$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft File: NfWNhhxBvf6ka4xykLGqxnDnzBs.mft (raw, json) Hash identifier: XutnYiawEau8IOWg6ce+xGL66AVUxTMaQ17JVDIvMIA= Subject key identifier: BB:2B:BB:13:DE:42:E8:D5:B4:F4:2A:55:19:2C:58:23:70:A3:A3:17 Authority key identifier: 35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B Certificate issuer: /CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Certificate serial: 0B39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft Manifest number: 0B2A Signing time: Fri 30 May 2025 19:23:13 +0000 Manifest this update: Fri 30 May 2025 19:23:12 +0000 Manifest next update: Fri 06 Jun 2025 19:23:12 +0000 Files and hashes: 1: NfWNhhxBvf6ka4xykLGqxnDnzBs.crl (hash: cvUuNHRa0kNG5x4oJ4Cfpk1CBPg0bjWsHNg2xBVaxF0=) 2: 902F47663C0111EAB6CB9936C4F9AE02.roa (hash: W5+kOWbZGS14ELyZcRgsnHDoDEprTMY6BAsrjTgD1lM=) 3: 8F9F2F823C0111EAB6CB9936C4F9AE02.roa (hash: IHsFYOv59LECoaCivBqfgQOGspVwczVXXfHkd/E13QQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2873 (0xb39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35BB, serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Validity Not Before: May 30 19:23:12 2025 GMT Not After : Jun 6 19:23:12 2025 GMT Subject: CN=683a05a1-636b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bb:4d:e3:4b:2b:db:41:5f:4d:7d:52:63:9e: 11:e9:9c:7d:c9:6b:dd:da:14:4a:28:24:9f:97:79: fb:66:66:a9:9f:c7:0a:23:af:6a:81:87:e9:25:5e: c6:fd:67:cc:29:cd:90:d7:a3:fc:c0:ca:e3:d1:d4: ee:d0:e7:77:d0:e9:7d:0e:c7:4b:28:fd:b3:53:90: f6:ef:90:46:84:3b:b7:91:e4:40:43:8b:97:e5:9d: c7:71:98:d6:b8:cb:c3:cc:29:6e:06:76:6e:78:01: af:52:a7:2e:06:d6:c4:4c:50:9f:70:fd:60:5c:78: 78:23:71:4d:bc:a8:10:40:30:20:6e:5d:b7:1c:97: 6c:20:59:ea:af:f8:89:a3:c2:23:4d:74:5f:dd:53: f7:c1:88:79:fa:bb:61:87:9b:87:38:a1:21:40:37: cc:ad:c5:bb:9c:4c:b1:89:76:ba:8b:72:7d:4a:81: ca:9e:4a:4e:6c:88:02:f7:cf:70:f6:3b:c9:a9:20: 2a:e3:5d:bd:58:94:a5:61:ff:c7:d4:51:02:95:01: 43:b4:12:f3:ba:19:56:a3:57:e5:54:eb:3e:61:12: 0a:78:0b:d8:20:66:7a:96:90:94:e9:b2:3a:00:0c: a0:69:97:ae:76:fa:e8:36:26:a1:f6:10:e4:81:85: 4a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:2B:BB:13:DE:42:E8:D5:B4:F4:2A:55:19:2C:58:23:70:A3:A3:17 X509v3 Authority Key Identifier: keyid:35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:97:5f:0a:af:a8:51:ff:21:e7:a4:f8:27:02:28:28:e2:a3: 8f:42:7a:13:ce:0a:0b:64:67:8a:b7:50:b3:68:0e:11:69:20: cb:80:fe:f9:6a:e4:43:6f:8c:f9:b6:95:06:c8:17:0e:4f:03: dd:48:ca:91:e4:7a:72:e1:0b:56:9d:bc:53:42:23:0e:3d:a5: 2a:a0:e2:ef:2e:5a:64:82:15:bb:2a:67:6b:a0:b2:ad:c1:74: 60:8a:8b:b2:f9:24:35:e3:b1:fc:7e:82:ef:92:58:52:30:7e: 05:03:2b:50:1f:c8:f9:bc:ea:92:82:b4:51:91:bb:b9:61:42: 17:c7:e1:86:77:07:d1:66:38:2d:6b:e9:26:63:45:f0:95:17: a1:2f:60:9c:a4:7f:cc:c6:da:29:f5:25:83:7b:8e:19:36:ef: dc:4b:0e:8a:db:11:bc:d8:d6:c4:3e:bf:cd:21:64:25:0c:02: 94:3d:1e:fa:4d:f1:40:66:c8:0b:48:4b:d4:33:a7:b7:7b:31: 7e:76:e8:67:b8:80:d1:61:d1:b2:52:a9:2a:0d:99:a2:0d:3a: fe:54:af:36:37:e2:88:e9:f1:64:4e:c5:83:39:40:5f:4e:2f: d2:a9:bf:a2:b8:bc:fc:01:a3:6a:8c:f7:4d:69:91:3c:23:29: 12:ba:4a:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1QkIxMTAvBgNVBAUTKDM1RjU4RDg2MUM0MUJERkVBNDZCOEM3MjkwQjFBQUM2 NzBFN0NDMUIwHhcNMjUwNTMwMTkyMzEyWhcNMjUwNjA2MTkyMzEyWjAYMRYwFAYD VQQDEw02ODNhMDVhMS02MzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7tN40sr20FfTX1SY54R6Zx9yWvd2hRKKCSfl3n7Zmapn8cKI69qgYfpJV7G /WfMKc2Q16P8wMrj0dTu0Od30Ol9DsdLKP2zU5D275BGhDu3keRAQ4uX5Z3HcZjW uMvDzCluBnZueAGvUqcuBtbETFCfcP1gXHh4I3FNvKgQQDAgbl23HJdsIFnqr/iJ o8IjTXRf3VP3wYh5+rthh5uHOKEhQDfMrcW7nEyxiXa6i3J9SoHKnkpObIgC989w 9jvJqSAq4129WJSlYf/H1FEClQFDtBLzuhlWo1flVOs+YRIKeAvYIGZ6lpCU6bI6 AAygaZeudvroNiah9hDkgYVKWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsruxPe QujVtPQqVRksWCNwo6MXMB8GA1UdIwQYMBaAFDX1jYYcQb3+pGuMcpCxqsZw58wb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVCQi81Nzg5QjFBNDND MDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZmNmthNHh5a0xHcXhuRG56 QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mV05oaHhCdmY2a2E0eHlrTEdxeG5EbnpCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzVCQi81Nzg5QjFBNDNDMDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZm NmthNHh5a0xHcXhuRG56QnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRl18Kr6hR/yHnpPgnAigo4qOPQnoTzgoLZGeKt1CzaA4RaSDLgP75 auRDb4z5tpUGyBcOTwPdSMqR5Hpy4QtWnbxTQiMOPaUqoOLvLlpkghW7KmdroLKt wXRgiouy+SQ147H8foLvklhSMH4FAytQH8j5vOqSgrRRkbu5YUIXx+GGdwfRZjgt a+kmY0XwlRehL2CcpH/Mxtop9SWDe44ZNu/cSw6K2xG82NbEPr/NIWQlDAKUPR76 TfFAZsgLSEvUM6e3ezF+duhnuIDRYdGyUqkqDZmiDTr+VK82N+KI6fFkTsWDOUBf Ti/Sqb+iuLz8AaNqjPdNaZE8IykSukrt -----END CERTIFICATE-----Generated at Sat May 31 17:57:44 2025 by rpki-client