$ rpki-client -vvf rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft File: Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft (raw, json) Hash identifier: CbmphGRkaVEQwwV/iR88bmFTxeL+BOLoGGwPOjKHb/o= Subject key identifier: 0E:99:A1:4D:8F:46:31:6D:81:C0:14:53:08:8F:85:EA:FA:A5:5F:E2 Authority key identifier: 36:0C:7C:7B:5C:6C:69:A9:06:9D:82:5B:F1:C7:0A:F2:08:DA:33:7B Certificate issuer: /CN=A9146251/serialNumber=360C7C7B5C6C69A9069D825BF1C70AF208DA337B Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ngx8e1xsaakGnYJb8ccK8gjaM3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft Manifest number: 54 Signing time: Thu 03 Jul 2025 07:28:19 +0000 Manifest this update: Thu 03 Jul 2025 07:28:19 +0000 Manifest next update: Thu 10 Jul 2025 07:28:19 +0000 Files and hashes: 1: Ngx8e1xsaakGnYJb8ccK8gjaM3s.crl (hash: E7ZyCwxApgdphy/xcwKTv15O7eR8gxMhzcuGEG1YdeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.crl rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ngx8e1xsaakGnYJb8ccK8gjaM3s.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146251, serialNumber=360C7C7B5C6C69A9069D825BF1C70AF208DA337B Validity Not Before: Jul 3 07:28:19 2025 GMT Not After : Jul 10 07:28:19 2025 GMT Subject: CN=68663113-d3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:17:5c:d8:b5:ee:2d:8d:df:4e:5c:27:68:bd: 29:a0:f1:f1:06:8e:d7:60:16:31:e6:e8:ab:cd:b9: 7e:43:18:cb:34:da:69:01:96:ad:d3:6d:04:f8:2b: 21:c2:4a:d8:42:d3:a8:db:ba:55:f4:72:ae:b1:b8: 35:9d:1e:e5:ea:2c:99:ab:d1:ef:1e:44:c5:e3:ca: 2c:75:56:a5:e5:35:ed:3c:35:a6:4e:e3:3f:93:0d: 50:4d:6a:0b:88:8c:80:5f:38:e0:a9:c2:9f:c9:bc: 98:aa:5f:78:6d:a0:1a:e1:98:88:71:b9:51:4a:6d: 59:59:a1:60:3d:dd:74:1e:c2:79:a7:58:b7:f1:fc: 97:62:d0:63:2c:24:e5:fb:8b:07:26:34:c7:72:57: 76:b0:17:ab:18:84:2b:d3:42:15:75:c2:b5:f6:d6: b1:0a:c0:1a:85:30:47:eb:5d:f8:39:07:88:f6:2d: a2:a7:f7:31:e2:37:d5:33:de:0b:e5:b7:10:d4:d9: 13:0d:f7:3d:5e:b0:4a:a8:89:dd:82:e2:fb:2e:0b: ae:34:e9:7e:54:11:c9:9e:3e:a0:ca:21:50:ac:2c: 48:7f:14:5a:42:29:fe:ad:53:54:76:dd:9f:06:3d: 35:ef:92:e8:f3:bd:de:20:86:91:27:e9:04:c3:5d: 07:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:99:A1:4D:8F:46:31:6D:81:C0:14:53:08:8F:85:EA:FA:A5:5F:E2 X509v3 Authority Key Identifier: keyid:36:0C:7C:7B:5C:6C:69:A9:06:9D:82:5B:F1:C7:0A:F2:08:DA:33:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Ngx8e1xsaakGnYJb8ccK8gjaM3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146251/0B16EAA4D87111EF98C26075C4F9AE02/Ngx8e1xsaakGnYJb8ccK8gjaM3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c0:5c:9f:bb:50:5f:95:fc:2c:d6:32:5e:18:a2:80:6e:05: 