$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft File: nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json) Hash identifier: 4MXu5iw3Oo8lzuwS/Dt64CtIPnTEgjgFBmX9/z912+E= Subject key identifier: 74:98:9C:EE:53:B5:B3:CB:FE:E6:99:A9:9C:0C:61:D4:8B:03:D5:D2 Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 0812 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft Manifest number: 080C Signing time: Thu 04 Sep 2025 21:07:24 +0000 Manifest this update: Thu 04 Sep 2025 21:07:24 +0000 Manifest next update: Thu 11 Sep 2025 21:07:24 +0000 Files and hashes: 1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: naStVtpAagKNNl2x3O43BLkaixfvXxUnGyNYzq/+f8w=) 2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: ZuNx07Xi3l7zK6QE18qPa3KdYreh+VNjcsKw+zEu9qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 21:07:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2066 (0x812) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4, serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Sep 4 21:07:24 2025 GMT Not After : Sep 11 21:07:24 2025 GMT Subject: CN=68b9ff8c-93a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e9:db:68:a8:34:79:a6:3c:98:e9:7b:ec:10: 32:b3:e2:33:57:12:c9:3d:a9:c6:b0:6d:53:ab:bd: 13:70:4f:96:b0:9a:d6:c1:f2:79:0d:ab:f6:80:78: 8a:a4:59:ba:c3:f2:d7:9a:cf:b5:f7:62:02:ae:b0: 5b:31:d9:92:e1:ea:a0:9e:21:17:93:56:1b:8e:ec: 64:4f:04:f3:62:da:66:56:60:3b:da:a7:4f:29:be: 81:39:4d:4a:f4:69:ab:b5:cd:30:42:8c:49:54:cf: 6d:1b:d6:59:e7:6d:cd:0b:1d:d2:cd:b3:2b:00:d1: 9b:59:e5:78:6b:c2:9a:cd:e2:ae:6d:ff:47:07:b0: 15:1e:00:47:fd:fb:02:e1:b7:40:41:b1:4f:30:56: 2a:a6:83:9d:d3:fa:1a:d5:fe:07:7e:df:03:ac:a1: 0f:ce:86:30:e2:6f:98:3f:a2:5e:3c:93:3a:32:a6: 87:08:60:3f:56:11:e4:ac:c5:4f:13:32:06:4a:af: 03:40:c8:c1:d8:2d:ad:dc:4e:bc:40:b8:18:41:3c: 73:bb:ae:02:cd:49:1a:28:96:5d:c9:09:8a:d1:6b: 45:24:50:2c:09:9f:c3:93:5e:ff:be:39:ec:02:28: 98:a6:a8:67:3e:02:43:00:f8:af:c0:82:dc:69:22: d7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:98:9C:EE:53:B5:B3:CB:FE:E6:99:A9:9C:0C:61:D4:8B:03:D5:D2 X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:29:75:e2:76:c8:f8:97:8a:f2:1b:c8:10:c2:de:34:b6:0a: 5c:79:44:7b:b0:50:93:6b:f6:51:af:d4:22:20:8e:6a:ee:55: 2e:e2:23:ca:bf:f6:c3:ef:0c:13:30:a0:a1:a6:30:ec:0f:19: fc:68:44:6a:10:e5:6f:4a:45:a0:a5:2d:25:21:4f:41:4c:67: f9:5f:6e:a8:5c:26:32:47:78:5b:a3:cb:59:51:00:d7:59:ef: 97:0d:2d:f5:f4:c0:7f:5f:3c:36:95:70:f7:3c:10:55:fe:71: d4:ab:f7:fa:6b:5e:7e:44:06:c8:5e:9a:d4:4a:e7:d9:3b:6a: c7:f6:d1:b3:e8:a4:3c:4d:0d:c7:35:4d:7b:10:0c:7b:6c:98: d2:f6:1b:ef:36:08:cf:f9:44:17:eb:16:7b:be:50:3d:dc:3a: 5c:80:dc:d8:c2:9a:2c:ff:26:ec:7d:11:09:0b:ae:eb:a9:b6: 1f:a3:b8:9b:22:54:c0:5f:3e:83:81:ae:9d:f0:18:31:e8:10: c5:db:bd:41:6a:8d:5e:f3:8f:cb:b3:41:5e:ea:39:00:c7:38: 6d:d8:27:ad:7c:d2:ef:4a:e3:02:c9:64:f8:d8:bc:25:06:9b: b5:e9:a2:02:fa:10:e6:69:9e:1c:fb:75:6c:77:03:37:02:19: b7:33:38:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUwOTA0MjEwNzI0WhcNMjUwOTExMjEwNzI0WjAYMRYwFAYD VQQDEw02OGI5ZmY4Yy05M2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+nbaKg0eaY8mOl77BAys+IzVxLJPanGsG1Tq70TcE+WsJrWwfJ5Dav2gHiK pFm6w/LXms+192ICrrBbMdmS4eqgniEXk1YbjuxkTwTzYtpmVmA72qdPKb6BOU1K 9Gmrtc0wQoxJVM9tG9ZZ523NCx3SzbMrANGbWeV4a8KazeKubf9HB7AVHgBH/fsC 4bdAQbFPMFYqpoOd0/oa1f4Hft8DrKEPzoYw4m+YP6JePJM6MqaHCGA/VhHkrMVP EzIGSq8DQMjB2C2t3E68QLgYQTxzu64CzUkaKJZdyQmK0WtFJFAsCZ/Dk17/vjns AiiYpqhnPgJDAPivwILcaSLXwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHSYnO5T tbPL/uaZqZwMYdSLA9XSMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RThCNC80QTY1RUFDOEVFODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gz eFV1U01OWTUya1R6Z05JZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClKXXidsj4l4ryG8gQwt40tgpceUR7sFCTa/ZRr9QiII5q7lUu4iPK v/bD7wwTMKChpjDsDxn8aERqEOVvSkWgpS0lIU9BTGf5X26oXCYyR3hbo8tZUQDX We+XDS319MB/Xzw2lXD3PBBV/nHUq/f6a15+RAbIXprUSufZO2rH9tGz6KQ8TQ3H NU17EAx7bJjS9hvvNgjP+UQX6xZ7vlA93DpcgNzYwpos/ybsfREJC67rqbYfo7ib IlTAXz6Dga6d8Bgx6BDF271Bao1e84/Ls0Fe6jkAxzht2CetfNLvSuMCyWT42Lwl Bpu16aIC+hDmaZ4c+3VsdwM3Ahm3MzjA -----END CERTIFICATE-----Generated at Sat Sep 6 04:43:51 2025 by rpki-client