7c:40:98:07:ad:64:f8:06:8a:ea:f1:48:d3:73: 70:ab:fc:ba:bf:78:be:07:0e:9d:3b:13:4c:26:02:11:91:8d: 64:a0:1c:09:aa:b5:cd:fd:ba:84:20:43:38:c3:8c:11:dc:5b: bd:a2:67:82:21:c8:8d:94:04:00:06:86:77:53:28:38:b4:13: 81:d1:7f:ff:19:e5:d3:0c:0c:6a:e9:b9:bd:0b:f4:f4:95:18: 70:70:9b:82:4f:f7:5c:31:16:bc:0b:1f:46:c8:fa:05:1b:8e: 11:56:c1:b2:cf:f4:f9:dc:83:ea:4d:82:db:94:e9:83:37:14: 64:c9:1b:61:ad:b1:e7:14:ae:26:62:dd:13:29:2f:22:c7:4f: da:0e:24:cd:dc:38:17:4c:82:76:ae:fd:10:6b:14:e2:6a:d7: f9:aa:45:cb:3e:5f:7b:cf:80:52:b3:98:58:84:84:b6:2e:e6: 8a:1f:6c:d6:87:33:8b:1b:de:da:07:ef:4a:bc:06:b3:29:41: 34:44:ef:23:1e:85:2a:e6:6d:a7:4e:00:7e:56:54:5d:df:07: 5c:5d:d7:a3:85:fe:c9:4f:70:10:f1:f2:66:59:53:c2:04:e7: 41:e9:19:2d:89:67:f3:78:a7:54:f4:f8:36:1c:51:92:4b:6e: 6f:9b:d7:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUwOTA4MTgwMTE4WhcNMjUwOTE1MTgwMTE4WjAYMRYwFAYD VQQDEw02OGJmMTllZS1jZDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuW/zaaVCk6zmHwdpg223i3dO027IO6lhZGtTU06gMj/uO7RyQAri0TOp0O6x fIYbO/29+ITuvc97fjxtt76ZUfSFyEq+cW3tuHHWls2JSJlfkgePhgzzQF50QR1h 3vcywG7ke46jDX+kfrqko9lZ31PDLrY8MPLR+Jvf0CfUWFIzudAhb7wRHw+AZiX/ VNk1hfRoTIuZPc1RQYWJzLe2/81oyeLQ5JPLoabfXXnVwZDFVlGO0j0BEhhh6YpZ mqL3vqLlU2q1Syk2Ey0UNd16TmYodwMa8hvQvOGIohU4iC6Z4CohWe+dBdbJsj1A zv+6LR/vpYQcsPtzizHAbRQNXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8lhxzH LrVKQ1gvxjT5Tp5Tq42wMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfpdYvfECYB61k+AaK6vFI03Nwq/y6v3i+Bw6dOxNMJgIRkY1koBwJ qrXN/bqEIEM4w4wR3Fu9omeCIciNlAQABoZ3Uyg4tBOB0X//GeXTDAxq6bm9C/T0 lRhwcJuCT/dcMRa8Cx9GyPoFG44RVsGyz/T53IPqTYLblOmDNxRkyRthrbHnFK4m Yt0TKS8ix0/aDiTN3DgXTIJ2rv0QaxTiatf5qkXLPl97z4BSs5hYhIS2LuaKH2zW hzOLG97aB+9KvAazKUE0RO8jHoUq5m2nTgB+VlRd3wdcXdejhf7JT3AQ8fJmWVPC BOdB6RktiWfzeKdU9Pg2HFGSS25vm9eY -----END CERTIFICATE-----Generated at Wed Sep 10 03:51:03 2025 by rpki-client