$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft File: nC3RgnBi24kuOEZaEK_kkWg1wCc.mft (raw, json) Hash identifier: etvuxnkwuk+CbSHI7qseT2QX7WPitsZG3qKJJya9+7U= Subject key identifier: C0:58:48:89:33:A5:F5:F8:0F:DF:A8:3E:CC:F1:9A:28:98:FF:33:97 Authority key identifier: 9C:2D:D1:82:70:62:DB:89:2E:38:46:5A:10:AF:E4:91:68:35:C0:27 Certificate issuer: /CN=A91B1F27/serialNumber=9C2DD1827062DB892E38465A10AFE4916835C027 Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nC3RgnBi24kuOEZaEK_kkWg1wCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft Manifest number: 0189 Signing time: Tue 01 Jul 2025 03:57:55 +0000 Manifest this update: Tue 01 Jul 2025 03:57:55 +0000 Manifest next update: Tue 08 Jul 2025 03:57:55 +0000 Files and hashes: 1: nC3RgnBi24kuOEZaEK_kkWg1wCc.crl (hash: 9pjS7hla/gYmiWpZu7wPQhJPIoPhU/h6jOrXkq6640s=) 2: ED31BA0AFBAE11ED977DEA10C4F9AE02.roa (hash: sZ1Qc0QixkblDQbEZ18gwDagCIypsTqT+SHpNFgumsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.crl rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nC3RgnBi24kuOEZaEK_kkWg1wCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1F27, serialNumber=9C2DD1827062DB892E38465A10AFE4916835C027 Validity Not Before: Jul 1 03:57:55 2025 GMT Not After : Jul 8 03:57:55 2025 GMT Subject: CN=68635cc3-7045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:dd:ed:0c:11:57:f7:bf:92:8e:f1:4e:7b:06: 78:71:a9:57:20:fe:5c:40:b6:47:b6:e1:f4:0a:f6: 65:fc:34:5c:52:7d:e9:55:5d:28:fc:dc:27:3d:eb: 75:c4:f4:f9:2a:f2:6a:9a:b7:2b:2f:ec:05:00:4c: a5:f5:9d:df:e6:37:e6:ee:cf:35:05:dc:f8:82:29: 80:60:c8:78:53:42:7e:51:6c:35:a6:fb:a8:73:f7: 7b:8a:2d:13:c5:7b:9c:7e:5a:d2:61:ae:65:03:23: 6d:6c:ed:1c:6c:3f:2f:ed:01:67:ac:42:7e:bb:66: 32:d9:df:55:e2:d4:f5:34:6e:f0:10:93:65:b1:6f: bb:d9:6a:ab:9e:e0:f6:a2:d9:08:c0:5b:6d:29:2b: f6:39:97:89:7c:d8:22:58:5b:5e:25:be:12:22:63: fe:2b:30:4f:d4:d5:2a:90:ed:bf:82:d6:f6:14:51: a6:4a:ae:34:ab:dc:84:66:bd:fc:14:8b:cc:1a:32: ab:3d:d4:4d:34:45:1b:4e:59:f7:98:cf:ea:91:07: 9c:c2:b5:84:1a:df:37:68:d4:b5:22:5e:6e:0e:ed: 86:5b:20:da:d4:35:b4:9c:d4:c1:54:32:b2:91:96: 9b:48:31:a0:6f:0c:44:db:ed:68:5d:0c:58:bb:ff: fa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:58:48:89:33:A5:F5:F8:0F:DF:A8:3E:CC:F1:9A:28:98:FF:33:97 X509v3 Authority Key Identifier: keyid:9C:2D:D1:82:70:62:DB:89:2E:38:46:5A:10:AF:E4:91:68:35:C0:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nC3RgnBi24kuOEZaEK_kkWg1wCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:c5:8e:13:09:bc:bc:ed:e2:b8:d5:b5:ea:3f:20:6b:d3:e1: