$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft File: nhW8ueM67e2saArIyYFuEVkFyiw.mft (raw, json) Hash identifier: Gthdg9REOVl/Zpr7EEPmpR/znSOn7yQ+lWhMwutF9MI= Subject key identifier: 5D:8C:E0:5F:0E:91:2C:5B:C9:5F:96:24:90:A8:19:35:76:A8:F5:78 Authority key identifier: 9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C Certificate issuer: /CN=A91F9B3A/serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Certificate serial: 16E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft Manifest number: 16D7 Signing time: Wed 04 Jun 2025 16:40:55 +0000 Manifest this update: Wed 04 Jun 2025 16:40:54 +0000 Manifest next update: Wed 11 Jun 2025 16:40:54 +0000 Files and hashes: 1: nhW8ueM67e2saArIyYFuEVkFyiw.crl (hash: p0A3ZbRlt2GB9hbrqmdJ+zU0xn2jPkhm4pkgjqUscn0=) 2: 7A7A6AC6234311EA90D15227C4F9AE02.roa (hash: inLOYpzfiQRyaW4Jx9DTFdqEkju4HPJ5ZYoO4gNZ1PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 16:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5860 (0x16e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B3A, serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Validity Not Before: Jun 4 16:40:54 2025 GMT Not After : Jun 11 16:40:54 2025 GMT Subject: CN=68407717-e879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ca:9f:58:cc:f6:98:96:35:d5:c3:30:78:b9: 75:cf:cc:27:d8:45:9a:e5:c2:eb:74:53:5f:a6:b7: 6e:b6:a2:9b:28:37:dd:bc:b6:a7:de:95:7a:14:24: 6f:50:51:99:7b:06:23:6c:34:ac:d3:40:22:91:a2: c0:0e:46:0f:8b:04:0d:62:e6:e3:6e:b8:c4:5c:36: fc:a0:4a:6d:6a:bb:f2:64:f8:2e:ab:07:37:8c:62: 1e:66:ef:86:7f:36:75:7d:4c:ef:5a:f6:6f:95:57: de:3b:b3:90:f1:70:4c:5e:ed:81:9d:79:f4:04:5e: 31:2c:c1:db:79:f7:df:f8:51:af:22:29:8c:aa:3b: 4f:80:c7:ca:a2:61:1e:ad:0e:b7:a1:b6:01:c6:db: 4e:a5:bc:51:c7:ec:f6:19:fd:a3:cd:5f:8d:55:4d: 74:e8:fb:e6:01:11:8f:1c:2c:32:45:6d:db:67:54: f3:32:11:78:cd:b4:c5:9e:9c:b5:db:10:1d:f4:5d: af:f7:8d:ac:f7:c1:d8:a4:1e:66:47:b9:ed:5e:91: cb:da:31:2b:07:83:f6:5d:d0:97:32:73:7d:f4:4f: 08:64:df:69:5b:05:9e:cb:27:f1:11:d2:70:3e:fd: e6:f2:32:fc:be:06:a3:b3:d1:61:d7:e6:41:eb:da: 66:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:8C:E0:5F:0E:91:2C:5B:C9:5F:96:24:90:A8:19:35:76:A8:F5:78 X509v3 Authority Key Identifier: keyid:9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:16:65:c9:c1:17:b6:6c:dc:26:f7:e9:f7:3e:84:31:e1:ea: b3:74:53:df:68:67:3b:d2:32:95:3e:94:c7:10:cb:5a:57:f8: 30:93:8f:fe:3b:a0:50:24:d1:22:a0:b1:1d:21:9a:d5:3a:c3: c4:f2:a1:18:db:4a:04:cc:d0:d5:e7:d4:a1:86:ce:b2:5c:20: b8:9a:85:4e:07:91:78:f6:fc:c4:3f:08:0a:0a:bb:92:39:1d: 5f:52:b5:8f:2d:3a:3d:3b:c4:8a:29:8f:74:2a:be:71:e2:17: d5:cd:cc:ea:3b:95:27:6c:58:ff:21:21:e1:85:0e:c6:c4:89: ab:02:ed:ec:c3:a4:88:54:7b:b4:79:86:fe:3f:79:c9:43:62: f7:db:4b:01:d4:b4:03:a9:93:77:0f:42:b8:94:00:99:cb:d3: 4f:d6:8d:76:0a:67:ec:fb:a4:ea:a7:da:98:6a:14:2b:0a:bb: 6c:81:94:0b:b4:7b:c3:e5:e9:4d:86:11:8b:0f:8b:96:8e:fd: 4c:84:1c:6d:4a:0b:82:e0:2b:b4:4e:e3:02:d1:57:b4:d0:95: 9f:4f:6e:64:06:a4:da:6a:98:50:fc:7f:e3:53:15:31:3b:f1: b1:49:d5:cd:e6:eb:06:0c:e2:20:f2:8e:e9:c8:66:d6:68:fb: 5b:56:96:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlCM0ExMTAvBgNVBAUTKDlFMTVCQ0I5RTMzQUVERURBQzY4MEFDOEM5ODE2RTEx NTkwNUNBMkMwHhcNMjUwNjA0MTY0MDU0WhcNMjUwNjExMTY0MDU0WjAYMRYwFAYD VQQDEw02ODQwNzcxNy1lODc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocqfWMz2mJY11cMweLl1z8wn2EWa5cLrdFNfprdutqKbKDfdvLan3pV6FCRv UFGZewYjbDSs00AikaLADkYPiwQNYubjbrjEXDb8oEptarvyZPguqwc3jGIeZu+G fzZ1fUzvWvZvlVfeO7OQ8XBMXu2BnXn0BF4xLMHbefff+FGvIimMqjtPgMfKomEe rQ63obYBxttOpbxRx+z2Gf2jzV+NVU106PvmARGPHCwyRW3bZ1TzMhF4zbTFnpy1 2xAd9F2v942s98HYpB5mR7ntXpHL2jErB4P2XdCXMnN99E8IZN9pWwWeyyfxEdJw Pv3m8jL8vgajs9Fh1+ZB69pmtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2M4F8O kSxbyV+WJJCoGTV2qPV4MB8GA1UdIwQYMBaAFJ4VvLnjOu3trGgKyMmBbhFZBcos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUIzQS83REVBRTczNEYz QTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdlMnNhQXJJeVlGdUVWa0Z5 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25oVzh1ZU02N2Uyc2FBckl5WUZ1RVZrRnlpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUIzQS83REVBRTczNEYzQTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdl MnNhQXJJeVlGdUVWa0Z5aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIFmXJwRe2bNwm9+n3PoQx4eqzdFPfaGc70jKVPpTHEMtaV/gwk4/+ O6BQJNEioLEdIZrVOsPE8qEY20oEzNDV59Shhs6yXCC4moVOB5F49vzEPwgKCruS OR1fUrWPLTo9O8SKKY90Kr5x4hfVzczqO5UnbFj/ISHhhQ7GxImrAu3sw6SIVHu0 eYb+P3nJQ2L320sB1LQDqZN3D0K4lACZy9NP1o12Cmfs+6Tqp9qYahQrCrtsgZQL tHvD5elNhhGLD4uWjv1MhBxtSguC4Cu0TuMC0Ve00JWfT25kBqTaaphQ/H/jUxUx O/GxSdXN5usGDOIg8o7pyGbWaPtbVpaG -----END CERTIFICATE-----Generated at Fri Jun 6 17:15:01 2025 by rpki-client