$ rpki-client -vvf rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft File: NEp3XiRcztCAx5UhWW4yyPBtiMg.mft (raw, json) Hash identifier: CmLXwu9e43wlwC986U14S3l7ZCZGwDVB774XITlSW50= Subject key identifier: E9:FD:04:EA:7E:68:71:08:91:11:FA:E8:3B:85:30:A7:87:ED:0B:40 Authority key identifier: 34:4A:77:5E:24:5C:CE:D0:80:C7:95:21:59:6E:32:C8:F0:6D:88:C8 Certificate issuer: /CN=A915517D/serialNumber=344A775E245CCED080C79521596E32C8F06D88C8 Certificate serial: 17A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft Manifest number: 178E Signing time: Fri 30 May 2025 16:46:35 +0000 Manifest this update: Fri 30 May 2025 16:46:34 +0000 Manifest next update: Fri 06 Jun 2025 16:46:34 +0000 Files and hashes: 1: NEp3XiRcztCAx5UhWW4yyPBtiMg.crl (hash: X0MCgypN9SmryVBzsPZsg4HfuDPTKH6wgMk93AfycVQ=) 2: 2F840DD2740911EDA7146F2DC4F9AE02.roa (hash: PKyy2enQZwJAPAGB65CItDAb1Yve/y7L5I1YK7Ph1yU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.crl rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6051 (0x17a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915517D, serialNumber=344A775E245CCED080C79521596E32C8F06D88C8 Validity Not Before: May 30 16:46:34 2025 GMT Not After : Jun 6 16:46:34 2025 GMT Subject: CN=6839e0ea-3477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:87:cb:23:cf:6e:e7:23:06:e1:c2:b8:e0:f9: 24:cc:45:7e:4c:55:d0:a2:b9:d7:fe:af:17:ab:ad: a8:3e:29:d7:e7:e4:e6:a0:27:bd:62:89:1c:64:0b: 6d:48:4c:d1:5a:4c:c4:ce:10:b7:43:32:55:c7:16: 6a:0f:2f:66:8e:a9:19:47:b9:15:80:42:d7:4e:88: 5a:f5:0b:82:90:9c:b6:c4:c9:8b:a4:5b:53:63:7e: d0:25:59:20:53:85:68:5d:43:ec:fa:9a:fe:b6:7c: a2:b9:24:6f:88:a3:42:b4:c2:b3:a9:b6:8b:bb:94: e3:38:be:c5:4d:e9:b1:74:72:af:ef:4d:61:c7:de: 82:6b:0a:d3:a2:4a:5b:15:f7:a9:c8:26:05:e8:56: 94:ca:81:e5:46:1c:df:7d:78:ba:cd:84:2a:d0:20: af:c7:17:18:85:dc:e0:3b:04:7c:1f:e2:e7:de:b1: 7c:31:27:37:23:e2:2d:6a:e9:f3:63:78:d9:6f:0e: 07:4b:f3:a2:40:8d:8e:aa:a9:05:c5:5b:ad:ec:f0: bd:fa:04:b5:4a:7f:36:c1:38:b9:1f:97:85:2c:57: 42:76:5c:4f:da:1b:bd:c9:df:b7:08:3d:34:d3:ba: 64:5b:6e:38:4f:2a:29:85:29:80:39:af:02:f3:cc: c7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FD:04:EA:7E:68:71:08:91:11:FA:E8:3B:85:30:A7:87:ED:0B:40 X509v3 Authority Key Identifier: keyid:34:4A:77:5E:24:5C:CE:D0:80:C7:95:21:59:6E:32:C8:F0:6D:88:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:70:aa:56:09:ae:1a:00:39:cd:90:07:8d:f6:08:05:b0:5c: 