$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft File: NkbrHzcLfmPR823rNsJHbJbmuug.mft (raw, json) Hash identifier: irkCQOkU+kL8DB/Pq7vaZcmouKOpwSxgmoSfwEqXBSY= Subject key identifier: F6:BC:EA:FB:5F:77:DC:FA:16:7A:28:BB:9B:D8:F0:8F:F3:70:64:15 Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 02E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft Manifest number: 02D6 Signing time: Tue 01 Jul 2025 02:02:00 +0000 Manifest this update: Tue 01 Jul 2025 02:02:00 +0000 Manifest next update: Tue 08 Jul 2025 02:02:00 +0000 Files and hashes: 1: NkbrHzcLfmPR823rNsJHbJbmuug.crl (hash: qFopQeuqtUhecNprQA2WihnGSZAblzuds8m0tonxQ6I=) 2: 627A6758DF2A11EEBC440C5EC4F9AE02.roa (hash: Pd8L7s4R6wRwdLV9+7BZMCdFVQ0DCoXNeo8OuEc6g0M=) 3: F3B00CD2666C11EEB1B4711CC4F9AE02.roa (hash: R6LgYLeeG431V+MNRMFG0A1SQaUDq0hWnr4R0asmc6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5, serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: Jul 1 02:02:00 2025 GMT Not After : Jul 8 02:02:00 2025 GMT Subject: CN=68634198-dcdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:96:75:b2:f9:a8:04:a8:1d:ea:d1:dd:05:a6: 22:24:55:a9:cb:b2:01:67:88:13:27:50:82:29:0c: 63:51:81:18:68:e2:a8:4d:2b:59:6b:d5:9a:cd:ac: 9f:9a:34:1e:4c:8c:b4:1f:19:28:3c:fd:0c:e6:3b: ae:a9:fc:3b:68:2e:7d:29:17:32:0b:85:8a:6d:1c: 6b:b6:fc:f2:c3:9d:5b:ac:c6:ea:75:54:d3:cf:5a: fc:9c:4f:a2:94:76:ad:52:8d:bc:4b:78:bf:d7:40: f3:92:6d:90:cd:ea:7a:ca:33:3b:4a:b4:4f:7c:59: 35:75:f7:4c:51:e7:5b:18:58:27:29:30:b8:f5:e2: c7:23:49:c1:cd:c1:9b:35:2a:73:fd:6e:7c:de:03: e0:70:26:65:ad:84:90:8a:da:fe:c4:05:e7:87:d8: ab:f1:1f:73:4e:51:4f:bd:2f:99:70:11:1e:8d:df: db:26:ec:d2:8c:0a:42:48:76:30:e9:18:46:6b:89: 4e:02:a0:f9:4f:55:e9:a6:c2:47:ba:32:4f:63:f1: 7e:e5:bc:c2:a2:32:3d:6b:1a:8e:81:6f:6b:ff:9c: 07:22:11:5f:56:45:fe:2d:6f:ed:47:f1:08:e6:5b: 97:c4:bc:58:e9:1d:29:7e:de:2c:77:80:4e:53:bf: 92:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:BC:EA:FB:5F:77:DC:FA:16:7A:28:BB:9B:D8:F0:8F:F3:70:64:15 X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:45:8e:97:6d:f9:7e:bd:3a:94:26:cb:eb:07:f0:c7:83:64: e9:ef:ad:f8:ec:ec:c7:c9:61:09:a3:50:c2:d3:cd:88:13:95: 75:cc:31:b0:b8:38:0e:a5:6c:aa:32:45:54:7a:36:8e:26:21: 75:b7:2d:c1:a5:83:13:8a:83:9c:fb:f5:2c:ca:75:02:b9:26: 7b:05:d3:4a:25:90:bb:cd:1e:76:f4:31:86:61:2d:0e:b1:40: 1a:a4:5c:84:ff:13:b6:0b:38:5c:33:78:70:40:c7:38:8a:ae: b0:0c:ce:f9:bd:99:83:aa:af:56:25:aa:04:fb:be:47:2f:d3: b4:c1:75:75:f2:be:67:40:78:3a:36:e2:00:69:77:13:39:88: 1d:f1:f7:a5:a3:6e:a9:28:96:62:29:36:b0:34:56:14:da:0b: 22:d6:81:3b:dd:b2:c1:22:9a:5b:4f:30:a1:7f:f2:39:94:85: f8:1f:ca:3e:ba:65:7d:41:11:c0:40:e5:7d:da:5a:69:4e:67: 72:a9:ae:ac:92:9d:e7:3f:17:ae:8b:d3:68:0a:ce:9c:41:a6: b7:04:c9:f0:82:6e:2e:70:19:f4:96:f0:4e:bb:32:d6:9a:1d: 4c:b8:21:33:95:ee:d9:f6:59:ef:df:3c:4f:ed:6b:4e:94:62: ec:97:1c:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjUwNzAxMDIwMjAwWhcNMjUwNzA4MDIwMjAwWjAYMRYwFAYD VQQDEw02ODYzNDE5OC1kY2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJZ1svmoBKgd6tHdBaYiJFWpy7IBZ4gTJ1CCKQxjUYEYaOKoTStZa9Wazayf mjQeTIy0HxkoPP0M5juuqfw7aC59KRcyC4WKbRxrtvzyw51brMbqdVTTz1r8nE+i lHatUo28S3i/10Dzkm2Qzep6yjM7SrRPfFk1dfdMUedbGFgnKTC49eLHI0nBzcGb NSpz/W583gPgcCZlrYSQitr+xAXnh9ir8R9zTlFPvS+ZcBEejd/bJuzSjApCSHYw 6RhGa4lOAqD5T1XppsJHujJPY/F+5bzCojI9axqOgW9r/5wHIhFfVkX+LW/tR/EI 5luXxLxY6R0pft4sd4BOU7+S7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPa86vtf d9z6Fnoou5vY8I/zcGQVMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0JFNS82MTFDNTEyQ0YwRjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZt UFI4MjNyTnNKSGJKYm11dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvRY6Xbfl+vTqUJsvrB/DHg2Tp76347OzHyWEJo1DC082IE5V1zDGw uDgOpWyqMkVUejaOJiF1ty3BpYMTioOc+/UsynUCuSZ7BdNKJZC7zR529DGGYS0O sUAapFyE/xO2CzhcM3hwQMc4iq6wDM75vZmDqq9WJaoE+75HL9O0wXV18r5nQHg6 NuIAaXcTOYgd8felo26pKJZiKTawNFYU2gsi1oE73bLBIppbTzChf/I5lIX4H8o+ umV9QRHAQOV92lppTmdyqa6skp3nPxeui9NoCs6cQaa3BMnwgm4ucBn0lvBOuzLW mh1MuCEzle7Z9lnv3zxP7WtOlGLslxwD -----END CERTIFICATE-----Generated at Tue Jul 1 21:21:45 2025 by rpki-client