$ rpki-client -vvf rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft File: nhuiMnN6PQDX-qC03Dg02arwbfg.mft (raw, json) Hash identifier: PPlDyx0QgPZFWNP0M517hvVP4HHlwwRYx405gUWHVQM= Subject key identifier: 9A:A9:2F:A0:1C:AE:45:BA:E2:8A:B3:C0:C9:A6:9A:7A:3D:0C:D1:00 Authority key identifier: 9E:1B:A2:32:73:7A:3D:00:D7:FA:A0:B4:DC:38:34:D9:AA:F0:6D:F8 Certificate issuer: /CN=A9178297/serialNumber=9E1BA232737A3D00D7FAA0B4DC3834D9AAF06DF8 Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft Manifest number: 065F Signing time: Fri 30 May 2025 22:44:24 +0000 Manifest this update: Fri 30 May 2025 22:44:24 +0000 Manifest next update: Fri 06 Jun 2025 22:44:24 +0000 Files and hashes: 1: nhuiMnN6PQDX-qC03Dg02arwbfg.crl (hash: Keta/Qi0hIGfTvFw5WL0h0yCo057ZpsNJJ67MhC1De8=) 2: 3B3D9AA4162211F0AE684383C4F9AE02.roa (hash: XamxWQNFXzVAky34dKuvGM9L/Xfu1Wl8RSwCxVZ6CUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.crl rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:44:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178297, serialNumber=9E1BA232737A3D00D7FAA0B4DC3834D9AAF06DF8 Validity Not Before: May 30 22:44:24 2025 GMT Not After : Jun 6 22:44:24 2025 GMT Subject: CN=683a34c8-2676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7b:22:4a:0c:d2:ca:64:71:44:c7:9d:59:87: 55:74:5e:d4:c4:53:91:b8:2f:b4:1b:89:07:45:aa: 5e:5b:ba:a2:34:fa:7b:b6:24:54:09:0e:bb:40:59: 8b:9e:9b:7a:26:f3:07:96:15:40:ac:a7:52:01:75: f0:fd:ac:84:21:a6:00:92:99:b9:ca:95:91:e8:26: e1:ff:10:6e:78:67:7b:60:34:c5:11:d3:af:4a:73: 58:84:7d:36:2a:56:54:82:f2:b6:51:fe:0c:d7:45: c5:aa:b5:d5:43:0b:81:aa:74:ec:c7:63:3c:39:1b: 04:be:29:83:b3:a6:1d:c7:6c:ae:3c:ce:71:b8:10: 41:53:bd:8f:54:b9:50:0b:4b:6c:c0:1a:4a:9e:14: 47:14:d0:a8:97:22:d0:53:d8:17:61:ab:fc:e4:50: 62:a7:f3:83:97:7b:2a:84:a0:9c:02:f7:74:24:79: 31:68:1d:d3:e0:85:06:bb:c7:67:b4:68:a3:01:fa: 18:52:67:7b:e6:00:eb:a6:8b:c5:97:6e:c8:2c:9a: 9f:9c:aa:72:87:18:83:c6:11:ad:48:8b:23:43:da: 5b:9e:8c:89:cc:da:53:f9:94:af:ad:d5:03:50:55: 9f:55:79:30:73:f5:65:5c:a3:47:5f:ee:39:e4:58: cb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A9:2F:A0:1C:AE:45:BA:E2:8A:B3:C0:C9:A6:9A:7A:3D:0C:D1:00 X509v3 Authority Key Identifier: keyid:9E:1B:A2:32:73:7A:3D:00:D7:FA:A0:B4:DC:38:34:D9:AA:F0:6D:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhuiMnN6PQDX-qC03Dg02arwbfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178297/4B1F748487B411EB8EF3321AC4F9AE02/nhuiMnN6PQDX-qC03Dg02arwbfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:f9:1c:46:2a:bc:1a:2a:ac:78:e6:d3:da:8a:3f:e2:5f:62: 