$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft File: nflMM9P2R649kTYeHxcsIGhvWYk.mft (raw, json) Hash identifier: JaxmJRW36Oi6BTiwQ+iapsgRMw8PWXKmSgj9Mqdewf4= Subject key identifier: A8:CC:2B:71:B5:71:55:58:90:13:53:E0:0F:27:47:A2:A5:41:4D:FC Authority key identifier: 9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 Certificate issuer: /CN=A911B5B4/serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Certificate serial: 0DF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft Manifest number: 0DD0 Signing time: Fri 30 May 2025 18:04:22 +0000 Manifest this update: Fri 30 May 2025 18:04:22 +0000 Manifest next update: Fri 06 Jun 2025 18:04:22 +0000 Files and hashes: 1: nflMM9P2R649kTYeHxcsIGhvWYk.crl (hash: oQcmWXlFGSmXCUkEC7cCVl8OfQiLzWMrScKUjhFjTDA=) 2: 46B27CC6B82A11E9843DEE0AC4F9AE02.roa (hash: 8a6WJtEg8FJ5eHnpvgMwqod0UL5e0zTS0SwjCaK0jd4=) 3: 9E78AEC4C78E11EBB4983F5BC4F9AE02.roa (hash: kN9kZZVIv74yYHGXDsanuB3xPPBPu4OVgy2TpSGU+PU=) 4: 47E67066B82A11E9843DEE0AC4F9AE02.roa (hash: YggXfy20kvjf1iFOsIwuuVFkMi74/bpO/23VT4jrnTE=) 5: 9F8B79C2C78E11EBB4983F5BC4F9AE02.roa (hash: n/ZkcBxXbOU1wyzDS48DMJkcfdrM8k6k+BibFqk5ai8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3571 (0xdf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5B4, serialNumber=9DF94C33D3F647AE3D91361E1F172C20686F5989 Validity Not Before: May 30 18:04:22 2025 GMT Not After : Jun 6 18:04:22 2025 GMT Subject: CN=6839f326-d0f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5a:40:89:04:7b:e3:b3:dd:b5:ee:84:1d:9c: cf:17:4c:0c:0c:08:a1:5c:52:3e:d7:66:46:08:87: c3:f0:88:9e:0c:42:19:2f:d7:95:f2:c8:b6:d8:b6: dc:ba:1d:f3:c4:b0:ce:93:47:b2:e0:30:bb:e3:ae: a7:f9:b8:9c:a6:35:32:1f:2f:56:64:d9:8a:77:d3: e3:9a:33:72:80:c9:ad:49:31:b4:b2:8f:a8:56:02: a2:5d:37:0c:52:46:e3:66:7a:88:e1:5a:d2:88:cb: 51:d8:6b:c2:3a:99:4b:87:0c:4d:15:26:64:68:22: cd:6c:67:7b:8a:82:9a:6d:31:59:2d:9b:12:71:75: fd:39:6d:54:86:3d:77:37:9f:68:73:96:8d:e6:8f: 90:61:29:56:c5:70:68:93:00:f6:38:da:1f:e3:d3: 5d:12:60:d6:4d:12:ea:08:34:46:b0:c3:d0:2f:2e: 27:69:85:f8:c1:22:38:be:ca:ff:59:02:a1:9f:c0: f0:e8:f7:aa:a7:0f:f0:94:da:f1:13:6c:d3:89:bb: a4:94:b9:35:5e:63:f4:98:8f:69:44:b7:35:d5:54: 23:82:90:82:7f:26:bc:f8:eb:0a:91:9b:2a:6c:4d: 0b:5d:0a:5d:3d:9a:f3:2f:56:f7:b6:bd:87:e6:bc: 28:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:CC:2B:71:B5:71:55:58:90:13:53:E0:0F:27:47:A2:A5:41:4D:FC X509v3 Authority Key Identifier: keyid:9D:F9:4C:33:D3:F6:47:AE:3D:91:36:1E:1F:17:2C:20:68:6F:59:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nflMM9P2R649kTYeHxcsIGhvWYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5B4/709F7A26B82911E993738A09C4F9AE02/nflMM9P2R649kTYeHxcsIGhvWYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:6b:67:73:27:53:50:0b:95:92:f3:43:85:9b:07:5b:02:7d: 80:8a:b2:ec:81:96:15:20:1d:c5:16:b0:54:85:9d:9b:f1:c5: 78:6a:de:c0:f8:b0:90:9f:ea:9f:8e:51:0d:91:ae:ab:e7:4c: 3d:59:86:2d:0f:1c:a8:8e:a5:4e:67:57:51:fc:76:8d:99:86: b4:c3:22:f1:a1:c3:90:9d:30:d9:97:11:d6:71:25:02:ad:53: 77:ff:09:08:5c:a5:de:6b:39:c5:1e:73:33:95:55:ce:e6:38: 89:cc:66:9e:fa:7c:5b:db:e7:64:87:43:22:4f:b4:40:8a:d8: de:a2:9d:ad:67:3e:09:58:34:71:1d:46:81:70:92:69:c9:67: 06:6f:ad:96:11:62:30:7c:aa:1c:0c:e0:5d:aa:14:22:d2:d7: 19:f8:02:7e:a9:e7:ea:ab:33:a3:48:ef:63:73:d3:ed:b5:b5: 72:41:7d:a6:7e:70:c0:5b:11:d6:73:17:9c:26:22:91:ee:86: 67:91:cf:37:df:4d:90:9f:9b:81:bb:bd:65:28:93:e4:22:a2: 4e:c2:c8:1f:b5:4b:7d:e1:e7:88:95:81:ee:6d:57:f9:b8:65: a2:20:1e:f1:f0:c1:e8:41:f3:b2:f3:da:b4:1b:14:51:06:ea: 62:58:7f:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QjQxMTAvBgNVBAUTKDlERjk0QzMzRDNGNjQ3QUUzRDkxMzYxRTFGMTcyQzIw Njg2RjU5ODkwHhcNMjUwNTMwMTgwNDIyWhcNMjUwNjA2MTgwNDIyWjAYMRYwFAYD VQQDEw02ODM5ZjMyNi1kMGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylpAiQR747Pdte6EHZzPF0wMDAihXFI+12ZGCIfD8IieDEIZL9eV8si22Lbc uh3zxLDOk0ey4DC7466n+bicpjUyHy9WZNmKd9PjmjNygMmtSTG0so+oVgKiXTcM UkbjZnqI4VrSiMtR2GvCOplLhwxNFSZkaCLNbGd7ioKabTFZLZsScXX9OW1Uhj13 N59oc5aN5o+QYSlWxXBokwD2ONof49NdEmDWTRLqCDRGsMPQLy4naYX4wSI4vsr/ WQKhn8Dw6Peqpw/wlNrxE2zTibuklLk1XmP0mI9pRLc11VQjgpCCfya8+OsKkZsq bE0LXQpdPZrzL1b3tr2H5rwoAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjMK3G1 cVVYkBNT4A8nR6KlQU38MB8GA1UdIwQYMBaAFJ35TDPT9keuPZE2Hh8XLCBob1mJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCNC83MDlGN0EyNkI4 MjkxMUU5OTM3MzhBMDlDNEY5QUUwMi9uZmxNTTlQMlI2NDlrVFllSHhjc0lHaHZX WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25mbE1NOVAyUjY0OWtUWWVIeGNzSUdodldZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCNC83MDlGN0EyNkI4MjkxMUU5OTM3MzhBMDlDNEY5QUUwMi9uZmxNTTlQMlI2 NDlrVFllSHhjc0lHaHZXWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/a2dzJ1NQC5WS80OFmwdbAn2AirLsgZYVIB3FFrBUhZ2b8cV4at7A +LCQn+qfjlENka6r50w9WYYtDxyojqVOZ1dR/HaNmYa0wyLxocOQnTDZlxHWcSUC rVN3/wkIXKXeaznFHnMzlVXO5jiJzGae+nxb2+dkh0MiT7RAitjeop2tZz4JWDRx HUaBcJJpyWcGb62WEWIwfKocDOBdqhQi0tcZ+AJ+qefqqzOjSO9jc9PttbVyQX2m fnDAWxHWcxecJiKR7oZnkc83302Qn5uBu71lKJPkIqJOwsgftUt94eeIlYHubVf5 uGWiIB7x8MHoQfOy89q0GxRRBupiWH/M -----END CERTIFICATE-----Generated at Sat May 31 17:24:43 2025 by rpki-client