$ rpki-client -vvf rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft File: NtqOcqrHflUzc5DvTGHJVAtFldc.mft (raw, json) Hash identifier: +pC/M5ykHUD6Ytr5gPbPoBldTiUvOj8aE4hllSnebR4= Subject key identifier: 37:BA:F0:3D:F2:EC:F9:24:7B:F6:74:0E:4D:EE:85:0D:F6:DD:DF:63 Authority key identifier: 36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 Certificate issuer: /CN=A91577A2/serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Certificate serial: 0A19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft Manifest number: 0A03 Signing time: Fri 06 Jun 2025 19:56:55 +0000 Manifest this update: Fri 06 Jun 2025 19:56:55 +0000 Manifest next update: Fri 13 Jun 2025 19:56:55 +0000 Files and hashes: 1: NtqOcqrHflUzc5DvTGHJVAtFldc.crl (hash: jUuEAJgWuty1BrfPWTKoQbGQ4KLRLI/eNVXFweeaqiE=) 2: 6A23E166499211ED879F2D11C4F9AE02.roa (hash: MzXzYE5MrqHvRoe17AJmK7I+zMsNRRFLd5oWGTmAVM0=) 3: 6B5765BC499211ED879F2D11C4F9AE02.roa (hash: 9GaBS9IbS88to+9kkQ6jxibXk5BWsO+3f5H1a6SCfEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 19:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2585 (0xa19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577A2, serialNumber=36DA8E72AAC77E55337390EF4C61C9540B4595D7 Validity Not Before: Jun 6 19:56:55 2025 GMT Not After : Jun 13 19:56:55 2025 GMT Subject: CN=68434807-173f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2c:cf:c1:36:d4:c8:9e:0c:73:fd:e5:2a:27: 4c:4a:d8:fb:32:6a:f0:b4:b9:1a:71:cb:22:27:68: 12:f8:41:55:e4:5d:83:12:38:5f:9a:6c:a4:e6:ec: c4:90:7c:e7:5d:5c:b1:94:3a:2e:8f:0e:95:cd:d9: f6:eb:d0:97:9d:98:ab:a9:37:e9:1b:88:de:27:dd: fe:a8:65:15:83:9f:2f:8a:b8:0f:8d:40:1b:61:f5: 96:94:39:14:ce:ab:d2:e2:42:ad:62:a2:f8:01:42: 80:33:54:81:33:2c:cc:1a:fe:c9:c5:b9:7c:c4:19: ef:d2:e4:05:6b:55:ec:40:d1:44:27:66:5a:d4:16: de:7c:02:d1:d6:52:d8:ed:a5:fc:04:d5:4f:5d:b7: 22:e8:1c:cb:6f:63:e6:1d:01:a6:95:be:50:b6:95: 0b:f6:3e:99:58:05:07:e7:03:02:0d:cf:65:41:e3: 22:8b:d1:6a:cd:b6:62:04:ca:72:37:60:f0:cd:38: b4:76:78:ea:52:45:5b:f4:63:31:2f:0b:ab:42:a5: f3:17:78:5e:4d:6a:ec:0e:ea:00:35:63:00:48:2c: 27:e0:8d:59:32:f2:27:13:0b:b0:56:dc:68:fa:75: f9:ca:b7:dd:82:cc:50:c7:ab:72:30:a2:86:5b:7f: 8d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:BA:F0:3D:F2:EC:F9:24:7B:F6:74:0E:4D:EE:85:0D:F6:DD:DF:63 X509v3 Authority Key Identifier: