$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: fPWaFWn1mpU6PqHn81q1Lx28mj+6ilKpVPEgWsUpG7g= Subject key identifier: 37:5C:39:71:1D:6E:5C:5F:26:95:63:B3:A4:35:52:8B:52:54:23:FE Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0C95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0C83 Signing time: Wed 02 Jul 2025 18:29:59 +0000 Manifest this update: Wed 02 Jul 2025 18:29:59 +0000 Manifest next update: Wed 09 Jul 2025 18:29:59 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: QiFlbTTJRpKz4pFH+HeE4kpxlrdSXf5m2yqobVEUX9I=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: OT1wU0R1qfUZlPrVStZHI9ZTJpnzI3jWvMhElEQPU9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:29:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Jul 2 18:29:59 2025 GMT Not After : Jul 9 18:29:59 2025 GMT Subject: CN=68657aa7-c579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:38:41:17:12:49:4c:88:eb:04:46:04:96:a0: 88:9f:3b:64:0f:8e:51:a1:ab:55:ec:34:c6:39:63: 68:55:15:c4:9c:a7:e2:5c:51:7c:f2:1f:05:1d:d1: 19:ca:ae:45:1c:78:e0:22:3a:8a:30:ea:46:8e:ad: 13:9b:c1:2e:e0:a2:e1:39:32:4f:d5:2a:26:3a:54: b1:68:e8:85:0c:72:2d:51:5c:62:ab:f9:e2:05:89: 6d:fd:08:ef:ca:ea:9c:81:39:6b:7c:de:22:55:86: 67:bd:2b:bc:9a:76:dc:bb:a8:4c:ce:25:44:7d:9b: eb:fb:9a:03:c9:fd:52:e0:a2:98:69:3d:d2:17:40: fc:bd:27:f1:7e:cc:57:87:c3:d9:44:85:3d:8d:0a: e4:34:67:c7:e5:60:b8:35:97:27:87:2e:9f:05:ae: da:b0:17:57:97:ce:79:a7:26:9d:a4:66:82:3b:01: 4e:1f:b2:fe:e2:2d:63:1d:a1:2e:ff:bd:41:2b:f3: d0:cf:a7:43:91:d4:8d:80:55:f3:0c:a2:18:1f:4a: 34:ab:19:b3:1d:ba:52:25:96:a6:a3:dd:cf:4d:db: b5:21:9b:d1:45:63:45:2e:8c:7d:81:81:2d:85:18: 50:3b:5e:2c:f4:ba:5b:ca:11:13:e6:5a:b3:51:c4: b8:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:5C:39:71:1D:6E:5C:5F:26:95:63:B3:A4:35:52:8B:52:54:23:FE X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:8d:44:22:85:d8:33:45:bf:f4:a4:1a:cb:fd:89:c4:c9:f7: 7d:3a:52:16:93:6b:c2:1b:83:52:d5:30:ea:9d:57:fa:09:06: 00:ff:15:8f:65:55:f5:8c:93:86:fe:a8:db:49:1a:2c:9e:ef: 4a:9e:3f:eb:fe:e7:39:3c:f9:54:aa:c8:7f:a7:67:e4:a4:10: 43:8a:cf:b9:be:af:90:91:aa:25:18:c0:d8:65:8e:31:0c:4c: b4:a4:5b:8a:4d:cf:f5:0f:73:17:ce:c0:67:40:0d:f9:82:4e: 3d:e7:25:bc:4f:ba:cc:55:a4:e3:02:92:81:5f:74:3d:df:bf: 94:44:b5:80:51:da:4f:52:ba:7e:5e:bf:8a:6b:9f:c6:a1:6a: 5e:8b:d6:db:ee:79:32:ee:8f:e4:45:ae:7a:e7:b7:b0:f3:18: 05:4e:9d:57:c1:13:88:43:9d:78:e8:4d:63:11:16:16:bc:7c: 7a:cd:cd:ff:37:a8:51:75:14:61:f5:ab:b0:bc:3c:6d:7d:25: 4d:18:34:55:c2:02:de:bd:e4:f8:90:59:a0:99:63:71:ee:8c: bd:38:78:5c:cd:0d:cd:80:d7:0e:e6:91:9c:13:83:88:7a:be: d7:55:a2:99:46:32:0d:3d:93:1b:9d:e7:69:f1:be:66:81:5f: c2:95:5d:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUwNzAyMTgyOTU5WhcNMjUwNzA5MTgyOTU5WjAYMRYwFAYD VQQDEw02ODY1N2FhNy1jNTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzhBFxJJTIjrBEYElqCInztkD45RoatV7DTGOWNoVRXEnKfiXFF88h8FHdEZ yq5FHHjgIjqKMOpGjq0Tm8Eu4KLhOTJP1SomOlSxaOiFDHItUVxiq/niBYlt/Qjv yuqcgTlrfN4iVYZnvSu8mnbcu6hMziVEfZvr+5oDyf1S4KKYaT3SF0D8vSfxfsxX h8PZRIU9jQrkNGfH5WC4NZcnhy6fBa7asBdXl855pyadpGaCOwFOH7L+4i1jHaEu /71BK/PQz6dDkdSNgFXzDKIYH0o0qxmzHbpSJZamo93PTdu1IZvRRWNFLox9gYEt hRhQO14s9LpbyhET5lqzUcS48QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdcOXEd blxfJpVjs6Q1UotSVCP+MB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBjUQihdgzRb/0pBrL/YnEyfd9OlIWk2vCG4NS1TDqnVf6CQYA/xWP ZVX1jJOG/qjbSRosnu9Knj/r/uc5PPlUqsh/p2fkpBBDis+5vq+QkaolGMDYZY4x DEy0pFuKTc/1D3MXzsBnQA35gk495yW8T7rMVaTjApKBX3Q937+URLWAUdpPUrp+ Xr+Ka5/GoWpei9bb7nky7o/kRa5657ew8xgFTp1XwROIQ5146E1jERYWvHx6zc3/ N6hRdRRh9auwvDxtfSVNGDRVwgLeveT4kFmgmWNx7oy9OHhczQ3NgNcO5pGcE4OI er7XVaKZRjINPZMbnedp8b5mgV/ClV3m -----END CERTIFICATE-----Generated at Thu Jul 3 21:02:06 2025 by rpki-client