$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: WxGhvKmKVSkIwhZv4g00mlpQZbPgFu1JXjXpCL0Kge0= Subject key identifier: 75:97:68:EF:C8:10:6C:10:12:BF:A4:2B:95:BB:58:15:F2:FC:31:A8 Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 012C Signing time: Thu 03 Jul 2025 04:43:31 +0000 Manifest this update: Thu 03 Jul 2025 04:43:30 +0000 Manifest next update: Thu 10 Jul 2025 04:43:30 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: pWbCZU5vmYMDCWOJ5mejBtOvMZ0Jd4lin3f4sLZPGzs=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: cuDY334MkIVtRBq3o3ujGRQ6jR/z000CC0KgPqw5K+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Jul 3 04:43:30 2025 GMT Not After : Jul 10 04:43:30 2025 GMT Subject: CN=68660a72-0d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1a:cc:50:76:88:24:a8:49:3f:78:8b:42:57: e5:f8:d9:06:09:75:86:45:c1:a7:68:bc:21:e0:f9: 3a:be:ae:d3:a1:74:b9:d7:ee:54:6c:1e:7d:57:ab: a5:be:af:14:fb:08:3f:f0:b0:61:c8:29:5e:2c:cc: fb:dc:0c:28:2b:99:35:f1:6b:38:78:f1:97:23:f6: a2:d6:f6:f5:9a:a1:35:61:ca:df:d8:a7:68:c0:c0: b5:f9:37:ee:a7:c0:3f:3f:c2:b1:7b:50:bc:f7:f3: e4:3e:65:34:94:65:90:e8:0f:ba:bc:f6:2e:60:55: fc:9f:b6:79:f6:78:0c:ad:05:27:f6:9b:be:62:28: dd:df:66:74:f3:09:5c:8b:9d:ff:32:ac:27:b3:1f: 2c:2a:6f:ad:6b:f9:2d:52:41:97:87:8a:c4:8f:82: b1:40:96:7e:9c:ed:4b:a7:a6:13:5a:7a:fc:d4:bc: 66:b5:7c:2f:30:cc:5e:86:9e:ce:77:cd:a6:4f:8c: fb:46:34:56:d3:fa:90:95:b9:b7:75:33:f9:43:2e: bf:47:16:bb:c1:ba:55:d3:72:8c:09:a5:4b:34:8a: 2c:89:d0:c6:4f:f1:63:0d:f0:1d:d7:35:57:1f:3c: 49:0e:43:e1:17:e8:82:73:0f:62:20:1b:28:a0:9b: 28:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:97:68:EF:C8:10:6C:10:12:BF:A4:2B:95:BB:58:15:F2:FC:31:A8 X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:4b:ae:24:04:c9:08:8a:49:02:e0:48:2b:23:0b:7f:99:cf: 6b:78:b1:b9:d4:80:55:dd:63:c8:79:1d:10:8e:1c:bf:b5:e3: 95:20:69:eb:ff:84:ba:bb:2d:96:fd:4b:29:cc:6a:35:79:00: f3:7c:86:66:21:33:62:22:39:8a:95:6a:89:28:89:d4:df:b8: 26:21:8e:f8:b1:d8:fd:69:03:1e:84:49:aa:d5:26:89:5b:4e: 3b:cd:84:2e:74:68:eb:90:0d:d3:c9:72:d4:9a:00:f4:9f:af: 81:c6:09:35:dc:8b:f1:42:24:04:0b:71:b3:26:8f:1b:d8:3d: 6b:6b:9f:d0:2b:c0:b8:62:4b:99:bd:e7:40:46:31:80:ca:4d: 2d:59:12:ad:cd:2c:2c:e7:e5:98:c9:34:aa:14:b0:80:cd:b6: 5a:20:f8:a2:13:18:8c:60:39:02:89:1d:3e:64:79:2f:15:c5: c1:b6:15:d4:ad:3e:2e:ae:8f:d6:49:db:d3:6b:18:9f:c2:a0: 19:6b:2e:d6:16:7d:7f:6c:8f:0f:41:33:ae:d4:f8:a1:b3:d0: c9:4b:26:f0:51:0b:4c:72:a8:3c:dd:a6:1e:dd:3e:e1:7f:ba: 27:21:da:18:51:fb:ad:3a:0f:74:eb:a1:43:26:4f:19:fc:72: 5b:d3:72:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjUwNzAzMDQ0MzMwWhcNMjUwNzEwMDQ0MzMwWjAYMRYwFAYD VQQDEw02ODY2MGE3Mi0wZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhrMUHaIJKhJP3iLQlfl+NkGCXWGRcGnaLwh4Pk6vq7ToXS51+5UbB59V6ul vq8U+wg/8LBhyCleLMz73AwoK5k18Ws4ePGXI/ai1vb1mqE1Ycrf2KdowMC1+Tfu p8A/P8Kxe1C89/PkPmU0lGWQ6A+6vPYuYFX8n7Z59ngMrQUn9pu+Yijd32Z08wlc i53/Mqwnsx8sKm+ta/ktUkGXh4rEj4KxQJZ+nO1Lp6YTWnr81LxmtXwvMMxehp7O d82mT4z7RjRW0/qQlbm3dTP5Qy6/Rxa7wbpV03KMCaVLNIosidDGT/FjDfAd1zVX HzxJDkPhF+iCcw9iIBsooJsovQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWXaO/I EGwQEr+kK5W7WBXy/DGoMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxS64kBMkIikkC4EgrIwt/mc9reLG51IBV3WPIeR0Qjhy/teOVIGnr /4S6uy2W/UspzGo1eQDzfIZmITNiIjmKlWqJKInU37gmIY74sdj9aQMehEmq1SaJ W047zYQudGjrkA3TyXLUmgD0n6+Bxgk13IvxQiQEC3GzJo8b2D1ra5/QK8C4YkuZ vedARjGAyk0tWRKtzSws5+WYyTSqFLCAzbZaIPiiExiMYDkCiR0+ZHkvFcXBthXU rT4uro/WSdvTaxifwqAZay7WFn1/bI8PQTOu1Pihs9DJSybwUQtMcqg83aYe3T7h f7onIdoYUfutOg9066FDJk8Z/HJb03Kk -----END CERTIFICATE-----Generated at Thu Jul 3 11:29:17 2025 by rpki-client