keyid:36:DA:8E:72:AA:C7:7E:55:33:73:90:EF:4C:61:C9:54:0B:45:95:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NtqOcqrHflUzc5DvTGHJVAtFldc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577A2/8BC15C407B0411EA9DAAD432C4F9AE02/NtqOcqrHflUzc5DvTGHJVAtFldc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:83:9d:49:80:16:a5:77:4f:9d:4a:1a:0a:1e:4f:87:5c:3d: e0:37:ec:7b:65:0d:53:f6:64:11:fe:03:b1:2b:44:1a:66:76: 11:02:0b:15:60:ec:30:12:2a:8b:e6:a7:8d:0f:38:d7:8f:68: 81:54:09:57:c5:b5:9d:36:a7:c6:d3:9a:7c:71:f2:e5:e4:4e: 7f:ef:b6:d1:55:e7:91:11:e2:19:6f:c9:51:29:eb:46:27:ba: 4d:51:33:0f:40:1f:0b:45:2a:5a:8b:5e:ec:3f:3f:b1:a3:bb: 61:3b:81:93:2c:d6:54:0d:5a:ef:73:6f:c3:d5:8a:97:75:fa: 3c:8e:2f:37:60:7a:86:8a:93:55:e2:c6:90:5d:dd:2e:7d:a9: af:68:eb:27:8d:df:b6:82:48:41:0b:ce:3d:42:ba:72:52:f7: 7c:17:00:1b:5e:6b:05:2d:ca:db:e5:76:f4:3f:e6:31:34:ef: 11:1b:fd:68:29:02:51:e7:53:c4:92:54:65:3c:9d:38:ce:cb: 4e:66:f5:a0:72:ee:b9:98:ad:59:8a:4c:6c:70:df:02:5b:53: 1a:e9:33:11:1f:28:3a:54:fb:d5:3c:c1:3c:34:9b:7f:ec:28: d8:7b:63:b1:14:28:de:67:0f:d8:63:5d:ae:61:51:8e:fd:2c: a5:b6:47:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3QTIxMTAvBgNVBAUTKDM2REE4RTcyQUFDNzdFNTUzMzczOTBFRjRDNjFDOTU0 MEI0NTk1RDcwHhcNMjUwNjA2MTk1NjU1WhcNMjUwNjEzMTk1NjU1WjAYMRYwFAYD VQQDEw02ODQzNDgwNy0xNzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSzPwTbUyJ4Mc/3lKidMStj7MmrwtLkaccsiJ2gS+EFV5F2DEjhfmmyk5uzE kHznXVyxlDoujw6Vzdn269CXnZirqTfpG4jeJ93+qGUVg58virgPjUAbYfWWlDkU zqvS4kKtYqL4AUKAM1SBMyzMGv7Jxbl8xBnv0uQFa1XsQNFEJ2Za1BbefALR1lLY 7aX8BNVPXbci6BzLb2PmHQGmlb5QtpUL9j6ZWAUH5wMCDc9lQeMii9FqzbZiBMpy N2DwzTi0dnjqUkVb9GMxLwurQqXzF3heTWrsDuoANWMASCwn4I1ZMvInEwuwVtxo +nX5yrfdgsxQx6tyMKKGW3+NpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDe68D3y 7Pkke/Z0Dk3uhQ323d9jMB8GA1UdIwQYMBaAFDbajnKqx35VM3OQ70xhyVQLRZXX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdBMi84QkMxNUM0MDdC MDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZsVXpjNUR2VEdISlZBdEZs ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050cU9jcXJIZmxVemM1RHZUR0hKVkF0RmxkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdBMi84QkMxNUM0MDdCMDQxMUVBOURBQUQ0MzJDNEY5QUUwMi9OdHFPY3FySGZs VXpjNUR2VEdISlZBdEZsZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCug51JgBald0+dShoKHk+HXD3gN+x7ZQ1T9mQR/gOxK0QaZnYRAgsV YOwwEiqL5qeNDzjXj2iBVAlXxbWdNqfG05p8cfLl5E5/77bRVeeREeIZb8lRKetG J7pNUTMPQB8LRSpai17sPz+xo7thO4GTLNZUDVrvc2/D1YqXdfo8ji83YHqGipNV 4saQXd0ufamvaOsnjd+2gkhBC849QrpyUvd8FwAbXmsFLcrb5Xb0P+YxNO8RG/1o KQJR51PEklRlPJ04zstOZvWgcu65mK1ZikxscN8CW1Ma6TMRHyg6VPvVPME8NJt/ 7CjYe2OxFCjeZw/YY12uYVGO/SyltkeI -----END CERTIFICATE-----Generated at Sun Jun 8 13:36:30 2025 by rpki-client