$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: y3yOXCaNe30t+0F6DixI/mVYoE9csGD/FtPuNwYb4Mc= Subject key identifier: 0E:D0:99:6D:FE:12:64:17:15:52:FB:77:F2:E2:C5:3A:BF:44:81:DB Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 0193 Signing time: Fri 06 Jun 2025 17:08:54 +0000 Manifest this update: Fri 06 Jun 2025 17:08:53 +0000 Manifest next update: Fri 13 Jun 2025 17:08:53 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: f1lzqElrCx4/W5AIWPIm+BN7r8mWNh2OQhC2hgNqd44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 17:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: Jun 6 17:08:53 2025 GMT Not After : Jun 13 17:08:53 2025 GMT Subject: CN=684320a6-89bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5f:09:75:2f:d9:20:1d:ae:51:9a:74:e5:88: 81:a5:e3:54:96:b9:0f:9c:fd:5f:4e:3e:e2:d0:d1: cc:51:ab:c4:9e:ac:7b:c3:97:ef:76:0b:fd:47:b3: e1:09:51:c1:7e:b1:62:54:a4:5b:4d:ae:c1:2d:5f: 02:c4:15:b8:9c:2c:20:ff:59:00:f6:8c:c2:cf:95: f2:96:8e:e2:a7:24:f7:11:e8:71:34:10:a5:97:af: 4b:99:04:6c:63:fb:29:9e:df:e1:b8:64:bd:a7:72: 1f:8f:0d:05:b4:c7:2e:78:97:0d:54:95:34:2b:aa: 74:0b:04:3e:b0:0e:6c:0b:23:47:cb:3e:8c:a9:5a: 34:93:6c:58:2f:55:83:4f:81:f2:e8:4b:e1:65:a6: bb:67:84:d8:67:77:ec:32:ef:55:91:94:61:1d:8e: c0:55:a1:87:aa:1f:13:6d:81:e5:75:bf:43:2c:a7: 28:28:d8:6d:14:34:ff:82:42:12:ec:1b:03:37:00: 81:1f:fd:a0:94:43:bf:8d:96:0c:70:9f:c0:dd:c7: c9:cd:16:5e:ce:f5:37:1b:5c:7b:fe:e7:bd:a9:51: ac:3d:fb:dd:0e:4b:0b:04:48:1a:72:81:ac:4e:f4: 83:cc:9d:f3:e7:8c:6a:2b:3a:47:5f:c5:98:0e:96: 13:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D0:99:6D:FE:12:64:17:15:52:FB:77:F2:E2:C5:3A:BF:44:81:DB X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:55:59:af:ad:39:5f:2e:4e:95:5c:fb:85:d1:91:b1:ab:92: 87:89:49:0b:23:6e:94:a8:22:23:38:5b:73:9f:7d:b3:06:e9: d9:06:88:08:57:0f:2a:e6:ed:4e:00:d6:2e:6d:97:51:82:c8: 80:11:87:a4:4a:78:6d:e0:99:d4:67:43:9b:87:de:58:95:83: 3d:57:a3:66:92:4d:e2:76:11:73:37:51:31:44:ee:b3:61:46: db:b9:f4:8d:b6:77:00:ea:6f:b0:e4:48:32:01:e7:27:24:cb: 87:15:93:69:92:b4:89:83:95:59:e4:ac:d2:a2:d9:36:82:ee: 1c:9a:de:6d:01:7e:82:1f:da:f8:58:e5:ac:18:ed:87:87:ed: dc:6d:32:71:c9:b1:52:41:05:ae:d0:89:82:49:5b:fe:b3:7a: 85:52:e9:05:4b:25:0b:82:dc:53:d7:47:b2:d2:1e:a5:9d:a1: 95:fb:80:4f:8f:3c:ba:80:86:5a:d0:7a:82:34:f3:de:89:36: dc:03:21:6f:0f:28:47:e1:4a:ea:93:46:1f:fc:83:8f:cb:9a: e5:e3:6f:39:69:d4:87:1e:34:be:b2:a8:8a:cc:0f:12:8e:fa: 03:cf:a0:02:41:66:ac:75:fc:5d:cc:dc:36:6c:32:d1:12:d0: 98:79:f1:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjUwNjA2MTcwODUzWhcNMjUwNjEzMTcwODUzWjAYMRYwFAYD VQQDEw02ODQzMjBhNi04OWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2F8JdS/ZIB2uUZp05YiBpeNUlrkPnP1fTj7i0NHMUavEnqx7w5fvdgv9R7Ph CVHBfrFiVKRbTa7BLV8CxBW4nCwg/1kA9ozCz5Xylo7ipyT3EehxNBCll69LmQRs Y/spnt/huGS9p3Ifjw0FtMcueJcNVJU0K6p0CwQ+sA5sCyNHyz6MqVo0k2xYL1WD T4Hy6EvhZaa7Z4TYZ3fsMu9VkZRhHY7AVaGHqh8TbYHldb9DLKcoKNhtFDT/gkIS 7BsDNwCBH/2glEO/jZYMcJ/A3cfJzRZezvU3G1x7/ue9qVGsPfvdDksLBEgacoGs TvSDzJ3z54xqKzpHX8WYDpYTOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7QmW3+ EmQXFVL7d/LixTq/RIHbMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWVVmvrTlfLk6VXPuF0ZGxq5KHiUkLI26UqCIjOFtzn32zBunZBogI Vw8q5u1OANYubZdRgsiAEYekSnht4JnUZ0Obh95YlYM9V6Nmkk3idhFzN1ExRO6z YUbbufSNtncA6m+w5EgyAecnJMuHFZNpkrSJg5VZ5KzSotk2gu4cmt5tAX6CH9r4 WOWsGO2Hh+3cbTJxybFSQQWu0ImCSVv+s3qFUukFSyULgtxT10ey0h6lnaGV+4BP jzy6gIZa0HqCNPPeiTbcAyFvDyhH4Urqk0Yf/IOPy5rl4285adSHHjS+sqiKzA8S jvoDz6ACQWasdfxdzNw2bDLREtCYefF0 -----END CERTIFICATE-----Generated at Sun Jun 8 15:58:16 2025 by rpki-client