$ rpki-client -vvf rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft File: NcbYSDFsIdmTz25MBtYB3AXvxOE.mft (raw, json) Hash identifier: Fa5CsvBAVXYiHtzXI5F3a9wPhlIlYuZaW+5VqLEpchQ= Subject key identifier: E9:CF:1B:10:9A:70:D5:6C:86:7D:6B:6E:E6:AA:25:CD:53:B3:DD:2F Authority key identifier: 35:C6:D8:48:31:6C:21:D9:93:CF:6E:4C:06:D6:01:DC:05:EF:C4:E1 Certificate issuer: /CN=A91F473F/serialNumber=35C6D848316C21D993CF6E4C06D601DC05EFC4E1 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft Manifest number: 0160 Signing time: Sat 07 Jun 2025 03:34:27 +0000 Manifest this update: Sat 07 Jun 2025 03:34:27 +0000 Manifest next update: Sat 14 Jun 2025 03:34:27 +0000 Files and hashes: 1: NcbYSDFsIdmTz25MBtYB3AXvxOE.crl (hash: kwL8mbt4Lhdequ+nqTPuipnZeTajb9woYEWFgvHEZjg=) 2: C416FBB02D6F11EEAC755B42C4F9AE02.roa (hash: ABFFM1PxoSUJD+uYz/pY10lv6OnyO7PHPufaHPjtOBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.crl rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 03:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F473F, serialNumber=35C6D848316C21D993CF6E4C06D601DC05EFC4E1 Validity Not Before: Jun 7 03:34:27 2025 GMT Not After : Jun 14 03:34:27 2025 GMT Subject: CN=6843b343-f083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4d:19:e1:9f:62:15:56:fc:6d:c2:b9:48:53: ea:ba:e4:3e:79:1e:d9:30:4e:63:f0:cf:e7:59:d2: 01:09:6b:c6:d9:74:d5:64:3d:14:55:77:f6:75:3d: d6:09:3e:16:93:b6:22:ef:8d:38:0e:dd:0b:7d:8d: c6:1b:92:0a:4d:13:6c:dd:f2:50:d1:0a:c0:fe:8c: 66:56:47:68:f2:b1:cd:e6:9f:73:2c:46:3c:73:a1: fb:2f:ca:14:ff:d5:7d:81:8d:fd:f7:53:c8:09:df: 5c:3f:12:54:ad:d7:0d:7b:27:d3:c5:e8:24:1e:69: 52:dc:1f:23:31:ef:db:14:72:69:c8:21:b5:26:3c: 9f:80:ba:fb:2e:63:6e:25:3c:55:df:86:9e:2e:09: 22:36:79:61:8f:f7:fc:2b:73:f4:27:e0:87:a7:f7: ce:2a:bd:a2:86:d8:e1:f7:20:46:2e:73:d3:41:47: 9d:1f:de:cc:9a:06:b7:46:ae:d9:f3:d4:f1:fd:e2: b5:64:c9:79:c8:4d:fe:e8:93:90:44:bd:a7:cc:46: 67:e3:77:5f:e5:94:46:e6:0e:9e:8c:02:01:ac:41: 75:8d:72:bb:ac:2e:aa:74:23:16:f1:55:d5:0d:96: c2:a2:67:64:08:4b:3c:99:cb:d8:99:99:b5:fd:66: c3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:CF:1B:10:9A:70:D5:6C:86:7D:6B:6E:E6:AA:25:CD:53:B3:DD:2F X509v3 Authority Key Identifier: keyid:35:C6:D8:48:31:6C:21:D9:93:CF:6E:4C:06:D6:01:DC:05:EF:C4:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:47:46:a4:a0:27:bc:27:5b:28:df:13:da:a5:5e:b3:ff:10: