$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: Ukv0kHBJ2xC/uQixw+oUvikDx4X20A78mMN7MWA/3Kw= Subject key identifier: 1E:65:D1:0D:80:4E:F8:74:75:CC:E5:64:D2:B8:82:5B:E3:76:76:4F Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 0694 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 068D Signing time: Fri 30 May 2025 22:27:45 +0000 Manifest this update: Fri 30 May 2025 22:27:44 +0000 Manifest next update: Fri 06 Jun 2025 22:27:44 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: fQmsAAghFSaHVud2gfDx4HlExt3C249XZJtCWo0XjuY=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: zKqUOk2enQVo+KwTKKBvY1Ib1LdBjKOEZObmTpDLQzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1684 (0x694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: May 30 22:27:44 2025 GMT Not After : Jun 6 22:27:44 2025 GMT Subject: CN=683a30e1-bd55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:90:d6:c3:c3:cf:75:e1:a0:ec:40:dd:b7:e7: 90:6b:62:ab:b9:0e:52:7e:e6:98:d3:b7:c5:18:44: ee:8d:61:07:1c:da:8d:8c:67:a6:42:04:4e:49:10: 53:13:d7:01:86:65:6d:fa:f0:d2:57:04:a0:d7:c6: ec:33:4e:27:16:73:9a:c5:7b:f1:c2:5b:a1:9e:e1: f4:44:c0:55:dd:04:f3:ca:40:7e:33:fa:b8:9a:e4: a0:7a:3e:24:92:be:b0:f4:15:16:66:d6:dd:ae:f7: 06:75:99:3c:57:26:df:d9:f3:65:6c:9d:20:73:5d: 1c:37:3f:fb:cc:52:46:3a:1e:8c:7f:45:13:05:ad: 9b:6a:6b:27:0f:5a:82:bc:db:36:fa:de:e1:55:7c: 6b:af:8d:3b:d7:37:80:24:5b:22:52:4f:73:f8:13: 75:96:68:54:0d:31:5f:0a:e0:d9:b7:26:b5:33:3e: a6:4e:11:2f:85:d3:93:62:97:06:b7:bb:f4:b1:e0: ce:89:a4:56:b6:29:2d:1d:3a:7f:4a:92:5a:9f:d0: 57:ba:53:c1:65:cf:5d:d7:be:76:b2:35:0f:1c:7b: 68:00:eb:4e:24:4c:44:e6:bc:d4:b4:21:97:4d:4e: 3a:c2:14:a2:18:67:48:7a:a2:06:a4:8e:7f:a4:43: 81:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:65:D1:0D:80:4E:F8:74:75:CC:E5:64:D2:B8:82:5B:E3:76:76:4F X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:bb:9e:ab:c9:ec:8c:7c:f6:d0:e4:bd:a6:37:5d:05:ef:ac: ce:04:c3:c3:45:24:ed:04:6a:cd:e5:7a:dd:53:35:33:a4:1e: ec:67:75:c0:e7:9e:ba:7c:5d:b9:64:80:87:27:0c:53:38:0a: 97:c9:4f:e1:62:75:76:61:c9:b6:cb:82:0e:75:2a:b3:f4:37: 6b:c9:d4:7d:3d:38:62:a3:45:46:f2:35:2a:7d:bb:1c:46:43: 1f:d8:41:25:c9:a7:0e:94:e0:17:41:aa:a8:26:91:fc:13:e3: 00:82:c3:b4:85:62:d5:df:bc:f0:e8:54:f9:44:03:14:f0:e2: 2a:37:3e:b9:b7:42:62:85:3b:2b:6d:1b:bd:75:45:ac:7f:00: 0b:a2:bf:54:66:b9:07:de:f5:0b:6a:d8:bd:9b:d7:b7:8d:4c: 98:6e:0b:24:ee:82:3c:5c:c4:35:1f:d9:d5:02:7a:af:fc:00: e5:04:b4:8e:5d:32:76:ba:72:46:6e:4b:d6:6b:33:5f:1d:d4: 2b:66:77:19:0a:04:18:e6:7b:c9:d6:7b:3a:2c:f3:63:bf:d3: 93:ea:09:30:a2:de:2f:c7:c6:4d:84:29:62:99:8e:b2:09:57: 9c:cd:9f:97:86:02:1c:df:d3:35:86:ed:00:f0:c7:7a:eb:9d: 2e:2f:d3:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjUwNTMwMjIyNzQ0WhcNMjUwNjA2MjIyNzQ0WjAYMRYwFAYD VQQDEw02ODNhMzBlMS1iZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopDWw8PPdeGg7EDdt+eQa2KruQ5SfuaY07fFGETujWEHHNqNjGemQgROSRBT E9cBhmVt+vDSVwSg18bsM04nFnOaxXvxwluhnuH0RMBV3QTzykB+M/q4muSgej4k kr6w9BUWZtbdrvcGdZk8Vybf2fNlbJ0gc10cNz/7zFJGOh6Mf0UTBa2bamsnD1qC vNs2+t7hVXxrr4071zeAJFsiUk9z+BN1lmhUDTFfCuDZtya1Mz6mThEvhdOTYpcG t7v0seDOiaRWtiktHTp/SpJan9BXulPBZc9d1752sjUPHHtoAOtOJExE5rzUtCGX TU46whSiGGdIeqIGpI5/pEOBsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5l0Q2A Tvh0dczlZNK4glvjdnZPMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfu56ryeyMfPbQ5L2mN10F76zOBMPDRSTtBGrN5XrdUzUzpB7sZ3XA 5566fF25ZICHJwxTOAqXyU/hYnV2Ycm2y4IOdSqz9DdrydR9PThio0VG8jUqfbsc RkMf2EElyacOlOAXQaqoJpH8E+MAgsO0hWLV37zw6FT5RAMU8OIqNz65t0JihTsr bRu9dUWsfwALor9UZrkH3vULati9m9e3jUyYbgsk7oI8XMQ1H9nVAnqv/ADlBLSO XTJ2unJGbkvWazNfHdQrZncZCgQY5nvJ1ns6LPNjv9OT6gkwot4vx8ZNhClimY6y CVeczZ+XhgIc39M1hu0A8Md6650uL9OT -----END CERTIFICATE-----Generated at Sat May 31 16:53:37 2025 by rpki-client