$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft File: NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft (raw, json) Hash identifier: 2+z8BYiHcQCzngwFngQWcBvJY/sGI5+fdOM6KEPno/g= Subject key identifier: 77:A0:7E:EA:41:2E:8E:A4:EC:ED:BD:D9:E4:B6:1A:C6:9E:27:9D:A4 Authority key identifier: 37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A Certificate issuer: /CN=A91DE7DE/serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A Certificate serial: 11D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft Manifest number: 11A6 Signing time: Tue 22 Jul 2025 17:22:49 +0000 Manifest this update: Tue 22 Jul 2025 17:22:48 +0000 Manifest next update: Tue 29 Jul 2025 17:22:48 +0000 Files and hashes: 1: NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl (hash: J3XUxAT+Ta4QEZ1Ctgloj3t3AMAmK2q+WRILSaZgyjU=) 2: 7F7F1470091D11F0B7E95627C4F9AE02.roa (hash: hpmM9pfcrUFnNRets4Cm3b/cVvffA5StG3HyqAHQxOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 17:22:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4565 (0x11d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE7DE, serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A Validity Not Before: Jul 22 17:22:48 2025 GMT Not After : Jul 29 17:22:48 2025 GMT Subject: CN=687fc8e8-1009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0f:99:e7:9b:e1:85:90:ee:2d:68:28:db:6d: 9c:64:dd:9d:a4:16:40:7b:14:1c:79:67:e6:d2:c4: 91:67:7a:95:b8:8b:1c:a5:52:72:a2:18:a7:9d:68: ff:88:7f:72:23:26:a7:e2:e9:c2:82:a1:0c:71:f0: 24:45:fd:c6:a5:6a:ab:76:93:90:40:24:2e:e6:47: 6b:39:d4:99:13:29:e5:ea:a5:6b:04:4e:23:27:0f: a9:59:b0:ef:28:85:71:c7:88:fa:1d:49:06:b1:a3: b2:c0:41:ae:dc:fd:a0:65:08:23:9a:44:56:62:a7: 57:19:44:b0:92:c6:d0:16:b6:d2:31:77:35:96:5c: d7:d9:13:7b:eb:a4:a5:dc:34:1e:db:cc:c0:aa:90: c7:14:a2:43:97:bd:59:72:3b:d6:97:10:66:b2:e4: 7f:4a:70:f5:e1:81:63:4a:48:45:9a:d7:55:0b:61: 56:d4:7c:a8:23:7a:5c:f6:04:24:6b:d4:0d:6b:76: 65:49:11:7f:78:82:86:59:65:17:c7:08:06:10:eb: b0:9d:67:56:ec:5b:02:f3:8c:9f:0e:db:cc:11:26: de:45:7c:6f:89:66:42:81:30:44:75:d4:29:8b:68: c1:6e:1e:5d:27:2c:2a:75:fe:53:7a:61:80:27:60: 01:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A0:7E:EA:41:2E:8E:A4:EC:ED:BD:D9:E4:B6:1A:C6:9E:27:9D:A4 X509v3 Authority Key Identifier: keyid:37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:42:3c:0f:09:2a:5d:b4:30:a8:8e:7c:1d:3c:c6:24:d9:89: a5:ba:ab:7b:92:82:33:de:d5:6f:dd:eb:28:a4:e9:2c:7f:cc: 00:71:64:1e:cd:02:7b:25:34:10:71:ae:f1:ad:2d:0c:e3:0b: cc:0b:43:67:e0:86:92:9a:86:b3:2b:46:53:dc:26:48:cf:0c: d7:4e:4a:2c:90:bf:69:ab:49:5e:77:a9:11:97:6e:31:72:dc: f4:34:87:be:18:25:3b:71:fc:82:49:5b:ec:ec:be:74:ef:ec: 0b:07:83:1f:6d:7f:94:98:36:f6:02:9a:c9:7e:e6:11:8b:14: 6a:fd:36:32:7b:a8:a7:47:f4:25:93:3d:45:cc:62:6d:e5:bb: e2:92:31:a0:c3:d2:b3:08:5a:82:28:02:60:d5:d6:27:a6:97: 73:5a:8c:b6:aa:36:4c:bf:69:2a:be:3c:72:4a:12:08:cb:ce: 41:63:2b:5b:12:8e:cb:05:91:ae:82:8a:bb:a0:24:82:01:20: e8:ce:91:d9:67:0f:0d:0e:4c:9c:db:6b:76:95:a5:1a:f5:84: d3:52:1d:fd:66:10:f4:40:a1:d2:69:e6:53:0a:19:fc:d3:7c: bc:15:5f:b2:36:d6:39:a5:fe:9a:ab:60:01:1a:05:28:aa:ae: cd:8a:09:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU3REUxMTAvBgNVBAUTKDM3MTI3M0NGRDhDMkM5MDhCNjkxRDZCRUExNzVFOERF ODJCRDQzOUEwHhcNMjUwNzIyMTcyMjQ4WhcNMjUwNzI5MTcyMjQ4WjAYMRYwFAYD VQQDEw02ODdmYzhlOC0xMDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4w+Z55vhhZDuLWgo222cZN2dpBZAexQceWfm0sSRZ3qVuIscpVJyohinnWj/ iH9yIyan4unCgqEMcfAkRf3GpWqrdpOQQCQu5kdrOdSZEynl6qVrBE4jJw+pWbDv KIVxx4j6HUkGsaOywEGu3P2gZQgjmkRWYqdXGUSwksbQFrbSMXc1llzX2RN766Sl 3DQe28zAqpDHFKJDl71ZcjvWlxBmsuR/SnD14YFjSkhFmtdVC2FW1HyoI3pc9gQk a9QNa3ZlSRF/eIKGWWUXxwgGEOuwnWdW7FsC84yfDtvMESbeRXxviWZCgTBEddQp i2jBbh5dJywqdf5TemGAJ2ABBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHegfupB Lo6k7O292eS2GsaeJ52kMB8GA1UdIwQYMBaAFDcSc8/YwskItpHWvqF16N6CvUOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTdERS9DRUUzRDcxODA0 RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lRaTJrZGEtb1hYbzNvSzlR NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054Snp6OWpDeVFpMmtkYS1vWFhvM29LOVE1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTdERS9DRUUzRDcxODA0RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lR aTJrZGEtb1hYbzNvSzlRNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpQjwPCSpdtDCojnwdPMYk2Ymluqt7koIz3tVv3esopOksf8wAcWQe zQJ7JTQQca7xrS0M4wvMC0Nn4IaSmoazK0ZT3CZIzwzXTkoskL9pq0led6kRl24x ctz0NIe+GCU7cfyCSVvs7L507+wLB4MfbX+UmDb2AprJfuYRixRq/TYye6inR/Ql kz1FzGJt5bvikjGgw9KzCFqCKAJg1dYnppdzWoy2qjZMv2kqvjxyShIIy85BYytb Eo7LBZGugoq7oCSCASDozpHZZw8NDkyc22t2laUa9YTTUh39ZhD0QKHSaeZTChn8 03y8FV+yNtY5pf6aq2ABGgUoqq7NignA -----END CERTIFICATE-----Generated at Wed Jul 23 12:49:04 2025 by rpki-client