$ rpki-client -vvf rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft File: NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft (raw, json) Hash identifier: cugopzA1dfJCEgHmpAT7sv8HKTQawzE8zuYxJFzhlUk= Subject key identifier: 78:4D:18:E4:BA:79:09:24:0E:95:1B:11:55:30:6C:8D:4C:E2:7D:D1 Authority key identifier: 34:6D:F0:EF:4D:8B:C6:3C:38:24:D6:E4:90:06:74:63:25:47:B0:8A Certificate issuer: /CN=A91B927E/serialNumber=346DF0EF4D8BC63C3824D6E4900674632547B08A Certificate serial: 0A3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft Manifest number: 1129 Signing time: Fri 30 May 2025 19:54:57 +0000 Manifest this update: Fri 30 May 2025 19:54:56 +0000 Manifest next update: Fri 06 Jun 2025 19:54:56 +0000 Files and hashes: 1: NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl (hash: K0YJylh0TYKebNJJ+Gh7hwB5OP7zp7ZfT2UV3qFktks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B927E, serialNumber=346DF0EF4D8BC63C3824D6E4900674632547B08A Validity Not Before: May 30 19:54:56 2025 GMT Not After : Jun 6 19:54:56 2025 GMT Subject: CN=683a0d11-8e01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:79:48:54:b8:38:ab:8b:83:32:fe:41:e2:8e: 4f:38:77:80:d7:c8:cb:6f:39:cc:f5:ce:bf:e3:e6: 85:fc:5e:d9:02:c2:71:af:3a:8a:a5:15:93:0d:95: 7d:ba:31:0f:6f:22:09:7d:b0:96:65:21:19:af:87: 8b:a2:18:cc:94:09:10:78:b9:8d:66:88:29:a7:0f: 39:7b:e3:a0:e1:17:8d:ce:bd:c8:6a:54:4b:3c:76: e6:26:8f:ca:5a:7e:95:58:cc:37:9e:b7:71:54:78: a8:b0:f4:66:1b:a7:66:21:1d:f7:7c:04:c7:02:1f: 63:0a:b6:2a:f6:c1:f4:f8:ab:f6:7d:d2:45:57:09: 0c:d6:41:86:31:1d:6a:2c:c9:af:5c:e5:08:e6:ea: f1:7b:38:19:a2:e9:26:b1:b2:5d:95:b5:26:51:23: e3:7f:f5:3d:69:29:a0:80:8e:e5:3a:a9:54:ee:35: 64:56:9e:40:b3:8a:53:e5:66:67:49:0e:02:bf:3b: 52:8a:f5:18:52:49:07:44:18:e0:91:ea:97:ec:ad: c1:ec:c5:f7:f7:96:36:08:d3:0d:de:68:58:a5:58: 00:58:27:64:14:ff:89:19:76:36:e0:ac:35:43:99: 43:44:21:be:2f:cb:12:b1:bc:8e:50:6f:54:42:2d: 24:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:4D:18:E4:BA:79:09:24:0E:95:1B:11:55:30:6C:8D:4C:E2:7D:D1 X509v3 Authority Key Identifier: keyid:34:6D:F0:EF:4D:8B:C6:3C:38:24:D6:E4:90:06:74:63:25:47:B0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NG3w702Lxjw4JNbkkAZ0YyVHsIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/NG3w702Lxjw4JNbkkAZ0YyVHsIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:fb:28:66:1f:48:db:80:d3:60:88:bd:3e:f9:33:1c:c2:47: 4c:3b:71:71:77:7f:e2:d9:84:8c:c6:14:78:a7:ee:07:e6:e2: 72:3d:56:24:c7:15:e9:1e:76:87:6d:47:ee:26:11:ac:ac:4a: 93:3e:30:77:99:58:bd:bf:82:79:c3:0a:a4:cd:86:6e:58:2b: 5e:63:a4:8e:0a:78:7f:0d:a7:61:c3:a4:e7:55:31:74:1d:52: 0b:9d:e1:2a:31:c9:20:db:4d:11:b7:1f:18:5b:24:d6:da:bd: 2b:be:2d:4e:75:98:13:03:69:69:a6:8b:87:0a:0c:aa:37:43: 58:bb:84:fe:5e:b6:07:cd:cf:75:56:d9:93:75:2d:88:54:a4: 0c:95:93:f8:fd:44:46:94:4a:c3:88:48:3c:de:b8:85:f1:b9: c7:ce:f5:91:42:a7:3c:13:fa:d8:d7:e9:c5:e3:9d:0a:e0:0c: 94:bf:30:6e:39:66:2f:36:3e:f3:71:71:74:19:58:53:be:11: 35:9d:c0:e5:63:51:40:8a:89:f2:4a:f8:0e:0e:fd:7a:84:05: 89:cf:d2:d8:49:eb:0f:21:09:b5:bd:21:94:4a:bf:f3:55:1c: b8:7f:86:91:8e:88:2f:43:33:ba:eb:74:99:fd:ae:0e:49:70: 6e:8e:69:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyN0UxMTAvBgNVBAUTKDM0NkRGMEVGNEQ4QkM2M0MzODI0RDZFNDkwMDY3NDYz MjU0N0IwOEEwHhcNMjUwNTMwMTk1NDU2WhcNMjUwNjA2MTk1NDU2WjAYMRYwFAYD VQQDEw02ODNhMGQxMS04ZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3lIVLg4q4uDMv5B4o5POHeA18jLbznM9c6/4+aF/F7ZAsJxrzqKpRWTDZV9 ujEPbyIJfbCWZSEZr4eLohjMlAkQeLmNZogppw85e+Og4ReNzr3IalRLPHbmJo/K Wn6VWMw3nrdxVHiosPRmG6dmIR33fATHAh9jCrYq9sH0+Kv2fdJFVwkM1kGGMR1q LMmvXOUI5urxezgZoukmsbJdlbUmUSPjf/U9aSmggI7lOqlU7jVkVp5As4pT5WZn SQ4CvztSivUYUkkHRBjgkeqX7K3B7MX395Y2CNMN3mhYpVgAWCdkFP+JGXY24Kw1 Q5lDRCG+L8sSsbyOUG9UQi0kOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhNGOS6 eQkkDpUbEVUwbI1M4n3RMB8GA1UdIwQYMBaAFDRt8O9Ni8Y8OCTW5JAGdGMlR7CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI3RS9DQ0Q2RUQxQzY4 REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9ORzN3NzAyTHhqdzRKTmJra0FaMFl5Vkhz SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05HM3c3MDJMeGp3NEpOYmtrQVowWXlWSHNJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTI3RS9DQ0Q2RUQxQzY4REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9ORzN3NzAyTHhq dzRKTmJra0FaMFl5VkhzSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg+yhmH0jbgNNgiL0++TMcwkdMO3Fxd3/i2YSMxhR4p+4H5uJyPVYk xxXpHnaHbUfuJhGsrEqTPjB3mVi9v4J5wwqkzYZuWCteY6SOCnh/Dadhw6TnVTF0 HVILneEqMckg200Rtx8YWyTW2r0rvi1OdZgTA2lppouHCgyqN0NYu4T+XrYHzc91 VtmTdS2IVKQMlZP4/URGlErDiEg83riF8bnHzvWRQqc8E/rY1+nF450K4AyUvzBu OWYvNj7zcXF0GVhTvhE1ncDlY1FAionySvgODv16hAWJz9LYSesPIQm1vSGUSr/z VRy4f4aRjogvQzO663SZ/a4OSXBujmmd -----END CERTIFICATE-----Generated at Sat May 31 17:01:22 2025 by rpki-client