$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: dI77xYfrd3OIUfn0z/0zeVbIM8kmVbSxm2U8kCrQQG8= Subject key identifier: D0:B1:4D:FF:88:60:2A:97:C8:4B:AF:BD:36:4F:AF:0C:D5:40:DB:9A Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 01A0 Signing time: Wed 02 Jul 2025 17:17:52 +0000 Manifest this update: Wed 02 Jul 2025 17:17:52 +0000 Manifest next update: Wed 09 Jul 2025 17:17:52 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: VeYYpzxInTGe9h6eq0XkXOJuonFQuQuSCPqRVYUIR8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:17:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: Jul 2 17:17:52 2025 GMT Not After : Jul 9 17:17:52 2025 GMT Subject: CN=686569c0-c5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:86:fb:a1:78:85:d6:44:99:1a:85:4b:79:6a: e0:61:54:90:c7:78:8e:53:df:9f:7a:48:2b:0c:06: 30:29:20:b5:cb:b0:22:d1:a1:1e:e9:04:15:56:d8: 2b:a1:00:3f:ff:08:ad:ec:2a:8b:4b:cf:19:8f:70: 26:59:6b:b5:33:51:77:72:c7:6b:ab:7a:42:94:81: 53:97:59:d2:7b:52:15:cc:de:05:73:28:82:15:47: a9:80:ba:2b:aa:70:16:80:73:45:79:67:16:28:f1: b9:99:4e:33:f9:40:80:5b:fe:aa:40:27:ea:a4:b9: d6:2d:ea:12:15:c1:fa:b9:0c:22:38:d3:40:88:ab: ef:52:25:2e:ef:c4:45:8c:ff:99:7c:a5:15:a8:c0: 19:cc:42:23:43:82:ad:2b:e2:0e:c6:12:6c:be:97: 40:91:6b:fb:9b:4f:9c:b6:17:c6:47:cc:00:91:be: ec:52:64:0c:3c:6f:4a:50:0f:3e:e3:4f:64:20:36: b9:6d:74:74:a4:e2:d5:6f:1e:ec:c8:39:0d:4a:17: 1f:30:8d:59:45:b3:c8:b6:18:a0:fd:bd:fe:55:03: a4:cd:f4:a2:a7:22:60:cd:5e:51:62:e2:69:bb:e7: 65:65:87:0e:f9:cd:ea:da:37:b6:97:ca:9a:c4:6a: 28:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B1:4D:FF:88:60:2A:97:C8:4B:AF:BD:36:4F:AF:0C:D5:40:DB:9A X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:17:c3:67:0e:53:7d:bb:de:bd:68:c7:4a:67:53:8b:7f:ad: b4:45:1e:48:7c:bc:51:dc:e8:e7:80:69:29:4f:ec:6f:00:27: 93:5d:f1:8e:ee:03:c5:74:6c:ce:2e:6a:d3:4b:70:21:72:ad: b7:a3:61:52:14:05:f3:9f:73:0d:f9:4f:9d:3e:2c:96:f3:95: 74:6f:29:12:87:e9:3d:46:39:98:1c:f4:b0:d5:00:68:a6:4d: 00:b3:fe:0b:b2:73:af:25:5b:1e:2a:3f:10:f5:aa:3a:b7:66: c8:c9:cf:b9:ed:c6:bd:74:ba:d8:3c:61:d5:8e:c0:43:52:a1: 80:8f:95:bd:3c:20:58:83:99:97:8a:39:95:cd:8e:ad:4f:e9: 15:08:94:f0:5e:eb:94:e3:0a:2e:f1:db:57:39:d8:58:c0:cb: a1:ed:db:c3:db:95:72:6f:77:15:1f:e2:fb:e7:ad:83:dc:2f: 22:5b:aa:70:55:5f:5e:ee:20:32:3d:45:d5:06:a3:df:13:e9: 26:fd:80:d7:9f:2f:f7:53:a8:3d:43:26:82:55:7d:9d:74:f3: 09:07:ab:c7:5f:34:c2:ee:a1:e8:d9:71:68:6f:f5:3b:53:ea: ab:ca:06:46:0b:1b:20:da:a8:45:e9:19:9d:84:1e:55:5f:cd: 84:30:60:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjUwNzAyMTcxNzUyWhcNMjUwNzA5MTcxNzUyWjAYMRYwFAYD VQQDEw02ODY1NjljMC1jNWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnob7oXiF1kSZGoVLeWrgYVSQx3iOU9+fekgrDAYwKSC1y7Ai0aEe6QQVVtgr oQA//wit7CqLS88Zj3AmWWu1M1F3csdrq3pClIFTl1nSe1IVzN4FcyiCFUepgLor qnAWgHNFeWcWKPG5mU4z+UCAW/6qQCfqpLnWLeoSFcH6uQwiONNAiKvvUiUu78RF jP+ZfKUVqMAZzEIjQ4KtK+IOxhJsvpdAkWv7m0+cthfGR8wAkb7sUmQMPG9KUA8+ 409kIDa5bXR0pOLVbx7syDkNShcfMI1ZRbPIthig/b3+VQOkzfSipyJgzV5RYuJp u+dlZYcO+c3q2je2l8qaxGoocwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCxTf+I YCqXyEuvvTZPrwzVQNuaMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRF8NnDlN9u969aMdKZ1OLf620RR5IfLxR3OjngGkpT+xvACeTXfGO 7gPFdGzOLmrTS3Ahcq23o2FSFAXzn3MN+U+dPiyW85V0bykSh+k9RjmYHPSw1QBo pk0As/4LsnOvJVseKj8Q9ao6t2bIyc+57ca9dLrYPGHVjsBDUqGAj5W9PCBYg5mX ijmVzY6tT+kVCJTwXuuU4wou8dtXOdhYwMuh7dvD25Vyb3cVH+L7562D3C8iW6pw VV9e7iAyPUXVBqPfE+km/YDXny/3U6g9QyaCVX2ddPMJB6vHXzTC7qHo2XFob/U7 U+qrygZGCxsg2qhF6RmdhB5VX82EMGD+ -----END CERTIFICATE-----Generated at Fri Jul 4 17:42:25 2025 by rpki-client