$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: E+wKDf0r+qwQR0OM4zp6JxVQApwnoMR+uqB1HKeVDC8= Subject key identifier: 2B:54:7E:59:A7:82:D5:71:8A:98:95:70:E5:52:46:AD:09:05:B7:18 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 074C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 0745 Signing time: Fri 30 May 2025 21:55:46 +0000 Manifest this update: Fri 30 May 2025 21:55:45 +0000 Manifest next update: Fri 06 Jun 2025 21:55:45 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: i1ZbT+7tnfdOGsrp9TJ75mAAWmegdSE//NEjiZcegBs=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: jIN2PY6GWYE7IvHCsXUW4P6OWa+fFCSoJx89CCKLLFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: May 30 21:55:45 2025 GMT Not After : Jun 6 21:55:45 2025 GMT Subject: CN=683a2961-e8ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e8:ba:d1:7f:d5:99:64:de:a2:a6:5b:75:49: 16:50:31:12:88:3a:db:b5:ec:7e:2f:8f:bb:03:85: 96:f8:22:87:e9:0f:36:d9:6e:1d:55:65:58:83:9b: ed:88:fd:46:ae:93:6d:84:46:34:9e:9a:bd:68:d3: ad:0e:34:c8:1f:ea:4f:96:5e:84:ec:44:bf:65:d9: ba:a1:d0:5c:6e:b4:a8:63:7d:28:8c:f8:10:7f:0d: c9:d6:48:a2:00:e3:26:8d:63:c6:b5:30:69:56:45: 07:05:41:47:7f:0f:39:39:47:c6:ce:c2:cb:dc:c9: ed:f6:31:c7:af:06:23:fa:6b:9a:34:40:06:2d:47: b2:94:04:4f:46:5f:ce:ec:a9:ae:8c:1b:1b:00:94: 70:1c:5a:6d:f6:b7:b5:a0:d6:48:b4:95:0c:1c:46: 83:1c:71:d5:24:42:4f:0e:45:2a:34:a2:d5:c9:9b: a1:8b:94:ce:63:9b:61:50:90:7a:57:00:34:31:54: 61:0c:c2:ce:a2:b7:79:61:c8:e8:2f:4b:ae:c3:a6: 53:f8:33:72:ab:0f:ce:83:2d:e2:7c:c8:05:1b:b1: 55:81:20:b0:a0:1c:2b:66:6a:cc:6e:20:c9:1c:0d: af:1a:f4:01:05:6e:6d:13:79:ba:fb:32:f7:50:ea: 01:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:54:7E:59:A7:82:D5:71:8A:98:95:70:E5:52:46:AD:09:05:B7:18 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:33:62:2e:4c:74:c7:a9:90:fa:76:a9:4e:a2:6a:dc:c8:ae: d5:cf:cd:85:75:67:21:f1:27:7b:ef:cc:11:09:b3:67:4b:ff: 6f:84:f1:fc:d3:6d:67:40:46:67:72:04:1f:e7:02:8f:7d:26: c0:42:5d:2b:20:3f:ef:05:a1:d2:37:ae:c7:f2:4b:d6:7e:29: a3:51:39:9b:a0:83:6f:f6:e3:73:da:57:92:6d:35:04:25:f2: 33:9c:2a:ec:ac:de:87:5c:ab:f8:78:c1:56:31:a5:d5:6c:f4: 9c:3a:3f:74:91:b7:a9:ce:bf:e7:43:2e:85:38:c7:10:b9:5a: 05:c6:c6:34:ab:90:dd:5e:73:e2:55:0d:09:d2:f0:48:2c:c8: 7d:50:20:9a:b7:17:25:bc:85:d8:0f:eb:76:1d:fe:53:5d:a7: 88:dc:cc:72:4d:ca:4c:09:78:6e:96:ec:96:c7:8b:ee:40:1f: b0:58:61:0b:49:27:ce:b5:1f:58:fb:51:04:d7:6c:24:63:a9: bf:09:2c:79:92:ea:3c:6e:ca:53:3f:a6:75:82:44:ac:31:18: 09:b5:09:3b:03:cc:75:af:47:4c:c0:91:3d:5f:80:60:f8:bf: b7:08:c2:c8:3d:b7:bd:65:a0:e2:49:d9:65:cc:f8:dc:22:bc: 05:25:7f:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUwNTMwMjE1NTQ1WhcNMjUwNjA2MjE1NTQ1WjAYMRYwFAYD VQQDEw02ODNhMjk2MS1lOGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApei60X/VmWTeoqZbdUkWUDESiDrbtex+L4+7A4WW+CKH6Q822W4dVWVYg5vt iP1GrpNthEY0npq9aNOtDjTIH+pPll6E7ES/Zdm6odBcbrSoY30ojPgQfw3J1kii AOMmjWPGtTBpVkUHBUFHfw85OUfGzsLL3Mnt9jHHrwYj+muaNEAGLUeylARPRl/O 7KmujBsbAJRwHFpt9re1oNZItJUMHEaDHHHVJEJPDkUqNKLVyZuhi5TOY5thUJB6 VwA0MVRhDMLOord5YcjoL0uuw6ZT+DNyqw/Ogy3ifMgFG7FVgSCwoBwrZmrMbiDJ HA2vGvQBBW5tE3m6+zL3UOoBhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtUflmn gtVxipiVcOVSRq0JBbcYMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKM2IuTHTHqZD6dqlOomrcyK7Vz82FdWch8Sd778wRCbNnS/9vhPH8 021nQEZncgQf5wKPfSbAQl0rID/vBaHSN67H8kvWfimjUTmboINv9uNz2leSbTUE JfIznCrsrN6HXKv4eMFWMaXVbPScOj90kbepzr/nQy6FOMcQuVoFxsY0q5DdXnPi VQ0J0vBILMh9UCCatxclvIXYD+t2Hf5TXaeI3MxyTcpMCXhuluyWx4vuQB+wWGEL SSfOtR9Y+1EE12wkY6m/CSx5kuo8bspTP6Z1gkSsMRgJtQk7A8x1r0dMwJE9X4Bg +L+3CMLIPbe9ZaDiSdllzPjcIrwFJX/q -----END CERTIFICATE-----Generated at Sat May 31 17:11:24 2025 by rpki-client