$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json) Hash identifier: vlpQPT8SyPeCaoha1YSRHDPkPzfeHB6X2noW8avEiNI= Subject key identifier: FF:C3:C3:71:AC:98:2B:5D:80:9D:3E:5A:FD:C6:E2:CF:B1:53:0F:4B Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft Manifest number: F2 Signing time: Thu 03 Jul 2025 05:26:01 +0000 Manifest this update: Thu 03 Jul 2025 05:26:01 +0000 Manifest next update: Thu 10 Jul 2025 05:26:01 +0000 Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: ZGn5IN6bXKBdCIgNo2GVy3O2tSL4J8uDpv0iFP+9Ps8=) 2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: dwiUCjJJt0eG2N+1FVdoqJWTzPaXWWEUJdKiT+scZJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D, serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Validity Not Before: Jul 3 05:26:01 2025 GMT Not After : Jul 10 05:26:01 2025 GMT Subject: CN=68661469-c9b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6e:e6:d6:34:d6:2b:d0:0c:6b:58:3e:00:c1: 2e:08:1e:c6:f6:d2:2c:35:63:9d:19:a8:a2:42:81: 37:0f:0a:3a:6f:3d:c6:ab:0a:c5:c0:e6:6f:f4:a7: e6:f2:3a:70:b7:fc:a5:4b:2d:2e:61:60:53:9c:aa: ab:59:ac:7d:a6:56:8c:c0:ae:bb:19:e1:5d:54:03: 98:c1:bd:24:9d:99:72:5f:6e:42:0e:ac:ba:53:70: 97:8b:b7:d8:76:d6:53:8f:4e:af:80:46:fa:c1:66: bb:d0:b0:2f:8f:66:6e:f8:1f:e3:6b:55:62:e9:70: 3d:96:2f:97:d0:cc:91:58:44:af:b8:40:fa:2e:85: 2e:7d:d4:60:78:de:fd:ac:ec:8b:3d:43:fc:31:ef: ca:b9:c8:13:29:a3:ab:49:fe:42:2a:78:8a:1c:8f: 68:7f:b9:d5:4d:9c:1d:04:8d:cb:cd:bb:df:2e:b2: 78:2b:41:a0:44:7a:40:b2:be:dc:95:82:0a:a0:9d: ed:9a:62:37:34:75:21:5b:83:da:74:97:df:12:47: b5:ea:7b:0a:2e:5a:b5:28:23:bd:b3:7f:6b:dc:5d: 0a:15:52:0e:e2:50:71:52:22:b9:a0:50:cb:96:83: 80:1e:04:2d:fe:6d:d9:e4:8c:92:4e:8a:92:ab:42: b6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C3:C3:71:AC:98:2B:5D:80:9D:3E:5A:FD:C6:E2:CF:B1:53:0F:4B X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:e2:26:5f:61:6c:e8:9a:45:3d:28:d6:3a:2d:df:97:43:fd: f9:1d:d8:a7:6c:60:65:96:e2:70:7e:d6:a9:6b:83:2a:e6:7b: 00:91:61:c9:b0:c6:09:c6:b4:57:ab:26:ff:ba:49:02:c2:3b: 97:0c:89:75:d3:3d:f3:d5:0a:43:b2:bf:1b:22:96:b4:c2:d1: d2:12:be:78:6b:55:e7:97:28:8f:0a:9f:48:c0:c2:39:58:6b: c4:d4:7b:cd:21:96:2d:17:50:c8:f1:51:da:cb:b4:c7:35:5d: 92:2b:26:45:ac:4d:fd:8c:47:de:33:30:e5:ad:c8:e0:1c:95: b8:3c:a1:e0:fc:d0:e4:cc:4c:b8:2e:c4:81:f2:08:e1:25:89: 29:a7:75:22:a4:a5:da:84:2b:79:96:c4:09:8b:34:73:30:ee: 9f:9a:2c:0a:df:d3:2f:fd:3e:b7:47:b8:b0:a4:f7:48:67:f3: 7d:87:16:f1:0d:0e:b1:79:4a:cc:07:e5:d9:5c:d7:58:f4:ff: 0f:0d:3a:bc:88:7c:b9:38:0b:b1:a1:27:6c:24:b4:b5:4e:fb: ea:a3:17:2b:88:db:26:c0:42:6d:ce:e0:53:74:3e:21:76:56: db:52:1b:9a:0f:bb:75:4f:0d:c8:75:54:3b:b6:45:14:a8:13: e1:13:ab:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDM0ODBDNTY1MjMzNDhEREFCQTMwM0UzMUYyMkRGQTM2 M0Y4ODdFOEYwHhcNMjUwNzAzMDUyNjAxWhcNMjUwNzEwMDUyNjAxWjAYMRYwFAYD VQQDEw02ODY2MTQ2OS1jOWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2G7m1jTWK9AMa1g+AMEuCB7G9tIsNWOdGaiiQoE3Dwo6bz3GqwrFwOZv9Kfm 8jpwt/ylSy0uYWBTnKqrWax9plaMwK67GeFdVAOYwb0knZlyX25CDqy6U3CXi7fY dtZTj06vgEb6wWa70LAvj2Zu+B/ja1Vi6XA9li+X0MyRWESvuED6LoUufdRgeN79 rOyLPUP8Me/KucgTKaOrSf5CKniKHI9of7nVTZwdBI3LzbvfLrJ4K0GgRHpAsr7c lYIKoJ3tmmI3NHUhW4PadJffEke16nsKLlq1KCO9s39r3F0KFVIO4lBxUiK5oFDL loOAHgQt/m3Z5IySToqSq0K2PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/Dw3Gs mCtdgJ0+Wv3G4s+xUw9LMB8GA1UdIwQYMBaAFDSAxWUjNI3aujA+MfIt+jY/iH6P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80NjBEMUM1QUUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpkcTZNRDR4OGkzNk5qLUlm bzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZvOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80NjBEMUM1QUUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpk cTZNRDR4OGkzNk5qLUlmbzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH4iZfYWzomkU9KNY6Ld+XQ/35HdinbGBlluJwftapa4Mq5nsAkWHJ sMYJxrRXqyb/ukkCwjuXDIl10z3z1QpDsr8bIpa0wtHSEr54a1XnlyiPCp9IwMI5 WGvE1HvNIZYtF1DI8VHay7THNV2SKyZFrE39jEfeMzDlrcjgHJW4PKHg/NDkzEy4 LsSB8gjhJYkpp3UipKXahCt5lsQJizRzMO6fmiwK39Mv/T63R7iwpPdIZ/N9hxbx DQ6xeUrMB+XZXNdY9P8PDTq8iHy5OAuxoSdsJLS1TvvqoxcriNsmwEJtzuBTdD4h dlbbUhuaD7t1Tw3IdVQ7tkUUqBPhE6uY -----END CERTIFICATE-----Generated at Thu Jul 3 23:36:47 2025 by rpki-client