$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: PjrLzTriex66zDK7+7JvDtobrEtiQK1Bl4x73R62p3Y= Subject key identifier: 2A:49:9D:E9:C4:C2:5B:C0:66:CF:ED:A3:69:75:5D:EF:1F:B3:14:0F Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 0304 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 02FF Signing time: Tue 01 Jul 2025 01:54:22 +0000 Manifest this update: Tue 01 Jul 2025 01:54:22 +0000 Manifest next update: Tue 08 Jul 2025 01:54:22 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: adNoLzZcFjdb/QWcn3+p2LjIx9QGIECdrhVLfc/YejY=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: HwkSTw7raizrXpljDXnHXfZQCr+VPlFOvS2ci48bY0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 772 (0x304) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88, serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: Jul 1 01:54:22 2025 GMT Not After : Jul 8 01:54:22 2025 GMT Subject: CN=68633fce-63c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6f:72:08:fe:6a:98:bb:85:d8:a3:38:6f:45: aa:37:7f:73:fc:d8:98:7f:cf:70:02:31:72:1f:5c: 7a:95:cd:58:c6:b2:95:89:64:ef:f6:31:94:26:64: a7:f1:e2:2d:8e:38:0f:b9:37:d7:67:cd:01:56:ce: 3b:8b:73:ef:b6:fd:73:9d:f5:bc:af:1d:d5:30:41: 38:94:8f:dc:11:b0:b6:18:4f:19:5d:64:7d:95:eb: de:a0:4c:7c:47:d4:d4:6d:f7:aa:52:eb:8b:1d:88: 8b:86:36:48:f8:88:c1:40:b5:e5:2a:62:0e:b0:c2: 42:90:44:ba:8d:58:b0:4c:6f:2c:3d:e5:b3:af:f6: 86:32:91:8c:f7:ae:81:66:5b:67:a8:1b:9b:c4:fe: 59:ab:2a:05:ee:ef:d9:b1:c7:e1:53:c7:0f:75:c7: a7:d1:1e:0d:e3:61:66:46:e7:cc:1f:8e:97:74:93: f0:f9:50:9a:c3:4a:29:7f:67:71:bb:2f:3c:b3:be: 61:aa:4b:76:6c:99:86:e4:29:54:08:0a:68:fb:64: 82:fc:a7:12:fd:cd:cf:c8:8b:d7:6f:70:8f:cc:43: dc:dc:f1:15:ef:4f:c5:f0:4a:f7:aa:9d:84:36:8f: 82:50:8e:5b:a9:21:6d:53:05:64:16:69:5c:12:d0: ab:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:49:9D:E9:C4:C2:5B:C0:66:CF:ED:A3:69:75:5D:EF:1F:B3:14:0F X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:a9:2c:61:c5:46:74:f5:85:b8:69:8e:59:09:65:26:74:d4: 3c:93:a3:ca:af:3c:c3:e4:6a:81:25:54:8d:9e:11:dd:0c:82: 36:08:e7:c8:36:2f:81:95:61:5d:f3:6d:7b:d5:f1:c1:82:6d: 1e:3a:d9:f7:22:35:76:a1:26:e0:9d:3a:40:f9:e1:85:f3:be: f8:73:20:74:02:19:81:6e:c5:f9:cb:ea:df:69:82:87:d3:05: 9d:b4:a1:be:7b:23:31:10:23:f6:92:6f:d0:70:d3:02:4d:f7: 74:75:9b:f1:d0:64:a2:75:b0:7e:c0:92:bf:51:76:9c:db:e4: 0a:97:9b:8d:d8:fa:d9:5b:98:7b:12:68:52:80:72:a3:8e:68: 37:c8:d1:73:c8:73:9c:97:15:f6:18:95:1f:d8:12:e7:02:8e: b6:76:6d:8f:19:77:19:a1:2f:1f:2d:1d:e8:54:5c:f0:fb:1b: 20:36:4c:94:75:46:08:18:23:76:48:0f:1f:ed:97:aa:6b:5f: 9e:77:5e:1a:ee:9b:23:b1:4e:54:2b:da:8a:87:2b:c5:65:43: 72:ec:ae:c6:10:07:83:fc:1d:ed:56:0a:78:45:a9:17:d4:71: 7c:05:5c:04:c8:96:85:cc:03:f6:bf:21:b8:89:f5:20:98:47: a2:ac:93:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjUwNzAxMDE1NDIyWhcNMjUwNzA4MDE1NDIyWjAYMRYwFAYD VQQDEw02ODYzM2ZjZS02M2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4W9yCP5qmLuF2KM4b0WqN39z/NiYf89wAjFyH1x6lc1YxrKViWTv9jGUJmSn 8eItjjgPuTfXZ80BVs47i3Pvtv1znfW8rx3VMEE4lI/cEbC2GE8ZXWR9leveoEx8 R9TUbfeqUuuLHYiLhjZI+IjBQLXlKmIOsMJCkES6jViwTG8sPeWzr/aGMpGM966B ZltnqBubxP5ZqyoF7u/ZscfhU8cPdcen0R4N42FmRufMH46XdJPw+VCaw0opf2dx uy88s75hqkt2bJmG5ClUCApo+2SC/KcS/c3PyIvXb3CPzEPc3PEV70/F8Er3qp2E No+CUI5bqSFtUwVkFmlcEtCr/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpJnenE wlvAZs/to2l1Xe8fsxQPMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyqSxhxUZ09YW4aY5ZCWUmdNQ8k6PKrzzD5GqBJVSNnhHdDII2COfI Ni+BlWFd82171fHBgm0eOtn3IjV2oSbgnTpA+eGF8774cyB0AhmBbsX5y+rfaYKH 0wWdtKG+eyMxECP2km/QcNMCTfd0dZvx0GSidbB+wJK/UXac2+QKl5uN2PrZW5h7 EmhSgHKjjmg3yNFzyHOclxX2GJUf2BLnAo62dm2PGXcZoS8fLR3oVFzw+xsgNkyU dUYIGCN2SA8f7Zeqa1+ed14a7psjsU5UK9qKhyvFZUNy7K7GEAeD/B3tVgp4RakX 1HF8BVwEyJaFzAP2vyG4ifUgmEeirJNP -----END CERTIFICATE-----Generated at Thu Jul 3 00:43:17 2025 by rpki-client