$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: 6oGFisEMiDA82JZiaUkRwjH2LdHqBk0cOwGsGWqw2Io= Subject key identifier: D7:25:DE:0F:68:EC:43:6A:11:16:07:33:13:DF:61:1F:E9:8A:40:91 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 112C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 0FCB Signing time: Sat 31 May 2025 17:44:58 +0000 Manifest this update: Sat 31 May 2025 17:44:58 +0000 Manifest next update: Sat 07 Jun 2025 17:44:58 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: NxrazTNQ16f16zjM6AHpSQJP1Uw/PGhuT9/IvrAfCcI=) 2: A2745BFEC18411ECBE051C5CC4F9AE02.roa (hash: PrswZfri3dHxcodWDLz5zdIU9mo1iJZykEdVfIHeBvM=) 3: 9394D360345F11F0AB96776CC4F9AE02.roa (hash: GgwLhcIgruySS/YGMWErE8BGQI8HrXA2kybuS84FbjI=) 4: 8224E55C345F11F0BD514C6CC4F9AE02.roa (hash: 8yHBq1O4OTtRzTta/kqVDa7IpUINsQkqazMx6yafkpw=) 5: 4CF19A6EAEDC11EF99753F71C4F9AE02.roa (hash: 5pfESJcYcm4Km92O0vgIg8+gD07vzMh/3SQIYm4koYw=) 6: ED397A542A1211EFBF48A87FC4F9AE02.roa (hash: tNirD4O5n/APlr4VXtRqMXUQrZa9HBGyAXXcJdhkx8g=) 7: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: 9vj0wFDRg2m924YSQRU+53hKJgFYHI/k3yYJ69FV68c=) 8: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: IEsW3GuxCVGYRu/1hhIjcdekM36PkMj/h8FdT1+soSo=) 9: EE0AC1B82A1211EFBF48A87FC4F9AE02.roa (hash: rO7clzQPDfrbQiofxJnNNd8hLM/5/riPsot/0I2BTXI=) 10: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: WDmBDJ69igHtzeCqQyvNDcFOZ8jROHQ7B6krkg7kRGE=) 11: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: aiooAIoivVql5FC+SCyKWbhdV5nV3qmBQRAodXfPFtU=) 12: 721709C63F6711EF879C2E11C4F9AE02.roa (hash: OxPA4uUHLc7fRUiKLbuvR0L7g6mPMW1qhFDN6e351sc=) 13: BB54CFD0B94411EBA1CDCA45C4F9AE02.roa (hash: JBQ6069Irn+Fo63UGqCMQV8Nmj1Wx+/dKLn5g7bFNNU=) 14: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: b/LbIzPAU9coJXjT3umWz8BMDzmOcTsQApiNrqEbUbM=) 15: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: Pqc1nBcb+JFkJlWub2Tew10ajFK81balankJIjxH0u0=) 16: C2356A948FE811E98B967A66C4F9AE02.roa (hash: lh6cNUm2NUCxz6vyJ9O8vhiCdo9/t7r94k2HgugqWk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4396 (0x112c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: May 31 17:44:58 2025 GMT Not After : Jun 7 17:44:58 2025 GMT Subject: CN=683b401a-4213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:82:ba:12:c9:a3:50:3d:ae:85:1c:63:66:0f: 27:3f:73:34:96:15:d2:3f:90:0e:d0:26:4e:3d:a9: 40:7f:1a:74:cf:a8:68:c1:f9:08:47:2b:9a:7e:3e: 02:24:57:76:57:33:dd:76:69:aa:11:bd:88:2c:60: 64:65:59:fe:e2:0c:12:9b:e3:24:0a:a2:b2:a6:54: 6b:07:0d:86:8f:30:a9:b1:86:81:99:06:7c:e7:68: 