$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft File: nb0ycj1x0bhWzIRJBDf78NpVJWo.mft (raw, json) Hash identifier: kYKSL/qwhjypdqmVEkPmntGOUHeQEnWJH4XI8edGSco= Subject key identifier: 10:67:EC:05:CB:5A:21:DE:09:53:93:3D:E6:3A:B3:4D:15:B6:3B:89 Authority key identifier: 9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A Certificate issuer: /CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Certificate serial: 0F50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft Manifest number: 0F49 Signing time: Fri 04 Jul 2025 17:53:33 +0000 Manifest this update: Fri 04 Jul 2025 17:53:32 +0000 Manifest next update: Fri 11 Jul 2025 17:53:32 +0000 Files and hashes: 1: nb0ycj1x0bhWzIRJBDf78NpVJWo.crl (hash: KbWbSiETN5ZJmqgUAmAXcy3vih+g/ZviZrn/+2zYlo0=) 2: B0DA9FC46FDD11E9BC194664C4F9AE02.roa (hash: Hb9hkw/JGVDNL3WRZDBLo8Md0h4gCqoVhQUhIQUyimQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3920 (0xf50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B41, serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Validity Not Before: Jul 4 17:53:32 2025 GMT Not After : Jul 11 17:53:32 2025 GMT Subject: CN=6868151d-5c4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:49:8d:7d:71:47:0f:09:61:08:bc:f4:54:22: ae:9b:75:9c:15:28:f0:93:c5:f9:bd:24:33:c8:7b: cc:05:26:6e:9e:32:7b:23:2a:01:94:15:3a:3f:80: 9e:25:17:5e:00:ac:46:6f:88:56:50:c0:1d:d8:13: ae:94:73:57:13:fe:af:ff:d0:90:fa:36:38:b2:c1: e0:45:c0:4c:7e:85:48:ad:69:5f:ed:6c:13:d0:d2: 2f:1c:44:1b:90:d9:87:3b:6c:37:ed:6b:30:56:f7: 40:9f:e6:ef:53:43:b7:64:19:22:25:3e:d2:0c:e7: 3c:69:75:0a:41:4e:ff:91:41:b9:3f:59:82:ad:71: 78:8d:ff:a0:90:81:cb:25:07:bf:7e:a5:1a:b6:d5: f5:60:73:ba:4d:e5:7f:d6:42:f7:43:c3:84:4a:03: d5:65:de:e0:7d:a4:60:aa:f6:dd:24:94:92:b9:2d: 17:1e:e7:59:2c:9a:0a:e6:96:64:f9:e4:00:33:04: af:25:cb:ba:a9:9c:a8:cc:74:66:ef:e2:fe:ed:80: 64:f7:14:0f:61:00:f6:e4:c7:29:1f:77:a4:a1:9a: 1e:55:6b:f4:c6:9b:cb:5b:76:f2:7d:ef:09:9a:74: db:2b:32:e7:4c:b8:6e:05:5d:44:04:50:af:f1:58: 44:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:67:EC:05:CB:5A:21:DE:09:53:93:3D:E6:3A:B3:4D:15:B6:3B:89 X509v3 Authority Key Identifier: keyid:9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:0e:7d:ae:34:de:8a:0b:e9:65:a2:a2:50:71:e0:2e:2f:c1: 8d:5d:91:e1:a3:85:c0:bd:f1:e4:44:4d:53:5e:af:38:3b:bf: d8:72:67:8b:95:6b:a1:e0:5e:01:44:3e:4b:ff:72:87:96:91: ad:47:ab:64:f0:1b:7c:65:79:a3:d3:a8:1f:52:60:d5:53:23: 21:65:7c:c5:2f:54:11:3c:89:3f:94:e2:b9:1a:5e:e4:85:3b: 0c:79:91:a0:c3:24:71:14:6a:22:71:aa:45:c7:53:c2:70:c2: 0a:b2:74:0e:b6:ac:de:ff:bb:db:9c:23:1f:86:e8:78:06:ab: 16:c8:39:a5:11:fc:29:a8:8b:c7:44:ef:ec:33:e6:72:f8:1a: 16:8b:cd:f2:60:df:dd:77:2d:dc:0f:00:6a:92:80:a9:c1:0e: a6:45:8e:74:ee:21:f5:8b:aa:9d:6e:88:45:7f:e5:04:53:86: 61:94:f4:12:34:ed:aa:e9:ad:42:8b:84:e7:96:98:a9:97:64: 53:99:16:b1:3a:25:5f:5c:c5:a4:30:ec:5f:f1:01:03:b0:a6: e3:5f:ca:3d:17:5f:75:ef:55:d3:a8:c9:11:b0:16:fc:81:94: f0:c7:f1:ab:08:18:a9:1c:ae:76:7d:50:2a:67:6f:76:52:4c: 92:bb:a1:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCNDExMTAvBgNVBAUTKDlEQkQzMjcyM0Q3MUQxQjg1NkNDODQ0OTA0MzdGQkYw REE1NTI1NkEwHhcNMjUwNzA0MTc1MzMyWhcNMjUwNzExMTc1MzMyWjAYMRYwFAYD VQQDEw02ODY4MTUxZC01YzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kmNfXFHDwlhCLz0VCKum3WcFSjwk8X5vSQzyHvMBSZunjJ7IyoBlBU6P4Ce JRdeAKxGb4hWUMAd2BOulHNXE/6v/9CQ+jY4ssHgRcBMfoVIrWlf7WwT0NIvHEQb kNmHO2w37WswVvdAn+bvU0O3ZBkiJT7SDOc8aXUKQU7/kUG5P1mCrXF4jf+gkIHL JQe/fqUattX1YHO6TeV/1kL3Q8OESgPVZd7gfaRgqvbdJJSSuS0XHudZLJoK5pZk +eQAMwSvJcu6qZyozHRm7+L+7YBk9xQPYQD25McpH3ekoZoeVWv0xpvLW3byfe8J mnTbKzLnTLhuBV1EBFCv8VhETwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBn7AXL WiHeCVOTPeY6s00VtjuJMB8GA1UdIwQYMBaAFJ29MnI9cdG4VsyESQQ3+/DaVSVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUI0MS8zM0QyNTMxNjZG REIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBiaFd6SVJKQkRmNzhOcFZK V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iMHljajF4MGJoV3pJUkpCRGY3OE5wVkpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUI0MS8zM0QyNTMxNjZGREIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBi aFd6SVJKQkRmNzhOcFZKV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsDn2uNN6KC+lloqJQceAuL8GNXZHho4XAvfHkRE1TXq84O7/YcmeL lWuh4F4BRD5L/3KHlpGtR6tk8Bt8ZXmj06gfUmDVUyMhZXzFL1QRPIk/lOK5Gl7k hTsMeZGgwyRxFGoicapFx1PCcMIKsnQOtqze/7vbnCMfhuh4BqsWyDmlEfwpqIvH RO/sM+Zy+BoWi83yYN/ddy3cDwBqkoCpwQ6mRY507iH1i6qdbohFf+UEU4ZhlPQS NO2q6a1Ci4Tnlpipl2RTmRaxOiVfXMWkMOxf8QEDsKbjX8o9F19171XTqMkRsBb8 gZTwx/GrCBipHK52fVAqZ292UkySu6F0 -----END CERTIFICATE-----Generated at Sat Jul 5 08:04:50 2025 by rpki-client