$ rpki-client -vvf rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft File: NcbYSDFsIdmTz25MBtYB3AXvxOE.mft (raw, json) Hash identifier: 5CBp608UIZunCXTe7DN+oRvIk4Amhiwens9vOSnEVZ8= Subject key identifier: DC:AC:B8:15:54:CE:BE:AF:36:F5:C2:68:6E:B7:7F:05:EB:16:40:FA Authority key identifier: 35:C6:D8:48:31:6C:21:D9:93:CF:6E:4C:06:D6:01:DC:05:EF:C4:E1 Certificate issuer: /CN=A91F473F/serialNumber=35C6D848316C21D993CF6E4C06D601DC05EFC4E1 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft Manifest number: 0188 Signing time: Thu 21 Aug 2025 03:41:08 +0000 Manifest this update: Thu 21 Aug 2025 03:41:08 +0000 Manifest next update: Thu 28 Aug 2025 03:41:08 +0000 Files and hashes: 1: NcbYSDFsIdmTz25MBtYB3AXvxOE.crl (hash: DLrNP4deh3Dy1wmyOymrfqvBgj8wBPncCKyPAydL0aA=) 2: C416FBB02D6F11EEAC755B42C4F9AE02.roa (hash: Tq7rC2giNreq2mmMPPxtNpHrDUwHtrtyBLhfTo+mDLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.crl rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F473F, serialNumber=35C6D848316C21D993CF6E4C06D601DC05EFC4E1 Validity Not Before: Aug 21 03:41:08 2025 GMT Not After : Aug 28 03:41:08 2025 GMT Subject: CN=68a69554-6271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:08:97:b7:3c:37:fb:59:59:13:7e:7f:f7:ed: 3b:c4:32:7c:42:bc:d3:ca:c0:64:18:44:5f:65:c8: 6f:b5:8b:74:e5:4d:65:9b:26:2d:b0:12:13:18:bd: d0:a3:f6:fb:d5:21:36:61:1b:a3:2a:ed:28:c0:79: 74:91:01:f7:1a:09:05:40:21:cb:8a:d5:b7:01:ff: e5:18:a7:00:70:e7:96:b6:54:24:8a:74:e1:3d:b2: 5a:b5:de:ce:2d:60:53:85:d3:16:96:37:fe:a3:46: 5e:e9:77:37:56:c7:1d:39:bd:02:76:bb:13:27:0f: c2:2c:24:ac:f0:68:1d:48:40:d1:9a:83:d1:43:7e: 2a:01:55:d6:17:12:77:e8:3f:66:f3:6f:cc:b2:c7: f3:39:4f:42:17:57:8a:04:14:07:fa:1b:3e:47:26: 25:a4:78:25:e4:02:a5:79:fc:61:ec:e5:dc:9c:df: a4:50:bc:0b:a4:21:bf:0f:31:3e:03:25:fa:18:de: 71:94:cc:03:3d:4f:cf:d1:89:8f:6b:b2:45:9f:a0: 64:d7:e3:be:67:87:14:68:6d:2b:1d:05:bd:85:f1: 2d:1d:84:77:8c:0c:b7:d3:45:03:70:84:3b:59:0e: 32:2f:51:f7:4c:da:5d:9b:b1:59:e3:25:05:46:fa: da:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:AC:B8:15:54:CE:BE:AF:36:F5:C2:68:6E:B7:7F:05:EB:16:40:FA X509v3 Authority Key Identifier: keyid:35:C6:D8:48:31:6C:21:D9:93:CF:6E:4C:06:D6:01:DC:05:EF:C4:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:9a:30:5b:93:27:fe:d7:53:3f:b9:54:dd:92:43:7d:c0:0f: 