37:da:fb:f9:b2:26:ca:86:20:32:4c:ef:25:45:65:bd:23:98: d9:94:75:f3:0b:e2:ed:e7:d8:8d:17:7a:bd:a4:cc:37:f4:08: f9:1d:af:1a:9a:ad:e1:bc:fd:38:67:b8:20:31:27:63:07:5f: 97:3a:7a:fc:e2:88:be:ba:ee:e5:ea:97:9c:55:30:a4:55:b4: ff:3e:44:72:d7:70:90:96:f3:66:95:43:85:20:dc:d1:21:86: 34:27:2a:f8:96:54:8d:be:24:b1:c0:d9:db:09:fe:07:d9:d1: 55:b2:0e:8c:5f:f9:d8:a5:1f:0c:aa:df:07:e8:ac:44:dd:5d: 29:29:27:12:11:c8:07:ca:67:61:8b:19:4a:8a:5a:8c:75:69: 43:ef:db:21:f2:2b:e1:fc:10:48:9a:27:ad:fc:f5:c5:6e:f5: d9:10:6f:14:1a:36:ce:e8:34:29:3a:50:b6:a7:f1:cc:89:7c: 29:e7:03:11:85:01:70:fd:43:6b:98:7b:1a:bd:d6:0a:48:7b: ed:8b:18:13:97:fc:48:0c:3a:ec:9d:e7:a3:12:82:d9:b1:cd: 99:02:04:54:b6:bf:e0:ea:94:c3:61:26:23:91:14:25:4d:e2: ec:d2:8f:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxN0QxMTAvBgNVBAUTKDM0NEE3NzVFMjQ1Q0NFRDA4MEM3OTUyMTU5NkUzMkM4 RjA2RDg4QzgwHhcNMjUwNTMwMTY0NjM0WhcNMjUwNjA2MTY0NjM0WjAYMRYwFAYD VQQDEw02ODM5ZTBlYS0zNDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYfLI89u5yMG4cK44PkkzEV+TFXQornX/q8Xq62oPinX5+TmoCe9YokcZAtt SEzRWkzEzhC3QzJVxxZqDy9mjqkZR7kVgELXToha9QuCkJy2xMmLpFtTY37QJVkg U4VoXUPs+pr+tnyiuSRviKNCtMKzqbaLu5TjOL7FTemxdHKv701hx96CawrTokpb FfepyCYF6FaUyoHlRhzffXi6zYQq0CCvxxcYhdzgOwR8H+Ln3rF8MSc3I+Itaunz Y3jZbw4HS/OiQI2OqqkFxVut7PC9+gS1Sn82wTi5H5eFLFdCdlxP2hu9yd+3CD00 07pkW244TyophSmAOa8C88zHGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOn9BOp+ aHEIkRH66DuFMKeH7QtAMB8GA1UdIwQYMBaAFDRKd14kXM7QgMeVIVluMsjwbYjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTE3RC8zRDdBNjI4NkNG NTYxMUU3QkY2OTU1MTBDNEY5QUUwMi9ORXAzWGlSY3p0Q0F4NVVoV1c0eXlQQnRp TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05FcDNYaVJjenRDQXg1VWhXVzR5eVBCdGlNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTE3RC8zRDdBNjI4NkNGNTYxMUU3QkY2OTU1MTBDNEY5QUUwMi9ORXAzWGlSY3p0 Q0F4NVVoV1c0eXlQQnRpTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCccKpWCa4aADnNkAeN9ggFsFw32vv5sibKhiAyTO8lRWW9I5jZlHXz C+Lt59iNF3q9pMw39Aj5Ha8amq3hvP04Z7ggMSdjB1+XOnr84oi+uu7l6pecVTCk VbT/PkRy13CQlvNmlUOFINzRIYY0Jyr4llSNviSxwNnbCf4H2dFVsg6MX/nYpR8M qt8H6KxE3V0pKScSEcgHymdhixlKilqMdWlD79sh8ivh/BBImiet/PXFbvXZEG8U GjbO6DQpOlC2p/HMiXwp5wMRhQFw/UNrmHsavdYKSHvtixgTl/xIDDrsneejEoLZ sc2ZAgRUtr/g6pTDYSYjkRQlTeLs0o+7 -----END CERTIFICATE-----Generated at Sat May 31 17:20:35 2025 by rpki-client