c7:84:30:de:07:d7:80:af:3f:05:b0:ed:7e:1e:14:3c:18:1b: 3a:44:d6:da:d0:be:3e:72:ac:f2:66:6e:55:10:2c:96:9f:0a: f0:fd:dd:85:74:33:5e:63:fe:db:22:4e:61:5d:26:f2:7c:02: 32:1f:a8:7a:c8:6d:39:3b:8e:a5:29:86:a9:b3:64:15:13:6e: 04:5f:5c:58:29:c1:d6:f5:78:5e:9f:c1:fa:7d:99:b1:ec:1d: 38:b5:85:c0:4e:bc:c7:ab:52:3b:cc:ce:d5:f2:53:d3:d4:34: d6:d5:3b:42:82:b0:10:4f:8d:99:e1:b4:f5:b2:e1:97:dc:05: 31:fb:5d:6a:d2:b4:6a:e0:a3:f4:46:b3:68:fa:f3:5f:c9:7b: 84:6f:4a:98:ca:8c:42:44:65:f9:5c:3d:4c:fc:9c:9e:6e:03: de:10:7a:f4:b9:fc:14:43:06:80:30:d6:5b:92:bf:4c:31:20: 41:2f:f5:88:24:2e:36:ec:24:a3:fc:db:ca:1c:da:c3:6b:37: a4:95:d9:b9:17:1c:96:27:a6:52:48:c3:46:18:fd:42:d3:74: bf:95:c9:e1:41:cf:99:28:84:37:60:c0:6b:7f:72:48:de:6e: db:cc:15:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGMjcxMTAvBgNVBAUTKDlDMkREMTgyNzA2MkRCODkyRTM4NDY1QTEwQUZFNDkx NjgzNUMwMjcwHhcNMjUwNzAxMDM1NzU1WhcNMjUwNzA4MDM1NzU1WjAYMRYwFAYD VQQDEw02ODYzNWNjMy03MDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5d3tDBFX97+SjvFOewZ4calXIP5cQLZHtuH0CvZl/DRcUn3pVV0o/NwnPet1 xPT5KvJqmrcrL+wFAEyl9Z3f5jfm7s81Bdz4gimAYMh4U0J+UWw1pvuoc/d7ii0T xXucflrSYa5lAyNtbO0cbD8v7QFnrEJ+u2Yy2d9V4tT1NG7wEJNlsW+72WqrnuD2 otkIwFttKSv2OZeJfNgiWFteJb4SImP+KzBP1NUqkO2/gtb2FFGmSq40q9yEZr38 FIvMGjKrPdRNNEUbTln3mM/qkQecwrWEGt83aNS1Il5uDu2GWyDa1DW0nNTBVDKy kZabSDGgbwxE2+1oXQxYu//6xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBYSIkz pfX4D9+oPszxmiiY/zOXMB8GA1UdIwQYMBaAFJwt0YJwYtuJLjhGWhCv5JFoNcAn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUYyNy9GNzdDMTA5QUZC QTUxMUVEODhEMEM5NkRDNEY5QUUwMi9uQzNSZ25CaTI0a3VPRVphRUtfa2tXZzF3 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25DM1JnbkJpMjRrdU9FWmFFS19ra1dnMXdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUYyNy9GNzdDMTA5QUZCQTUxMUVEODhEMEM5NkRDNEY5QUUwMi9uQzNSZ25CaTI0 a3VPRVphRUtfa2tXZzF3Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhxY4TCby87eK41bXqPyBr0+HHhDDeB9eArz8FsO1+HhQ8GBs6RNba 0L4+cqzyZm5VECyWnwrw/d2FdDNeY/7bIk5hXSbyfAIyH6h6yG05O46lKYaps2QV E24EX1xYKcHW9Xhen8H6fZmx7B04tYXATrzHq1I7zM7V8lPT1DTW1TtCgrAQT42Z 4bT1suGX3AUx+11q0rRq4KP0RrNo+vNfyXuEb0qYyoxCRGX5XD1M/JyebgPeEHr0 ufwUQwaAMNZbkr9MMSBBL/WIJC427CSj/NvKHNrDazekldm5FxyWJ6ZSSMNGGP1C 03S/lcnhQc+ZKIQ3YMBrf3JI3m7bzBVl -----END CERTIFICATE-----Generated at Wed Jul 2 04:51:00 2025 by rpki-client