$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft File: NU4yud4OVpoZUal7kyAZ9oijUKw.mft (raw, json) Hash identifier: RjD3sMkjlObrQzw18rh5rCEhtyQgL9oOjfBdO8aMryg= Subject key identifier: EA:8A:DF:ED:28:69:1E:92:40:56:E7:DC:88:53:8E:74:7A:E5:B2:1A Authority key identifier: 35:4E:32:B9:DE:0E:56:9A:19:51:A9:7B:93:20:19:F6:88:A3:50:AC Certificate issuer: /CN=A912442A/serialNumber=354E32B9DE0E569A1951A97B932019F688A350AC Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft Manifest number: 10 Signing time: Sat 19 Jul 2025 01:42:52 +0000 Manifest this update: Sat 19 Jul 2025 01:42:51 +0000 Manifest next update: Sat 26 Jul 2025 01:42:51 +0000 Files and hashes: 1: NU4yud4OVpoZUal7kyAZ9oijUKw.crl (hash: 4H9SxHLw0D+GanRA6bhDEKLinz198iKm/udl0pLJ8iA=) 2: 19D89DB656F311F083F53B5DC4F9AE02.roa (hash: Krc4hrUxizB7HZBQVnd3e8NynO1iw8BpxC+SzV7uUy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.crl rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A, serialNumber=354E32B9DE0E569A1951A97B932019F688A350AC Validity Not Before: Jul 19 01:42:51 2025 GMT Not After : Jul 26 01:42:51 2025 GMT Subject: CN=687af81c-0941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:58:31:67:c1:6e:f7:a5:d3:34:53:06:53:4c: 46:47:96:53:54:de:14:ab:b8:ac:91:d3:1b:ce:5b: e6:0a:fb:81:3d:9a:55:d0:d8:08:10:f6:5a:ed:cc: 60:50:72:d6:f3:e2:31:93:5c:8d:b0:de:45:1e:cb: b6:5e:6e:df:89:1a:3d:8e:ca:1b:ef:dc:6e:3d:66: d0:e4:fb:c3:6f:2b:de:9f:ab:a8:93:d7:54:1f:8f: df:c1:40:1b:7f:ba:59:9e:4f:ea:44:68:0a:d1:29: 82:a0:6f:26:48:b7:7c:5f:dc:55:2a:b8:75:cd:ca: 68:9b:90:2e:e4:1c:f9:2b:c2:c7:46:ca:e0:93:16: c3:43:10:e2:26:80:b2:3a:54:2b:c8:55:fe:76:af: c0:c5:44:d8:b8:aa:7b:c6:be:72:ad:fe:6a:97:e3: c6:35:73:75:4e:f0:ae:88:c4:76:62:92:8e:20:5b: 29:1b:9d:aa:65:ce:2a:46:f7:a2:6e:3d:d7:92:70: f2:bd:10:34:e5:71:b1:98:af:db:0a:35:20:2e:e6: 0c:00:c4:c1:1e:4d:cd:d0:0f:cb:54:c9:4a:49:90: 3c:b9:cb:82:4e:12:2f:0f:2a:45:7b:8a:d5:c1:31: b6:5f:b7:49:4b:ed:6e:3b:89:82:74:20:6e:7a:60: 9b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8A:DF:ED:28:69:1E:92:40:56:E7:DC:88:53:8E:74:7A:E5:B2:1A X509v3 Authority Key Identifier: keyid:35:4E:32:B9:DE:0E:56:9A:19:51:A9:7B:93:20:19:F6:88:A3:50:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NU4yud4OVpoZUal7kyAZ9oijUKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/55EBB8584E3B11F09C125547C4F9AE02/NU4yud4OVpoZUal7kyAZ9oijUKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:5f:1a:6d:79:99:ab:09:cc:23:2b:a3:b9:fd:ed:bf:4d:8b: 