11:f8:5b:f8:77:fa:83:93:15:64:4b:01:55:1d:36: 47:10:bc:04:d4:52:ef:5d:d5:f8:4a:e9:2c:e9:f2: 9d:76:8a:c3:38:58:66:f3:77:4d:bd:f1:e5:7b:a3: 8c:85:b2:2c:f6:1c:cd:74:57:ef:c7:b7:e9:7e:ab: fc:47:35:c1:6c:d5:9d:73:40:4b:3c:f0:0a:83:a1: 91:e2:2b:75:be:26:87:8a:91:9f:43:f9:15:10:bf: d2:3b:b4:37:07:7c:db:b5:66:ab:6c:ec:81:3b:f2: 42:5a:14:3e:92:fe:2c:67:b3:60:dd:fe:e1:b6:27: 7a:db:fa:65:8d:f9:63:c0:be:82:b9:ab:19:18:a3: e1:44:50:d4:64:57:f5:bb:9d:e6:1d:9a:88:32:ca: 02:c1:c9:05:b0:e6:67:59:65:1e:30:4e:e8:f6:80: 1b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:25:DE:0F:68:EC:43:6A:11:16:07:33:13:DF:61:1F:E9:8A:40:91 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:c7:66:cb:ba:9e:a3:97:f6:f5:a7:ca:86:43:7f:d8:fe:95: 86:56:cb:01:71:94:ce:2f:cf:22:aa:61:d1:df:95:8b:69:bf: e5:65:9c:61:cc:3d:cf:30:82:7e:04:ff:db:08:27:40:71:62: 39:89:11:ee:78:a4:f9:35:20:8a:1f:fb:f4:65:d8:d9:a7:06: dd:a8:39:92:bb:15:81:3d:73:e7:2d:4a:5b:12:2e:43:d9:bb: 9b:0f:48:01:85:27:7f:b9:fa:bc:c6:68:2f:39:9a:a4:cf:23: 21:31:e6:76:ac:cf:af:f4:76:46:ce:ee:bf:b3:10:86:fb:db: c8:7b:89:60:c1:c3:18:b8:77:cc:b6:0f:39:9e:35:52:2a:98: 17:44:ce:8d:45:38:44:61:0b:d5:67:e3:ad:18:dd:4d:15:a4: 8f:75:d6:59:e6:8a:94:c1:47:04:68:bb:6a:49:89:58:b4:93: 9e:58:a6:a8:a4:2d:2e:9a:1c:58:ac:d6:1b:9e:88:65:b5:06: ea:7d:ef:4b:4c:47:cb:68:d8:ad:3a:f4:60:7a:48:46:b2:b3: 4e:0c:65:22:76:92:61:d4:57:e5:e5:da:34:65:7f:ed:02:94: 30:5b:ab:f7:ae:d4:5c:68:f7:87:0b:56:6f:21:f7:08:91:aa: 7a:45:32:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwNTMxMTc0NDU4WhcNMjUwNjA3MTc0NDU4WjAYMRYwFAYD VQQDEw02ODNiNDAxYS00MjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYK6EsmjUD2uhRxjZg8nP3M0lhXSP5AO0CZOPalAfxp0z6howfkIRyuafj4C JFd2VzPddmmqEb2ILGBkZVn+4gwSm+MkCqKyplRrBw2GjzCpsYaBmQZ852gR+Fv4 d/qDkxVkSwFVHTZHELwE1FLvXdX4Suks6fKddorDOFhm83dNvfHle6OMhbIs9hzN dFfvx7fpfqv8RzXBbNWdc0BLPPAKg6GR4it1viaHipGfQ/kVEL/SO7Q3B3zbtWar bOyBO/JCWhQ+kv4sZ7Ng3f7htid62/pljfljwL6CuasZGKPhRFDUZFf1u53mHZqI MsoCwckFsOZnWWUeME7o9oAbuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcl3g9o 7ENqERYHMxPfYR/pikCRMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQx2bLup6jl/b1p8qGQ3/Y/pWGVssBcZTOL88iqmHR35WLab/lZZxh zD3PMIJ+BP/bCCdAcWI5iRHueKT5NSCKH/v0ZdjZpwbdqDmSuxWBPXPnLUpbEi5D 2bubD0gBhSd/ufq8xmgvOZqkzyMhMeZ2rM+v9HZGzu6/sxCG+9vIe4lgwcMYuHfM tg85njVSKpgXRM6NRThEYQvVZ+OtGN1NFaSPddZZ5oqUwUcEaLtqSYlYtJOeWKao pC0umhxYrNYbnohltQbqfe9LTEfLaNitOvRgekhGsrNODGUidpJh1Ffl5do0ZX/t ApQwW6v3rtRcaPeHC1ZvIfcIkap6RTK2 -----END CERTIFICATE-----Generated at Mon Jun 2 17:15:22 2025 by rpki-client