$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft File: nssirN4JZ6BYN-WPxzHTV-N2N_g.mft (raw, json) Hash identifier: GU4kE3t+CgPsa2dEWBsG9GBBugCXoOEQ3kNcOOAowAM= Subject key identifier: 1E:FA:3E:46:CC:8F:E4:BA:02:31:6E:B5:1F:60:86:C0:97:68:91:D6 Authority key identifier: 9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 Certificate issuer: /CN=A91C6B27/serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Certificate serial: 0B84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft Manifest number: 0B72 Signing time: Mon 30 Jun 2025 19:11:25 +0000 Manifest this update: Mon 30 Jun 2025 19:11:24 +0000 Manifest next update: Mon 07 Jul 2025 19:11:24 +0000 Files and hashes: 1: nssirN4JZ6BYN-WPxzHTV-N2N_g.crl (hash: u1nqBSBlWTFyPaneDxC7ItJfvKc6lu5AmV5D7PCCFgQ=) 2: 2B1D3BB2305811EA8D5B6479C4F9AE02.roa (hash: y28rLGPdPmm2RMeTHn7TROIYxoMrptjo0yzzyCvWoMs=) 3: E4BB99E2336E11EA94623E18C4F9AE02.roa (hash: dDWf0aYmxu05SE8QIKzfCcmUhn7e971nZnRqmk+LmCo=) 4: E5675F48336E11EA94623E18C4F9AE02.roa (hash: iPbzGQb+v1UtoJ+/xdLJYlI0s4JJe78IGCPidttsEfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2948 (0xb84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6B27, serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Validity Not Before: Jun 30 19:11:24 2025 GMT Not After : Jul 7 19:11:24 2025 GMT Subject: CN=6862e15d-dd3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:83:19:95:f6:69:7e:36:a6:26:4e:4e:4a:95: 9e:61:94:6f:58:45:21:0e:a2:be:1f:d5:06:30:8b: 59:81:71:d4:6f:95:0c:9a:5b:76:bf:0d:8b:0c:29: a2:bb:52:f2:f7:4b:c1:27:11:0e:c0:17:f5:f3:ea: 4a:67:76:91:b3:95:af:12:ea:c5:7d:ef:59:48:31: e1:23:09:3e:1a:be:e6:2d:56:2b:37:cd:e8:30:97: c1:19:0d:62:3f:45:e6:86:53:d7:6c:da:cc:e9:7c: a1:89:10:10:28:73:3f:3b:88:38:37:91:e4:06:00: 05:b3:2c:47:3e:c7:64:5c:7a:95:8b:fb:9d:18:55: ce:e7:28:55:5f:3a:d5:55:06:a9:69:26:15:05:7d: 30:a3:e9:3f:de:c0:c5:98:49:a6:8f:9f:9c:a7:53: 1c:16:74:e6:89:72:fc:b7:e4:83:05:3b:ae:ad:17: c7:10:47:7f:8c:0b:de:10:d6:23:37:6f:ba:e3:56: 38:14:93:47:d9:e0:61:15:1a:8e:83:6f:e7:4c:81: 92:d7:88:12:9f:22:12:80:87:f7:a9:95:70:86:16: 7e:01:6c:ec:89:13:48:da:5e:70:a9:83:aa:5b:a6: 04:50:d9:db:73:34:1d:78:2e:9c:4c:57:fb:50:f9: 9d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FA:3E:46:CC:8F:E4:BA:02:31:6E:B5:1F:60:86:C0:97:68:91:D6 X509v3 Authority Key Identifier: keyid:9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:e6:5b:30:e1:62:f6:b9:2f:1b:62:af:61:1c:21:71:00:f5: d2:52:96:e8:f2:f2:01:20:81:4c:1b:08:0c:43:5a:09:75:f8: 76:42:71:b1:06:d9:31:f1:f2:4a:1a:cd:79:d5:dc:ff:be:5a: 79:84:97:b6:68:91:e3:a5:11:36:45:72:f0:05:6e:2d:58:b4: 1d:26:56:92:61:df:eb:be:a5:5b:f9:1d:f9:4f:5f:59:2a:ee: 5e:71:a0:c6:9b:35:9d:84:5d:ae:db:c9:64:70:ff:af:3b:18: 27:7a:ec:5d:72:c7:ef:ec:86:41:d6:70:bd:7b:5c:13:54:5b: a7:b8:6f:6f:93:56:29:41:9a:4a:93:dc:a8:13:eb:21:37:ec: 98:fc:26:32:8e:f8:2f:cf:6a:7d:78:ec:fd:21:17:c9:e6:3d: 36:47:cc:5a:c9:06:d3:7d:90:80:83:b8:5d:50:f5:f1:b7:a8: 08:48:97:f7:26:6b:49:a5:1c:8d:00:98:40:3b:80:d8:9c:93: 53:8b:10:9c:ac:50:06:98:00:82:0c:82:76:63:0d:51:de:9f: b7:80:b3:6e:50:be:3f:e1:cb:04:06:dc:62:aa:ad:ef:7e:42: 66:df:24:02:ff:65:d6:87:bf:49:8d:c3:78:84:96:6a:0f:c8: 72:1a:d3:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCMjcxMTAvBgNVBAUTKDlFQ0IyMkFDREUwOTY3QTA1ODM3RTU4RkM3MzFEMzU3 RTM3NjM3RjgwHhcNMjUwNjMwMTkxMTI0WhcNMjUwNzA3MTkxMTI0WjAYMRYwFAYD VQQDEw02ODYyZTE1ZC1kZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroMZlfZpfjamJk5OSpWeYZRvWEUhDqK+H9UGMItZgXHUb5UMmlt2vw2LDCmi u1Ly90vBJxEOwBf18+pKZ3aRs5WvEurFfe9ZSDHhIwk+Gr7mLVYrN83oMJfBGQ1i P0XmhlPXbNrM6XyhiRAQKHM/O4g4N5HkBgAFsyxHPsdkXHqVi/udGFXO5yhVXzrV VQapaSYVBX0wo+k/3sDFmEmmj5+cp1McFnTmiXL8t+SDBTuurRfHEEd/jAveENYj N2+641Y4FJNH2eBhFRqOg2/nTIGS14gSnyISgIf3qZVwhhZ+AWzsiRNI2l5wqYOq W6YEUNnbczQdeC6cTFf7UPmdtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB76PkbM j+S6AjFutR9ghsCXaJHWMB8GA1UdIwQYMBaAFJ7LIqzeCWegWDflj8cx01fjdjf4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkIyNy84MkJGMkJGNDMw NTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2QllOLVdQeHpIVFYtTjJO X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zc2lyTjRKWjZCWU4tV1B4ekhUVi1OMk5fZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkIyNy84MkJGMkJGNDMwNTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2 QllOLVdQeHpIVFYtTjJOX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe5lsw4WL2uS8bYq9hHCFxAPXSUpbo8vIBIIFMGwgMQ1oJdfh2QnGx Btkx8fJKGs151dz/vlp5hJe2aJHjpRE2RXLwBW4tWLQdJlaSYd/rvqVb+R35T19Z Ku5ecaDGmzWdhF2u28lkcP+vOxgneuxdcsfv7IZB1nC9e1wTVFunuG9vk1YpQZpK k9yoE+shN+yY/CYyjvgvz2p9eOz9IRfJ5j02R8xayQbTfZCAg7hdUPXxt6gISJf3 JmtJpRyNAJhAO4DYnJNTixCcrFAGmACCDIJ2Yw1R3p+3gLNuUL4/4csEBtxiqq3v fkJm3yQC/2XWh79JjcN4hJZqD8hyGtOv -----END CERTIFICATE-----Generated at Tue Jul 1 10:35:26 2025 by rpki-client