$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft File: NSX5xUTpmw5jRgCZyS39lNSb9so.mft (raw, json) Hash identifier: k5DGuY57se/bwdk/lHt5bRHMoZsk1ju9XtOwdkgN/wY= Subject key identifier: 99:71:F8:13:BB:A6:7C:30:48:C9:EB:0B:8C:C1:D8:1B:4B:67:55:12 Authority key identifier: 35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA Certificate issuer: /CN=A91D9D7A/serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Certificate serial: 0265 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft Manifest number: 0261 Signing time: Sat 23 Aug 2025 02:00:48 +0000 Manifest this update: Sat 23 Aug 2025 02:00:47 +0000 Manifest next update: Sat 30 Aug 2025 02:00:47 +0000 Files and hashes: 1: NSX5xUTpmw5jRgCZyS39lNSb9so.crl (hash: 9n9bZeTOyKAeE0TF/dpVsUbgFn6KM7ZRYY2vw3pxnTY=) 2: 81B7763C280211ED93948C10C4F9AE02.roa (hash: EUxX4jfQlcU/1uY0IOylmxYMPcoOQVgae213RHQG1Xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 613 (0x265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D7A, serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Validity Not Before: Aug 23 02:00:47 2025 GMT Not After : Aug 30 02:00:47 2025 GMT Subject: CN=68a920d0-f595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:16:02:5d:a9:27:af:da:d8:60:3d:d2:4b:f1: f5:3c:d1:77:c3:4d:5b:d5:b6:8f:ce:51:0f:81:e2: 4b:08:5e:fa:11:a3:36:e0:ca:ad:19:d0:7b:06:e0: ad:61:20:6a:ba:74:a6:2d:96:ee:77:c2:67:f2:36: 97:0d:f3:b4:b1:16:96:3f:2e:86:0e:38:56:36:90: 37:4d:f4:23:ee:a8:21:50:cc:53:e2:89:e8:1b:9d: 54:c2:4d:7a:d8:4e:1c:0f:80:45:5c:e0:fa:25:2e: b0:a5:f5:5b:a0:25:36:b7:52:7d:1e:45:c5:03:fb: 15:1e:df:62:76:6b:19:8f:43:fa:45:77:88:59:7a: fd:46:0c:12:b9:af:27:fd:64:97:34:a6:e7:4d:15: 69:13:37:88:64:90:20:d9:c9:53:8c:7d:6a:98:c3: c0:00:53:3f:20:10:3b:a7:10:88:d9:c7:4c:3b:e4: 8e:af:81:aa:eb:e7:1d:ff:59:1f:d7:d9:53:33:91: 0d:82:89:99:1a:5c:52:17:7b:df:b8:4e:c8:c9:37: bc:b8:94:f6:d4:5c:33:cb:2d:a5:bb:41:6f:d5:b9: 8d:bc:2c:40:44:9d:9a:bb:76:9a:cb:d7:6a:11:99: 2c:ab:7a:43:69:56:3f:f4:ce:79:fc:aa:3e:a3:77: be:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:71:F8:13:BB:A6:7C:30:48:C9:EB:0B:8C:C1:D8:1B:4B:67:55:12 X509v3 Authority Key Identifier: keyid:35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:d6:8e:07:65:41:62:ac:56:fc:eb:85:79:50:a1:17:8a:c1: 02:af:d5:66:fa:8c:58:d8:9d:8d:66:28:55:07:e3:e3:66:e1: e0:50:f4:a4:ac:82:27:e3:81:cc:ba:5a:33:f7:cd:1f:83:7e: d6:a9:82:97:c7:7f:33:cb:b3:51:ac:31:ad:77:c3:d3:aa:8e: a0:8d:7b:0e:c5:d3:c0:07:98:78:07:74:53:8f:90:9d:7a:88: 52:e1:5a:c3:e6:a9:73:8c:b0:76:d9:07:eb:01:af:14:f2:20: ce:9c:f6:2c:42:dd:af:b4:70:fc:05:96:13:d5:10:67:04:94: cb:3e:3d:a8:c6:18:44:cb:be:7e:0d:d9:57:47:f5:27:a6:73: 12:24:60:ee:c0:3d:1e:ef:f1:cb:4a:0c:d7:0b:ea:c1:86:b3: 5a:05:a0:ea:af:34:f3:cf:71:c3:0a:68:5f:7f:b6:71:a1:a6: 42:46:1f:57:a0:3e:7f:a4:ef:bb:1e:c6:43:37:8d:4f:bf:34: 5b:fa:0a:d8:53:36:57:d9:be:73:b3:de:86:de:17:1c:36:51: 25:b1:51:ab:57:c6:94:c6:74:be:40:a6:e3:b0:4b:f8:9f:31: 0c:e2:15:9c:39:d2:95:69:9e:28:77:17:41:7a:f8:2a:74:2f: 96:47:19:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEN0ExMTAvBgNVBAUTKDM1MjVGOUM1NDRFOTlCMEU2MzQ2MDA5OUM5MkRGRDk0 RDQ5QkY2Q0EwHhcNMjUwODIzMDIwMDQ3WhcNMjUwODMwMDIwMDQ3WjAYMRYwFAYD VQQDEw02OGE5MjBkMC1mNTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshYCXaknr9rYYD3SS/H1PNF3w01b1baPzlEPgeJLCF76EaM24MqtGdB7BuCt YSBqunSmLZbud8Jn8jaXDfO0sRaWPy6GDjhWNpA3TfQj7qghUMxT4onoG51Uwk16 2E4cD4BFXOD6JS6wpfVboCU2t1J9HkXFA/sVHt9idmsZj0P6RXeIWXr9RgwSua8n /WSXNKbnTRVpEzeIZJAg2clTjH1qmMPAAFM/IBA7pxCI2cdMO+SOr4Gq6+cd/1kf 19lTM5ENgomZGlxSF3vfuE7IyTe8uJT21Fwzyy2lu0Fv1bmNvCxARJ2au3aay9dq EZksq3pDaVY/9M55/Ko+o3e+owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJlx+BO7 pnwwSMnrC4zB2BtLZ1USMB8GA1UdIwQYMBaAFDUl+cVE6ZsOY0YAmckt/ZTUm/bK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ3QS84OUE5QUEyNDI3 ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13NWpSZ0NaeVMzOWxOU2I5 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05TWDV4VVRwbXc1alJnQ1p5UzM5bE5TYjlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ3QS84OUE5QUEyNDI3ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13 NWpSZ0NaeVMzOWxOU2I5c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR1o4HZUFirFb864V5UKEXisECr9Vm+oxY2J2NZihVB+PjZuHgUPSk rIIn44HMuloz980fg37WqYKXx38zy7NRrDGtd8PTqo6gjXsOxdPAB5h4B3RTj5Cd eohS4VrD5qlzjLB22QfrAa8U8iDOnPYsQt2vtHD8BZYT1RBnBJTLPj2oxhhEy75+ DdlXR/UnpnMSJGDuwD0e7/HLSgzXC+rBhrNaBaDqrzTzz3HDCmhff7ZxoaZCRh9X oD5/pO+7HsZDN41PvzRb+grYUzZX2b5zs96G3hccNlElsVGrV8aUxnS+QKbjsEv4 nzEM4hWcOdKVaZ4odxdBevgqdC+WRxkg -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:37 2025 by rpki-client