52:2c:01:4c:70:02:a6:1d:cd:f0:88:5b:bf:5a:75:32:c3:81: 0a:c0:23:f2:1c:0b:5a:58:33:db:72:8e:0d:58:6d:dc:1d:a4: 36:95:b7:25:39:be:fb:cc:56:ea:c9:82:f3:53:60:45:2c:d0: bb:20:68:b2:a7:18:01:49:c2:2d:85:35:a8:c8:8c:7f:03:4e: b3:af:78:7c:28:c7:39:52:8b:d9:18:0f:a7:84:cd:44:ef:bd: aa:a3:da:91:72:e3:3e:7b:a9:ba:90:71:4c:7d:d6:af:8b:e2: 0c:3b:2f:a7:74:f8:61:66:f6:9a:9a:e1:75:15:1b:1e:fc:4d: 1f:05:f5:ab:e3:d9:23:1e:02:8a:b8:f3:d8:58:80:49:5a:8e: 6c:a7:2a:6e:e4:ce:ca:13:04:97:5f:43:5a:06:5f:13:53:3e: 97:83:65:92:f5:4d:56:da:20:1c:6a:bb:9c:4d:f9:0a:cc:1b: 29:5d:a9:39:45:0a:b3:2d:e5:b4:b2:d3:36:a7:00:97:2f:47: 18:ad:df:f4:a1:18:1d:db:5a:fc:d6:1a:9b:64:5b:0a:76:3d: c4:20:e8:c5:81:17:ce:5b:ca:9b:9f:26:0f:ce:5c:45:5a:43: f0:75:e8:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3M0YxMTAvBgNVBAUTKDM1QzZEODQ4MzE2QzIxRDk5M0NGNkU0QzA2RDYwMURD MDVFRkM0RTEwHhcNMjUwODIxMDM0MTA4WhcNMjUwODI4MDM0MTA4WjAYMRYwFAYD VQQDEw02OGE2OTU1NC02MjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QiXtzw3+1lZE35/9+07xDJ8QrzTysBkGERfZchvtYt05U1lmyYtsBITGL3Q o/b71SE2YRujKu0owHl0kQH3GgkFQCHLitW3Af/lGKcAcOeWtlQkinThPbJatd7O LWBThdMWljf+o0Ze6Xc3VscdOb0CdrsTJw/CLCSs8GgdSEDRmoPRQ34qAVXWFxJ3 6D9m82/MssfzOU9CF1eKBBQH+hs+RyYlpHgl5AKlefxh7OXcnN+kULwLpCG/DzE+ AyX6GN5xlMwDPU/P0YmPa7JFn6Bk1+O+Z4cUaG0rHQW9hfEtHYR3jAy300UDcIQ7 WQ4yL1H3TNpdm7FZ4yUFRvra1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNysuBVU zr6vNvXCaG63fwXrFkD6MB8GA1UdIwQYMBaAFDXG2EgxbCHZk89uTAbWAdwF78Th MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDczRi8xRDE3RURCNDJC OTAxMUVFOEI1REU0NzBDNEY5QUUwMi9OY2JZU0RGc0lkbVR6MjVNQnRZQjNBWHZ4 T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jYllTREZzSWRtVHoyNU1CdFlCM0FYdnhPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDczRi8xRDE3RURCNDJCOTAxMUVFOEI1REU0NzBDNEY5QUUwMi9OY2JZU0RGc0lk bVR6MjVNQnRZQjNBWHZ4T0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtmjBbkyf+11M/uVTdkkN9wA9SLAFMcAKmHc3wiFu/WnUyw4EKwCPy HAtaWDPbco4NWG3cHaQ2lbclOb77zFbqyYLzU2BFLNC7IGiypxgBScIthTWoyIx/ A06zr3h8KMc5UovZGA+nhM1E772qo9qRcuM+e6m6kHFMfdavi+IMOy+ndPhhZvaa muF1FRse/E0fBfWr49kjHgKKuPPYWIBJWo5spypu5M7KEwSXX0NaBl8TUz6Xg2WS 9U1W2iAcarucTfkKzBspXak5RQqzLeW0stM2pwCXL0cYrd/0oRgd21r81hqbZFsK dj3EIOjFgRfOW8qbnyYPzlxFWkPwdejq -----END CERTIFICATE-----Generated at Fri Aug 22 16:17:03 2025 by rpki-client