$ rpki-client -vvf rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft File: NAcoRkbqh4WDwlsPqefW7aCRMpg.mft (raw, json) Hash identifier: KswlsSQM4/VoKFkkH/1K8DGZKE28fH73ROF0cvwcRgk= Subject key identifier: 2C:39:45:3E:43:EF:99:A0:68:D6:68:98:15:23:4E:C2:24:B5:F8:DA Authority key identifier: 34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 Certificate issuer: /CN=A919C318/serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Certificate serial: 0914 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft Manifest number: 090D Signing time: Mon 30 Jun 2025 20:28:58 +0000 Manifest this update: Mon 30 Jun 2025 20:28:57 +0000 Manifest next update: Mon 07 Jul 2025 20:28:57 +0000 Files and hashes: 1: NAcoRkbqh4WDwlsPqefW7aCRMpg.crl (hash: d5EURjnw6EQzbiiOGEx4onh4wGBiM4fxobKbUDSfoPQ=) 2: 9AA539E6A82411EA996D5F41C4F9AE02.roa (hash: pMMXr/lqWr+5GcVstLkkyd8gkDTgGy1DHQolAjMLixQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2324 (0x914) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C318, serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Validity Not Before: Jun 30 20:28:57 2025 GMT Not After : Jul 7 20:28:57 2025 GMT Subject: CN=6862f38a-724e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:11:d4:aa:86:bc:a6:57:5a:00:11:4f:65:f9: bd:db:d0:71:1c:d3:0e:d4:db:75:f2:e8:ee:7b:73: f3:fc:82:97:41:c4:e5:79:56:81:40:fe:96:00:94: a8:67:29:0b:e0:04:04:ce:5b:7d:d9:4f:f9:8e:6a: e9:c3:6b:c7:f7:0f:37:14:fe:04:2a:db:21:0f:6d: 54:8e:3a:c8:87:66:55:c1:18:7a:ff:94:8e:a8:e1: fc:3d:bc:e3:12:bb:ac:a9:23:ff:db:de:7c:2c:93: c8:ed:a2:e4:1e:8c:bf:23:a3:ab:11:a2:62:60:08: c2:01:ff:4a:0f:ce:ae:16:45:8d:99:21:2e:14:ef: af:76:52:79:29:51:f7:9f:2f:56:a8:29:f4:0a:5a: 01:7e:4c:ef:08:04:f9:a6:99:dc:d6:08:7e:43:a9: 37:eb:31:1a:2a:69:cb:b7:66:16:dc:78:80:bd:04: 85:ce:d0:dd:f7:fd:fc:0d:79:a0:78:3b:4c:c4:8e: d8:11:e3:ba:96:da:8c:6c:6f:21:19:e4:cb:c7:ca: 14:f7:8a:3c:ed:5a:a7:02:be:28:50:3e:75:1b:a9: 43:69:9e:77:3d:1b:5f:25:93:06:cc:39:7d:5a:63: 6a:af:65:4f:3f:c8:6f:3c:55:e7:25:a3:ca:d0:dd: 11:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:39:45:3E:43:EF:99:A0:68:D6:68:98:15:23:4E:C2:24:B5:F8:DA X509v3 Authority Key Identifier: keyid:34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:fa:84:1c:65:b7:80:97:08:86:90:43:3d:8f:b7:b9:23:90: f0:7d:fd:5b:9e:61:44:6a:8c:86:4a:f2:c0:bb:7f:03:1f:9c: 1f:f1:fe:4d:56:4b:9a:38:7f:e9:22:9d:c8:41:af:d8:de:50: 09:a4:01:9f:9a:8b:ff:c5:b6:01:4f:b5:c7:55:3a:99:42:46: a2:2b:71:6f:35:8b:d8:bf:c9:db:27:1a:c9:77:0f:e2:31:ff: d0:c2:da:52:7f:2e:73:99:be:7b:dc:6e:fc:be:02:bd:02:37: 0e:93:50:1e:22:8c:73:b4:26:03:75:09:17:b6:61:aa:3d:9a: f4:fa:24:9a:f1:38:e4:a5:96:1c:40:e5:7a:ee:74:57:8c:3d: 15:eb:cf:51:18:fb:36:4f:32:ef:80:3d:0c:27:3e:15:54:a0: 23:f1:30:f0:6f:2e:05:89:50:c7:0f:3c:4d:d9:a7:8f:ab:03: a7:34:be:8b:68:ad:ce:fd:1f:3c:e6:bd:d1:3b:80:cc:78:e3: 74:2b:f7:4e:24:74:1f:00:5f:ec:9d:76:7e:51:6e:68:af:9b: 9e:3d:54:10:08:4f:67:16:3f:c3:cf:c5:1f:d7:8b:24:4a:46: 07:65:31:29:d5:b4:7e:5b:ad:ae:f2:9b:40:fd:b2:0b:e1:6f: 3d:5d:1f:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzMTgxMTAvBgNVBAUTKDM0MDcyODQ2NDZFQTg3ODU4M0MyNUIwRkE5RTdENkVE QTA5MTMyOTgwHhcNMjUwNjMwMjAyODU3WhcNMjUwNzA3MjAyODU3WjAYMRYwFAYD VQQDEw02ODYyZjM4YS03MjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxHUqoa8pldaABFPZfm929BxHNMO1Nt18ujue3Pz/IKXQcTleVaBQP6WAJSo ZykL4AQEzlt92U/5jmrpw2vH9w83FP4EKtshD21UjjrIh2ZVwRh6/5SOqOH8Pbzj ErusqSP/2958LJPI7aLkHoy/I6OrEaJiYAjCAf9KD86uFkWNmSEuFO+vdlJ5KVH3 ny9WqCn0CloBfkzvCAT5ppnc1gh+Q6k36zEaKmnLt2YW3HiAvQSFztDd9/38DXmg eDtMxI7YEeO6ltqMbG8hGeTLx8oU94o87VqnAr4oUD51G6lDaZ53PRtfJZMGzDl9 WmNqr2VPP8hvPFXnJaPK0N0RVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCw5RT5D 75mgaNZomBUjTsIktfjaMB8GA1UdIwQYMBaAFDQHKEZG6oeFg8JbD6nn1u2gkTKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzMxOC82NUI2NzFCNkE4 MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0V0R3bHNQcWVmVzdhQ1JN cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BY29Sa2JxaDRXRHdsc1BxZWZXN2FDUk1wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzMxOC82NUI2NzFCNkE4MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0 V0R3bHNQcWVmVzdhQ1JNcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT+oQcZbeAlwiGkEM9j7e5I5Dwff1bnmFEaoyGSvLAu38DH5wf8f5N VkuaOH/pIp3IQa/Y3lAJpAGfmov/xbYBT7XHVTqZQkaiK3FvNYvYv8nbJxrJdw/i Mf/QwtpSfy5zmb573G78vgK9AjcOk1AeIoxztCYDdQkXtmGqPZr0+iSa8TjkpZYc QOV67nRXjD0V689RGPs2TzLvgD0MJz4VVKAj8TDwby4FiVDHDzxN2aePqwOnNL6L aK3O/R885r3RO4DMeON0K/dOJHQfAF/snXZ+UW5or5uePVQQCE9nFj/Dz8Uf14sk SkYHZTEp1bR+W62u8ptA/bIL4W89XR8U -----END CERTIFICATE-----Generated at Wed Jul 2 21:53:17 2025 by rpki-client