$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: uG7+MBcCyGBoyFo+OtZpiclKCj7XPVDTYbGLjVvLZyw= Subject key identifier: 82:28:C5:F3:2B:EA:A2:31:A4:01:AA:54:87:3A:52:49:7C:E0:41:39 Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: 9E Signing time: Thu 03 Jul 2025 06:42:47 +0000 Manifest this update: Thu 03 Jul 2025 06:42:47 +0000 Manifest next update: Thu 10 Jul 2025 06:42:47 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: sxXqXrfRxIgYfDFsd8m0vQN4392PGrMxJnEuhO+HxUk=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: 4Ilw9gY/NOcFcq0qbuj1smp6o0+TRpgSf2CHUKcnvWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Jul 3 06:42:47 2025 GMT Not After : Jul 10 06:42:47 2025 GMT Subject: CN=68662667-32bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bc:48:f3:5d:a2:a3:56:77:98:5e:12:40:30: 38:6a:34:f1:8e:a9:d2:ae:e0:42:00:b3:de:b7:1f: bc:73:57:66:ca:81:b3:5f:eb:ed:ba:65:f5:d1:6a: 65:2e:af:5d:79:40:7d:30:45:63:69:db:1f:3c:88: cd:28:9d:ed:8f:2d:8d:cb:b9:fa:0a:c6:fb:16:97: 8a:2b:8b:c5:28:92:b5:f0:1e:d9:04:ee:56:8e:5c: b7:84:b2:b9:53:2a:e7:bb:dc:e6:0d:81:98:59:76: 1d:8b:cf:86:7e:07:5d:ac:8b:6d:9e:05:f6:6d:d5: 98:7b:09:2c:6d:3e:0a:f9:b1:7d:4e:c1:5f:63:0d: 85:8a:5f:65:ff:aa:77:61:3f:07:89:22:f5:e5:97: ed:9e:ac:69:b3:a6:00:a1:fb:92:d0:f8:59:1b:f7: 33:65:8e:f5:3a:5a:9c:5b:d4:d1:32:d2:e0:6b:31: de:b0:5a:bf:03:56:92:78:47:7c:29:2f:23:b1:27: f1:91:83:e9:5e:f2:5c:44:ef:28:ea:44:9c:06:a7: 78:02:0a:b7:1a:74:cd:4a:c0:65:c6:eb:32:fb:64: ed:ac:76:02:86:ee:51:a7:af:71:2f:b9:c2:3b:24: 2a:f5:5b:9e:ce:3b:ff:e2:bb:9d:80:ad:f6:1d:01: f4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:28:C5:F3:2B:EA:A2:31:A4:01:AA:54:87:3A:52:49:7C:E0:41:39 X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:d8:d4:73:8b:94:b9:1c:d0:76:66:85:29:e1:36:bc:fe:16: 22:fa:9a:dc:89:44:b0:4b:de:c7:99:87:db:07:02:c2:71:8e: 41:0c:63:ab:25:23:23:29:aa:0e:74:41:3c:de:5d:23:59:e6: 60:1d:47:9a:7c:0e:5e:c5:cb:e1:de:65:0e:47:fc:fa:25:dd: a6:78:59:09:32:2d:6f:f8:1b:ed:94:07:7d:35:fb:cd:82:be: 58:14:7a:51:dd:f0:80:98:5c:c8:08:e7:7c:af:a0:6e:70:6f: f2:72:8c:b7:52:48:16:44:ff:b5:f5:81:78:1f:b8:4c:72:5a: 9f:c9:db:1d:9f:09:78:f1:32:e0:95:d6:d5:6b:dc:c4:a5:fb: bc:56:37:1f:72:4b:56:8f:8f:87:64:96:a8:b2:4c:67:b5:43: 8e:0c:af:e6:4f:87:c1:74:fa:2e:5b:89:ec:e9:f4:db:83:76: 8b:9c:f1:47:4d:0f:45:9a:06:7f:a7:bb:fc:f7:c1:e9:51:7f: 0d:0e:6e:a7:9e:8a:5d:9a:75:27:de:eb:d4:8f:7e:39:fa:97: 1d:d0:4c:74:0e:43:bb:33:4f:0d:04:a3:08:09:7d:aa:88:2c: 6b:cc:43:fd:a6:ce:92:fd:21:91:52:77:9d:40:bb:86:f3:f8: b3:2d:9c:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjUwNzAzMDY0MjQ3WhcNMjUwNzEwMDY0MjQ3WjAYMRYwFAYD VQQDEw02ODY2MjY2Ny0zMmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurxI812io1Z3mF4SQDA4ajTxjqnSruBCALPetx+8c1dmyoGzX+vtumX10Wpl Lq9deUB9MEVjadsfPIjNKJ3tjy2Ny7n6Csb7FpeKK4vFKJK18B7ZBO5Wjly3hLK5 Uyrnu9zmDYGYWXYdi8+GfgddrIttngX2bdWYewksbT4K+bF9TsFfYw2Fil9l/6p3 YT8HiSL15Zftnqxps6YAofuS0PhZG/czZY71OlqcW9TRMtLgazHesFq/A1aSeEd8 KS8jsSfxkYPpXvJcRO8o6kScBqd4Agq3GnTNSsBlxusy+2TtrHYChu5Rp69xL7nC OyQq9Vuezjv/4rudgK32HQH0dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIoxfMr 6qIxpAGqVIc6Ukl84EE5MB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA2NRzi5S5HNB2ZoUp4Ta8/hYi+prciUSwS97HmYfbBwLCcY5BDGOr JSMjKaoOdEE83l0jWeZgHUeafA5excvh3mUOR/z6Jd2meFkJMi1v+BvtlAd9NfvN gr5YFHpR3fCAmFzICOd8r6BucG/ycoy3UkgWRP+19YF4H7hMclqfydsdnwl48TLg ldbVa9zEpfu8VjcfcktWj4+HZJaoskxntUOODK/mT4fBdPouW4ns6fTbg3aLnPFH TQ9FmgZ/p7v898HpUX8NDm6nnopdmnUn3uvUj345+pcd0Ex0DkO7M08NBKMICX2q iCxrzEP9ps6S/SGRUnedQLuG8/izLZyi -----END CERTIFICATE-----Generated at Thu Jul 3 22:53:36 2025 by rpki-client