$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: bioXvU/fanKvvPOohO91dGUpR8ZhANzXcxZtklczWFE= Subject key identifier: E7:88:B0:C4:A7:FD:C6:3D:8E:17:31:ED:EA:FF:43:A1:AF:C6:13:AB Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 0729 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 0701 Signing time: Wed 02 Jul 2025 22:18:21 +0000 Manifest this update: Wed 02 Jul 2025 22:18:21 +0000 Manifest next update: Wed 09 Jul 2025 22:18:21 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: YKj0gjn5lbAgQtWNfa6S2gQgsSRunLjefe5A0sUHMw0=) 2: 0A81888851C011F08C31DF3FC4F9AE02.roa (hash: 1yPuP1g8YZqvnHf524WkUbhoEmWrAxZBELmM8pADlg8=) 3: 7B3EE1DC524811F0B02FCD27C4F9AE02.roa (hash: NOszZQVplnPpRn57635/o7+RgEVvlc3t2csfhNsghIY=) 4: 4594F026524811F0B86E6427C4F9AE02.roa (hash: 9vMxDfxZcecTBNMP0xoJf/aShTkktCzlUi2w0tCp2go=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1833 (0x729) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Jul 2 22:18:21 2025 GMT Not After : Jul 9 22:18:21 2025 GMT Subject: CN=6865b02d-5d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:01:9d:9e:31:0e:c1:45:0c:71:80:13:32:a9: 96:5b:2b:66:3a:9d:47:b0:41:94:26:a6:38:16:2e: 9a:0b:c5:8b:a8:a1:07:7b:16:d7:88:7d:56:c3:08: 21:12:07:e8:6c:f8:4b:a8:1f:09:ba:1d:e7:6e:6f: 6d:17:2a:45:18:b3:4b:7b:05:65:60:60:14:3c:d3: f9:f6:83:00:1f:4c:82:ce:7e:e1:42:e0:3e:f9:ab: 5a:89:27:55:35:d1:fc:d0:a5:7b:47:1b:f7:58:69: 80:9f:f1:cc:d6:85:a5:4a:7d:51:f8:71:4d:6b:04: 5c:52:46:12:b3:86:dc:6f:2c:ff:91:83:bc:d8:45: 9e:41:a3:0e:97:5c:ed:fe:dd:68:67:70:be:06:c9: 0b:16:a1:0d:37:a2:6c:62:03:b1:76:6f:e0:2e:9e: 4d:c0:cd:7d:7f:a3:6e:0b:e4:f4:10:07:c4:3a:2d: be:b4:69:83:de:b0:d8:2e:23:d9:f8:85:bd:0f:ee: 22:71:0f:b3:09:ef:35:3a:a4:df:20:5b:c4:bc:c9: 03:3e:71:5b:33:d8:bf:65:c4:02:37:da:27:94:f3: 8d:55:71:f9:70:8f:7a:80:84:7c:b7:04:15:57:00: 3b:79:79:67:f0:28:37:ba:55:70:7a:30:e0:5d:f0: 4a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:88:B0:C4:A7:FD:C6:3D:8E:17:31:ED:EA:FF:43:A1:AF:C6:13:AB X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:c2:81:b5:7d:c7:ed:0f:bc:14:2f:e9:61:69:cc:3c:fb:17: d0:0b:06:5f:40:70:b2:39:f1:e9:1b:20:79:0e:d5:1b:76:0e: dc:10:71:35:f7:ff:a7:4f:65:2c:29:11:02:83:5b:41:52:c5: f2:5c:e0:c8:fc:30:40:72:9b:29:e5:02:41:cb:db:5f:97:76: f5:e6:93:e5:f1:fc:65:4b:5e:64:91:a4:7a:62:d2:d3:e1:ba: cd:c5:58:eb:13:5a:0a:b3:c9:de:fc:13:47:4e:96:77:6a:4e: 40:ad:d2:2e:72:73:fb:60:43:52:9d:eb:df:2f:75:da:9f:02: 23:45:ee:5e:06:4a:61:6b:64:a2:d0:b8:a3:cb:b7:11:fa:db: cd:b2:1b:93:f7:9b:7f:bf:eb:39:26:a1:a8:1c:f7:58:49:29: 90:0f:1d:05:89:d7:0c:05:d6:65:a6:a1:1d:e3:42:26:12:e3: af:07:c4:d4:51:2b:62:79:95:87:f2:b5:34:68:db:59:0c:45: 87:08:c4:f8:fd:d4:3b:43:38:3f:e8:91:ea:7b:7d:11:17:06: 5e:62:d4:e8:1d:69:e9:1f:21:a5:8e:f2:ef:7f:dd:74:19:b7: 56:93:0c:14:5c:5a:ed:df:09:30:78:86:8f:87:06:dc:b3:ea: 0d:d9:83:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUwNzAyMjIxODIxWhcNMjUwNzA5MjIxODIxWjAYMRYwFAYD VQQDEw02ODY1YjAyZC01ZDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwGdnjEOwUUMcYATMqmWWytmOp1HsEGUJqY4Fi6aC8WLqKEHexbXiH1Wwwgh EgfobPhLqB8Juh3nbm9tFypFGLNLewVlYGAUPNP59oMAH0yCzn7hQuA++ataiSdV NdH80KV7Rxv3WGmAn/HM1oWlSn1R+HFNawRcUkYSs4bcbyz/kYO82EWeQaMOl1zt /t1oZ3C+BskLFqENN6JsYgOxdm/gLp5NwM19f6NuC+T0EAfEOi2+tGmD3rDYLiPZ +IW9D+4icQ+zCe81OqTfIFvEvMkDPnFbM9i/ZcQCN9onlPONVXH5cI96gIR8twQV VwA7eXln8Cg3ulVwejDgXfBKFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeIsMSn /cY9jhcx7er/Q6GvxhOrMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0woG1fcftD7wUL+lhacw8+xfQCwZfQHCyOfHpGyB5DtUbdg7cEHE1 9/+nT2UsKRECg1tBUsXyXODI/DBAcpsp5QJBy9tfl3b15pPl8fxlS15kkaR6YtLT 4brNxVjrE1oKs8ne/BNHTpZ3ak5ArdIucnP7YENSnevfL3XanwIjRe5eBkpha2Si 0Lijy7cR+tvNshuT95t/v+s5JqGoHPdYSSmQDx0FidcMBdZlpqEd40ImEuOvB8TU UStieZWH8rU0aNtZDEWHCMT4/dQ7Qzg/6JHqe30RFwZeYtToHWnpHyGljvLvf910 GbdWkwwUXFrt3wkweIaPhwbcs+oN2YMS -----END CERTIFICATE-----Generated at Thu Jul 3 07:57:14 2025 by rpki-client