2d:8a:67:ed:13:38:a8:0c:ac:87:b0:4b:d3:3d:21:79:4b:86: e8:39:0d:bf:fe:87:7f:db:1e:a1:68:a5:e6:a0:33:f3:b6:f4: d5:44:46:e0:4e:0b:d2:88:88:2e:0f:8d:65:ef:8d:51:de:ac: 4a:1a:c9:a2:2c:bf:bd:02:84:68:fe:df:7b:f7:c7:b1:7d:31: 61:bc:e8:d5:db:26:9e:c2:7e:16:95:6c:be:e9:3c:0e:0d:c3: 3a:b9:db:53:80:4d:e4:ec:28:97:a9:6d:65:f9:f8:e9:cc:fc: 77:c0:20:d3:54:bc:0f:cb:bf:09:ec:7b:53:31:d6:8c:62:6e: 6f:b0:58:6d:1b:1c:42:6e:fe:7f:8f:57:df:e3:ea:96:b3:cd: 99:02:ee:0b:7d:56:6f:01:f7:3c:65:da:ce:f1:8c:b8:1c:a1: fe:fe:d4:d4:65:c3:a6:2b:41:ae:3a:2a:ca:ae:da:06:41:e0: 9f:c3:52:a8:e8:34:a0:a2:5e:3c:81:89:77:e3:2f:e9:52:8a: 84:ff:c8:bd:5b:53:05:5a:1f:d8:86:dd:4e:07:19:79:6a:f5: 98:f1:6d:76:be:d3:31:d7:29:e5:f3:3f:9d:2d:9d:bf:5d:a3: 52:44:d1:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjI1MTExMC8GA1UEBRMoMzYwQzdDN0I1QzZDNjlBOTA2OUQ4MjVCRjFDNzBBRjIw OERBMzM3QjAeFw0yNTA3MDMwNzI4MTlaFw0yNTA3MTAwNzI4MTlaMBgxFjAUBgNV BAMTDTY4NjYzMTEzLWQzZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiF1zYte4tjd9OXCdovSmg8fEGjtdgFjHm6KvNuX5DGMs02mkBlq3TbQT4KyHC SthC06jbulX0cq6xuDWdHuXqLJmr0e8eRMXjyix1VqXlNe08NaZO4z+TDVBNaguI jIBfOOCpwp/JvJiqX3htoBrhmIhxuVFKbVlZoWA93XQewnmnWLfx/Jdi0GMsJOX7 iwcmNMdyV3awF6sYhCvTQhV1wrX21rEKwBqFMEfrXfg5B4j2LaKn9zHiN9Uz3gvl txDU2RMN9z1esEqoid2C4vsuC6406X5UEcmePqDKIVCsLEh/FFpCKf6tU1R23Z8G PTXvkujzvd4ghpEn6QTDXQfDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDpmhTY9G MW2BwBRTCI+F6vqlX+IwHwYDVR0jBBgwFoAUNgx8e1xsaakGnYJb8ccK8gjaM3sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2MjUxLzBCMTZFQUE0RDg3 MTExRUY5OEMyNjA3NUM0RjlBRTAyL05neDhlMXhzYWFrR25ZSmI4Y2NLOGdqYU0z cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvTmd4OGUxeHNhYWtHbllKYjhjY0s4Z2phTTNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2 MjUxLzBCMTZFQUE0RDg3MTExRUY5OEMyNjA3NUM0RjlBRTAyL05neDhlMXhzYWFr R25ZSmI4Y2NLOGdqYU0zcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHrAXJ+7UF+V/CzWMl4YooBuBS2KZ+0TOKgMrIewS9M9IXlLhug5Db/+ h3/bHqFopeagM/O29NVERuBOC9KIiC4PjWXvjVHerEoayaIsv70ChGj+33v3x7F9 MWG86NXbJp7CfhaVbL7pPA4Nwzq521OATeTsKJepbWX5+OnM/HfAINNUvA/Lvwns e1Mx1oxibm+wWG0bHEJu/n+PV9/j6pazzZkC7gt9Vm8B9zxl2s7xjLgcof7+1NRl w6YrQa46Ksqu2gZB4J/DUqjoNKCiXjyBiXfjL+lSioT/yL1bUwVaH9iG3U4HGXlq 9ZjxbXa+0zHXKeXzP50tnb9do1JE0Ww= -----END CERTIFICATE-----Generated at Fri Jul 4 07:39:01 2025 by rpki-client