$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: n/CwWjqd/LwB9A8JxPU7HraY7zGg0Z7nUmUO0jQ6Qcw= Subject key identifier: 5A:35:BD:C5:09:F7:81:19:6A:CD:81:90:55:AA:F9:41:F8:AF:E1:BD Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: 4C Signing time: Thu 03 Jul 2025 07:38:01 +0000 Manifest this update: Thu 03 Jul 2025 07:38:00 +0000 Manifest next update: Thu 10 Jul 2025 07:38:00 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: ri+G6O2ACRecvCo1bT27ncAyiwKi/olOkeNh3fRATWc=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: KZxky345FbSXUrOq6QK1EajrLW8GtjyV/j47aC9IQ2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Jul 3 07:38:00 2025 GMT Not After : Jul 10 07:38:00 2025 GMT Subject: CN=68663358-06a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9d:d3:9d:d7:dc:5d:df:d4:94:4d:e5:7c:7a: d4:3b:ef:e0:14:1f:cb:31:f2:d6:d1:cd:ca:e4:40: af:8a:93:27:d8:27:99:b4:24:c3:fd:da:85:ab:f3: 1b:7a:c6:24:8e:27:99:d8:6b:d8:1a:ea:44:06:27: 9b:2a:8a:b1:5f:0e:b7:3d:52:ce:48:1e:8d:a5:8d: 6e:dd:80:8b:94:eb:00:76:49:e8:17:fd:d8:27:af: 5d:45:67:8e:d0:1e:ce:93:9b:dc:3d:c9:3a:4b:c9: ec:99:88:20:14:8b:dd:91:fa:35:24:bb:70:59:67: 79:83:d8:d8:dd:b6:08:92:b6:00:4a:3e:88:98:28: 9f:9c:da:bd:3d:72:4a:27:4b:f1:f9:0f:a0:0e:dc: ea:bd:3b:41:07:b8:37:5d:47:7d:da:47:6f:b2:47: a8:05:c1:80:52:9a:ce:2a:07:75:15:df:bc:23:21: 16:fd:2f:72:7a:df:d5:32:af:e9:71:f3:81:f8:60: 1c:b9:cd:39:62:48:01:4d:e2:af:2d:11:d6:10:54: a6:c7:ff:41:41:d2:81:1f:92:66:95:c3:30:f0:f4: 7d:82:89:49:d5:e8:32:44:71:d5:20:da:ea:8f:ed: ed:2d:25:a9:6f:4c:99:52:42:d0:a4:d3:af:40:7f: ca:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:35:BD:C5:09:F7:81:19:6A:CD:81:90:55:AA:F9:41:F8:AF:E1:BD X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:e3:fc:cb:8f:b2:40:be:4f:c0:b8:28:70:2d:e1:ad:7e:20: 6f:2d:0b:6d:a8:8a:2c:f8:ad:b4:41:77:1c:2d:0a:97:73:80: b2:a8:49:af:d3:74:52:c2:f7:00:c4:13:c8:d6:86:45:41:0d: 89:e3:92:26:fb:b3:a1:71:fd:28:e4:29:96:ad:f3:80:3f:a4: f8:08:80:29:b7:37:c8:b7:c3:78:6d:13:cc:48:c0:38:f6:37: b3:1d:35:21:a0:51:bd:45:d0:fe:40:e0:74:5d:2d:e8:95:66: 53:1c:bd:d5:f2:18:31:25:63:df:60:f8:07:37:e6:33:a8:02: 74:67:38:d9:ce:2e:f5:6d:1e:5e:02:b6:93:2b:85:e8:b3:b7: de:8e:9a:0e:64:3b:e3:66:a1:76:6f:db:3f:43:d0:fe:e4:93: b5:81:3e:7a:a2:f5:f6:1b:c8:1a:ad:5e:41:04:a0:1a:4c:7b: 7e:dd:7e:4b:79:95:89:2d:cc:f8:0b:17:e9:96:99:48:df:2a: f0:34:d8:e5:17:2c:c0:db:47:b7:e7:e9:65:3f:45:b1:2b:44: e7:4d:e4:b8:ea:c9:2b:0a:e3:3d:74:a2:60:85:9a:0c:76:70: 76:56:e8:62:77:ac:e2:fd:a3:21:6d:1c:95:03:75:23:80:26: 33:23:34:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkM3MjExMC8GA1UEBRMoMzYxNkUwMURBMzMxN0YwOUVFQ0E5OEU3QkM3NTRDQkM5 OTBEN0Q2ODAeFw0yNTA3MDMwNzM4MDBaFw0yNTA3MTAwNzM4MDBaMBgxFjAUBgNV BAMTDTY4NjYzMzU4LTA2YTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgndOd19xd39SUTeV8etQ77+AUH8sx8tbRzcrkQK+KkyfYJ5m0JMP92oWr8xt6 xiSOJ5nYa9ga6kQGJ5sqirFfDrc9Us5IHo2ljW7dgIuU6wB2SegX/dgnr11FZ47Q Hs6Tm9w9yTpLyeyZiCAUi92R+jUku3BZZ3mD2NjdtgiStgBKPoiYKJ+c2r09ckon S/H5D6AO3Oq9O0EHuDddR33aR2+yR6gFwYBSms4qB3UV37wjIRb9L3J639Uyr+lx 84H4YBy5zTliSAFN4q8tEdYQVKbH/0FB0oEfkmaVwzDw9H2CiUnV6DJEcdUg2uqP 7e0tJalvTJlSQtCk069Af8pzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWjW9xQn3 gRlqzYGQVar5Qfiv4b0wHwYDVR0jBBgwFoAUNhbgHaMxfwnuypjnvHVMvJkNfWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQzcyLzlENUI1MTU2RUNG OTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTmhiZ0hhTXhmd251eXBqbnZIVk12SmtOZldnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky QzcyLzlENUI1MTU2RUNGOTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14Zndu dXlwam52SFZNdkprTmZXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEPj/MuPskC+T8C4KHAt4a1+IG8tC22oiiz4rbRBdxwtCpdzgLKoSa/T dFLC9wDEE8jWhkVBDYnjkib7s6Fx/SjkKZat84A/pPgIgCm3N8i3w3htE8xIwDj2 N7MdNSGgUb1F0P5A4HRdLeiVZlMcvdXyGDElY99g+Ac35jOoAnRnONnOLvVtHl4C tpMrheizt96Omg5kO+NmoXZv2z9D0P7kk7WBPnqi9fYbyBqtXkEEoBpMe37dfkt5 lYktzPgLF+mWmUjfKvA02OUXLMDbR7fn6WU/RbErROdN5LjqySsK4z10omCFmgx2 cHZW6GJ3rOL9oyFtHJUDdSOAJjMjNEI= -----END CERTIFICATE-----Generated at Fri Jul 4 14:33:22 2025 by rpki-client