$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: 0Nckaq2pJm+KL+yeGBUuR31LFbRSLGGctxvHSeDhWdc= Subject key identifier: 55:56:5C:45:18:7D:13:8A:E4:E7:5C:73:8B:EA:98:8D:AA:43:C3:3C Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: 91 Signing time: Sat 07 Jun 2025 06:09:55 +0000 Manifest this update: Sat 07 Jun 2025 06:09:55 +0000 Manifest next update: Sat 14 Jun 2025 06:09:55 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: ohgDemOoMkIEZuCCHIXPlHYFzM6dBu5frdeoNXVsN+I=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: 4Ilw9gY/NOcFcq0qbuj1smp6o0+TRpgSf2CHUKcnvWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 06:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Jun 7 06:09:55 2025 GMT Not After : Jun 14 06:09:55 2025 GMT Subject: CN=6843d7b3-6555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fe:93:cb:54:6b:00:d5:e0:89:4f:74:ec:82: 22:2e:68:1b:9c:04:b6:4e:b0:4f:c9:45:0c:c7:a4: 95:01:49:26:af:29:20:04:aa:59:e0:56:42:84:5c: 7c:17:f1:a1:f8:7a:d2:e5:85:83:b9:f2:94:a4:69: 1e:0b:49:e4:97:8b:97:19:33:31:e4:c9:6f:0d:16: 88:bc:bc:e2:3d:74:3a:47:38:05:42:e1:82:20:8e: 4d:dd:1b:4c:29:5f:c5:6b:88:c2:08:53:cb:41:e7: b2:ce:2f:bb:09:66:8a:43:42:5f:aa:6f:e8:9e:e0: 18:d9:7e:59:23:7a:b0:6d:bc:25:fc:7b:a7:25:95: e4:1e:5e:41:8f:a9:d1:0f:b6:7c:59:24:04:65:a1: 0c:dd:35:e8:b9:e7:ab:cc:74:0d:45:f8:4a:22:0c: 5a:1d:1c:d0:d7:07:ae:df:80:00:65:e3:63:cc:44: e6:34:64:d2:0a:ea:a5:e0:14:22:36:03:e7:84:1d: 9b:a9:09:a1:ea:c6:cd:a6:f2:8c:8d:df:5f:ce:4b: 23:e4:f3:06:01:06:7e:94:03:40:2e:29:2e:e8:da: d7:aa:69:e0:b1:39:93:c2:69:6c:b4:73:3b:87:0c: 0f:91:25:63:38:66:b6:9b:d9:4e:f3:55:49:ec:79: 87:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:56:5C:45:18:7D:13:8A:E4:E7:5C:73:8B:EA:98:8D:AA:43:C3:3C X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:cf:42:a6:01:2d:2e:b8:30:41:2a:25:e8:ca:3f:07:b9:29: 18:f9:9a:5b:05:bf:02:d9:63:b5:cb:3c:5e:26:c1:cb:a7:35: 97:77:be:8c:59:67:57:7a:2e:ca:7c:4e:bd:71:a1:78:00:38: 00:17:d2:d4:99:44:ae:f1:fd:23:5f:39:a6:f0:e4:91:1c:53: 1d:fb:10:8a:7f:14:4d:6d:af:fb:58:d7:e8:09:8f:74:a6:eb: 8a:15:0a:0d:6e:a3:a3:d8:b2:33:a3:85:71:9a:14:03:ec:8b: 6f:30:25:e8:32:3b:01:a8:8a:77:d0:a0:1e:a7:27:ad:55:77: 8f:49:a6:37:ec:df:74:e8:7f:8f:ba:85:84:11:12:7a:23:2f: 81:5c:40:9c:aa:36:d0:c7:da:e0:16:44:11:47:81:74:5c:6f: eb:4c:20:2f:61:53:f0:23:36:95:a0:be:f7:bc:8d:22:bc:ab: 36:9c:12:72:76:2a:77:54:c7:c9:4e:37:76:bb:a2:68:71:6e: 21:63:67:50:8b:0c:eb:8f:02:4d:a0:3e:cc:42:cf:e1:05:5f: 41:e5:ba:65:d2:4b:d2:94:6f:5b:85:d7:7a:68:fa:68:01:a8: 5b:fb:44:46:bf:11:0a:e3:dd:f1:e6:b4:af:47:24:d9:66:c3: 69:7e:d6:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjUwNjA3MDYwOTU1WhcNMjUwNjE0MDYwOTU1WjAYMRYwFAYD VQQDEw02ODQzZDdiMy02NTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqv6Ty1RrANXgiU907IIiLmgbnAS2TrBPyUUMx6SVAUkmrykgBKpZ4FZChFx8 F/Gh+HrS5YWDufKUpGkeC0nkl4uXGTMx5MlvDRaIvLziPXQ6RzgFQuGCII5N3RtM KV/Fa4jCCFPLQeeyzi+7CWaKQ0Jfqm/onuAY2X5ZI3qwbbwl/HunJZXkHl5Bj6nR D7Z8WSQEZaEM3TXoueerzHQNRfhKIgxaHRzQ1weu34AAZeNjzETmNGTSCuql4BQi NgPnhB2bqQmh6sbNpvKMjd9fzksj5PMGAQZ+lANALiku6NrXqmngsTmTwmlstHM7 hwwPkSVjOGa2m9lO81VJ7HmHPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVWXEUY fROK5Odcc4vqmI2qQ8M8MB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4z0KmAS0uuDBBKiXoyj8HuSkY+ZpbBb8C2WO1yzxeJsHLpzWXd76M WWdXei7KfE69caF4ADgAF9LUmUSu8f0jXzmm8OSRHFMd+xCKfxRNba/7WNfoCY90 puuKFQoNbqOj2LIzo4VxmhQD7ItvMCXoMjsBqIp30KAepyetVXePSaY37N906H+P uoWEERJ6Iy+BXECcqjbQx9rgFkQRR4F0XG/rTCAvYVPwIzaVoL73vI0ivKs2nBJy dip3VMfJTjd2u6JocW4hY2dQiwzrjwJNoD7MQs/hBV9B5bpl0kvSlG9bhdd6aPpo Aahb+0RGvxEK493x5rSvRyTZZsNpftaL -----END CERTIFICATE-----Generated at Sun Jun 8 04:19:44 2025 by rpki-client