$ rpki-client -vvf rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft File: NBfrvXgtZfKcRPwL3lgaTRst66Q.mft (raw, json) Hash identifier: wDgpxU8WFYKEA65YRGeQUdyA3VCxDRpJU9bvwpigq3Y= Subject key identifier: 8F:33:12:6A:28:D2:16:54:9B:9E:04:C2:C0:BA:6F:64:1F:48:36:C6 Authority key identifier: 34:17:EB:BD:78:2D:65:F2:9C:44:FC:0B:DE:58:1A:4D:1B:2D:EB:A4 Certificate issuer: /CN=A91836DB/serialNumber=3417EBBD782D65F29C44FC0BDE581A4D1B2DEBA4 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft Manifest number: 4C Signing time: Thu 03 Jul 2025 07:32:55 +0000 Manifest this update: Thu 03 Jul 2025 07:32:54 +0000 Manifest next update: Thu 10 Jul 2025 07:32:54 +0000 Files and hashes: 1: NBfrvXgtZfKcRPwL3lgaTRst66Q.crl (hash: YtLefswkxtuMxg29uDeOcXvt95WWUNrPcA7F+N4A3oE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.crl rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836DB, serialNumber=3417EBBD782D65F29C44FC0BDE581A4D1B2DEBA4 Validity Not Before: Jul 3 07:32:54 2025 GMT Not After : Jul 10 07:32:54 2025 GMT Subject: CN=68663226-e0aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e3:4a:8c:a9:25:62:70:be:d4:2c:be:ba:08: 1d:bf:f6:81:18:ae:c2:89:c4:82:49:07:83:23:27: 27:e9:fd:5d:3d:b9:16:62:c2:18:58:f0:da:be:62: 0c:cb:45:b2:26:5c:d9:1f:1e:7c:f4:ed:76:98:ea: 93:c7:a0:fe:be:e3:8c:ab:e9:bd:c2:ca:d5:6a:68: 41:36:f9:d9:a8:1b:ae:be:80:d8:02:ab:7c:ed:0a: c3:5b:bf:b4:1f:55:e2:6e:02:c3:98:00:fd:15:7b: b3:df:42:42:51:7d:e2:63:98:9b:9a:1f:7f:d8:8b: 9e:d9:29:aa:e6:de:df:77:62:00:c3:59:ae:b4:02: 7f:57:21:a5:f9:9c:62:dc:94:19:6a:66:cf:94:82: ed:db:c6:fe:51:12:41:19:52:dc:c5:5d:da:86:1b: be:01:be:b4:08:d5:36:15:ee:b1:33:8a:e2:06:28: 0f:46:f1:0f:de:da:f7:c9:70:f7:93:c0:74:5c:87: 9f:c0:32:ab:f6:d4:19:95:30:1d:79:5e:a9:62:8a: c0:1b:8e:26:5f:ef:e6:d8:d8:41:73:f7:d5:41:3e: 41:12:c0:b9:d3:2f:44:8f:87:a4:48:5b:f6:54:45: 77:58:f4:32:d5:ba:89:85:00:f7:bf:e1:36:33:65: 30:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:33:12:6A:28:D2:16:54:9B:9E:04:C2:C0:BA:6F:64:1F:48:36:C6 X509v3 Authority Key Identifier: keyid:34:17:EB:BD:78:2D:65:F2:9C:44:FC:0B:DE:58:1A:4D:1B:2D:EB:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NBfrvXgtZfKcRPwL3lgaTRst66Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836DB/59AFC20AE45E11EFA1562846C4F9AE02/NBfrvXgtZfKcRPwL3lgaTRst66Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:19:2d:c2:44:48:2a:dc:5d:9d:23:72:b2:39:f5:6d:46:dc: cb:26:c0:49:58:54:f6:82:55:7b:7c:49:9c:be:c4:24:63:8a: c0:7b:d4:09:12:6e:8d:38:be:d9:43:dc:4d:c4:8a:2c:8e:6a: d3:10:3c:1a:64:a2:d7:3e:39:e4:ad:88:4c:fd:58:6b:08:62: a6:e5:fa:1d:81:60:ea:95:ab:d0:ae:30:8e:54:70:e3:12:aa: e2:b8:a7:82:dc:86:79:d6:e1:ce:bb:c2:94:f3:6e:9b:6b:2e: ac:65:1c:74:f7:a7:0c:18:95:b2:3a:9f:18:d0:ff:ce:11:bd: c9:12:8c:ed:22:67:a1:72:4c:7b:70:a4:63:10:2a:ad:51:b8: b7:d2:3a:7a:d4:f5:a9:83:a1:58:29:16:7c:83:53:a0:a3:4e: 9f:20:cc:20:63:c7:39:5c:c0:7b:7f:f9:1e:68:9f:04:de:58: c6:0c:e8:6d:3f:4c:19:c9:66:44:d5:0b:6c:00:8b:8a:77:8c: 36:d8:27:56:87:47:88:ed:ae:a7:11:3b:78:a7:c1:f4:24:5b: ae:64:ab:23:ad:1a:50:b1:4a:72:08:83:5f:87:01:cc:74:2b: b7:b5:df:8a:89:35:3a:3d:40:0a:c1:46:18:4e:23:32:fd:f5: f1:83:1d:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEQjExMC8GA1UEBRMoMzQxN0VCQkQ3ODJENjVGMjlDNDRGQzBCREU1ODFBNEQx QjJERUJBNDAeFw0yNTA3MDMwNzMyNTRaFw0yNTA3MTAwNzMyNTRaMBgxFjAUBgNV BAMTDTY4NjYzMjI2LWUwYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDa40qMqSVicL7ULL66CB2/9oEYrsKJxIJJB4MjJyfp/V09uRZiwhhY8Nq+YgzL RbImXNkfHnz07XaY6pPHoP6+44yr6b3CytVqaEE2+dmoG66+gNgCq3ztCsNbv7Qf VeJuAsOYAP0Ve7PfQkJRfeJjmJuaH3/Yi57ZKarm3t93YgDDWa60An9XIaX5nGLc lBlqZs+Ugu3bxv5REkEZUtzFXdqGG74BvrQI1TYV7rEziuIGKA9G8Q/e2vfJcPeT wHRch5/AMqv21BmVMB15XqliisAbjiZf7+bY2EFz99VBPkESwLnTL0SPh6RIW/ZU RXdY9DLVuomFAPe/4TYzZTB/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjzMSaijS FlSbngTCwLpvZB9INsYwHwYDVR0jBBgwFoAUNBfrvXgtZfKcRPwL3lgaTRst66Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkRCLzU5QUZDMjBBRTQ1 RTExRUZBMTU2Mjg0NkM0RjlBRTAyL05CZnJ2WGd0WmZLY1JQd0wzbGdhVFJzdDY2 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTkJmcnZYZ3RaZktjUlB3TDNsZ2FUUnN0NjZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NkRCLzU5QUZDMjBBRTQ1RTExRUZBMTU2Mjg0NkM0RjlBRTAyL05CZnJ2WGd0WmZL Y1JQd0wzbGdhVFJzdDY2US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFQZLcJESCrcXZ0jcrI59W1G3MsmwElYVPaCVXt8SZy+xCRjisB71AkS bo04vtlD3E3EiiyOatMQPBpkotc+OeStiEz9WGsIYqbl+h2BYOqVq9CuMI5UcOMS quK4p4LchnnW4c67wpTzbptrLqxlHHT3pwwYlbI6nxjQ/84RvckSjO0iZ6FyTHtw pGMQKq1RuLfSOnrU9amDoVgpFnyDU6CjTp8gzCBjxzlcwHt/+R5onwTeWMYM6G0/ TBnJZkTVC2wAi4p3jDbYJ1aHR4jtrqcRO3inwfQkW65kqyOtGlCxSnIIg1+HAcx0 K7e134qJNTo9QArBRhhOIzL99fGDHWQ= -----END CERTIFICATE-----Generated at Thu Jul 3 17:34:39 2025 by rpki-client