$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: 47c1ZUoTp/aMxecKHlmmaert0FIZe3XZPZjYs3humlY= Subject key identifier: B0:41:76:9B:83:B7:49:33:B6:19:A0:7A:AD:D3:5E:A4:2E:59:F1:3D Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 08A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 089A Signing time: Tue 02 Sep 2025 20:49:18 +0000 Manifest this update: Tue 02 Sep 2025 20:49:17 +0000 Manifest next update: Tue 09 Sep 2025 20:49:17 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: HLcdaW1m4fiyCIB2koF0U+Vte+eVDXGbR8A9L4tLHSA=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: iVH3rhTgtUSo/JF63FQElE1NqUIp2qYoI3iOuK+LB04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 20:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2208 (0x8a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Sep 2 20:49:17 2025 GMT Not After : Sep 9 20:49:17 2025 GMT Subject: CN=68b7584e-35f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:24:8b:bb:80:b7:91:c3:d1:68:f1:93:13:a0: 7f:9b:17:29:74:30:c1:17:1f:c6:fc:51:90:25:48: 54:cb:0c:dc:41:b0:09:64:03:27:1e:61:90:88:c7: 2e:09:46:a8:90:d8:ee:fb:c3:4a:1b:87:94:8d:85: 47:52:fd:1b:f5:f4:93:da:cb:a6:b2:20:0c:9d:23: d2:de:b8:64:0a:40:24:6c:76:ba:5b:f3:1a:9f:f7: 17:1f:a6:f6:c0:65:bb:00:99:25:cf:21:2e:9e:35: 76:85:f3:48:d7:0e:6e:55:f9:5a:72:6a:8a:c7:23: 17:24:45:54:92:c1:dd:e2:50:23:03:6f:c5:37:44: 72:19:b3:ef:db:b8:2c:bf:72:dd:c4:86:d1:e0:5e: c7:d4:91:d8:c8:f6:6d:e4:ae:d5:9b:e8:dd:10:4f: 39:e4:de:31:6d:d6:5a:37:b3:b3:9c:0d:36:7b:8c: 81:9f:41:79:19:5c:fc:5d:36:f1:b7:d7:2e:84:e4: 6b:57:3c:79:34:c5:c9:4f:80:fb:45:d0:4b:e4:59: a3:9b:72:65:44:d4:88:d8:9e:63:eb:2a:45:2f:57: 39:45:97:03:f2:3c:ff:24:15:90:e9:79:d6:e4:ee: eb:20:86:be:05:2a:2c:03:da:11:fa:07:28:9c:de: 64:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:41:76:9B:83:B7:49:33:B6:19:A0:7A:AD:D3:5E:A4:2E:59:F1:3D X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:a0:c4:94:ff:cd:6c:53:ec:84:6f:50:b5:69:98:b1:a1:50: 97:44:3a:94:1e:b5:17:df:3a:1e:ef:ea:a2:44:96:23:b9:82: 64:cd:41:35:fb:d2:1e:fa:98:0d:72:93:04:07:34:07:c9:9a: 72:b1:26:f3:fa:ad:b1:f3:19:b9:50:aa:fe:c3:86:6a:3b:a0: 56:cb:1b:c8:3b:b6:95:d3:75:cb:e2:26:2e:63:27:63:b3:60: fd:8b:1d:2b:07:a4:19:d7:63:4a:d6:70:3c:65:2a:55:a5:e7: 42:2a:38:ee:fc:b4:0e:63:1d:bc:5a:68:1e:c8:b3:c7:fd:0d: e2:ce:db:f3:3e:03:09:ce:8e:5d:68:2a:82:1d:c5:5a:3e:f6: e6:1f:2e:5c:5b:b4:6d:96:e7:cb:b6:6c:90:75:8f:4e:0e:2b: 7d:a4:37:70:b5:6d:d1:99:46:04:74:0d:d7:1f:41:89:89:b3: 7d:1e:46:b7:66:67:f2:a7:1e:36:9a:0b:bf:ff:a6:24:42:2c: 8a:35:b9:5f:45:75:d7:43:d5:f2:6a:ec:02:a4:12:d2:cf:fb: 5a:b3:b2:f9:cd:43:1b:56:8e:66:14:32:c9:cd:d9:5b:c5:4d: 7f:2f:70:3b:da:dd:76:d1:a1:4b:09:9b:b5:8b:e8:a6:d0:c9: a9:0d:28:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjUwOTAyMjA0OTE3WhcNMjUwOTA5MjA0OTE3WjAYMRYwFAYD VQQDEw02OGI3NTg0ZS0zNWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwySLu4C3kcPRaPGTE6B/mxcpdDDBFx/G/FGQJUhUywzcQbAJZAMnHmGQiMcu CUaokNju+8NKG4eUjYVHUv0b9fST2sumsiAMnSPS3rhkCkAkbHa6W/Man/cXH6b2 wGW7AJklzyEunjV2hfNI1w5uVflacmqKxyMXJEVUksHd4lAjA2/FN0RyGbPv27gs v3LdxIbR4F7H1JHYyPZt5K7Vm+jdEE855N4xbdZaN7OznA02e4yBn0F5GVz8XTbx t9cuhORrVzx5NMXJT4D7RdBL5Fmjm3JlRNSI2J5j6ypFL1c5RZcD8jz/JBWQ6XnW 5O7rIIa+BSosA9oR+gconN5kJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBBdpuD t0kzthmgeq3TXqQuWfE9MB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkoMSU/81sU+yEb1C1aZixoVCXRDqUHrUX3zoe7+qiRJYjuYJkzUE1 +9Ie+pgNcpMEBzQHyZpysSbz+q2x8xm5UKr+w4ZqO6BWyxvIO7aV03XL4iYuYydj s2D9ix0rB6QZ12NK1nA8ZSpVpedCKjju/LQOYx28WmgeyLPH/Q3iztvzPgMJzo5d aCqCHcVaPvbmHy5cW7RtlufLtmyQdY9ODit9pDdwtW3RmUYEdA3XH0GJibN9Hka3 Zmfypx42mgu//6YkQiyKNblfRXXXQ9XyauwCpBLSz/tas7L5zUMbVo5mFDLJzdlb xU1/L3A72t120aFLCZu1i+im0MmpDSgZ -----END CERTIFICATE-----Generated at Thu Sep 4 14:24:05 2025 by rpki-client