$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: 5sO1Yffy/pBQIEwHLSodVTpRHrRbzUyMzqMkr273gpI= Subject key identifier: 69:1C:2C:6B:AE:FB:82:78:4A:07:F2:B7:3B:40:43:24:33:E0:EC:0C Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 01BA Signing time: Fri 22 Aug 2025 17:13:32 +0000 Manifest this update: Fri 22 Aug 2025 17:13:32 +0000 Manifest next update: Fri 29 Aug 2025 17:13:32 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: 0IqDryDWS5+sIht0ddxHuMb5Bzuljru8HyTzSEAByqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: Aug 22 17:13:32 2025 GMT Not After : Aug 29 17:13:32 2025 GMT Subject: CN=68a8a53c-50d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7c:26:e4:ec:14:8f:b7:b0:98:9d:97:57:cb: 1e:b4:89:c4:b4:27:49:a7:08:33:ce:6b:ce:17:18: 24:2e:95:e0:6d:9e:11:a2:a4:62:62:3c:95:b1:04: 69:1f:39:8d:5d:f4:51:e7:1f:f6:cb:67:80:07:1f: 15:05:70:ad:b8:a7:a9:e3:3a:9a:c5:c3:0b:b9:24: 49:6b:92:fd:d0:ef:74:00:25:e2:ce:b1:72:7f:2f: 3b:4c:3b:1b:64:46:db:51:4e:84:2d:4f:71:71:92: 59:8b:53:54:33:59:52:37:52:39:e1:42:c0:50:32: 0e:80:4e:9d:1c:04:dd:1a:79:e8:0d:2b:27:f2:a0: 6a:f1:18:d4:39:9e:1c:2d:e7:4d:87:6b:a1:cc:6f: ab:a8:fc:82:91:ca:a5:72:06:04:d4:1c:5c:d6:d3: 2c:5c:69:ea:99:44:34:e7:2b:12:a1:6d:0e:5f:b5: fc:7d:1e:bc:48:08:e5:65:f1:9b:2f:83:fc:7e:9f: c3:19:dd:f2:d4:cc:e9:84:dd:1c:d3:86:3b:67:e1: dc:0a:8a:9c:c3:1a:c0:43:78:45:32:e6:16:37:e2: 5c:49:5a:18:94:8b:d9:c3:f8:48:6a:1e:00:b6:b6: b1:64:65:39:e1:4e:8f:ba:a0:d6:dd:21:ac:cc:ec: bc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:1C:2C:6B:AE:FB:82:78:4A:07:F2:B7:3B:40:43:24:33:E0:EC:0C X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:bb:df:5a:01:88:ff:86:36:d4:0e:f1:73:c7:fe:81:89:d0: eb:af:e0:bd:66:85:d8:4d:dd:58:1d:38:b7:f7:4f:4a:02:7d: c8:fd:06:fa:b2:60:fe:d1:cc:38:bd:05:e7:b7:f1:bb:af:a3: 9a:d3:36:85:e0:a2:dd:9f:f4:27:1b:d7:6d:3f:7a:09:8f:74: f4:d3:0a:be:40:f7:b9:78:9e:6d:c5:c2:9e:c6:f5:ce:f3:c6: 61:18:00:bb:1c:e9:49:ab:5b:07:c5:71:06:58:b6:56:a3:b5: cb:c6:8c:0d:ff:67:99:9b:89:bd:f4:08:7b:c0:7b:8d:5f:e6: 89:08:b4:4d:bc:5f:a1:33:de:c8:f7:35:a5:f8:08:b3:28:4f: b7:5a:de:aa:61:d6:ac:a5:31:c2:60:33:ee:6c:ff:f2:03:5c: 10:44:fb:a3:8b:c5:bf:47:b0:d9:7b:ca:ca:3a:19:dd:4f:3d: b1:4a:5d:91:3b:31:e7:27:9c:6c:21:39:fe:32:c2:a4:14:ec: 83:70:01:e2:11:40:e7:ec:76:60:c4:d8:90:b6:94:21:a1:76: 16:33:32:06:6a:c8:76:e2:ac:84:e1:1e:ca:78:ee:2e:ed:2f: 91:fe:ab:ed:3e:f0:f5:d3:29:d5:06:13:da:b4:1b:0d:e6:f7: 21:e0:57:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjUwODIyMTcxMzMyWhcNMjUwODI5MTcxMzMyWjAYMRYwFAYD VQQDEw02OGE4YTUzYy01MGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHwm5OwUj7ewmJ2XV8setInEtCdJpwgzzmvOFxgkLpXgbZ4RoqRiYjyVsQRp HzmNXfRR5x/2y2eABx8VBXCtuKep4zqaxcMLuSRJa5L90O90ACXizrFyfy87TDsb ZEbbUU6ELU9xcZJZi1NUM1lSN1I54ULAUDIOgE6dHATdGnnoDSsn8qBq8RjUOZ4c LedNh2uhzG+rqPyCkcqlcgYE1Bxc1tMsXGnqmUQ05ysSoW0OX7X8fR68SAjlZfGb L4P8fp/DGd3y1MzphN0c04Y7Z+HcCoqcwxrAQ3hFMuYWN+JcSVoYlIvZw/hIah4A traxZGU54U6PuqDW3SGszOy8pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkcLGuu +4J4SgfytztAQyQz4OwMMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZu99aAYj/hjbUDvFzx/6BidDrr+C9ZoXYTd1YHTi3909KAn3I/Qb6 smD+0cw4vQXnt/G7r6Oa0zaF4KLdn/QnG9dtP3oJj3T00wq+QPe5eJ5txcKexvXO 88ZhGAC7HOlJq1sHxXEGWLZWo7XLxowN/2eZm4m99Ah7wHuNX+aJCLRNvF+hM97I 9zWl+AizKE+3Wt6qYdaspTHCYDPubP/yA1wQRPuji8W/R7DZe8rKOhndTz2xSl2R OzHnJ5xsITn+MsKkFOyDcAHiEUDn7HZgxNiQtpQhoXYWMzIGash24qyE4R7KeO4u 7S+R/qvtPvD10ynVBhPatBsN5vch4Fc4 -----END CERTIFICATE-----Generated at Sat Aug 23 15:13:13 2025 by rpki-client