$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft File: NSwvQv_2bLhqacZ-5hurbhEVTss.mft (raw, json) Hash identifier: QC+kHz/8jSXr8WJgYRZk1fohe5dvAuw7Z9P00yaB9Ac= Subject key identifier: 08:C9:9A:6B:12:FE:1E:36:3C:73:FD:67:45:5C:D2:6D:29:BC:CB:D4 Authority key identifier: 35:2C:2F:42:FF:F6:6C:B8:6A:69:C6:7E:E6:1B:AB:6E:11:15:4E:CB Certificate issuer: /CN=A91CCD0C/serialNumber=352C2F42FFF66CB86A69C67EE61BAB6E11154ECB Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft Manifest number: C1 Signing time: Thu 03 Jul 2025 06:00:57 +0000 Manifest this update: Thu 03 Jul 2025 06:00:57 +0000 Manifest next update: Thu 10 Jul 2025 06:00:57 +0000 Files and hashes: 1: NSwvQv_2bLhqacZ-5hurbhEVTss.crl (hash: QIyrDEINgb2HESpR9P3jppxQBQ+t3laXRpCk2x864ZM=) 2: E5BB4DB260E411EF83727F5CC4F9AE02.roa (hash: sjsLTuWeFwgevoPUUjQqWdyEX8OASo8b7yHbpb8l0pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.crl rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCD0C, serialNumber=352C2F42FFF66CB86A69C67EE61BAB6E11154ECB Validity Not Before: Jul 3 06:00:57 2025 GMT Not After : Jul 10 06:00:57 2025 GMT Subject: CN=68661c99-d5ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b3:76:db:f5:a1:7a:20:e3:64:50:84:c3:cc: 38:97:ee:c8:9b:9a:84:b6:15:3c:05:2b:aa:9b:24: ee:33:b2:5f:b7:9e:0c:c2:42:1e:2b:f9:ff:19:c2: b5:73:32:43:15:8f:2d:cb:e2:ca:ec:16:aa:4c:e5: bb:8d:4b:f1:c3:b4:e1:68:e0:9d:38:c8:e9:92:17: 03:2f:9f:42:4b:85:4d:c2:5b:26:25:44:4e:a8:d9: 23:0a:31:e8:03:ce:67:61:8a:d5:40:1f:3a:62:bf: 5b:10:1a:96:4b:1e:de:41:01:71:70:19:b0:fa:a8: d3:fe:b7:cd:c8:70:0c:cc:63:7c:d3:6c:59:77:94: 47:7a:44:37:d2:e0:47:f1:10:ef:03:42:c8:d9:9e: 33:48:4d:c8:ee:dd:11:6d:89:60:2a:46:c7:43:1a: f0:f6:5f:b1:5b:5a:d8:a0:2f:c9:7e:22:52:9a:3f: db:a9:06:5e:00:80:73:a4:90:e9:bb:f3:94:23:ad: e9:58:e8:93:59:48:04:04:90:24:82:6c:81:31:45: 80:ac:d1:b0:d3:b3:9c:4a:77:d6:66:1f:9f:7a:8d: 08:d7:05:98:56:a0:da:79:d9:6d:6a:85:fa:ea:fd: 84:5d:4c:9d:e7:aa:99:28:a4:ab:59:75:8a:ac:88: 6b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:C9:9A:6B:12:FE:1E:36:3C:73:FD:67:45:5C:D2:6D:29:BC:CB:D4 X509v3 Authority Key Identifier: keyid:35:2C:2F:42:FF:F6:6C:B8:6A:69:C6:7E:E6:1B:AB:6E:11:15:4E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:07:a2:79:dd:02:4e:58:26:64:a2:4b:18:18:b8:5a:2f:a5: ae:25:1b:46:92:37:9c:2f:7d:b2:4b:e0:2b:a0:e7:07:69:ec: 64:15:99:8e:2b:ec:87:bf:8d:2e:cb:8e:c1:02:17:54:ca:63: c8:15:12:e5:ac:b7:d1:5e:c0:a5:5a:88:ee:62:e0:0d:90:98: 27:e5:24:a1:f5:27:73:f1:e7:d4:8f:d6:1c:d5:82:b0:ab:f3: be:69:c8:dd:b1:e4:ec:6b:98:4e:00:ab:4d:18:c6:21:0c:d0: d0:c7:3b:7e:d7:a3:a2:12:7e:af:2c:40:c6:0e:78:5d:09:a0: 37:60:66:32:1e:9b:de:71:d1:37:31:1e:d5:ad:5b:84:04:d1: f4:2e:b3:51:90:80:15:a8:c0:c4:e1:eb:89:53:a1:ef:9d:83: 71:91:da:42:fe:bd:b9:8e:7d:1b:64:b8:31:75:81:8d:c9:0a: 87:95:7f:12:b7:d8:12:29:02:b2:56:76:f7:1f:24:e0:50:81: 01:3e:ab:1e:1a:d5:a4:63:5a:11:8d:30:58:84:d2:4f:e8:10: 0b:34:ec:7e:ef:d3:f6:54:b1:27:cc:2a:44:60:46:89:5d:fe: c2:53:6c:9d:e1:1c:ca:f1:9d:a7:76:69:7e:66:7d:fd:e2:8e: 62:85:d9:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NEMEMxMTAvBgNVBAUTKDM1MkMyRjQyRkZGNjZDQjg2QTY5QzY3RUU2MUJBQjZF MTExNTRFQ0IwHhcNMjUwNzAzMDYwMDU3WhcNMjUwNzEwMDYwMDU3WjAYMRYwFAYD VQQDEw02ODY2MWM5OS1kNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLN22/WheiDjZFCEw8w4l+7Im5qEthU8BSuqmyTuM7Jft54MwkIeK/n/GcK1 czJDFY8ty+LK7BaqTOW7jUvxw7ThaOCdOMjpkhcDL59CS4VNwlsmJUROqNkjCjHo A85nYYrVQB86Yr9bEBqWSx7eQQFxcBmw+qjT/rfNyHAMzGN802xZd5RHekQ30uBH 8RDvA0LI2Z4zSE3I7t0RbYlgKkbHQxrw9l+xW1rYoC/JfiJSmj/bqQZeAIBzpJDp u/OUI63pWOiTWUgEBJAkgmyBMUWArNGw07OcSnfWZh+feo0I1wWYVqDaedltaoX6 6v2EXUyd56qZKKSrWXWKrIhrhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjJmmsS /h42PHP9Z0Vc0m0pvMvUMB8GA1UdIwQYMBaAFDUsL0L/9my4amnGfuYbq24RFU7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0QwQy84MTlBMDIzNDMy Q0IxMUVGOUVBMEM5NkFDNEY5QUUwMi9OU3d2UXZfMmJMaHFhY1otNWh1cmJoRVZU c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Td3ZRdl8yYkxocWFjWi01aHVyYmhFVlRzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0QwQy84MTlBMDIzNDMyQ0IxMUVGOUVBMEM5NkFDNEY5QUUwMi9OU3d2UXZfMmJM aHFhY1otNWh1cmJoRVZUc3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtB6J53QJOWCZkoksYGLhaL6WuJRtGkjecL32yS+AroOcHaexkFZmO K+yHv40uy47BAhdUymPIFRLlrLfRXsClWojuYuANkJgn5SSh9Sdz8efUj9Yc1YKw q/O+acjdseTsa5hOAKtNGMYhDNDQxzt+16OiEn6vLEDGDnhdCaA3YGYyHpvecdE3 MR7VrVuEBNH0LrNRkIAVqMDE4euJU6HvnYNxkdpC/r25jn0bZLgxdYGNyQqHlX8S t9gSKQKyVnb3HyTgUIEBPqseGtWkY1oRjTBYhNJP6BALNOx+79P2VLEnzCpEYEaJ Xf7CU2yd4RzK8Z2ndml+Zn394o5ihdlf -----END CERTIFICATE-----Generated at Fri Jul 4 22:21:07 2025 by rpki-client