$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft File: nUVn--JSxmFkKqM-eASKhxf6fLM.mft (raw, json) Hash identifier: 8ig6yxAkvIwdh2X4Ec+0u2FNNfFBTq6VujFCrkCfxks= Subject key identifier: 5A:4D:10:3C:4D:2F:54:6D:DE:C1:EC:36:B4:E7:3C:20:2B:D2:55:DB Authority key identifier: 9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 Certificate issuer: /CN=A9173FAC/serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft Manifest number: 2E Signing time: Thu 03 Jul 2025 07:56:00 +0000 Manifest this update: Thu 03 Jul 2025 07:55:59 +0000 Manifest next update: Thu 10 Jul 2025 07:55:59 +0000 Files and hashes: 1: nUVn--JSxmFkKqM-eASKhxf6fLM.crl (hash: G4vLhdv739WQjMgg9oIEkauH1Cod5/XaeOyt/TmpafI=) 2: AF75682A101911F09363D44DC4F9AE02.roa (hash: /DitzvGpGkwCd2xAbI8HPUNETw+T64yJeC7XoZd/K/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Validity Not Before: Jul 3 07:55:59 2025 GMT Not After : Jul 10 07:55:59 2025 GMT Subject: CN=68663790-0160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:88:8e:51:45:3e:17:b4:a0:5e:23:79:79:e3: 7b:d3:33:53:92:73:56:93:33:75:86:68:45:84:68: 1e:90:a2:42:27:84:f2:1e:a5:82:78:e0:49:ef:1c: d4:83:f0:55:eb:f7:a9:b1:2d:86:8b:cf:33:e7:e6: cf:03:9a:f4:e2:59:a6:ec:59:fd:fb:f5:eb:8d:74: 1b:27:4a:e2:34:20:e1:f8:ba:75:1b:19:ee:28:fe: b2:ff:5a:2f:e3:2a:1b:57:2c:aa:b8:2e:5f:16:ab: bf:37:4a:39:cc:8b:1b:7f:a6:d6:18:a7:48:66:d7: 74:1c:84:63:16:80:82:d1:68:ef:89:3e:64:73:31: d1:86:b6:d9:0f:2f:2f:20:8a:5a:88:da:ba:d9:74: 9e:bf:3f:82:36:a0:8a:cf:22:bc:16:81:c6:61:eb: 67:ed:d7:db:fc:1d:64:37:02:80:7f:26:c4:48:44: cf:23:44:6f:35:09:10:6f:15:5c:65:a2:c7:5f:9c: 9a:33:de:6f:11:69:61:7c:46:fb:f8:f6:f5:e0:36: b6:f2:57:51:d4:39:66:6f:b5:1e:a1:10:6d:31:04: 78:fc:27:08:f3:02:d8:37:f7:26:aa:b0:d6:cf:13: 22:ea:f7:3b:65:a0:f7:cd:25:a1:32:86:41:b4:1f: 51:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4D:10:3C:4D:2F:54:6D:DE:C1:EC:36:B4:E7:3C:20:2B:D2:55:DB X509v3 Authority Key Identifier: keyid:9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:a2:b1:0d:f8:12:57:7c:8e:07:fa:77:66:6d:43:4b:f6:6a: cd:b2:6a:35:cf:ab:24:c3:ac:e0:b0:9d:a8:b8:ff:73:5c:ad: 7d:4a:f6:aa:68:23:e9:c4:12:74:85:ba:07:bc:a1:ef:97:95: e6:05:df:9c:50:c4:39:07:5b:68:4c:b1:61:a5:ab:44:33:c5: 09:6a:3c:a0:53:10:4a:a2:20:e2:c7:e2:d4:ee:fc:22:f2:aa: 77:2e:64:c6:60:dd:d3:8f:fd:28:68:7c:da:6f:db:39:ae:7f: 23:b9:18:80:c5:6f:69:3d:82:eb:7e:7f:c6:b6:65:1b:2b:f2: bb:8a:56:1c:e3:fe:f7:a1:1e:4f:4e:cf:d5:76:d2:d1:00:0c: 94:53:35:bf:e0:b4:36:a0:6a:0f:62:3b:f5:2d:47:7b:d0:57: a1:58:27:a9:65:bf:07:82:7a:ff:84:bf:f1:b0:4c:f9:c2:d3: ad:5c:2d:1a:48:c3:f0:b6:91:cf:87:bd:4d:ce:17:10:29:14: 08:2f:bc:06:98:7b:43:ce:22:59:1c:d4:34:3a:07:d9:04:ac: 39:4a:bc:09:b2:3e:ca:d6:fb:22:98:3d:0c:a4:81:de:a6:ec: 9b:07:63:8e:0f:53:8e:ad:19:d7:a4:8a:fa:53:d4:04:5d:7f: 79:e8:27:0b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoOUQ0NTY3RkJFMjUyQzY2MTY0MkFBMzNFNzgwNDhBODcx N0ZBN0NCMzAeFw0yNTA3MDMwNzU1NTlaFw0yNTA3MTAwNzU1NTlaMBgxFjAUBgNV BAMTDTY4NjYzNzkwLTAxNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjiI5RRT4XtKBeI3l543vTM1OSc1aTM3WGaEWEaB6QokInhPIepYJ44EnvHNSD 8FXr96mxLYaLzzPn5s8DmvTiWabsWf379euNdBsnSuI0IOH4unUbGe4o/rL/Wi/j KhtXLKq4Ll8Wq783SjnMixt/ptYYp0hm13QchGMWgILRaO+JPmRzMdGGttkPLy8g ilqI2rrZdJ6/P4I2oIrPIrwWgcZh62ft19v8HWQ3AoB/JsRIRM8jRG81CRBvFVxl osdfnJoz3m8RaWF8Rvv49vXgNrbyV1HUOWZvtR6hEG0xBHj8JwjzAtg39yaqsNbP EyLq9ztloPfNJaEyhkG0H1GLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWk0QPE0v VG3ewew2tOc8ICvSVdswHwYDVR0jBBgwFoAUnUVn++JSxmFkKqM+eASKhxf6fLMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0FGRjU2M0U2MTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1Ga0txTS1lQVNLaHhmNmZM TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvblVWbi0tSlN4bUZrS3FNLWVBU0toeGY2ZkxNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0FGRjU2M0U2MTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1G a0txTS1lQVNLaHhmNmZMTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB2isQ34Eld8jgf6d2ZtQ0v2as2yajXPqyTDrOCwnai4/3NcrX1K9qpo I+nEEnSFuge8oe+XleYF35xQxDkHW2hMsWGlq0QzxQlqPKBTEEqiIOLH4tTu/CLy qncuZMZg3dOP/ShofNpv2zmufyO5GIDFb2k9gut+f8a2ZRsr8ruKVhzj/vehHk9O z9V20tEADJRTNb/gtDagag9iO/UtR3vQV6FYJ6llvweCev+Ev/GwTPnC061cLRpI w/C2kc+HvU3OFxApFAgvvAaYe0POIlkc1DQ6B9kErDlKvAmyPsrW+yKYPQykgd6m 7JsHY44PU46tGdekivpT1ARdf3noJws= -----END CERTIFICATE-----Generated at Thu Jul 3 20:04:15 2025 by rpki-client