$ rpki-client -vvf rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft File: nlcX9fFLsp9ntXrX2dXweRWunEM.mft (raw, json) Hash identifier: TOXSpPyZJ6s1T8Mr1Ohn4Avgh0LhzhzdA8f7WA+xO9Y= Subject key identifier: 35:00:89:35:CC:33:DF:8D:DE:66:21:70:B9:1B:D9:A1:EC:AE:64:29 Authority key identifier: 9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 Certificate issuer: /CN=A914E01E/serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Certificate serial: 0395 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft Manifest number: 0391 Signing time: Sat 31 May 2025 00:59:36 +0000 Manifest this update: Sat 31 May 2025 00:59:35 +0000 Manifest next update: Sat 07 Jun 2025 00:59:35 +0000 Files and hashes: 1: nlcX9fFLsp9ntXrX2dXweRWunEM.crl (hash: LVo3p4988KAj7B7LIRnIiR1jDvItH6jqW3slRuGPenI=) 2: B775BD7A9EA911EC95EBD87CC4F9AE02.roa (hash: 92HIEbj2G47MSTH5iEgpWYXExI9zDOC82XtCwVyLKgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 917 (0x395) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E01E, serialNumber=9E5717F5F14BB29F67B57AD7D9D5F07915AE9C43 Validity Not Before: May 31 00:59:35 2025 GMT Not After : Jun 7 00:59:35 2025 GMT Subject: CN=683a5477-6dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8d:5a:4f:9b:de:96:dc:8e:31:2f:32:40:94: 32:78:99:b0:fa:60:e3:28:55:b4:05:7d:fb:26:24: 00:68:9b:20:aa:bf:f0:89:aa:c7:db:23:07:a6:d9: c8:53:43:a7:ed:f7:de:21:e2:0e:4b:b8:a3:5d:cf: 6e:6d:22:bb:6e:b8:6e:c5:8c:83:93:63:ef:44:35: 59:c1:ea:e8:6e:ab:23:6a:93:71:1c:c1:2d:2c:07: 1a:63:69:24:a3:f9:bf:ac:4a:aa:4f:d5:56:3a:f7: e3:e5:d2:7c:38:0c:7c:f2:79:eb:70:5c:3a:a2:7f: 05:71:82:3b:d9:4b:ad:b4:c2:59:2e:c7:99:f0:28: 5d:84:7e:4c:87:fa:84:e5:54:d2:30:ab:3d:6d:fa: 39:c7:65:0b:24:61:d4:55:1c:b1:3b:9c:fa:b0:89: 55:e1:22:20:70:c7:a0:c4:36:84:97:7e:f4:98:a5: 45:95:47:56:c5:43:3e:82:bc:cf:50:dc:11:b7:17: 67:83:c0:05:29:74:c6:27:08:ee:e8:64:9b:90:14: 38:46:91:79:af:e1:16:36:43:2a:4c:f0:e9:ef:0a: a2:72:e1:03:f6:e6:c8:0c:ec:ef:31:88:5a:82:da: 13:2e:6c:01:8a:fb:50:fe:d6:ed:50:c2:35:09:10: 7c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:00:89:35:CC:33:DF:8D:DE:66:21:70:B9:1B:D9:A1:EC:AE:64:29 X509v3 Authority Key Identifier: keyid:9E:57:17:F5:F1:4B:B2:9F:67:B5:7A:D7:D9:D5:F0:79:15:AE:9C:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlcX9fFLsp9ntXrX2dXweRWunEM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E01E/C5C6F05E9EA611EC8FB03654C4F9AE02/nlcX9fFLsp9ntXrX2dXweRWunEM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:ad:e4:49:5d:00:56:0a:52:4c:d7:bb:5d:57:c0:10:e4:d6: 