0d:a6:e6:c0:80:3b:d9:df:d2:33:71:ae:70:7e:ec:f9:2e:04: 93:80:35:d1:03:91:bb:f3:a4:de:dd:d6:d4:09:3f:26:ed:f5: c3:e0:1c:9a:e5:3c:85:33:c3:ba:cc:a4:ea:da:16:e8:77:c6: bd:ef:72:e1:f2:6f:84:c8:d3:ba:43:d4:10:cb:29:a3:27:86: 4c:ce:73:61:8c:b3:38:a3:34:f1:ff:30:1d:d3:9e:a0:7e:f8: af:76:ee:d4:b7:ba:b0:25:b5:a9:75:a2:68:99:29:50:d4:63: 82:82:be:00:cf:25:81:8e:50:f2:9a:8f:5e:f6:10:ee:0a:d2: e6:27:87:95:f3:67:ae:77:9f:03:07:de:2e:e2:88:c9:cd:4a: a6:ca:26:66:de:13:b1:79:cb:ac:6e:f4:c6:d2:45:46:c6:53: 7c:56:ee:b8:44:22:00:b8:5c:1a:ee:81:65:97:19:e0:22:bf: 94:b6:a6:d7:7d:3a:84:41:be:b0:ac:ee:52:fb:29:ea:6d:ed: d7:fc:6d:df:8c:89:b3:c3:9c:12:ec:46:13:35:ce:ca:d9:55: f6:80:db:27:bb:96:48:af:5b:86:8c:d2:9f:06:53:8e:e1:86: b9:66:81:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDQyQTExMC8GA1UEBRMoMzU0RTMyQjlERTBFNTY5QTE5NTFBOTdCOTMyMDE5RjY4 OEEzNTBBQzAeFw0yNTA3MTkwMTQyNTFaFw0yNTA3MjYwMTQyNTFaMBgxFjAUBgNV BAMTDTY4N2FmODFjLTA5NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFWDFnwW73pdM0UwZTTEZHllNU3hSruKyR0xvOW+YK+4E9mlXQ2AgQ9lrtzGBQ ctbz4jGTXI2w3kUey7Zebt+JGj2Oyhvv3G49ZtDk+8NvK96fq6iT11Qfj9/BQBt/ ulmeT+pEaArRKYKgbyZIt3xf3FUquHXNymibkC7kHPkrwsdGyuCTFsNDEOImgLI6 VCvIVf52r8DFRNi4qnvGvnKt/mqX48Y1c3VO8K6IxHZiko4gWykbnaplzipG96Ju PdeScPK9EDTlcbGYr9sKNSAu5gwAxMEeTc3QD8tUyUpJkDy5y4JOEi8PKkV7itXB MbZft0lL7W47iYJ0IG56YJsxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6orf7Shp HpJAVufciFOOdHrlshowHwYDVR0jBBgwFoAUNU4yud4OVpoZUal7kyAZ9oijUKww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0NDJBLzU1RUJCODU4NEUz QjExRjA5QzEyNTU0N0M0RjlBRTAyL05VNHl1ZDRPVnBvWlVhbDdreUFaOW9palVL dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTlU0eXVkNE9WcG9aVWFsN2t5QVo5b2lqVUt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 NDJBLzU1RUJCODU4NEUzQjExRjA5QzEyNTU0N0M0RjlBRTAyL05VNHl1ZDRPVnBv WlVhbDdreUFaOW9palVLdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKJfGm15masJzCMro7n97b9Niw2m5sCAO9nf0jNxrnB+7PkuBJOANdED kbvzpN7d1tQJPybt9cPgHJrlPIUzw7rMpOraFuh3xr3vcuHyb4TI07pD1BDLKaMn hkzOc2GMszijNPH/MB3TnqB++K927tS3urAltal1omiZKVDUY4KCvgDPJYGOUPKa j172EO4K0uYnh5XzZ653nwMH3i7iiMnNSqbKJmbeE7F5y6xu9MbSRUbGU3xW7rhE IgC4XBrugWWXGeAiv5S2ptd9OoRBvrCs7lL7Kept7df8bd+MibPDnBLsRhM1zsrZ VfaA2ye7lkivW4aM0p8GU47hhrlmgSg= -----END CERTIFICATE-----Generated at Mon Jul 21 00:32:08 2025 by rpki-client