$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: qe2/7Ej8DxOwBbWM2aAm67J0LGOux+nU8w+opKAzvJ0= Subject key identifier: 24:DC:E3:57:17:52:51:BB:20:93:EF:CA:53:73:52:BB:01:96:6D:64 Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0AC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 133B Signing time: Fri 04 Jul 2025 19:48:29 +0000 Manifest this update: Fri 04 Jul 2025 19:48:28 +0000 Manifest next update: Fri 11 Jul 2025 19:48:28 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: n4bQCDcFNNHHTOGsh6q5OfBRPXbuFsGJQd8AFchxYMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2755 (0xac3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: Jul 4 19:48:28 2025 GMT Not After : Jul 11 19:48:28 2025 GMT Subject: CN=6868300c-885c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:2d:24:48:7d:48:f7:cf:7f:03:7d:66:3f: 3b:9d:06:f5:4e:f9:33:80:d5:78:68:2a:6b:fe:00: 37:d4:d4:99:73:ce:1e:14:ba:5c:ae:59:f8:be:d5: 23:bf:ec:ac:42:5a:f5:62:a3:67:a9:f7:11:30:b3: a3:a0:9c:cf:13:97:43:4a:a9:ea:a9:34:97:0d:e1: b8:76:dc:d1:60:69:aa:0c:b1:68:af:60:37:1b:7f: 03:95:92:82:b1:98:76:ce:c1:99:7a:16:08:36:81: 28:ec:61:3a:a9:2d:82:12:49:a9:42:d6:77:52:7a: a0:cc:f6:62:11:fc:6f:47:bd:34:23:87:42:ac:00: 3f:34:48:f1:8f:0c:2a:68:d5:f8:98:79:9c:c3:8c: 14:01:4e:c9:c0:3f:3d:2b:de:8c:82:3a:fc:22:12: fd:f7:4f:2d:0b:06:8f:6f:23:d0:8f:11:41:33:2a: f2:2c:f8:ea:f0:44:86:86:f6:b6:58:13:08:d3:34: 75:d8:0c:c5:c0:a9:fb:5f:1f:00:34:ca:ae:0f:29: 8b:35:ff:0a:46:28:6a:dc:18:f0:af:2c:02:3b:da: b1:c3:89:82:c0:24:c6:c4:f0:42:55:96:cc:03:21: 9f:c6:55:d2:bf:62:d8:bf:0e:1a:92:22:a5:c2:d4: 3c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:DC:E3:57:17:52:51:BB:20:93:EF:CA:53:73:52:BB:01:96:6D:64 X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:4a:a6:bd:e7:3f:ae:bd:eb:9a:c0:ff:82:d8:08:4c:d0:1e: cc:a0:c6:2d:17:4d:be:aa:69:1f:6f:29:a3:38:2e:49:f0:3a: 90:42:3e:a5:01:e2:f3:2f:a8:49:d4:dd:11:be:c5:25:99:26: c6:83:fc:31:0b:83:32:fd:eb:b4:8a:7b:fe:7c:df:bb:0a:1f: 4b:23:bb:a6:73:ca:89:eb:ca:ad:93:d0:6d:80:81:df:a1:3e: 33:0a:09:cd:2c:77:e2:a5:a2:2b:b2:c1:a7:2c:12:aa:e3:71: c7:bd:13:ce:9e:b4:62:a4:de:b1:2b:cd:dc:5c:bf:42:40:95: 39:6d:a5:f1:33:91:16:f4:c9:cc:55:ec:75:ff:aa:f4:c9:94: b8:90:46:e3:fc:a2:b2:f9:38:e8:02:9b:a3:17:23:2b:e3:18: 09:52:8f:4d:6e:0e:a7:61:62:fa:05:40:45:a5:62:81:d0:3a: 2c:10:47:18:69:c2:4e:58:af:bd:66:b4:2d:97:24:31:5f:a4: f7:f2:77:63:7b:b4:9d:d4:51:82:d1:23:cc:8a:bf:84:62:63: a9:24:c9:6d:6e:97:67:28:9f:96:c5:86:38:44:e1:e3:ac:80: a7:94:f0:50:83:02:bd:7b:d7:c8:c0:63:93:6e:7d:06:02:2d: fa:9d:f9:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjUwNzA0MTk0ODI4WhcNMjUwNzExMTk0ODI4WjAYMRYwFAYD VQQDEw02ODY4MzAwYy04ODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0AtJEh9SPfPfwN9Zj87nQb1TvkzgNV4aCpr/gA31NSZc84eFLpcrln4vtUj v+ysQlr1YqNnqfcRMLOjoJzPE5dDSqnqqTSXDeG4dtzRYGmqDLFor2A3G38DlZKC sZh2zsGZehYINoEo7GE6qS2CEkmpQtZ3UnqgzPZiEfxvR700I4dCrAA/NEjxjwwq aNX4mHmcw4wUAU7JwD89K96Mgjr8IhL9908tCwaPbyPQjxFBMyryLPjq8ESGhva2 WBMI0zR12AzFwKn7Xx8ANMquDymLNf8KRihq3BjwrywCO9qxw4mCwCTGxPBCVZbM AyGfxlXSv2LYvw4akiKlwtQ8pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTc41cX UlG7IJPvylNzUrsBlm1kMB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARSqa95z+uveuawP+C2AhM0B7MoMYtF02+qmkfbymjOC5J8DqQQj6l AeLzL6hJ1N0RvsUlmSbGg/wxC4My/eu0inv+fN+7Ch9LI7umc8qJ68qtk9BtgIHf oT4zCgnNLHfipaIrssGnLBKq43HHvRPOnrRipN6xK83cXL9CQJU5baXxM5EW9MnM Vex1/6r0yZS4kEbj/KKy+TjoApujFyMr4xgJUo9Nbg6nYWL6BUBFpWKB0DosEEcY acJOWK+9ZrQtlyQxX6T38ndje7Sd1FGC0SPMir+EYmOpJMltbpdnKJ+WxYY4ROHj rICnlPBQgwK9e9fIwGOTbn0GAi36nfkQ -----END CERTIFICATE-----Generated at Sat Jul 5 08:28:41 2025 by rpki-client