$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft File: nbJYwXCyMilNhj9g0twBI82q54k.mft (raw, json) Hash identifier: faG4dyZYi5OmMSvGNNw3iNOdgrOoGS5UhrwYzIWYZm4= Subject key identifier: 2F:F9:C9:4F:F8:EB:99:04:09:8C:A0:23:F2:00:EB:11:70:C0:BF:EC Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft Manifest number: 29 Signing time: Tue 01 Jul 2025 08:33:15 +0000 Manifest this update: Tue 01 Jul 2025 08:33:14 +0000 Manifest next update: Tue 08 Jul 2025 08:33:14 +0000 Files and hashes: 1: nbJYwXCyMilNhj9g0twBI82q54k.crl (hash: BlWmhT211tSu1APmHK3uiDMOwjgf9T3vwK8ajUI++mQ=) 2: 13EB65D41AB511F0A1F0A34BC4F9AE02.roa (hash: gBn5RMkmkclmyZmL4wf1QAerjjB7P04/rGPHIIjACSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: Jul 1 08:33:14 2025 GMT Not After : Jul 8 08:33:14 2025 GMT Subject: CN=68639d4b-4809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:99:27:95:67:1d:ef:07:7e:31:44:f3:f4:ad: e1:73:aa:5d:56:41:2c:66:88:2b:3c:ac:56:7a:61: d9:0e:f4:e2:da:5a:73:92:4f:31:70:0b:55:2b:e9: dd:77:ef:e6:5a:c3:2d:6a:f4:7b:7a:6c:7d:21:9a: e6:c5:f5:2b:fe:59:56:4c:6c:24:9a:30:e5:e1:79: bd:50:22:3e:d1:07:28:68:81:75:fa:63:88:07:d5: 70:2b:1a:14:49:14:7f:65:d8:5c:7b:ef:a4:dd:53: f4:49:e0:6e:35:8f:e3:a4:58:92:23:9e:e2:94:71: 52:a3:7b:a7:c5:fa:4c:0d:1d:82:c1:c0:27:c9:8e: a4:9f:19:be:20:8d:b7:3e:af:af:18:8c:8b:76:86: 07:37:0a:9b:8d:ea:43:ee:0f:8a:18:04:0f:73:63: aa:4e:f3:07:e3:10:39:f8:f5:f5:f7:af:d8:8e:8e: 3f:90:0a:b9:3d:a4:3c:d7:12:bc:12:17:7d:f0:6a: fc:af:31:b5:a3:c6:45:54:a2:a2:a6:81:03:d8:1f: 46:fa:eb:2a:cc:56:35:ec:4a:c0:43:5c:b1:71:3f: 17:83:36:e6:ab:b5:71:7f:7a:be:69:ff:32:d5:80: 0c:41:28:2e:c9:3d:cd:b0:87:c9:75:92:d7:50:62: 3e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F9:C9:4F:F8:EB:99:04:09:8C:A0:23:F2:00:EB:11:70:C0:BF:EC X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:1f:5e:57:c6:2a:5b:7f:b4:81:d3:c5:ff:99:dd:d2:11:75: d4:9a:b4:1b:2c:2b:d8:5a:43:60:c1:ca:0c:d2:eb:48:cd:a2: 86:f7:97:5e:62:61:9a:12:f5:d7:81:94:ae:5d:83:ea:84:d7: 67:5e:65:80:3a:2f:2a:e3:5d:c4:45:59:98:de:0a:e5:f5:1f: 54:5c:eb:dd:e2:c7:be:b3:86:5b:b4:20:14:b2:a9:b1:41:48: fe:62:38:8e:50:cc:cc:dd:fb:a1:60:cd:71:80:a1:6c:31:4f: 9a:cf:18:52:58:5b:6f:c8:71:30:26:0f:fe:5f:b4:03:24:7e: c3:cd:ea:7e:2a:bc:d4:9f:5b:f7:58:25:14:cf:25:d4:9a:53: cd:0b:2d:8a:7f:81:1e:37:03:1d:3e:1f:33:62:d0:b1:df:50: 61:9c:67:c7:78:ab:90:b5:cd:a9:ff:4f:05:d4:52:6c:d9:67: fd:37:df:c0:c4:b5:b5:c0:3f:2b:f0:a4:89:39:46:80:72:b3: bc:17:b0:d2:aa:e7:a3:75:9f:f5:f2:dc:13:e5:88:d1:c1:94: 60:f5:0a:af:6e:61:c5:02:a1:7d:d2:a6:1f:d3:63:f1:fc:d9: 7f:e9:44:e4:8f:26:0b:24:96:4f:ea:1d:8b:eb:43:78:0a:9c: db:93:1c:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MkVERTExMC8GA1UEBRMoOURCMjU4QzE3MEIyMzIyOTREODYzRjYwRDJEQzAxMjND REFBRTc4OTAeFw0yNTA3MDEwODMzMTRaFw0yNTA3MDgwODMzMTRaMBgxFjAUBgNV BAMTDTY4NjM5ZDRiLTQ4MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcmSeVZx3vB34xRPP0reFzql1WQSxmiCs8rFZ6YdkO9OLaWnOSTzFwC1Ur6d13 7+Zawy1q9Ht6bH0hmubF9Sv+WVZMbCSaMOXheb1QIj7RByhogXX6Y4gH1XArGhRJ FH9l2Fx776TdU/RJ4G41j+OkWJIjnuKUcVKje6fF+kwNHYLBwCfJjqSfGb4gjbc+ r68YjIt2hgc3CpuN6kPuD4oYBA9zY6pO8wfjEDn49fX3r9iOjj+QCrk9pDzXErwS F33wavyvMbWjxkVUoqKmgQPYH0b66yrMVjXsSsBDXLFxPxeDNuartXF/er5p/zLV gAxBKC7JPc2wh8l1ktdQYj7zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUL/nJT/jr mQQJjKAj8gDrEXDAv+wwHwYDVR0jBBgwFoAUnbJYwXCyMilNhj9g0twBI82q54kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRURFLzU1Q0IyRTA0MUFC NDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmJKWXdYQ3lNaWxOaGo5ZzB0d0JJODJxNTRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy RURFLzU1Q0IyRTA0MUFCNDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWls TmhqOWcwdHdCSTgycTU0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKofXlfGKlt/tIHTxf+Z3dIRddSatBssK9haQ2DBygzS60jNoob3l15i YZoS9deBlK5dg+qE12deZYA6LyrjXcRFWZjeCuX1H1Rc693ix76zhlu0IBSyqbFB SP5iOI5QzMzd+6FgzXGAoWwxT5rPGFJYW2/IcTAmD/5ftAMkfsPN6n4qvNSfW/dY JRTPJdSaU80LLYp/gR43Ax0+HzNi0LHfUGGcZ8d4q5C1zan/TwXUUmzZZ/0338DE tbXAPyvwpIk5RoBys7wXsNKq56N1n/Xy3BPliNHBlGD1Cq9uYcUCoX3Sph/TY/H8 2X/pROSPJgsklk/qHYvrQ3gKnNuTHPA= -----END CERTIFICATE-----Generated at Tue Jul 1 16:51:19 2025 by rpki-client