$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft File: nmoKpDnP40ewT3RoQKbkNMUJsac.mft (raw, json) Hash identifier: CGCOlhSFp4BTyp6uHzmp0jjbIefJ+hfBPoi9vB6brns= Subject key identifier: B3:C5:25:17:B8:0C:32:DC:78:BF:EE:55:46:13:5D:1E:B6:52:86:FF Authority key identifier: 9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 Certificate issuer: /CN=A914DC56/serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft Manifest number: 0150 Signing time: Mon 21 Jul 2025 04:16:21 +0000 Manifest this update: Mon 21 Jul 2025 04:16:21 +0000 Manifest next update: Mon 28 Jul 2025 04:16:21 +0000 Files and hashes: 1: nmoKpDnP40ewT3RoQKbkNMUJsac.crl (hash: w+/JJDTxXOrDuu5CXPDAV/Uja2QtJ+NZDM5Q3Ks1reM=) 2: 11A843B467D811EEA0543B5CC4F9AE02.roa (hash: JGrxdfcTXN7WXmiB33mKDnWSPFdrh+A/TvrelqjBL5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC56, serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Validity Not Before: Jul 21 04:16:21 2025 GMT Not After : Jul 28 04:16:21 2025 GMT Subject: CN=687dbf15-7a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:25:35:77:d6:f4:f6:b3:19:99:72:76:e6:ba: 24:0d:55:27:7d:e8:4d:84:5f:75:34:24:85:8c:50: 90:94:f2:de:2c:4c:7c:7d:6f:9e:3d:77:d0:26:a8: 38:60:e9:30:f0:90:b0:21:29:1c:6b:99:dd:45:9e: 4f:2d:e1:88:99:32:3f:7e:bc:b2:65:77:83:35:19: 50:a5:7e:3c:60:91:da:3d:e7:84:54:ae:ee:83:55: 9e:71:f9:db:70:e0:dc:27:c7:cb:63:2d:29:d6:3b: bc:eb:4d:88:38:59:7f:63:d5:4a:62:44:30:52:6a: fa:0d:df:c3:d4:21:68:e3:61:41:5d:8d:ba:d0:1d: 0e:23:d2:6f:6e:51:d2:94:b7:ae:66:b7:97:16:2d: 1d:0e:6d:16:ec:e5:e2:16:e0:40:00:00:71:da:17: e2:5c:81:59:28:af:20:53:d1:1b:fd:af:da:1d:dc: ad:c6:00:10:02:fd:d8:8d:0f:01:25:cf:bc:e4:40: 7e:b4:cf:ce:20:5c:54:6c:d6:20:17:d2:27:e6:db: 54:0b:bf:ae:cb:99:4d:e3:36:b2:41:2b:2f:18:92: 6a:f7:6e:a5:dd:f4:68:e7:21:0c:79:bc:dd:84:36: b0:b9:86:8b:71:08:6e:ff:42:d2:86:65:12:8c:7d: 90:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C5:25:17:B8:0C:32:DC:78:BF:EE:55:46:13:5D:1E:B6:52:86:FF X509v3 Authority Key Identifier: keyid:9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:e2:2d:37:0d:39:6b:62:27:33:9b:14:8f:45:e6:93:82:25: 7f:69:2c:92:c6:74:97:82:39:88:65:69:62:5e:00:11:b1:18: 57:3f:f4:35:4c:3a:ea:b1:46:63:d6:33:54:d6:1a:d2:3d:87: 3f:60:cc:50:97:d0:57:71:62:dd:a9:32:84:60:23:a1:01:90: f5:c8:6e:11:80:5f:46:2d:0c:9c:b7:75:0a:28:ed:72:28:06: 49:5e:53:71:4e:3d:20:a9:80:34:e3:7e:4b:58:18:bd:a3:42: 14:64:2b:26:0b:89:fd:80:47:0f:bc:69:e9:93:1e:cb:ea:da: 0b:05:0b:87:58:4a:9f:6f:bb:df:a1:75:27:a7:1a:97:78:f6: 2e:48:24:83:2f:3c:b7:f9:fd:34:03:70:2c:68:28:4b:d6:0a: f3:27:ce:d9:98:c1:01:2b:1c:2f:ff:57:12:b1:78:47:f6:32: e2:3a:75:aa:de:62:20:d7:21:0b:96:3d:57:64:97:1a:a6:19: 80:71:37:3d:c6:62:72:5e:f6:ce:36:46:36:3f:f3:28:59:3d: f0:c1:d0:a7:f0:32:30:03:5b:0f:ac:3c:94:b2:9d:11:c4:4b: ad:a6:26:da:26:f7:ef:90:5e:e5:4f:56:ee:89:57:5d:0e:a9: 75:7f:a5:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNTYxMTAvBgNVBAUTKDlFNkEwQUE0MzlDRkUzNDdCMDRGNzQ2ODQwQTZFNDM0 QzUwOUIxQTcwHhcNMjUwNzIxMDQxNjIxWhcNMjUwNzI4MDQxNjIxWjAYMRYwFAYD VQQDEw02ODdkYmYxNS03YTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSU1d9b09rMZmXJ25rokDVUnfehNhF91NCSFjFCQlPLeLEx8fW+ePXfQJqg4 YOkw8JCwISkca5ndRZ5PLeGImTI/fryyZXeDNRlQpX48YJHaPeeEVK7ug1Wecfnb cODcJ8fLYy0p1ju8602IOFl/Y9VKYkQwUmr6Dd/D1CFo42FBXY260B0OI9JvblHS lLeuZreXFi0dDm0W7OXiFuBAAABx2hfiXIFZKK8gU9Eb/a/aHdytxgAQAv3YjQ8B Jc+85EB+tM/OIFxUbNYgF9In5ttUC7+uy5lN4zayQSsvGJJq926l3fRo5yEMebzd hDawuYaLcQhu/0LShmUSjH2QKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPFJRe4 DDLceL/uVUYTXR62Uob/MB8GA1UdIwQYMBaAFJ5qCqQ5z+NHsE90aECm5DTFCbGn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1Ni9DREJDRjYzQTY2 OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQwZXdUM1JvUUtia05NVUpz YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tb0twRG5QNDBld1QzUm9RS2JrTk1VSnNhYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REM1Ni9DREJDRjYzQTY2OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQw ZXdUM1JvUUtia05NVUpzYWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA74i03DTlrYiczmxSPReaTgiV/aSySxnSXgjmIZWliXgARsRhXP/Q1 TDrqsUZj1jNU1hrSPYc/YMxQl9BXcWLdqTKEYCOhAZD1yG4RgF9GLQyct3UKKO1y KAZJXlNxTj0gqYA0435LWBi9o0IUZCsmC4n9gEcPvGnpkx7L6toLBQuHWEqfb7vf oXUnpxqXePYuSCSDLzy3+f00A3AsaChL1grzJ87ZmMEBKxwv/1cSsXhH9jLiOnWq 3mIg1yELlj1XZJcaphmAcTc9xmJyXvbONkY2P/MoWT3wwdCn8DIwA1sPrDyUsp0R xEutpibaJvfvkF7lT1buiVddDql1f6WP -----END CERTIFICATE-----Generated at Mon Jul 21 23:55:07 2025 by rpki-client