$ rpki-client -vvf rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft File: nL-xN0vpMpetwbIdvTeY0VvSdN8.mft (raw, json) Hash identifier: Z17tWKT0DAUdS0DqOfr0KoKN4ryRu9hHXoa2nFX44u8= Subject key identifier: 18:E3:86:34:B8:94:CB:51:8C:F6:81:36:8A:AD:76:29:09:8D:A9:5A Authority key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF Certificate issuer: /CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Certificate serial: 0C55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft Manifest number: 0C4D Signing time: Wed 02 Jul 2025 18:42:01 +0000 Manifest this update: Wed 02 Jul 2025 18:42:00 +0000 Manifest next update: Wed 09 Jul 2025 18:42:00 +0000 Files and hashes: 1: nL-xN0vpMpetwbIdvTeY0VvSdN8.crl (hash: 4vubyVvkU1k+3wXgot+1Mcc8czaP+yc2JJ0KnqnB7bw=) 2: E905CD5808F111EA8E4F1D51C4F9AE02.roa (hash: I2P5GKiYO+A0JWj3FCOtq5Wyspf+9wzs4i0nVaTxKFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152696, serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Validity Not Before: Jul 2 18:42:00 2025 GMT Not After : Jul 9 18:42:00 2025 GMT Subject: CN=68657d78-2ab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c1:2e:a9:5f:89:a2:b7:dc:24:58:fa:7f:ec: 40:37:e6:55:e0:39:86:a7:d6:80:29:6a:12:20:09: 88:bd:ed:eb:e9:e4:15:9b:2a:a9:09:b6:50:b0:20: 8f:e1:5e:48:25:84:d4:8d:dc:23:91:1b:21:c2:3a: 38:0d:93:b3:e0:58:43:80:cf:ec:f7:57:4f:d5:8b: 43:13:9c:67:f7:67:01:af:67:25:1d:ce:16:2b:b8: c1:3b:f4:c8:b0:f2:97:25:27:a3:81:16:0c:ef:b4: ac:54:b9:45:b0:96:1a:a8:08:fe:11:91:a3:95:e4: 1f:a7:cd:43:19:04:57:b9:01:5b:de:7c:d7:fc:16: 31:ce:c3:a5:50:66:dc:e1:1e:4a:0f:e4:d5:d7:90: 11:be:21:d4:f6:3d:79:cd:86:b4:c6:21:7f:9a:47: 62:4e:c8:af:ee:aa:2a:39:35:f4:46:85:95:2b:ff: 73:ee:e2:6b:7d:60:5f:e5:4d:58:77:55:07:0c:44: 12:40:05:23:89:21:10:f8:49:b3:10:d1:c3:b5:05: 56:cd:10:05:bb:be:da:e8:90:34:46:80:00:e5:a2: eb:a8:b8:da:13:f2:36:0b:14:5a:2d:64:57:c5:95: 89:8a:70:7b:03:22:3a:0d:e8:51:11:bf:e0:0e:d7: 0a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E3:86:34:B8:94:CB:51:8C:F6:81:36:8A:AD:76:29:09:8D:A9:5A X509v3 Authority Key Identifier: keyid:9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f3:db:6d:9d:d1:16:d0:ff:51:52:26:61:c4:97:a9:60:30:8b: ce:50:f2:42:cf:8a:95:35:77:ea:b3:0b:8b:14:e5:19:19:07: e2:bf:57:39:2e:ef:0d:d6:c6:c3:35:33:54:d1:aa:81:f5:75: 95:05:f3:07:b9:ce:41:28:82:e5:15:a1:80:f3:4a:aa:20:22: ed:1f:be:b8:80:23:f0:b1:70:d5:02:91:e2:06:bf:a5:c2:ff: 58:ba:f7:8e:90:ba:e7:c7:08:f6:b9:33:d5:bb:e2:67:b8:df: b9:88:97:ba:f2:42:1a:1e:dd:01:a1:5c:95:c2:5b:63:f5:ec: 1b:75:c1:78:94:af:04:bc:f2:59:ba:79:2f:6b:95:35:b8:66: e0:9d:3b:aa:64:bb:26:81:5c:d3:c2:f5:89:de:e2:60:62:8f: d3:56:57:d2:86:99:ff:d4:81:c0:17:bf:b7:11:16:cd:29:9b: ab:26:c9:2d:28:19:9d:9f:ad:67:5a:bc:75:bf:51:3b:d3:8c: ca:13:9f:bd:5e:cc:50:ec:1e:4c:03:7d:13:90:73:91:d2:92: a2:3e:67:35:02:bc:66:19:78:41:2f:ea:6f:1c:7c:3c:fb:fd: 93:78:fd:66:2e:84:ca:52:15:11:ab:74:96:fc:c5:44:8e:12: 58:02:78:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI2OTYxMTAvBgNVBAUTKDlDQkZCMTM3NEJFOTMyOTdBREMxQjIxREJEMzc5OEQx NUJEMjc0REYwHhcNMjUwNzAyMTg0MjAwWhcNMjUwNzA5MTg0MjAwWjAYMRYwFAYD VQQDEw02ODY1N2Q3OC0yYWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsEuqV+JorfcJFj6f+xAN+ZV4DmGp9aAKWoSIAmIve3r6eQVmyqpCbZQsCCP 4V5IJYTUjdwjkRshwjo4DZOz4FhDgM/s91dP1YtDE5xn92cBr2clHc4WK7jBO/TI sPKXJSejgRYM77SsVLlFsJYaqAj+EZGjleQfp81DGQRXuQFb3nzX/BYxzsOlUGbc 4R5KD+TV15ARviHU9j15zYa0xiF/mkdiTsiv7qoqOTX0RoWVK/9z7uJrfWBf5U1Y d1UHDEQSQAUjiSEQ+EmzENHDtQVWzRAFu77a6JA0RoAA5aLrqLjaE/I2CxRaLWRX xZWJinB7AyI6DehREb/gDtcKZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjjhjS4 lMtRjPaBNoqtdikJjalaMB8GA1UdIwQYMBaAFJy/sTdL6TKXrcGyHb03mNFb0nTf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjY5Ni83MjVDQTFENDA2 Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1wZXR3YklkdlRlWTBWdlNk TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MLXhOMHZwTXBldHdiSWR2VGVZMFZ2U2ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjY5Ni83MjVDQTFENDA2Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1w ZXR3YklkdlRlWTBWdlNkTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDz222d0RbQ/1FSJmHEl6lgMIvOUPJCz4qVNXfqswuLFOUZGQfiv1c5 Lu8N1sbDNTNU0aqB9XWVBfMHuc5BKILlFaGA80qqICLtH764gCPwsXDVApHiBr+l wv9YuveOkLrnxwj2uTPVu+JnuN+5iJe68kIaHt0BoVyVwltj9ewbdcF4lK8EvPJZ unkva5U1uGbgnTuqZLsmgVzTwvWJ3uJgYo/TVlfShpn/1IHAF7+3ERbNKZurJskt KBmdn61nWrx1v1E704zKE5+9XsxQ7B5MA30TkHOR0pKiPmc1ArxmGXhBL+pvHHw8 +/2TeP1mLoTKUhURq3SW/MVEjhJYAniA -----END CERTIFICATE-----Generated at Thu Jul 3 07:13:34 2025 by rpki-client