0f:a5:fd:ee:fa:2f:5d:b1:c5:9b:79:38:81:6e:e5:98:6f:4c: c7:cd:ed:4e:c4:e5:08:2c:25:ce:f2:67:e0:a3:6a:c1:09:6d: ae:c7:eb:8e:bf:00:19:5f:87:af:7b:00:46:7c:f7:59:99:c7: dd:78:8c:10:66:d5:b5:70:c3:8f:10:69:30:3a:04:d8:19:66: de:4d:03:40:42:76:2d:24:47:17:c1:c0:40:b4:cb:75:68:ac: 77:e2:c2:9c:24:af:62:7b:13:d4:27:fc:f2:7c:dc:77:dd:a9: a8:be:d4:ff:dc:32:72:b1:e7:33:d4:cc:72:f7:32:cd:9e:6a: 5b:2b:8e:30:52:a2:b1:7f:18:34:2c:1b:6f:36:be:61:05:88: ab:b7:68:4a:3d:fb:44:94:d4:17:8c:e1:05:c8:b4:4a:e9:03: b7:22:fe:f1:4b:5f:eb:f3:40:fa:0a:97:ac:01:cc:c8:b7:d8: 05:c1:df:e8:d1:32:fb:ac:50:5f:44:58:c3:79:ec:44:6e:12: f0:08:8f:fa:48:a4:1a:79:7d:ac:e7:d3:42:0e:cc:af:99:42: 37:89:2a:3f:46:c0:1a:f4:e8:a3:3d:93:10:ee:83:90:ac:b2: e6:43:e2:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzgyOTcxMTAvBgNVBAUTKDlFMUJBMjMyNzM3QTNEMDBEN0ZBQTBCNERDMzgzNEQ5 QUFGMDZERjgwHhcNMjUwNTMwMjI0NDI0WhcNMjUwNjA2MjI0NDI0WjAYMRYwFAYD VQQDEw02ODNhMzRjOC0yNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73siSgzSymRxRMedWYdVdF7UxFORuC+0G4kHRapeW7qiNPp7tiRUCQ67QFmL npt6JvMHlhVArKdSAXXw/ayEIaYAkpm5ypWR6Cbh/xBueGd7YDTFEdOvSnNYhH02 KlZUgvK2Uf4M10XFqrXVQwuBqnTsx2M8ORsEvimDs6Ydx2yuPM5xuBBBU72PVLlQ C0tswBpKnhRHFNColyLQU9gXYav85FBip/ODl3sqhKCcAvd0JHkxaB3T4IUGu8dn tGijAfoYUmd75gDrpovFl27ILJqfnKpyhxiDxhGtSIsjQ9pbnoyJzNpT+ZSvrdUD UFWfVXkwc/VlXKNHX+455FjL+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqpL6Ac rkW64oqzwMmmmno9DNEAMB8GA1UdIwQYMBaAFJ4bojJzej0A1/qgtNw4NNmq8G34 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODI5Ny80QjFGNzQ4NDg3 QjQxMUVCOEVGMzMyMUFDNEY5QUUwMi9uaHVpTW5ONlBRRFgtcUMwM0RnMDJhcndi ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odWlNbk42UFFEWC1xQzAzRGcwMmFyd2JmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODI5Ny80QjFGNzQ4NDg3QjQxMUVCOEVGMzMyMUFDNEY5QUUwMi9uaHVpTW5ONlBR RFgtcUMwM0RnMDJhcndiZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/+RxGKrwaKqx45tPaij/iX2IPpf3u+i9dscWbeTiBbuWYb0zHze1O xOUILCXO8mfgo2rBCW2ux+uOvwAZX4evewBGfPdZmcfdeIwQZtW1cMOPEGkwOgTY GWbeTQNAQnYtJEcXwcBAtMt1aKx34sKcJK9iexPUJ/zyfNx33amovtT/3DJysecz 1Mxy9zLNnmpbK44wUqKxfxg0LBtvNr5hBYirt2hKPftElNQXjOEFyLRK6QO3Iv7x S1/r80D6CpesAczIt9gFwd/o0TL7rFBfRFjDeexEbhLwCI/6SKQaeX2s59NCDsyv mUI3iSo/RsAa9OijPZMQ7oOQrLLmQ+LR -----END CERTIFICATE-----Generated at Sat May 31 15:26:37 2025 by rpki-client