$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft File: nhW8ueM67e2saArIyYFuEVkFyiw.mft (raw, json) Hash identifier: ecVxT6/+yYvlQka0osjUA7eMR5c/mPD/tGr90dacopo= Subject key identifier: 5E:37:5D:B6:3F:EF:85:C0:10:DA:DC:44:32:E0:93:61:A6:AD:FE:F3 Authority key identifier: 9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C Certificate issuer: /CN=A91F9B3A/serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Certificate serial: 170D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft Manifest number: 1700 Signing time: Sun 24 Aug 2025 16:37:31 +0000 Manifest this update: Sun 24 Aug 2025 16:37:31 +0000 Manifest next update: Sun 31 Aug 2025 16:37:31 +0000 Files and hashes: 1: nhW8ueM67e2saArIyYFuEVkFyiw.crl (hash: eQRtEqwF997dOW/cfhHvkR2P8hUw4dOj/enskLPBMrM=) 2: 7A7A6AC6234311EA90D15227C4F9AE02.roa (hash: inLOYpzfiQRyaW4Jx9DTFdqEkju4HPJ5ZYoO4gNZ1PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5901 (0x170d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B3A, serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Validity Not Before: Aug 24 16:37:31 2025 GMT Not After : Aug 31 16:37:31 2025 GMT Subject: CN=68ab3fcb-1816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f6:53:0b:f6:0a:ca:59:b3:76:2a:7f:8b:c1: 89:32:6a:3b:3b:b3:f3:45:32:87:83:08:16:19:82: dc:9a:b4:d3:d0:e4:ab:f9:db:a9:ba:fe:c6:28:96: 9c:be:c5:c5:97:e7:25:61:09:bb:cd:90:bd:58:5e: 15:a3:76:c8:30:58:47:2a:36:4b:35:b7:c0:d7:39: 67:52:27:7b:0d:4a:22:11:ab:49:88:20:ab:3b:78: 20:03:57:8a:c8:b3:29:fa:d8:e9:ec:3e:20:ff:36: 03:aa:56:08:7e:d7:35:e6:8f:89:bc:66:2b:c0:de: dd:29:d2:1a:83:16:74:8a:ff:36:ae:6b:5a:f9:bc: 95:d1:88:4a:5e:d9:70:ef:ec:63:40:28:01:86:18: 20:d4:7c:b0:eb:e2:f2:e2:8b:64:2a:e5:f7:3d:46: 1d:e0:e8:20:38:b9:32:28:27:db:d1:96:81:09:9b: 69:79:dd:05:de:cd:c3:d2:1b:83:55:73:ee:e6:c1: fc:10:53:55:2f:ef:f5:3b:38:7c:e6:79:66:bd:14: fb:a4:27:51:27:57:f3:22:06:d7:88:15:16:ef:54: 59:53:51:ca:38:5b:58:05:98:ee:0c:91:00:08:fb: 85:fc:17:b2:05:02:2d:28:d5:e2:68:f2:54:61:1f: 73:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:37:5D:B6:3F:EF:85:C0:10:DA:DC:44:32:E0:93:61:A6:AD:FE:F3 X509v3 Authority Key Identifier: keyid:9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:f4:f3:87:58:76:00:08:69:a1:64:5f:62:12:c5:77:52:4f: 0b:6e:24:82:4f:1d:97:73:76:df:d8:31:94:ca:97:42:d1:c1: f1:59:6b:e8:e7:1e:09:6d:e9:2a:ad:f2:29:41:3d:1f:be:01: 18:77:04:ee:5a:d8:ee:37:cd:3b:cf:27:5e:33:4d:4e:66:df: bc:82:18:60:70:5d:8b:a6:9b:d9:fa:7c:8c:6e:b0:2a:84:03: 7b:58:d1:52:c1:96:e6:8a:c5:3c:72:12:6c:4a:4c:e3:47:3c: d2:49:5a:d5:ac:d6:a8:42:56:4f:15:03:ed:55:4c:4d:39:6b: 24:c6:1d:94:f7:02:f9:af:43:e6:93:6a:bd:6b:09:05:fe:0d: 1e:97:70:77:74:7d:62:4a:0d:aa:fd:44:20:fb:79:64:c0:5c: 62:e9:ca:4a:73:00:45:a3:b5:77:38:f0:0b:19:87:2b:77:d1: 2b:f1:9b:08:ee:36:60:be:78:f6:bf:ce:17:11:d4:6c:f9:36: f4:00:07:8e:8d:c4:d4:7d:9b:d8:46:ef:87:3c:59:b2:ce:68: 54:87:26:29:14:7b:76:fe:f3:26:0b:e5:84:e4:b7:f6:ce:b7: 49:1e:06:bc:e1:fe:15:b9:db:e0:bb:b8:76:3e:6b:f2:bb:5f: 7d:69:6f:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlCM0ExMTAvBgNVBAUTKDlFMTVCQ0I5RTMzQUVERURBQzY4MEFDOEM5ODE2RTEx NTkwNUNBMkMwHhcNMjUwODI0MTYzNzMxWhcNMjUwODMxMTYzNzMxWjAYMRYwFAYD VQQDEw02OGFiM2ZjYi0xODE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vZTC/YKylmzdip/i8GJMmo7O7PzRTKHgwgWGYLcmrTT0OSr+dupuv7GKJac vsXFl+clYQm7zZC9WF4Vo3bIMFhHKjZLNbfA1zlnUid7DUoiEatJiCCrO3ggA1eK yLMp+tjp7D4g/zYDqlYIftc15o+JvGYrwN7dKdIagxZ0iv82rmta+byV0YhKXtlw 7+xjQCgBhhgg1Hyw6+Ly4otkKuX3PUYd4OggOLkyKCfb0ZaBCZtped0F3s3D0huD VXPu5sH8EFNVL+/1Ozh85nlmvRT7pCdRJ1fzIgbXiBUW71RZU1HKOFtYBZjuDJEA CPuF/BeyBQItKNXiaPJUYR9zdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF43XbY/ 74XAENrcRDLgk2Gmrf7zMB8GA1UdIwQYMBaAFJ4VvLnjOu3trGgKyMmBbhFZBcos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUIzQS83REVBRTczNEYz QTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdlMnNhQXJJeVlGdUVWa0Z5 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25oVzh1ZU02N2Uyc2FBckl5WUZ1RVZrRnlpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUIzQS83REVBRTczNEYzQTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdl MnNhQXJJeVlGdUVWa0Z5aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+9POHWHYACGmhZF9iEsV3Uk8LbiSCTx2Xc3bf2DGUypdC0cHxWWvo 5x4JbekqrfIpQT0fvgEYdwTuWtjuN807zydeM01OZt+8ghhgcF2LppvZ+nyMbrAq hAN7WNFSwZbmisU8chJsSkzjRzzSSVrVrNaoQlZPFQPtVUxNOWskxh2U9wL5r0Pm k2q9awkF/g0el3B3dH1iSg2q/UQg+3lkwFxi6cpKcwBFo7V3OPALGYcrd9Er8ZsI 7jZgvnj2v84XEdRs+Tb0AAeOjcTUfZvYRu+HPFmyzmhUhyYpFHt2/vMmC+WE5Lf2 zrdJHga84f4Vudvgu7h2Pmvyu199aW/l -----END CERTIFICATE-----Generated at Sun Aug 24 21:42:44 2025 by rpki-client