$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: DQUKKjTK6SKWdFyCsoLU5KvPBcEAe+IXwzpmQOipXIo= Subject key identifier: 03:7C:C9:4D:0C:54:89:EC:A3:2B:63:CF:3D:F4:B1:FF:23:84:F9:98 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 06A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 069E Signing time: Wed 02 Jul 2025 22:29:28 +0000 Manifest this update: Wed 02 Jul 2025 22:29:28 +0000 Manifest next update: Wed 09 Jul 2025 22:29:28 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: BocSxGv/v5BirCQlX5OVmFmbvp3qI6EbbGh9riPaH+A=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: zKqUOk2enQVo+KwTKKBvY1Ib1LdBjKOEZObmTpDLQzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Jul 2 22:29:28 2025 GMT Not After : Jul 9 22:29:28 2025 GMT Subject: CN=6865b2c8-cdfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ba:b6:99:c4:93:42:07:48:e0:1f:00:42:72: 51:d5:1e:dc:ca:18:31:b8:84:8e:bf:55:79:92:93: 71:f1:99:49:e3:c5:be:e6:db:23:7c:69:38:de:fa: e1:74:9c:ab:26:97:42:46:5f:f0:f2:2a:cf:03:2a: 0e:b0:bd:b9:09:df:3d:d3:1c:4e:51:aa:75:b4:12: e4:45:57:11:ca:a9:5c:63:ba:b1:8f:52:0a:a2:db: a1:98:0e:e2:64:2b:73:58:9d:ad:34:63:e2:87:80: 59:22:ca:38:40:46:9e:90:e1:4c:3f:15:83:33:aa: 7e:ee:8a:54:bf:1e:1c:4b:bc:cd:6f:34:12:f2:60: d4:fb:6e:b9:24:ef:0f:a5:52:8c:36:b6:28:c9:af: 16:1c:75:75:91:2a:26:80:ec:15:9a:ae:71:e6:14: a0:e5:5a:4a:18:62:e8:8b:ee:85:5d:12:dd:c4:87: 9b:05:e9:2c:59:98:d2:63:3d:38:53:76:d9:d9:f9: 1b:21:f5:77:0e:af:ee:2a:a6:d7:eb:a4:79:09:9c: b2:ae:ca:7e:a0:d3:73:46:9c:e5:b3:b9:3f:49:7c: 74:fb:c1:3f:d4:36:f2:a5:a2:87:e5:ab:06:45:04: 1a:8b:89:a8:72:13:53:c7:fd:27:86:a5:c1:7c:3a: ad:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:7C:C9:4D:0C:54:89:EC:A3:2B:63:CF:3D:F4:B1:FF:23:84:F9:98 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:80:c3:1a:b5:16:5b:02:73:a9:cf:72:67:13:44:d0:33:42: 36:f9:a2:b4:05:2d:ef:1c:f8:f3:12:8d:88:4c:28:5b:e6:a4: db:70:70:66:ca:30:d9:3d:e9:be:78:49:b0:52:38:7d:26:3f: 0e:8c:4f:94:09:36:33:69:3a:87:a1:9f:2f:44:73:e9:80:d2: 89:ce:74:98:fe:e5:12:0f:ce:9d:f5:63:52:cd:8a:5d:50:61: b5:22:af:18:d5:72:9a:e8:ee:32:c6:b0:23:d9:e9:ae:c4:54: 9c:8b:91:ce:2a:00:21:77:ec:62:19:7d:9e:8d:86:b1:d5:c9: 37:48:2d:ba:9a:7d:9f:f3:5a:ca:0c:9e:83:4b:de:f6:aa:e5: 29:fe:17:f8:c3:25:01:0c:e4:69:d7:e4:43:c4:a2:a9:dd:cc: 40:e0:0c:19:2f:0b:2e:1e:8c:2b:72:11:02:18:e7:e1:4b:75: bb:87:f9:e6:39:36:10:e9:7d:c2:74:01:ff:ef:04:fb:38:5a: ee:11:73:61:77:5f:18:c7:93:1b:35:d6:1f:8d:af:ae:e4:fa: 85:ce:0f:fe:35:33:1c:97:26:bf:f4:e1:28:51:bc:88:2b:3f: 86:05:68:2a:ac:d3:13:76:07:47:2a:69:75:07:66:94:27:a5: 55:d0:fa:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjUwNzAyMjIyOTI4WhcNMjUwNzA5MjIyOTI4WjAYMRYwFAYD VQQDEw02ODY1YjJjOC1jZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27q2mcSTQgdI4B8AQnJR1R7cyhgxuISOv1V5kpNx8ZlJ48W+5tsjfGk43vrh dJyrJpdCRl/w8irPAyoOsL25Cd890xxOUap1tBLkRVcRyqlcY7qxj1IKotuhmA7i ZCtzWJ2tNGPih4BZIso4QEaekOFMPxWDM6p+7opUvx4cS7zNbzQS8mDU+265JO8P pVKMNrYoya8WHHV1kSomgOwVmq5x5hSg5VpKGGLoi+6FXRLdxIebBeksWZjSYz04 U3bZ2fkbIfV3Dq/uKqbX66R5CZyyrsp+oNNzRpzls7k/SXx0+8E/1DbypaKH5asG RQQai4mochNTx/0nhqXBfDqtkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAN8yU0M VInsoytjzz30sf8jhPmYMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQgMMatRZbAnOpz3JnE0TQM0I2+aK0BS3vHPjzEo2ITChb5qTbcHBm yjDZPem+eEmwUjh9Jj8OjE+UCTYzaTqHoZ8vRHPpgNKJznSY/uUSD86d9WNSzYpd UGG1Iq8Y1XKa6O4yxrAj2emuxFSci5HOKgAhd+xiGX2ejYax1ck3SC26mn2f81rK DJ6DS972quUp/hf4wyUBDORp1+RDxKKp3cxA4AwZLwsuHowrchECGOfhS3W7h/nm OTYQ6X3CdAH/7wT7OFruEXNhd18Yx5MbNdYfja+u5PqFzg/+NTMclya/9OEoUbyI Kz+GBWgqrNMTdgdHKml1B2aUJ6VV0PoW -----END CERTIFICATE-----Generated at Fri Jul 4 18:00:05 2025 by rpki-client