$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft File: NxkwlLzz42Ui-tvxlU7l_51gHg4.mft (raw, json) Hash identifier: lkP2nPvR99NTh880aH4Jd1qLUDL++NY8BaEyniXbvZY= Subject key identifier: CA:5A:3B:E1:AC:52:30:5F:65:CB:60:D4:17:F9:21:2E:6B:23:A9:DF Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 0640 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft Manifest number: 063A Signing time: Fri 30 May 2025 22:52:46 +0000 Manifest this update: Fri 30 May 2025 22:52:45 +0000 Manifest next update: Fri 06 Jun 2025 22:52:45 +0000 Files and hashes: 1: NxkwlLzz42Ui-tvxlU7l_51gHg4.crl (hash: yRY592WyEbr0WmCPzbvv+taX2OXV26uG+y+PTC0SRN4=) 2: 3A00D342928511EB8B3AAC22C4F9AE02.roa (hash: aj64AT3Eg74eRiHek2DyIpF1DXkedRqzt0byGVydNm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1600 (0x640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: May 30 22:52:45 2025 GMT Not After : Jun 6 22:52:45 2025 GMT Subject: CN=683a36bd-4500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0b:2d:55:71:8c:3f:d8:6e:ef:33:ca:6e:39: 31:d5:ac:58:76:49:10:36:83:e6:9a:a3:82:a8:fa: dd:6b:09:af:ae:9a:90:2a:9e:f1:cb:07:29:e4:4c: a8:d1:7f:34:8f:ff:ab:52:65:ef:07:c0:5b:3e:d1: 0e:81:4f:6d:a4:f0:8a:5c:78:77:45:1a:ad:c7:10: d0:10:dd:75:96:4d:a0:b4:63:87:00:f8:85:fb:44: 2f:3f:fb:8f:df:bc:16:64:99:0d:a9:a8:8d:ef:f2: d3:37:80:67:96:33:33:37:35:f9:37:87:77:c8:7b: b9:98:52:8f:62:ad:f7:5a:8e:ef:3a:a1:b6:b6:16: 50:6d:79:d6:64:7f:8f:18:82:94:7e:67:e8:fa:9c: f3:12:be:a8:ca:ea:a2:cb:ef:1f:72:95:01:ef:04: ac:b7:8d:22:8e:54:1a:83:81:d6:9c:a5:af:d9:f6: 02:62:fa:98:47:ee:6e:74:30:55:dc:0e:66:f4:73: 9a:cf:f3:d9:48:c9:62:1a:60:5a:8b:f0:49:3f:61: 8b:ae:7d:73:85:34:dd:26:de:dd:c6:44:2d:ee:80: 74:44:ef:e2:80:16:aa:86:4d:a0:0e:e5:52:51:ce: 10:04:e2:74:96:99:44:8b:7d:98:e1:4a:5d:a3:53: d1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5A:3B:E1:AC:52:30:5F:65:CB:60:D4:17:F9:21:2E:6B:23:A9:DF X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:d1:1a:49:8e:7a:a1:33:6f:13:63:ca:4f:3e:43:d1:83:53: eb:e0:b8:a8:f1:a2:42:12:51:85:68:6f:51:53:40:58:f4:fe: e1:10:12:67:a9:8d:fa:b8:a5:b9:bc:67:51:26:b2:1f:ca:f5: 7b:45:32:ed:e0:49:9c:35:0f:50:d0:38:a3:a0:36:87:fe:ec: aa:84:7e:54:26:f7:92:39:63:41:a9:fd:7f:f5:d1:8b:c4:f7: 80:b4:ff:7e:1e:b2:45:4d:a7:7e:54:07:c0:7e:e0:cd:5b:26: 49:dc:e9:bd:60:ab:1a:b1:b3:2c:cc:14:8b:72:b2:57:20:3d: c1:a9:31:f1:80:b2:ed:77:d7:07:87:80:b1:bd:26:f6:6b:ce: b9:ec:de:07:44:88:15:85:bb:b8:7b:9f:ac:f5:d5:ca:91:51: d8:00:27:4d:ea:f2:48:6b:e2:24:15:75:95:27:4a:60:ce:48: 7d:f3:2c:5e:34:9c:f9:c7:f4:ed:bf:7c:21:5b:7a:fc:e3:0c: 34:6d:0e:93:3b:d3:e5:dd:40:3a:78:9f:57:9f:fb:9b:21:07: 74:ef:66:37:0f:9f:87:d0:34:54:d1:53:c0:02:bd:52:de:cb: 33:f8:ca:7a:54:38:0c:d6:aa:4a:34:6c:e3:1b:ce:89:73:2c: bf:a9:56:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjUwNTMwMjI1MjQ1WhcNMjUwNjA2MjI1MjQ1WjAYMRYwFAYD VQQDEw02ODNhMzZiZC00NTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwstVXGMP9hu7zPKbjkx1axYdkkQNoPmmqOCqPrdawmvrpqQKp7xywcp5Eyo 0X80j/+rUmXvB8BbPtEOgU9tpPCKXHh3RRqtxxDQEN11lk2gtGOHAPiF+0QvP/uP 37wWZJkNqaiN7/LTN4BnljMzNzX5N4d3yHu5mFKPYq33Wo7vOqG2thZQbXnWZH+P GIKUfmfo+pzzEr6oyuqiy+8fcpUB7wSst40ijlQag4HWnKWv2fYCYvqYR+5udDBV 3A5m9HOaz/PZSMliGmBai/BJP2GLrn1zhTTdJt7dxkQt7oB0RO/igBaqhk2gDuVS Uc4QBOJ0lplEi32Y4Updo1PRFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpaO+Gs UjBfZctg1Bf5IS5rI6nfMB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDI4NS82RjE1QjU3MjkyODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQy VWktdHZ4bFU3bF81MWdIZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX0RpJjnqhM28TY8pPPkPRg1Pr4Lio8aJCElGFaG9RU0BY9P7hEBJn qY36uKW5vGdRJrIfyvV7RTLt4EmcNQ9Q0DijoDaH/uyqhH5UJveSOWNBqf1/9dGL xPeAtP9+HrJFTad+VAfAfuDNWyZJ3Om9YKsasbMszBSLcrJXID3BqTHxgLLtd9cH h4CxvSb2a8657N4HRIgVhbu4e5+s9dXKkVHYACdN6vJIa+IkFXWVJ0pgzkh98yxe NJz5x/Ttv3whW3r84ww0bQ6TO9Pl3UA6eJ9Xn/ubIQd072Y3D5+H0DRU0VPAAr1S 3ssz+Mp6VDgM1qpKNGzjG86Jcyy/qVar -----END CERTIFICATE-----Generated at Sat May 31 17:53:08 2025 by rpki-client