$ rpki-client -vvf rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft File: nczQgPBy3iTvhCxqopJJnvE2m_Q.mft (raw, json) Hash identifier: 1tOSgy8yGd07gS8Xs+0MM7foOiGSzJCKBcZ+llj6h9Q= Subject key identifier: 65:3E:33:E1:93:98:E6:44:B6:9A:1E:65:51:56:E2:D1:F6:D1:3F:D7 Authority key identifier: 9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 Certificate issuer: /CN=A916A504/serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft Manifest number: 59 Signing time: Thu 03 Jul 2025 07:25:32 +0000 Manifest this update: Thu 03 Jul 2025 07:25:31 +0000 Manifest next update: Thu 10 Jul 2025 07:25:31 +0000 Files and hashes: 1: nczQgPBy3iTvhCxqopJJnvE2m_Q.crl (hash: UrwoEj2b1F9emu69RwNL3g1CnwLOup4niKUspKicwVk=) 2: D7BBDE18D3AB11EFB022202CC4F9AE02.roa (hash: zhMP8LF5xzC/Q8On0PtHeNnJWxx2k1+qP2f+3qYJ/jA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A504, serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Validity Not Before: Jul 3 07:25:31 2025 GMT Not After : Jul 10 07:25:31 2025 GMT Subject: CN=6866306b-2bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4c:f7:9b:ab:a3:e8:b2:56:65:72:ac:1d:f1: 05:8d:5f:98:bc:17:f7:71:9b:12:06:d1:42:dc:53: 6f:30:9a:ed:d7:15:b5:87:68:0c:e6:a5:0a:09:3b: ea:16:cd:e0:2e:7a:e8:4f:d6:4a:df:12:8e:2b:9f: 75:03:f1:61:cf:d1:59:4d:94:ad:79:cb:13:49:6f: 08:4a:85:c5:9f:77:1c:63:43:2e:08:72:c6:d5:ec: bd:51:16:b3:75:1f:1f:8e:87:af:b6:de:23:e8:0b: a3:bd:57:22:73:20:80:78:3a:ea:39:1a:ef:c6:8e: 23:e4:0a:04:01:e0:5d:03:c1:68:4a:61:84:ab:0f: 78:ba:eb:0a:17:e4:32:a1:28:9c:07:ab:7c:90:42: 95:40:bf:4b:18:51:a9:68:48:97:f5:81:6a:6c:c7: eb:c7:af:37:71:c6:92:96:dc:22:27:2b:8a:bb:1a: 88:fe:22:91:44:d3:cf:6a:01:6f:33:8a:aa:42:65: e2:37:a1:48:f8:7b:de:72:d3:56:59:e3:b0:7e:46: 5a:3d:1a:23:d1:ec:f0:7e:bc:c6:f9:3c:34:4f:4e: 6a:b0:e1:0d:8e:46:34:bc:4a:4a:40:c5:a1:25:10: 84:ab:b4:4c:3a:cc:fe:d2:f9:6a:25:bd:bd:91:9d: 5c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3E:33:E1:93:98:E6:44:B6:9A:1E:65:51:56:E2:D1:F6:D1:3F:D7 X509v3 Authority Key Identifier: keyid:9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:8a:32:83:ab:cc:28:c0:27:0d:8b:a6:e1:42:15:68:a9:c8: 7c:92:55:33:ec:57:38:65:52:4a:73:46:e3:79:32:82:d7:aa: 76:2a:1f:1b:b0:fa:97:8b:dd:5e:64:2c:a5:de:25:dc:f8:02: 44:cd:71:4b:45:c2:8c:58:60:fe:1b:57:58:2c:00:e3:8f:4f: 32:63:79:32:86:eb:95:8b:bd:49:22:ad:83:cb:35:f9:70:e1: e8:1e:c8:de:de:55:ab:f2:17:ae:4e:4a:d0:70:02:ab:1e:bf: 5c:46:af:02:69:34:8a:cf:4d:16:c4:5f:f6:26:7f:bd:f2:65: ec:4e:3d:ed:7c:0a:92:1d:d5:60:2f:31:24:33:f8:4b:05:8d: 90:7f:0a:0d:3e:74:01:ef:19:79:ce:71:25:e8:76:91:3b:e8: 12:30:b8:95:5a:b6:42:39:c9:33:6f:a8:9a:07:26:11:52:2e: f6:37:0e:bb:f0:88:18:0d:39:94:ed:a1:d3:60:28:04:b5:aa: c8:97:fa:1a:e7:42:34:3e:d5:93:5f:7b:de:c5:5e:25:4a:7e: ed:50:ca:12:c3:90:a2:03:d4:9f:6e:c1:c7:0f:4e:ac:74:15: 5e:9f:bf:60:11:b9:a9:f5:58:08:a2:ad:b3:df:88:37:48:81: 0a:a5:59:bb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTUwNDExMC8GA1UEBRMoOURDQ0QwODBGMDcyREUyNEVGODQyQzZBQTI5MjQ5OUVG MTM2OUJGNDAeFw0yNTA3MDMwNzI1MzFaFw0yNTA3MTAwNzI1MzFaMBgxFjAUBgNV BAMTDTY4NjYzMDZiLTJiZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkTPebq6PoslZlcqwd8QWNX5i8F/dxmxIG0ULcU28wmu3XFbWHaAzmpQoJO+oW zeAueuhP1krfEo4rn3UD8WHP0VlNlK15yxNJbwhKhcWfdxxjQy4IcsbV7L1RFrN1 Hx+Oh6+23iPoC6O9VyJzIIB4Ouo5Gu/GjiPkCgQB4F0DwWhKYYSrD3i66woX5DKh KJwHq3yQQpVAv0sYUaloSJf1gWpsx+vHrzdxxpKW3CInK4q7Goj+IpFE089qAW8z iqpCZeI3oUj4e95y01ZZ47B+Rlo9GiPR7PB+vMb5PDRPTmqw4Q2ORjS8SkpAxaEl EISrtEw6zP7S+Wolvb2RnVxbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZT4z4ZOY 5kS2mh5lUVbi0fbRP9cwHwYDVR0jBBgwFoAUnczQgPBy3iTvhCxqopJJnvE2m/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBNTA0LzMyMUJDNDhDRDNB QjExRUY4RUJEMEMyQkM0RjlBRTAyL25jelFnUEJ5M2lUdmhDeHFvcEpKbnZFMm1f US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmN6UWdQQnkzaVR2aEN4cW9wSkpudkUybV9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB NTA0LzMyMUJDNDhDRDNBQjExRUY4RUJEMEMyQkM0RjlBRTAyL25jelFnUEJ5M2lU dmhDeHFvcEpKbnZFMm1fUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJuKMoOrzCjAJw2LpuFCFWipyHySVTPsVzhlUkpzRuN5MoLXqnYqHxuw +peL3V5kLKXeJdz4AkTNcUtFwoxYYP4bV1gsAOOPTzJjeTKG65WLvUkirYPLNflw 4egeyN7eVavyF65OStBwAqsev1xGrwJpNIrPTRbEX/Ymf73yZexOPe18CpId1WAv MSQz+EsFjZB/Cg0+dAHvGXnOcSXodpE76BIwuJVatkI5yTNvqJoHJhFSLvY3Drvw iBgNOZTtodNgKAS1qsiX+hrnQjQ+1ZNfe97FXiVKfu1QyhLDkKID1J9uwccPTqx0 FV6fv2ARuan1WAiirbPfiDdIgQqlWbs= -----END CERTIFICATE-----Generated at Thu Jul 3 18:32:18 2025 by rpki-client