$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: RHcyc3uLDwp2VkS4upe8Sht8JPDXx+P8+0rSsuXZOec= Subject key identifier: 13:80:07:AD:67:42:DC:27:25:78:14:0C:C5:17:CA:6A:E7:7A:D6:2A Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0C84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0C72 Signing time: Fri 30 May 2025 18:30:32 +0000 Manifest this update: Fri 30 May 2025 18:30:32 +0000 Manifest next update: Fri 06 Jun 2025 18:30:32 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: yQTx4KvsADdQsJs2dbBeNYvxK6mnRv0CuLcOTny18iI=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: OT1wU0R1qfUZlPrVStZHI9ZTJpnzI3jWvMhElEQPU9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3204 (0xc84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: May 30 18:30:32 2025 GMT Not After : Jun 6 18:30:32 2025 GMT Subject: CN=6839f948-ab57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3e:ab:ca:e1:e0:ae:0e:a0:a9:e7:d9:21:16: 13:f1:23:79:bb:f9:3c:b3:31:f2:a8:6d:76:8a:13: 78:28:d3:2f:b9:dd:01:16:e3:82:cf:c2:17:47:44: 08:37:30:a1:2b:eb:36:f9:6f:2e:be:fc:2c:44:2c: 4b:fe:12:5e:21:c7:85:6d:7c:7b:01:5f:da:76:fe: 72:d7:01:25:c4:3b:a4:5b:3a:c5:c6:b9:ed:d8:c2: d4:54:eb:b4:86:d2:c7:20:b0:26:ca:a6:ef:fb:bd: 7c:1f:ba:36:8a:be:ae:ed:13:ff:b8:c4:fa:fc:bf: 55:73:08:24:a1:c1:a1:c7:63:74:28:1c:2c:a5:d9: b8:94:fa:60:f2:d8:6a:90:10:ba:e8:1e:a3:2a:bd: 61:de:7b:00:a6:65:fb:d9:63:f8:86:54:6f:e0:8b: 73:7e:9e:8f:be:f8:57:26:02:c9:c4:a4:06:d4:1d: b9:00:b3:36:41:46:ad:91:d3:37:0d:63:13:bd:85: 4c:ef:e1:56:ad:69:17:ff:04:c1:09:93:78:f9:0f: 17:05:d4:47:97:8b:28:ef:5e:e7:32:9e:22:09:67: 9e:0b:ed:b4:73:8d:94:5a:a9:51:3d:c4:47:e6:9f: eb:c5:a6:f0:b4:5d:2a:38:88:bb:e0:58:1a:01:93: 22:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:80:07:AD:67:42:DC:27:25:78:14:0C:C5:17:CA:6A:E7:7A:D6:2A X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:dc:ea:b7:b0:6e:0f:b2:ef:3b:6d:4c:b0:ed:b8:fd:21:24: 62:fd:a4:d5:1c:df:a4:55:22:f6:7b:9a:be:70:08:95:e9:fc: 6c:9d:ee:89:5c:ee:2c:b4:9f:01:5a:64:8b:6b:03:3d:62:f2: 27:1e:a4:97:67:a8:b0:d6:c8:02:74:1c:9b:a7:23:79:69:fa: 12:3d:7d:8d:03:41:b2:4c:f8:c7:6b:1f:02:71:4a:b7:cf:2e: 7b:d8:95:d0:ff:98:6f:0b:39:99:8a:82:fb:e7:db:b8:99:ab: 56:13:43:04:35:12:e9:0f:f1:15:3a:b7:5e:5d:05:5d:15:43: 47:ab:d1:c3:41:f7:a1:df:2d:52:fc:ed:39:71:51:c0:e0:09: da:4c:ac:6e:91:46:91:9e:d0:35:c5:5d:12:f9:2d:57:c9:b2: c1:8f:94:f1:0f:d9:ba:3e:19:4a:df:43:6b:4d:f5:eb:6a:53: 4f:e6:34:64:43:f7:20:c5:aa:a2:bb:96:06:e2:47:7c:14:55: a7:f3:03:0c:96:44:c2:c2:49:bc:e9:34:21:ae:d1:59:b3:f7: 57:6f:ee:94:42:0d:01:e6:ee:3f:00:9b:ba:60:40:4b:2a:4e: 23:90:51:06:c4:89:3d:86:37:e1:90:9c:a6:07:ff:4e:9a:d7: 2d:0c:3e:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUwNTMwMTgzMDMyWhcNMjUwNjA2MTgzMDMyWjAYMRYwFAYD VQQDEw02ODM5Zjk0OC1hYjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuz6ryuHgrg6gqefZIRYT8SN5u/k8szHyqG12ihN4KNMvud0BFuOCz8IXR0QI NzChK+s2+W8uvvwsRCxL/hJeIceFbXx7AV/adv5y1wElxDukWzrFxrnt2MLUVOu0 htLHILAmyqbv+718H7o2ir6u7RP/uMT6/L9VcwgkocGhx2N0KBwspdm4lPpg8thq kBC66B6jKr1h3nsApmX72WP4hlRv4Itzfp6PvvhXJgLJxKQG1B25ALM2QUatkdM3 DWMTvYVM7+FWrWkX/wTBCZN4+Q8XBdRHl4so717nMp4iCWeeC+20c42UWqlRPcRH 5p/rxabwtF0qOIi74FgaAZMifQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOAB61n QtwnJXgUDMUXymrnetYqMB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt3Oq3sG4Psu87bUyw7bj9ISRi/aTVHN+kVSL2e5q+cAiV6fxsne6J XO4stJ8BWmSLawM9YvInHqSXZ6iw1sgCdBybpyN5afoSPX2NA0GyTPjHax8CcUq3 zy572JXQ/5hvCzmZioL759u4matWE0MENRLpD/EVOrdeXQVdFUNHq9HDQfeh3y1S /O05cVHA4AnaTKxukUaRntA1xV0S+S1XybLBj5TxD9m6PhlK30NrTfXralNP5jRk Q/cgxaqiu5YG4kd8FFWn8wMMlkTCwkm86TQhrtFZs/dXb+6UQg0B5u4/AJu6YEBL Kk4jkFEGxIk9hjfhkJymB/9OmtctDD56 -----END CERTIFICATE-----Generated at Sat May 31 17:36:03 2025 by rpki-client