$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft File: n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft (raw, json) Hash identifier: vvsXqnFFfL6FcYlPaXEFDF3O6juny2KwDbv9LTvNEyw= Subject key identifier: AD:24:43:9F:BF:BF:73:9A:28:C1:69:A7:B0:2A:B7:B8:9E:D4:C2:6B Authority key identifier: 9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB Certificate issuer: /CN=A917D958/serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft Manifest number: 6E Signing time: Tue 01 Jul 2025 07:43:17 +0000 Manifest this update: Tue 01 Jul 2025 07:43:16 +0000 Manifest next update: Tue 08 Jul 2025 07:43:16 +0000 Files and hashes: 1: n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl (hash: qkZQ/kAKJEILgjhf5YgmSEw3oLlSTCMs7OImNsHwFCk=) 2: 0AC8BB74B5E211EFBEF4BC5AC4F9AE02.roa (hash: oV9dv3enUEk5QI7ZEWYNcHlwdjoeFV6bdPfVFfihoSE=) 3: 0A581522B5E211EFBEF4BC5AC4F9AE02.roa (hash: PxzOBVWe5yWGLa4iNAyNqYyPaQ/eMXGqSREN7aFVLso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:43:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Validity Not Before: Jul 1 07:43:16 2025 GMT Not After : Jul 8 07:43:16 2025 GMT Subject: CN=68639195-cce5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ec:73:4e:b2:36:28:af:28:78:be:a0:de:9f: dd:a0:47:23:fc:e3:b8:05:77:cb:f4:43:a7:77:06: 60:6a:59:62:dc:28:7b:8d:b3:f2:d6:d6:72:40:7b: e3:69:be:a2:78:2a:d0:41:cd:4f:0b:43:df:b3:c3: c3:e2:d1:c2:1d:e8:ce:93:85:3a:60:1d:76:ac:01: 23:9a:3c:a5:ff:0d:59:9c:b5:d2:af:e0:99:5a:00: 4e:fb:c1:3f:a7:1d:4c:5d:c4:ad:6a:f3:db:08:19: 9a:b8:47:f4:d4:28:b7:e0:6c:7e:6d:26:4f:fe:cb: cc:54:84:38:15:00:cf:65:57:53:86:a5:22:de:7a: 2a:97:06:18:88:7e:03:2f:06:e4:23:16:fd:e8:51: f8:48:be:9c:76:d0:1e:ed:27:90:72:e7:14:a2:7d: c0:de:c7:bf:1e:70:c1:c5:6c:21:f6:a8:8f:a9:f1: bf:f9:2c:ee:5d:5b:56:ca:be:2f:cb:d3:0c:b3:22: 50:d0:48:e3:c8:65:0f:40:cc:3a:a2:09:7a:c6:74: 04:42:2b:7b:f2:92:46:34:a2:b2:40:d9:53:3a:59: 8d:bd:83:2a:9d:31:79:9f:5f:74:bf:28:4a:d8:0e: bd:ae:1c:a9:1e:31:7e:5b:c1:be:46:97:46:b3:7c: 2e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:24:43:9F:BF:BF:73:9A:28:C1:69:A7:B0:2A:B7:B8:9E:D4:C2:6B X509v3 Authority Key Identifier: keyid:9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:7d:2e:dc:5f:6b:11:9b:82:50:65:b3:68:46:f7:24:72:e8: 1b:03:a2:f3:14:8f:54:ed:21:7e:4b:ff:f2:50:c4:1b:5e:97: 6c:61:aa:f4:cb:2e:c9:0f:95:a9:03:ca:bb:4b:80:82:d6:63: c7:67:90:3c:1e:94:cd:48:b1:5e:b6:05:6d:23:e8:e9:8f:51: 0e:23:4e:b3:ab:45:62:1b:8f:4b:16:51:90:f4:46:f4:e0:7b: b3:64:e4:15:8f:46:30:6f:d8:ac:c3:e9:44:8d:4f:01:1a:51: e0:e2:83:47:91:5b:ca:9e:7e:74:4f:23:83:e9:c8:6b:eb:46: 8c:03:58:fc:89:d1:f3:c5:70:59:41:5d:6f:d7:97:46:a0:45: 3c:7f:28:dd:0e:1b:e8:b0:b0:67:6b:0b:34:ca:27:32:b7:38: ab:83:ca:a3:9c:e9:37:81:70:1d:f6:4c:96:d3:a3:11:75:18: 9b:d7:8b:8b:ec:cb:24:c7:61:ff:d3:00:e8:1f:d3:82:81:66: 35:07:57:b7:98:c4:72:18:22:cb:69:17:d3:67:aa:c4:d2:28: 08:df:1f:16:10:f7:5e:10:aa:6a:48:de:5e:63:51:13:27:cd: a5:80:9d:32:d2:0a:7a:c1:86:f1:ce:63:19:bd:a3:20:f9:5d: e6:cc:3f:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDk1ODExMC8GA1UEBRMoOUY0OTA2QzBENENDOTY0NUQ5QkZEOTMzNjRBMjNBNUEz M0VGNThEQjAeFw0yNTA3MDEwNzQzMTZaFw0yNTA3MDgwNzQzMTZaMBgxFjAUBgNV BAMTDTY4NjM5MTk1LWNjZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+7HNOsjYoryh4vqDen92gRyP847gFd8v0Q6d3BmBqWWLcKHuNs/LW1nJAe+Np vqJ4KtBBzU8LQ9+zw8Pi0cId6M6ThTpgHXasASOaPKX/DVmctdKv4JlaAE77wT+n HUxdxK1q89sIGZq4R/TUKLfgbH5tJk/+y8xUhDgVAM9lV1OGpSLeeiqXBhiIfgMv BuQjFv3oUfhIvpx20B7tJ5By5xSifcDex78ecMHFbCH2qI+p8b/5LO5dW1bKvi/L 0wyzIlDQSOPIZQ9AzDqiCXrGdARCK3vykkY0orJA2VM6WY29gyqdMXmfX3S/KErY Dr2uHKkeMX5bwb5Gl0azfC5XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrSRDn7+/ c5oowWmnsCq3uJ7UwmswHwYDVR0jBBgwFoAUn0kGwNTMlkXZv9kzZKI6WjPvWNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOTU4LzY3MkRCMDQ4QjM5 QjExRUY4MEY2NDM1RUM0RjlBRTAyL24wa0d3TlRNbGtYWnY5a3paS0k2V2pQdldO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbjBrR3dOVE1sa1hadjlrelpLSTZXalB2V05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OTU4LzY3MkRCMDQ4QjM5QjExRUY4MEY2NDM1RUM0RjlBRTAyL24wa0d3TlRNbGtY WnY5a3paS0k2V2pQdldOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHt9LtxfaxGbglBls2hG9yRy6BsDovMUj1TtIX5L//JQxBtel2xhqvTL LskPlakDyrtLgILWY8dnkDwelM1IsV62BW0j6OmPUQ4jTrOrRWIbj0sWUZD0RvTg e7Nk5BWPRjBv2KzD6USNTwEaUeDig0eRW8qefnRPI4PpyGvrRowDWPyJ0fPFcFlB XW/Xl0agRTx/KN0OG+iwsGdrCzTKJzK3OKuDyqOc6TeBcB32TJbToxF1GJvXi4vs yyTHYf/TAOgf04KBZjUHV7eYxHIYIstpF9NnqsTSKAjfHxYQ914QqmpI3l5jURMn zaWAnTLSCnrBhvHOYxm9oyD5XebMP84= -----END CERTIFICATE-----Generated at Thu Jul 3 02:04:12 2025 by rpki-client