$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: UvEoj0bdPtcJKVn9k9DH9z52GMumankaIQIttoZp3Cw= Subject key identifier: E5:90:0E:11:64:DA:B5:D4:89:0E:3F:5E:74:83:79:50:07:F9:BF:9F Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 075D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 0756 Signing time: Wed 02 Jul 2025 21:56:08 +0000 Manifest this update: Wed 02 Jul 2025 21:56:07 +0000 Manifest next update: Wed 09 Jul 2025 21:56:07 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: d+y/ZpyPGfYtny/vf8j4Be8cxMo0t6YC5P3dOZSOgSU=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: jIN2PY6GWYE7IvHCsXUW4P6OWa+fFCSoJx89CCKLLFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:56:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1885 (0x75d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: Jul 2 21:56:07 2025 GMT Not After : Jul 9 21:56:07 2025 GMT Subject: CN=6865aaf8-7111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0c:fa:30:55:14:2f:43:2a:ce:87:b7:50:c5: 7a:34:9e:f9:dd:32:ad:05:24:25:13:f5:38:fd:e6: 3f:f0:bc:e1:df:50:5f:c6:20:3f:20:d7:dd:7f:a7: 72:44:89:bc:0b:70:51:b0:71:f2:ac:d0:43:f6:bc: d8:47:69:88:59:e9:f7:f8:58:73:0c:89:de:55:72: 83:65:a9:f5:80:04:56:2f:d9:95:21:18:a0:5c:83: 46:e0:68:a2:33:c4:c3:5f:44:04:82:ba:15:4a:cf: 31:78:e2:59:48:60:d4:04:7b:dc:a0:28:7f:cc:67: 8d:f6:07:c4:3e:55:67:71:86:2a:21:0e:a7:27:e3: 07:78:40:ed:f3:9e:13:31:2b:08:13:72:fd:a5:1f: dc:32:d4:c9:a5:38:a8:fc:6d:a4:47:4b:28:dd:49: ea:39:81:84:31:70:01:2c:3a:ae:f5:72:28:f0:72: 99:bd:17:b6:99:06:2d:26:44:87:be:b8:53:79:f1: 3f:c2:d6:03:18:62:61:bb:04:2e:4f:3c:b6:d7:27: 43:91:f5:d1:0c:bf:a4:7a:39:b1:32:8e:96:6b:73: 85:5f:c2:e3:d8:c2:6b:fe:54:66:06:4f:9f:ce:ba: 04:80:69:73:a9:07:53:7b:70:59:c3:17:eb:f8:f2: 49:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:90:0E:11:64:DA:B5:D4:89:0E:3F:5E:74:83:79:50:07:F9:BF:9F X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:ec:68:62:09:da:2f:16:1e:6f:25:19:9a:85:52:e2:6f:a8: 64:95:c5:19:b2:f0:59:e1:5f:9d:c6:fd:53:d8:be:73:93:80: 2c:7a:9b:db:0d:0e:e0:e7:4c:23:1a:c3:7e:ce:a2:23:60:4c: 59:f5:a6:9f:4e:c8:7e:7f:73:6c:e3:de:15:a8:3c:bf:6e:89: 37:3d:0b:46:81:df:2c:7a:1a:d3:3c:f6:f4:5a:62:a9:34:1a: 76:75:8f:db:9d:f1:55:a0:ed:50:b4:9b:e5:79:81:06:fb:37: a5:4d:76:39:b7:71:50:dd:64:4d:c2:a8:15:cc:e4:5b:c4:c9: d1:9d:fa:ea:ed:8c:df:5c:2e:74:60:05:ab:04:65:1b:19:79: 34:9a:88:d3:14:63:50:c3:81:61:b5:a6:bf:a0:09:cf:d4:20: af:67:14:f1:32:2c:6d:60:a9:df:5e:3b:6a:3e:98:24:86:09: f8:77:9b:9c:0d:84:e4:7a:d4:38:7a:68:97:bf:e4:23:81:ab: 14:9b:02:fc:91:c1:13:3b:18:a5:5f:93:0e:41:94:6e:44:e7: 68:3d:42:38:59:ad:db:d6:e8:46:f8:0d:a9:1a:8e:6e:22:dc: 5b:3a:ed:80:1b:15:73:99:30:f0:27:35:16:7e:88:5a:ee:e6: 2b:67:fc:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUwNzAyMjE1NjA3WhcNMjUwNzA5MjE1NjA3WjAYMRYwFAYD VQQDEw02ODY1YWFmOC03MTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgz6MFUUL0Mqzoe3UMV6NJ753TKtBSQlE/U4/eY/8Lzh31BfxiA/INfdf6dy RIm8C3BRsHHyrNBD9rzYR2mIWen3+FhzDIneVXKDZan1gARWL9mVIRigXING4Gii M8TDX0QEgroVSs8xeOJZSGDUBHvcoCh/zGeN9gfEPlVncYYqIQ6nJ+MHeEDt854T MSsIE3L9pR/cMtTJpTio/G2kR0so3UnqOYGEMXABLDqu9XIo8HKZvRe2mQYtJkSH vrhTefE/wtYDGGJhuwQuTzy21ydDkfXRDL+kejmxMo6Wa3OFX8Lj2MJr/lRmBk+f zroEgGlzqQdTe3BZwxfr+PJJhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWQDhFk 2rXUiQ4/XnSDeVAH+b+fMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj7GhiCdovFh5vJRmahVLib6hklcUZsvBZ4V+dxv1T2L5zk4Asepvb DQ7g50wjGsN+zqIjYExZ9aafTsh+f3Ns494VqDy/bok3PQtGgd8sehrTPPb0WmKp NBp2dY/bnfFVoO1QtJvleYEG+zelTXY5t3FQ3WRNwqgVzORbxMnRnfrq7YzfXC50 YAWrBGUbGXk0mojTFGNQw4Fhtaa/oAnP1CCvZxTxMixtYKnfXjtqPpgkhgn4d5uc DYTketQ4emiXv+QjgasUmwL8kcETOxilX5MOQZRuROdoPUI4Wa3b1uhG+A2pGo5u ItxbOu2AGxVzmTDwJzUWfoha7uYrZ/zy -----END CERTIFICATE-----Generated at Thu Jul 3 16:59:46 2025 by rpki-client