77:93:8a:d2:23:29:01:9f:76:3b:4d:bb:ac:b1:36:db:99:78: 29:42:b9:be:47:f8:84:8c:58:48:95:3e:f1:f9:8f:d8:0d:12: 1e:fc:be:1f:cc:83:ff:9a:c9:34:19:4d:39:bd:8b:ed:2a:72: 11:4d:0b:69:5c:84:b5:e4:c4:8c:c8:76:02:a6:ea:70:a2:bf: 13:55:6e:0f:56:97:10:20:cf:4d:b1:fa:a5:40:fe:8f:f3:c2: c6:18:f5:db:dc:47:58:8e:11:32:3a:b3:b5:b5:5f:1f:34:92: a2:35:99:66:dc:55:d4:33:db:b0:20:cf:d5:82:f3:e3:0f:83: 14:15:bb:1a:e0:5d:01:f9:29:16:bb:fc:ed:6e:a3:79:05:0d: d6:0c:1e:3d:e8:a5:c5:d3:13:7e:9d:97:3b:80:bb:8a:72:3f: a2:f6:19:84:71:2c:99:f7:86:62:83:50:5e:3f:e3:8a:6f:da: bf:b4:49:bc:c0:53:18:73:8d:2e:44:71:ef:44:ed:f3:e4:34: 23:9f:f2:5f:19:22:43:2e:56:fa:0f:5c:b4:f0:8f:f1:ab:a6: 3b:f1:59:aa:24:ef:36:1c:5a:a1:f0:22:d7:b0:d8:32:3a:58: b2:d3:65:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMUUxMTAvBgNVBAUTKDlFNTcxN0Y1RjE0QkIyOUY2N0I1N0FEN0Q5RDVGMDc5 MTVBRTlDNDMwHhcNMjUwNTMxMDA1OTM1WhcNMjUwNjA3MDA1OTM1WjAYMRYwFAYD VQQDEw02ODNhNTQ3Ny02ZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Y1aT5veltyOMS8yQJQyeJmw+mDjKFW0BX37JiQAaJsgqr/wiarH2yMHptnI U0On7ffeIeIOS7ijXc9ubSK7brhuxYyDk2PvRDVZwerobqsjapNxHMEtLAcaY2kk o/m/rEqqT9VWOvfj5dJ8OAx88nnrcFw6on8FcYI72UuttMJZLseZ8ChdhH5Mh/qE 5VTSMKs9bfo5x2ULJGHUVRyxO5z6sIlV4SIgcMegxDaEl370mKVFlUdWxUM+grzP UNwRtxdng8AFKXTGJwju6GSbkBQ4RpF5r+EWNkMqTPDp7wqicuED9ubIDOzvMYha gtoTLmwBivtQ/tbtUMI1CRB80wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUAiTXM M9+N3mYhcLkb2aHsrmQpMB8GA1UdIwQYMBaAFJ5XF/XxS7KfZ7V619nV8HkVrpxD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAxRS9DNUM2RjA1RTlF QTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNwOW50WHJYMmRYd2VSV3Vu RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sY1g5ZkZMc3A5bnRYclgyZFh3ZVJXdW5FTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTAxRS9DNUM2RjA1RTlFQTYxMUVDOEZCMDM2NTRDNEY5QUUwMi9ubGNYOWZGTHNw OW50WHJYMmRYd2VSV3VuRU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7reRJXQBWClJM17tdV8AQ5NZ3k4rSIykBn3Y7TbussTbbmXgpQrm+ R/iEjFhIlT7x+Y/YDRIe/L4fzIP/msk0GU05vYvtKnIRTQtpXIS15MSMyHYCpupw or8TVW4PVpcQIM9NsfqlQP6P88LGGPXb3EdYjhEyOrO1tV8fNJKiNZlm3FXUM9uw IM/VgvPjD4MUFbsa4F0B+SkWu/ztbqN5BQ3WDB496KXF0xN+nZc7gLuKcj+i9hmE cSyZ94Zig1BeP+OKb9q/tEm8wFMYc40uRHHvRO3z5DQjn/JfGSJDLlb6D1y08I/x q6Y78VmqJO82HFqh8CLXsNgyOliy02Wt -----END CERTIFICATE-----Generated at Sat May 31 17:12:52 2025 by rpki-client