$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: Bg4ERDvYWx3f2cULbJMZ5N9QBoqDXY81RT/TvENFqL0= Subject key identifier: 00:46:16:1D:61:57:38:13:86:1E:B3:7D:72:45:85:39:A4:FF:D5:B9 Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2B7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2B6B Signing time: Wed 02 Jul 2025 14:26:00 +0000 Manifest this update: Wed 02 Jul 2025 14:26:00 +0000 Manifest next update: Wed 09 Jul 2025 14:26:00 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: Nv8Lb2JIAnIh5bi4JFYklDYhf6oBk7+/f1lCOLO4TFc=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: cs/JN2roMF9559frpHSU57kLMdZZdt/kq/+fgPXNaTg=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: kOKMH7bC+n+8o1xcllbA3RXGetoc8aW0IIWJBu8P/uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11135 (0x2b7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Jul 2 14:26:00 2025 GMT Not After : Jul 9 14:26:00 2025 GMT Subject: CN=68654178-240b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5a:1c:ce:e8:d8:73:dd:33:80:8a:40:a5:30: b8:96:fb:af:6c:e3:7a:11:b4:f6:e1:6f:fe:2f:73: fd:b3:6a:ec:b5:84:d9:e6:aa:d7:76:cd:85:2c:11: db:1c:d8:37:79:ba:00:4c:fa:37:da:37:d2:cf:8d: 0d:05:65:6f:da:59:e6:d3:7c:6e:07:cd:39:fa:bc: 59:df:ec:8c:24:4d:05:c3:29:21:c6:a6:61:7a:8b: da:6c:e9:bb:92:ed:be:3f:e4:18:23:3b:8e:a0:04: 8f:f5:9c:58:f5:5c:6a:3a:7f:bf:b2:93:e3:17:4d: ff:7d:14:c7:c7:9b:98:a7:f8:e9:d8:93:0f:1d:ee: 33:be:90:99:1b:93:d3:e0:ba:96:9f:f8:d2:69:db: 41:f7:90:a7:f1:69:21:59:3f:5c:4c:b4:3e:75:e2: 5f:03:8c:8d:d5:60:a7:95:b3:d2:a5:bc:f0:d1:eb: 0f:47:7e:4e:38:c9:c8:ff:89:00:55:59:22:27:e4: ad:79:82:71:4f:5d:af:c0:2a:14:27:83:f4:36:ec: 53:50:18:b2:bf:fb:8f:59:d4:46:b7:10:2b:cc:58: 5f:12:8a:fb:98:ed:2b:59:75:8a:1b:48:86:4b:f4: cf:b8:f5:be:c0:44:55:a0:c9:25:1e:e2:66:26:a8: 4d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:46:16:1D:61:57:38:13:86:1E:B3:7D:72:45:85:39:A4:FF:D5:B9 X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:e2:d9:c8:05:cc:5f:90:75:db:a4:31:5a:63:13:f2:c6:8b: 45:27:03:85:ac:a2:6c:c2:6c:05:b2:ae:b6:85:c2:7e:e8:72: 04:e9:a3:ab:88:92:50:3e:77:3c:31:00:a7:84:4c:fd:ab:d6: e8:e2:ae:86:14:9e:eb:06:38:31:86:9e:3d:e9:1e:67:a4:8f: 7f:50:ed:7e:31:c7:56:0c:10:59:cb:f3:25:ce:2c:32:70:08: 3b:8b:8d:9c:04:89:c9:2d:91:73:ef:cf:2b:c1:47:9a:bc:b1: 5b:44:65:af:70:ea:3a:cb:f8:c7:df:f2:a4:3f:a4:94:6b:64: 2c:3e:4a:9b:ec:12:48:66:77:5e:e4:57:92:0f:55:de:e5:ba: 52:c3:ac:4a:54:2f:3f:79:8e:6e:e5:5d:82:26:94:e8:fa:9c: be:6b:a9:cf:13:0c:2c:1b:de:a2:5d:18:94:f5:14:65:bf:98: 1b:3c:17:99:c8:dc:3f:7e:ff:f7:21:2b:e2:90:44:d6:7e:80: 88:75:35:5d:e2:15:46:69:a9:5b:e9:9e:5b:99:37:3f:de:ae: b6:82:eb:e1:00:cb:5c:eb:08:2f:a6:f9:81:f4:44:f3:21:f0: b5:65:66:d6:d5:6c:83:80:dd:fb:10:88:97:5a:f0:c8:3d:d5: e3:c2:01:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUwNzAyMTQyNjAwWhcNMjUwNzA5MTQyNjAwWjAYMRYwFAYD VQQDEw02ODY1NDE3OC0yNDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FoczujYc90zgIpApTC4lvuvbON6EbT24W/+L3P9s2rstYTZ5qrXds2FLBHb HNg3eboATPo32jfSz40NBWVv2lnm03xuB805+rxZ3+yMJE0FwykhxqZheovabOm7 ku2+P+QYIzuOoASP9ZxY9VxqOn+/spPjF03/fRTHx5uYp/jp2JMPHe4zvpCZG5PT 4LqWn/jSadtB95Cn8WkhWT9cTLQ+deJfA4yN1WCnlbPSpbzw0esPR35OOMnI/4kA VVkiJ+SteYJxT12vwCoUJ4P0NuxTUBiyv/uPWdRGtxArzFhfEor7mO0rWXWKG0iG S/TPuPW+wERVoMklHuJmJqhNeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABGFh1h VzgThh6zfXJFhTmk/9W5MB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz4tnIBcxfkHXbpDFaYxPyxotFJwOFrKJswmwFsq62hcJ+6HIE6aOr iJJQPnc8MQCnhEz9q9bo4q6GFJ7rBjgxhp496R5npI9/UO1+McdWDBBZy/Mlziwy cAg7i42cBInJLZFz788rwUeavLFbRGWvcOo6y/jH3/KkP6SUa2QsPkqb7BJIZnde 5FeSD1Xe5bpSw6xKVC8/eY5u5V2CJpTo+py+a6nPEwwsG96iXRiU9RRlv5gbPBeZ yNw/fv/3ISvikETWfoCIdTVd4hVGaalb6Z5bmTc/3q62guvhAMtc6wgvpvmB9ETz IfC1ZWbW1WyDgN37EIiXWvDIPdXjwgHy -----END CERTIFICATE-----Generated at Fri Jul 4 01:03:50 2025 by rpki-client