c0:1e:dd:a7:b1:ea:f9:82:11:ed:86:5f:01:86:4f:6b:60:d5: 94:10:21:87:e7:f1:ad:cc:7a:41:1b:79:77:d9:8a:c5:3a:09: 2d:68:e8:8b:5b:41:c5:15:04:1c:a2:5d:14:25:ee:14:37:0e: 78:4e:ab:03:a1:a6:c0:af:22:f9:e8:c8:01:c1:e6:24:0d:ed: ae:3f:20:fb:61:88:f4:f6:53:5d:50:96:fa:db:bd:34:03:f7: ce:84:70:d4:1f:4a:a7:09:33:2c:3f:e9:4d:b7:26:98:df:28: 19:d4:50:7c:9a:46:d1:c7:59:0d:f6:93:ad:6b:1c:0f:9e:9b: c8:25:ef:0b:e4:2a:ff:12:f4:14:2e:ee:7c:3f:6f:f4:4e:65: c2:72:2a:1f:39:93:50:45:c5:81:c3:7b:1e:4e:7a:c3:ff:e3: 34:d7:07:22:b6:e3:59:aa:a5:10:30:38:70:72:0c:ed:fa:6a: bf:42:ab:2d:9c:c0:e0:ca:af:e3:06:1c:22:d9:6b:b9:d3:7d: bf:ce:3b:48:6d:d9:1d:4f:cb:7c:ea:d9:0d:38:23:46:d6:dd: f2:8b:66:f4:4d:0a:19:17:1f:ac:9c:81:32:7c:63:84:1c:8c: f2:bf:80:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3M0YxMTAvBgNVBAUTKDM1QzZEODQ4MzE2QzIxRDk5M0NGNkU0QzA2RDYwMURD MDVFRkM0RTEwHhcNMjUwNjA3MDMzNDI3WhcNMjUwNjE0MDMzNDI3WjAYMRYwFAYD VQQDEw02ODQzYjM0My1mMDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqU0Z4Z9iFVb8bcK5SFPquuQ+eR7ZME5j8M/nWdIBCWvG2XTVZD0UVXf2dT3W CT4Wk7Yi7404Dt0LfY3GG5IKTRNs3fJQ0QrA/oxmVkdo8rHN5p9zLEY8c6H7L8oU /9V9gY3991PICd9cPxJUrdcNeyfTxegkHmlS3B8jMe/bFHJpyCG1JjyfgLr7LmNu JTxV34aeLgkiNnlhj/f8K3P0J+CHp/fOKr2ihtjh9yBGLnPTQUedH97Mmga3Rq7Z 89Tx/eK1ZMl5yE3+6JOQRL2nzEZn43df5ZRG5g6ejAIBrEF1jXK7rC6qdCMW8VXV DZbComdkCEs8mcvYmZm1/WbDTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnPGxCa cNVshn1rbuaqJc1Ts90vMB8GA1UdIwQYMBaAFDXG2EgxbCHZk89uTAbWAdwF78Th MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDczRi8xRDE3RURCNDJC OTAxMUVFOEI1REU0NzBDNEY5QUUwMi9OY2JZU0RGc0lkbVR6MjVNQnRZQjNBWHZ4 T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jYllTREZzSWRtVHoyNU1CdFlCM0FYdnhPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDczRi8xRDE3RURCNDJCOTAxMUVFOEI1REU0NzBDNEY5QUUwMi9OY2JZU0RGc0lk bVR6MjVNQnRZQjNBWHZ4T0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSR0akoCe8J1so3xPapV6z/xDAHt2nser5ghHthl8Bhk9rYNWUECGH 5/GtzHpBG3l32YrFOgktaOiLW0HFFQQcol0UJe4UNw54TqsDoabAryL56MgBweYk De2uPyD7YYj09lNdUJb62700A/fOhHDUH0qnCTMsP+lNtyaY3ygZ1FB8mkbRx1kN 9pOtaxwPnpvIJe8L5Cr/EvQULu58P2/0TmXCciofOZNQRcWBw3seTnrD/+M01wci tuNZqqUQMDhwcgzt+mq/QqstnMDgyq/jBhwi2Wu5032/zjtIbdkdT8t86tkNOCNG 1t3yi2b0TQoZFx+snIEyfGOEHIzyv4Am -----END CERTIFICATE-----Generated at Mon Jun 9 01:03:56 2025 by rpki-client