$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: 66cqf3NxkK/yRtTDW3+Ry5cE1UPw+nD3o/TydYj+Uhg= Subject key identifier: 03:9C:D5:31:90:36:D5:A7:AB:67:28:A4:06:B4:96:BF:63:B4:F0:3F Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2B88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2B74 Signing time: Sun 20 Jul 2025 14:26:09 +0000 Manifest this update: Sun 20 Jul 2025 14:26:09 +0000 Manifest next update: Sun 27 Jul 2025 14:26:09 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: PyuU24D6Don2Q6ZSI/ZEcQHiq/qGAbkKGOezIF3o+tw=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: cs/JN2roMF9559frpHSU57kLMdZZdt/kq/+fgPXNaTg=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: kOKMH7bC+n+8o1xcllbA3RXGetoc8aW0IIWJBu8P/uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11144 (0x2b88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Jul 20 14:26:09 2025 GMT Not After : Jul 27 14:26:09 2025 GMT Subject: CN=687cfc81-ea9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:37:10:bb:d4:95:ad:da:02:0e:15:47:8d:d0: 89:c4:fb:0c:e9:03:06:83:24:7d:06:23:79:0d:84: 46:2e:dc:cb:6d:a7:1d:e1:10:2b:99:13:f4:d3:f5: 71:b8:06:86:a8:b1:fa:69:bf:f6:1e:0e:7c:11:a2: 22:63:bc:59:39:df:ae:11:df:15:92:d3:57:c0:a0: b8:f4:16:97:56:ce:22:02:e6:c3:09:7c:ae:96:01: f3:ad:2a:c2:bb:4a:53:c8:7b:b4:7b:ce:85:ff:3a: fc:a3:c4:85:60:7c:05:0e:8e:b5:5b:61:0a:31:26: 5d:06:5b:78:42:ab:1e:a5:7f:81:37:69:7c:cd:ee: 5a:ca:9d:f3:fb:b0:ee:7d:4f:18:19:56:f8:71:41: d2:cc:1b:ed:18:44:d7:09:43:a6:2c:7d:4f:6e:13: 61:c0:1e:62:ae:06:3c:ba:2b:71:06:99:b3:1d:18: c8:6a:bd:ef:6e:e1:e0:a8:b5:2e:11:23:41:e7:5c: 0d:b8:67:bc:83:04:c3:75:4d:7c:c1:47:9e:e4:30: e8:41:87:71:e3:1a:2f:3d:47:93:e9:1a:4e:92:2a: d8:15:8a:56:8e:25:32:1b:21:18:4e:28:f2:6f:ec: 4a:65:2c:df:72:c8:be:57:26:dc:b1:32:87:af:96: 58:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:9C:D5:31:90:36:D5:A7:AB:67:28:A4:06:B4:96:BF:63:B4:F0:3F X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:94:78:6a:d3:15:4c:81:ec:3f:4d:39:dc:3a:ac:88:72:7a: cb:8a:a4:3f:25:d1:c7:8d:a1:7e:87:e3:2b:70:ba:96:cb:dd: ed:53:20:84:6c:73:bd:c0:f9:b4:f6:b8:33:f4:8a:60:99:ec: 1b:08:09:4e:3f:ee:8a:6f:6c:4c:87:53:b7:1a:94:c1:8a:66: e8:d1:37:21:ae:24:e4:e5:6f:fb:5a:27:a4:1a:21:9a:fa:6d: 08:b8:fe:bb:3b:1a:87:e8:99:a8:f4:d6:b5:d0:83:3e:9a:1e: 0b:d4:4f:2d:df:44:0c:43:08:c8:95:d1:96:16:9b:84:c0:1f: 6e:a4:2f:9b:72:41:a7:1c:75:35:4b:fb:b4:55:38:c0:38:4c: f5:a5:a9:38:64:14:d8:28:af:36:7a:98:b3:f6:0d:85:ee:ed: 11:77:4d:5d:fd:cf:14:30:e9:2a:79:63:f3:f5:95:f2:76:4e: 93:d4:9e:be:5e:dd:9f:d0:6f:34:fe:18:8f:4f:73:66:0c:fc: a6:b6:eb:f3:bd:68:ea:1a:52:ac:63:1f:0d:d7:5d:f4:94:f2: 86:c1:14:e4:d4:86:38:bb:eb:7b:50:00:30:87:0c:a9:7f:80: fe:bd:af:a2:e9:8d:b4:e0:db:65:18:55:9f:df:78:55:84:84: ae:70:e1:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUwNzIwMTQyNjA5WhcNMjUwNzI3MTQyNjA5WjAYMRYwFAYD VQQDEw02ODdjZmM4MS1lYTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjcQu9SVrdoCDhVHjdCJxPsM6QMGgyR9BiN5DYRGLtzLbacd4RArmRP00/Vx uAaGqLH6ab/2Hg58EaIiY7xZOd+uEd8VktNXwKC49BaXVs4iAubDCXyulgHzrSrC u0pTyHu0e86F/zr8o8SFYHwFDo61W2EKMSZdBlt4QqsepX+BN2l8ze5ayp3z+7Du fU8YGVb4cUHSzBvtGETXCUOmLH1PbhNhwB5irgY8uitxBpmzHRjIar3vbuHgqLUu ESNB51wNuGe8gwTDdU18wUee5DDoQYdx4xovPUeT6RpOkirYFYpWjiUyGyEYTijy b+xKZSzfcsi+VybcsTKHr5ZYaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOc1TGQ NtWnq2copAa0lr9jtPA/MB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5lHhq0xVMgew/TTncOqyIcnrLiqQ/JdHHjaF+h+MrcLqWy93tUyCE bHO9wPm09rgz9IpgmewbCAlOP+6Kb2xMh1O3GpTBimbo0TchriTk5W/7WiekGiGa +m0IuP67OxqH6Jmo9Na10IM+mh4L1E8t30QMQwjIldGWFpuEwB9upC+bckGnHHU1 S/u0VTjAOEz1pak4ZBTYKK82epiz9g2F7u0Rd01d/c8UMOkqeWPz9ZXydk6T1J6+ Xt2f0G80/hiPT3NmDPymtuvzvWjqGlKsYx8N1130lPKGwRTk1IY4u+t7UAAwhwyp f4D+va+i6Y204NtlGFWf33hVhISucOEo -----END CERTIFICATE-----Generated at Sun Jul 20 19:20:37 2025 by rpki-client