$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft File: NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json) Hash identifier: +BV1nIsZbdnMWVc8dXxGEqi5iNTBhE9RnY1GFprPc6A= Subject key identifier: DC:AB:C0:83:39:AA:53:89:39:CC:AD:A7:B2:D3:3D:30:BF:F0:14:CD Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1C6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft Manifest number: 1C58 Signing time: Wed 02 Jul 2025 16:18:53 +0000 Manifest this update: Wed 02 Jul 2025 16:18:52 +0000 Manifest next update: Wed 09 Jul 2025 16:18:52 +0000 Files and hashes: 1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: V+4utj0Rtr3r4TqQ908yezK+eiDBgsh1iIh6jo5Pl9E=) 2: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: 3515yyoHz/OpGxhQJVW0uZ09F4a0FPsq5rPkaEYDZbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:18:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7279 (0x1c6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: Jul 2 16:18:52 2025 GMT Not After : Jul 9 16:18:52 2025 GMT Subject: CN=68655bed-37ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ba:f6:f5:66:93:42:6c:6b:62:1a:4f:70:4b: 21:7b:2f:7e:f2:4f:cf:b5:28:5a:e7:4e:26:38:77: 26:9c:f5:07:d8:d1:cd:c9:9d:3b:c9:2a:5b:bd:bc: 47:3e:e3:8f:dd:83:7a:17:b8:7c:7a:d9:c1:5f:bd: 95:49:ad:05:8c:8b:07:50:c8:ee:18:ad:91:f8:7c: 2f:de:a4:74:53:4d:98:01:44:fe:79:fe:8d:64:a7: 86:71:ec:a2:f0:36:43:64:4f:57:68:fd:26:c3:a4: 6f:0c:d5:36:bd:5d:c2:69:a1:92:3c:47:fa:5d:a6: af:37:ba:ec:ef:10:38:be:95:e7:0e:3a:51:90:c1: 69:a5:ef:95:3f:af:57:af:fd:00:5e:3a:1c:61:cd: 2b:ee:76:be:86:02:1e:b4:07:5b:5e:de:9f:46:7d: c6:89:de:e7:77:08:be:2e:c3:22:7e:84:e4:4c:6e: 58:e8:18:46:c2:34:ad:dc:e8:44:27:b5:89:7d:a0: 85:e7:14:a3:95:7e:40:66:4e:ca:c3:67:15:05:c0: 89:1d:03:d7:60:51:fe:87:a3:9a:fb:94:b8:a7:41: ca:d9:86:8c:95:ef:e1:42:58:1e:94:2e:03:4c:0f: 91:1d:77:4f:97:0e:ce:82:c6:36:5c:94:e9:3c:7c: dc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:AB:C0:83:39:AA:53:89:39:CC:AD:A7:B2:D3:3D:30:BF:F0:14:CD X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ce:f9:49:72:ff:02:1c:6f:0e:c8:f7:87:df:d4:22:4f:44: 12:db:a1:2a:5a:fc:4b:4c:ab:84:57:4e:13:d1:cb:0f:82:f9: da:88:99:7e:ac:f4:68:a1:dc:94:95:1f:0c:06:c1:cc:9d:a5: 33:cc:c6:6e:83:90:fb:2c:8f:6e:ce:0d:b1:b4:30:78:80:07: 42:62:9f:d8:c5:a5:b4:d7:32:c4:a8:05:e1:a4:02:53:40:bd: 71:f3:cf:37:a4:42:a1:d9:cf:e4:be:0a:96:fe:87:79:5b:90: d4:d6:3e:82:43:cf:c2:cd:e5:a8:43:01:0b:76:9d:a7:e8:78: 0d:d7:9e:4b:4e:87:4e:de:7b:36:a3:15:21:e2:a7:a9:e6:ae: 76:58:26:08:17:c7:40:df:52:cf:65:ae:a5:7d:44:a5:c7:a1: 5a:de:fe:25:8b:94:ee:d0:9e:f5:9a:58:f2:b9:62:92:02:04: de:10:f6:e8:9b:30:de:c8:1c:52:c7:7e:e9:ab:cc:b1:90:8f: 94:ca:48:47:06:3b:98:d3:6a:89:63:a7:e0:dd:fb:ee:ec:21: 6c:46:99:77:0b:b9:e6:f2:27:0e:f8:f7:44:0c:aa:e4:43:35: ee:a8:ec:9e:a8:69:af:a1:6c:0c:4d:01:c3:e0:11:bd:f4:9d: 2f:12:e4:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjUwNzAyMTYxODUyWhcNMjUwNzA5MTYxODUyWjAYMRYwFAYD VQQDEw02ODY1NWJlZC0zN2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbr29WaTQmxrYhpPcEshey9+8k/PtSha504mOHcmnPUH2NHNyZ07ySpbvbxH PuOP3YN6F7h8etnBX72VSa0FjIsHUMjuGK2R+Hwv3qR0U02YAUT+ef6NZKeGceyi 8DZDZE9XaP0mw6RvDNU2vV3CaaGSPEf6XaavN7rs7xA4vpXnDjpRkMFppe+VP69X r/0AXjocYc0r7na+hgIetAdbXt6fRn3Gid7ndwi+LsMifoTkTG5Y6BhGwjSt3OhE J7WJfaCF5xSjlX5AZk7Kw2cVBcCJHQPXYFH+h6Oa+5S4p0HK2YaMle/hQlgelC4D TA+RHXdPlw7OgsY2XJTpPHzcywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyrwIM5 qlOJOcytp7LTPTC/8BTNMB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzBGQS82NEZCN0UxQ0UzQTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdn WUpNQXJva1VnU0dFdVB3OXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+zvlJcv8CHG8OyPeH39QiT0QS26EqWvxLTKuEV04T0csPgvnaiJl+ rPRoodyUlR8MBsHMnaUzzMZug5D7LI9uzg2xtDB4gAdCYp/YxaW01zLEqAXhpAJT QL1x8883pEKh2c/kvgqW/od5W5DU1j6CQ8/CzeWoQwELdp2n6HgN155LTodO3ns2 oxUh4qep5q52WCYIF8dA31LPZa6lfUSlx6Fa3v4li5Tu0J71mljyuWKSAgTeEPbo mzDeyBxSx37pq8yxkI+UykhHBjuY02qJY6fg3fvu7CFsRpl3C7nm8icO+PdEDKrk QzXuqOyeqGmvoWwMTQHD4BG99J0vEuRF -----END CERTIFICATE-----Generated at Thu Jul 3 11:39:55 2025 by rpki-client